last executing test programs:

4m53.58325189s ago: executing program 2 (id=78):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000100001ff00000000000000000000000a2c000000050a01020000000000000000020000000900030073797a32000000000900010073797a300000000014000000020a031747d21400000000000000000014000000110001"], 0x68}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000011c0), r1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000001680)=ANY=[], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$IEEE802154_LLSEC_LIST_DEV(r1, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000001200)={0x14, r2, 0x301, 0x70bd27, 0x25dfdbfc}, 0x14}}, 0x40004)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000100001000b000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000045c0000000c0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xe8}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={{0x14, 0x10, 0x9000, 0x6, 0x0, {0xa}}, [@NFT_MSG_DELSETELEM={0x2c, 0xe, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x54}}, 0x0)
r3 = shmget$private(0x0, 0x2000, 0x800, &(0x7f0000ff6000/0x2000)=nil)
prctl$PR_SET_NAME(0xf, &(0x7f0000000300)='\x85\xb1\xccBpy\xc1s\xf9\\\x98\xce\xa4g\xd2\xd4\xdei\xa1\x8e\x9c\xe4\x82\x05\xf3u\fe\x87\xa5+8u@6\xefq\xa1\x9a\xfb\x1f$\x19\xd3\xa5r\xcc\x84\xdc\xcfJ\t\x04z\xc9\x89D\xadc\x11@\xdc\xb51\x8a\xc9_\xc3|\xb2^g\xe5Gt\x1e\xc6\x81\xb4\xdd\xd7V\"\x92\xbci\x978\xfce\b\xcc\xf7\'&\xe0\xa2\xb6\xb3\xfc\xd5[\xd9\xf6\xb7\xa8\xa7\xaf\\\xc1\x89]K\x9c\xc9IM\x02tM\x19\xdb\xf2U%L\x11\fx\xd2/*\xa9\xbd2\xd6\x9c+')
r4 = openat$apparmor_thread_current(0xffffff9c, &(0x7f0000000d40), 0x2, 0x0)
write$apparmor_current(r4, &(0x7f0000000d80)=ANY=[@ANYBLOB="636810ee7f8d07ff1f0000303030303030303030303030303030315e"], 0x1d)
shmat(r3, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
read(r4, &(0x7f0000000000)=""/94, 0x5e)

4m53.366692541s ago: executing program 2 (id=79):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, &(0x7f0000000080)})
fanotify_init(0x200, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000e40), 0x40080, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f00000000c0)=0x1)
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "fe94b89fc43c3328eae0cae1f5eba329e6f216"})
splice(r1, 0x0, r0, 0x0, 0x7ffff000, 0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.time\x00', 0x26e1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x300, 0x70bd28, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e76, 0x10000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_getparam(r2, &(0x7f0000000000))
socket$rxrpc(0x21, 0x2, 0xa)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f00000001c0)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x7ff}, 0xe)
socket$netlink(0x10, 0x3, 0x4)
r5 = socket(0x10, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="54000000100003fe00"/20, @ANYRES32=0x0, @ANYBLOB="0802000000000000340012800e00010069703665727370616e00000020000280060002003000000014000700ff010000000000000000000000000001"], 0x54}}, 0x0)

4m52.420435419s ago: executing program 2 (id=81):
r0 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000500)={'team0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x40, 0x24, 0xf0b, 0x70bd2c, 0x0, {0x0, 0x0, 0x12, r1, {0x0, 0xfff2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x10, 0x2, [@TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME={0xc, 0x8, 0x100000000}]}}]}, 0x40}}, 0x20000004)
rseq(0x0, 0x0, 0x0, 0x0)
utimes(0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='sched_switch\x00', r3, 0x0, 0xa}, 0x18)
r4 = socket$qrtr(0x2a, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1a, 0x4, 0x0, 0x1, 0x2a400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x7dd8}, 0x50)
connect$qrtr(r4, &(0x7f0000000340)={0x2a, 0xffffffff00000002, 0x7fff}, 0xc)
bind$qrtr(r4, &(0x7f0000000500)={0x2a, 0x1, 0x1}, 0xc)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x3)
mount(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x200c008, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000280)='./file1\x00')
r5 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000080)='.log\x00', 0x1812c1, 0x0)
quotactl_fd$Q_GETFMT(r5, 0xffffffff80000400, 0x0, &(0x7f0000000240))
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x5, 0x100)
mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000440)=""/173)
socket(0x10, 0x3, 0x0) (async)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000500)) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x40, 0x24, 0xf0b, 0x70bd2c, 0x0, {0x0, 0x0, 0x12, r1, {0x0, 0xfff2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x10, 0x2, [@TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME={0xc, 0x8, 0x100000000}]}}]}, 0x40}}, 0x20000004) (async)
rseq(0x0, 0x0, 0x0, 0x0) (async)
utimes(0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='sched_switch\x00', r3, 0x0, 0xa}, 0x18) (async)
socket$qrtr(0x2a, 0x2, 0x0) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1a, 0x4, 0x0, 0x1, 0x2a400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x7dd8}, 0x50) (async)
connect$qrtr(r4, &(0x7f0000000340)={0x2a, 0xffffffff00000002, 0x7fff}, 0xc) (async)
bind$qrtr(r4, &(0x7f0000000500)={0x2a, 0x1, 0x1}, 0xc) (async)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) (async)
mkdir(&(0x7f0000000440)='./file1\x00', 0x3) (async)
mount(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x200c008, &(0x7f0000000300)='usrquota') (async)
chdir(&(0x7f0000000280)='./file1\x00') (async)
openat$incfs(0xffffffffffffff9c, &(0x7f0000000080)='.log\x00', 0x1812c1, 0x0) (async)
quotactl_fd$Q_GETFMT(r5, 0xffffffff80000400, 0x0, &(0x7f0000000240)) (async)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x5, 0x100) (async)
mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000440)=""/173) (async)

4m52.236941844s ago: executing program 2 (id=82):
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000180)=[{0x20, 0x0, 0x0, 0xfffff01c}, {0x6}]}, 0x8)
capset(0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8ed"])
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000001c0)={[0x3ff, 0x6, 0x8000000000000, 0xe, 0x10003, 0x50, 0x400200cc0, 0xffd, 0x8008, 0x6, 0x3ff, 0x0, 0x5, 0x0, 0x6b, 0x7ff], 0xeeee8000})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SWAP(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x28, 0x6, 0x6, 0x3, 0x0, 0x0, {0x4bf04a0d31a0a756, 0x0, 0x8}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000005}, 0x4084000)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000340)={0x26, 'skcipher\x00', 0x0, 0x0, 'cryptd(ecb-twofish-avx)\x00'}, 0x58)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x5)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_GET_BYNAME(r6, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x14, 0xe, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x40044}, 0x8000)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x3)
bind$alg(r5, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(khazad)\x00'}, 0x58)
ioctl$KVM_CAP_EXIT_ON_EMULATION_FAILURE(r2, 0x4068aea3, &(0x7f0000000280)={0xcc, 0x0, 0x1})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

4m51.794300257s ago: executing program 2 (id=84):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async, rerun: 64)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0xc, 0x7, 0x0, 0x40000005, 0x1, 0x7, 0x2, 0x7}}) (async, rerun: 64)
prlimit64(0x0, 0xe, 0x0, 0x0) (async)
sched_setscheduler(0x0, 0x2, 0x0) (async, rerun: 32)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async, rerun: 32)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x40f00, 0xa}, 0x94) (async)
sendmsg(0xffffffffffffffff, 0x0, 0x24004800)
read$msr(0xffffffffffffffff, 0x0, 0x0)
r2 = accept4$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000000c0)=0x14, 0x80800)
sendto(r2, &(0x7f00000005c0)="11bfc6929ab04ecc92a380788666543ab10fd7e0212982d945fe0540f5ef767376c7d2ac29bb47d972688f5c73689a8c08f39a137cca7ffc89c36ee62935a83a410046d1a43bc77e5e8ac00c5b5d6b1b63790bccb0314c66c9f7b4447468282699afc6aeb4cf990578bb3cc2507bc956a4c90b1f21df05aeb3d22ae70b290c4fe84cb2660ebe2b6d117751624aa6606459c2b6989a00c752eac01ba08fd0c15452aabd1900bc33ca38b928beb4cc26b6c874a5b8b38ece36ec475ed6fd1f0f4aed9653a808ce975a786c1c31e90c17da86711c29d33b17c9083c", 0xda, 0x20004801, &(0x7f0000000300)=@phonet={0x23, 0x4, 0x6a, 0x7}, 0x80)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000180)=@name={0x1e, 0x2, 0x1, {{0x41}, 0x3}}, 0x10) (async)
gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x25, 0x4, @thr={&(0x7f0000000440)="243d404d07f403b09242b2e51a78ab1ad0ff464f8181ca571eaf5aec7f975589464b669a8034c66846a020a92556117ed13c0ae19a410f6c0e97199446e12ddac8cd6482", &(0x7f0000000780)="915164e02177b0ef62cd0ac71ce4cc8b98cc5974471f4a9d00c3c920f64e0c219b0047c50fd925f5b09f1adb55ce73a50d2b95947f204c6af8f82d890392707e2046e58a445a5e2c16f7e20abef8ce963cf7e2cb2696017698ad113d3c2ede61a5915b72b9bc2729400fed4812750792ed5e245d5205a7e730ba01e80000000000000000"}}, &(0x7f0000bbdffc)) (async, rerun: 32)
r4 = socket$inet(0x2, 0x800, 0x1) (rerun: 32)
setsockopt$inet_mreqn(r4, 0x0, 0x23, &(0x7f0000000240)={@rand_addr=0x64010102, @loopback}, 0xc) (async, rerun: 32)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000180)={'erspan0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x2000, 0x40, 0x0, 0x7, {{0x5, 0x4, 0x0, 0x11, 0x14, 0x20, 0x0, 0x2b, 0x2f, 0x0, @multicast1, @multicast1}}}}) (async, rerun: 32)
setsockopt$inet_msfilter(r4, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e00000027fa80a010100000004"], 0x57)
r5 = socket$netlink(0x10, 0x3, 0x0)
writev(r5, &(0x7f00000003c0)=[{&(0x7f0000000040)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004fff400000007fdd411efc408000400000000000071fd", 0x39}], 0x1)
writev(r0, &(0x7f0000000380), 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10) (async)
sendmsg$tipc(r6, &(0x7f0000000540)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x42}, 0x2}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x10) (async)
setsockopt$inet6_int(r0, 0x29, 0x33, &(0x7f0000000000)=0x1, 0x4) (async)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x23, @empty, 0x2b}, 0x1c)

4m51.512605223s ago: executing program 2 (id=85):
socket$kcm(0x29, 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078008001240000000000500140008000000050005000a000000050001000600000011000300686173683a69702c706f7274"], 0x60}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mount(&(0x7f0000000040)=@nullb, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000080)='cramfs\x00', 0x2a00000, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="12000000020000000400000002"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1804000000000000000000000000040018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r3, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r6=>0xffffffffffffffff})
sendfile(r6, r5, 0x0, 0x578410eb)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000880)={r7, 0x1, r3, 0xfffffff9, 0x80000})
r8 = openat$rdma_cm(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
r9 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
r10 = socket(0x1e, 0x1, 0x0)
listen(r10, 0x0)
setsockopt$sock_timeval(r10, 0x1, 0x14, &(0x7f0000454ff0)={0x0, 0x2710}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r2, 0x0, 0x60, 0xe4, &(0x7f0000000500)="725259eb836c4546ffb37b855988542c63864846bb9daee2844c56727568b664fa0535750ec926af7a1ce0ad0ebf0e04cb30850b2fbb8ef91e867abec0e802fbf748f3511db163cae3176bb96c67c0a3583cf2cdcb83ac274a3b9417373ceb1a", &(0x7f00000005c0)=""/228, 0x800, 0x0, 0xb, 0xe, &(0x7f0000000240)="9ee8714c8cb48fb27bc4cb", &(0x7f0000000340)="0ca99584d4c388c5aa9207f40595", 0x3, 0x0, 0x7}, 0x4c)
accept4(r10, 0x0, 0x0, 0x80000)
write$RDMA_USER_CM_CMD_CREATE_ID(r9, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={<r11=>0xffffffffffffffff}, 0x2, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r9, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000280)=0x1, r11, 0x0, 0x1, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r9, &(0x7f0000000300)={0x7, 0x8, 0xfa00, {r11, 0x1000}}, 0x10)
write$RDMA_USER_CM_CMD_DESTROY_ID(r8, &(0x7f0000000100)={0x1, 0x10, 0xfa00, {&(0x7f00000000c0), r11}}, 0x18)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="480000001000390400"/20, @ANYRES32=0x0, @ANYBLOB="21011fd07aba9ae38b0000000000001c0012800b00010062726864676500000c00028000100a4d413094c10500"/55], 0x48}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendto(r12, 0x0, 0x0, 0x4084080, 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, 0x0, 0x8, 0x5, 0x0, 0x0, {0x3, 0x0, 0x6}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008800}, 0x1)

4m51.451357866s ago: executing program 32 (id=85):
socket$kcm(0x29, 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078008001240000000000500140008000000050005000a000000050001000600000011000300686173683a69702c706f7274"], 0x60}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mount(&(0x7f0000000040)=@nullb, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000080)='cramfs\x00', 0x2a00000, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="12000000020000000400000002"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1804000000000000000000000000040018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x48, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r3, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r6=>0xffffffffffffffff})
sendfile(r6, r5, 0x0, 0x578410eb)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000800)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000880)={r7, 0x1, r3, 0xfffffff9, 0x80000})
r8 = openat$rdma_cm(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
r9 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
r10 = socket(0x1e, 0x1, 0x0)
listen(r10, 0x0)
setsockopt$sock_timeval(r10, 0x1, 0x14, &(0x7f0000454ff0)={0x0, 0x2710}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r2, 0x0, 0x60, 0xe4, &(0x7f0000000500)="725259eb836c4546ffb37b855988542c63864846bb9daee2844c56727568b664fa0535750ec926af7a1ce0ad0ebf0e04cb30850b2fbb8ef91e867abec0e802fbf748f3511db163cae3176bb96c67c0a3583cf2cdcb83ac274a3b9417373ceb1a", &(0x7f00000005c0)=""/228, 0x800, 0x0, 0xb, 0xe, &(0x7f0000000240)="9ee8714c8cb48fb27bc4cb", &(0x7f0000000340)="0ca99584d4c388c5aa9207f40595", 0x3, 0x0, 0x7}, 0x4c)
accept4(r10, 0x0, 0x0, 0x80000)
write$RDMA_USER_CM_CMD_CREATE_ID(r9, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={<r11=>0xffffffffffffffff}, 0x2, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r9, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000280)=0x1, r11, 0x0, 0x1, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r9, &(0x7f0000000300)={0x7, 0x8, 0xfa00, {r11, 0x1000}}, 0x10)
write$RDMA_USER_CM_CMD_DESTROY_ID(r8, &(0x7f0000000100)={0x1, 0x10, 0xfa00, {&(0x7f00000000c0), r11}}, 0x18)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="480000001000390400"/20, @ANYRES32=0x0, @ANYBLOB="21011fd07aba9ae38b0000000000001c0012800b00010062726864676500000c00028000100a4d413094c10500"/55], 0x48}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendto(r12, 0x0, 0x0, 0x4084080, 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, 0x0, 0x8, 0x5, 0x0, 0x0, {0x3, 0x0, 0x6}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008800}, 0x1)

5.720740151s ago: executing program 4 (id=2372):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="28000003400007012bbd700000000001047c00000400c2800c00018006000600843b0000040002"], 0x28}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)

5.591173818s ago: executing program 4 (id=2373):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_open_dev$I2C(&(0x7f0000000100), 0x2, 0x1)
ioctl$I2C_RDWR(r1, 0x707, 0x0)

5.431195915s ago: executing program 0 (id=2375):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="98000000", @ANYRES16=r1, @ANYBLOB="2da52abd7000fbdbdf250300000008000100000300000800010000000000340007800c0001"], 0x98}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000)

5.430601252s ago: executing program 0 (id=2376):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000f00)={r1, 0x18000000000002a0, 0x36, 0x0, &(0x7f0000000fc0)="b9ff03316844268cb89e14f008004ce0003000000700008877fbac0c1416e000030a89079f03b18000440c0511e0845013f2325f0007", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x4c)

5.317157937s ago: executing program 0 (id=2377):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x6e23, 0x6, @rand_addr=' \x01\x00', 0x2}, 0x1c)
write$apparmor_exec(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYBLOB='exec  :'], 0x15)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
timer_create(0x3, &(0x7f0000000140)={0x0, 0x3a, 0x2, @thr={&(0x7f0000000000)="d5db83aa1d3451ccd13675a34859f629b37e1cc1d1885d9213e4128b7bdde2aa1011891b81c2c5e608e9d48f", 0x0}}, &(0x7f0000000180))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a74000000060a010400000000000000000200000048000480440001800c0001007061796c6f616400340002800800044000000000080005400000000008000340000000610800024000000003080006400000000208000740000000080900010073797a300000000009000200"], 0x9c}}, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x499f, 0x0, 0x0, 0x0)
r5 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x22001)
ioctl$NBD_PRINT_DEBUG(r5, 0xab06)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300), 0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(&(0x7f0000000300)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000012c0)='./file0\x00', &(0x7f0000001300)='f2fs\x00', 0x0, &(0x7f00000035c0)='quota')
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x34, r6, 0x1, 0x0, 0x0, {{}, {}, {0x18, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'team0\x00'}}}}}, 0x34}}, 0x0)

4.436504774s ago: executing program 0 (id=2382):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x758e, 0x100, 0x0, 0x34f}, &(0x7f0000000140)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x13, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sched_setattr(0x0, 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000200)=[{0x32, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000040)={0x3, 0x0, 0x5}, 0x10}, 0x94)

3.733992429s ago: executing program 0 (id=2383):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x80cd}], 0x1, 0x7)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
close(r4)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_misc(r3, &(0x7f0000000600)="f0", 0x1)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r5, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f00000007c0)=ANY=[@ANYBLOB="240000000408010800000000000000001d00000006000240000000000000030001000000"], 0x24}}, 0x0)
splice(r2, 0x0, r4, 0x0, 0x2000, 0x0)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
close(0xffffffffffffffff)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
ioctl$SOUND_MIXER_READ_STEREODEVS(r2, 0x80044dfb, &(0x7f0000000040))
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newqdisc={0x68, 0x24, 0x4ee4e6a52ff56541, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, r9, {0x0, 0xb}, {0xffff, 0xffff}, {0x6, 0xfff3}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x55, 0x1, {0x2, 0x5220, 0x1, 0xb, 0x283faaf6, 0x0, 0x5, 0x10000, 0xfffffff9}}}}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x78}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x600}]}, 0x68}, 0x1, 0x0, 0x0, 0x200400d1}, 0x20000000)
sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x7fffe, {0x0, 0x0, 0x0, r9, {}, {0xb, 0xb}, {0xd, 0xb}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x80, 0x808, 0x5, 0x1, 0xc}, 0xb, 0x4, 0x5, 0x5, 0xd, 0x10, 0x9, 0xd, 0xff, 0x1, {0x11, 0x3, 0x1000, 0x101, 0xfffffffe, 0x5}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x4008840}, 0x8000)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r11 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r11, &(0x7f00000001c0)=@pppol2tpin6={0x18, 0x1, {0x0, r10, 0x202, 0x0, 0x4, 0x0, {0xa, 0x4e21, 0x8, @mcast1, 0x9}}}, 0x32)
r12 = syz_open_dev$loop(&(0x7f0000000080), 0x8b9, 0x80981)
ioctl$LOOP_SET_STATUS(r12, 0x4c02, 0x0)

3.660751871s ago: executing program 1 (id=2384):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), r0)
sendmsg$NL802154_CMD_SET_LBT_MODE(r1, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, r2, 0x800, 0x70bd2c, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_LBT_MODE={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4044}, 0x46f0f8aa78650b0e)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan1\x00', <r3=>0x0})
sendmsg$NL802154_CMD_SET_LBT_MODE(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r2, 0x20, 0x70bd29, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x11}, 0x2400c000)
r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="98000000", @ANYRES16=r4, @ANYBLOB="2da52abd7000fbdbdf250300000008000100000000000800010000000000340007800c0001"], 0x98}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000)

3.621897171s ago: executing program 3 (id=2385):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x6e23, 0x6, @rand_addr=' \x01\x00', 0x2}, 0x1c)
write$apparmor_exec(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYBLOB='exec  :'], 0x15)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
timer_create(0x3, &(0x7f0000000140)={0x0, 0x3a, 0x2, @thr={&(0x7f0000000000)="d5db83aa1d3451ccd13675a34859f629b37e1cc1d1885d9213e4128b7bdde2aa1011891b81c2c5e608e9d48f", 0x0}}, &(0x7f0000000180))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a74000000060a010400000000000000000200000048000480440001800c0001007061796c6f616400340002800800044000000000080005400000000008000340000000610800024000000003080006400000000208000740000000080900010073797a300000000009000200"], 0x9c}}, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x499f, 0x0, 0x0, 0x0)
syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x22001)

3.507234228s ago: executing program 1 (id=2386):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
iopl(0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x1000434c, 0x8, 0x584e4f53, 0x4, 0x7, 0x9, 0xa, 0x4, 0x1, 0x4, 0x2, 0x6}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={0x20, 0x2, 0x3, 0x5, 0x0, 0x0, {}, [@NFQA_CFG_PARAMS={0x9, 0x2, {0x3fd, 0x1}}]}, 0x20}}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x1)
removexattr(&(0x7f0000000200)='./cgroup\x00', 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x19)
ioctl$KVM_GET_PIT2(r4, 0x8070ae9f, &(0x7f0000000300))
socket$nl_generic(0x10, 0x3, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
recvmmsg(r5, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nfc(&(0x7f0000000040), r7)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc}}, &(0x7f0000000300)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r9}, 0x10)
sendmsg$NFC_CMD_DISABLE_SE(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x24, r8, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_SE_INDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0xc000}, 0x4000)

3.291213379s ago: executing program 4 (id=2388):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x58, r1, 0x100, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x1, 0x35}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x6a}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xa}, @NL80211_ATTR_NOACK_MAP={0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x5}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7}]}, 0x58}}, 0x4)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$UI_DEV_SETUP(r2, 0x405c5503, &(0x7f0000000280)={{0x0, 0x200, 0x0, 0x9}, 'syz1\x00', 0x9})
ioctl$UI_DEV_CREATE(r2, 0x5501)
r3 = syz_open_dev$evdev(&(0x7f0000000100), 0x72, 0x0)
readv(r3, &(0x7f0000000bc0)=[{&(0x7f0000000140)=""/216, 0x4c}], 0x1)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r4, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0xe, 0x4, 0x80004, 0x20002, 0x1620, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x5}, 0x50)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
r6 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000200)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000240), 0x12)
r7 = openat$drirender128(0xffffff9c, &(0x7f0000000300), 0x10400, 0x0)
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06464ce, &(0x7f0000000340)={0x0, 0x7, 0x1, 0x6, 0x6, [0x0, <r8=>0x0], [0x2, 0x0, 0x6, 0xfff], [0x5, 0xfcd7, 0x5, 0x80000000], [0xffff, 0xa, 0xff, 0x4]})
ioctl$DRM_IOCTL_GEM_CLOSE(r7, 0x40086409, &(0x7f00000003c0)={r8})
ioctl$TUNSETOFFLOAD(r5, 0x400454d0, 0xff3)

3.051091806s ago: executing program 4 (id=2389):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, <r3=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r3)
getsockopt$IPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x43, 0x0, &(0x7f0000000200))
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="28000000400007012bbd700000000001047c00000400c2800c00018006000600843b0000040002"], 0x28}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)

3.050731532s ago: executing program 4 (id=2390):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x758e, 0x100, 0x0, 0x34f}, &(0x7f0000000140), &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x13, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
r0 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x0, 0x0)
r1 = epoll_create1(0x0)
ptrace$getenv(0x4201, r0, 0x5, &(0x7f00000000c0))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5}, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @empty}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r4, 0x89f5, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f5, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000200)={'gretap0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0xf, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0xd}, @multicast2, {[@lsrr={0x83, 0x27, 0xc7, [@private=0xa010102, @empty, @private=0xa010100, @rand_addr=0x64010101, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010102, @empty, @dev={0xac, 0x14, 0x14, 0xb}, @private=0xa010101]}]}}}}})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x1, 0x5, &(0x7f0000003a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r5, 0x18000000000002a0, 0xe40, 0x2f, &(0x7f0000000500)="b958945d8ae49c4f19be14f06558", 0x0, 0x1cb0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48)
epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0x20000014, 0x3f00})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000000206010100000000000000000100ffff0c00078008001240000000050500010006000000050005000a0000000900020073797a310000000011000300680180683a69702c6d61726b00000000"], 0x50}, 0x1, 0x0, 0x0, 0x4044081}, 0x0)
mount(&(0x7f0000000140)=@sg0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000300)='nsfs\x00', 0x40, &(0x7f0000000040)='syzkadler\x01/\n\x00')
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x1e, 0xc, &(0x7f0000000a40)=ANY=[@ANYRESDEC], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r7}, 0xc)
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sched_setattr(0x0, 0x0, 0x0)

2.488865619s ago: executing program 3 (id=2391):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = socket$kcm(0x23, 0x2, 0x0)
readv(r1, 0x0, 0x0)
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002700)=""/102392, 0x18ff8)
r3 = syz_open_dev$vim2m(&(0x7f00000002c0), 0xf, 0x2)
ioctl$vim2m_VIDIOC_STREAMOFF(r3, 0x40045612, &(0x7f0000000240)=0x1)

2.090141659s ago: executing program 1 (id=2392):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
writev(0xffffffffffffffff, &(0x7f00000006c0), 0x0)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="98000000", @ANYRES16=r1, @ANYBLOB="2da52abd7000fbdbdf250300000008000100000000000800010000000000340007800c000180080001"], 0x98}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000)

2.089412225s ago: executing program 1 (id=2393):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000019240)='net/netstat\x00')
pread64(r1, &(0x7f0000000080)=""/102356, 0x18fd4, 0x200)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRES64=r1, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000040)={0x28, 0x2, 0x0, {0x1, 0x85, 0x96}}, 0x28)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="000000000000000000000000000000000000000000000000000000d455b4da000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bd1d8811cd8a942e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400", 0x2000, &(0x7f00000041c0)={&(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x29, 0x7, 0x2110029, 0x1, 0x0, 0x1, 0x57, 0x0, 0x0, 0x80, 0x4020}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x80, 0x5, 0x7fff0003}]})
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
r2 = openat$kvm(0xffffff9c, &(0x7f0000019080), 0x80000, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x1d)
unshare(0x8000400)
pselect6(0x40, &(0x7f0000019140)={0x9, 0x3, 0x7, 0x3, 0x9, 0x8, 0x3, 0x5}, &(0x7f00000000c0)={0x1d, 0xfffffffffffffffe, 0xfffffffffffffff4, 0x7efc, 0x4, 0x1, 0x2, 0x10000b}, 0x0, 0x0, 0x0)
ioctl$I2C_SMBUS(r1, 0x720, &(0x7f0000019100)={0x0, 0x4, 0x5, &(0x7f00000190c0)={0x4, "205d49748043ee8a051244defd3d50def71cab6cad0a4dbebc09153714ce62de84"}})
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x1c, r6, 0x303, 0x70bd29, 0x10000000, {0xa}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x4)
sendmsg$BATADV_CMD_GET_HARDIF(r1, &(0x7f00000192c0)={&(0x7f0000019180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000019280)={&(0x7f00000191c0)={0x5c, r6, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x10}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x7}, @BATADV_ATTR_GW_SEL_CLASS={0x8}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7b}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}]}, 0x5c}, 0x1, 0x0, 0x0, 0x44000}, 0x80000)
connect$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x303, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
r7 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000100)={0xffffffffffffffff}, 0x4)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000140)=r7, 0x4)
syz_open_dev$video4linux(&(0x7f0000000000), 0xfff, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(r1, 0xc0585605, &(0x7f00000002c0)={0x0, 0x0, {0x0, 0x0, 0x3003, 0x0, 0xb, 0x1}})
chroot(&(0x7f0000000000)='./file0/../file0\x00')

2.004777285s ago: executing program 1 (id=2394):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x758e, 0x100, 0x0, 0x34f}, &(0x7f0000000140)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x13, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
sched_setattr(0x0, 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000200)=[{0x32, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000040)={0x3, 0x0, 0x5}, 0x10}, 0x94)

1.460868936s ago: executing program 0 (id=2387):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f00000012c0)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904000001faf40d000905820349"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x1, 0x6, 0xfffa}, 0x2b, [0x8000, 0xc95a, 0xffffdff3, 0x1, 0x80, 0x6, 0x3, 0x7f, 0x6, 0x4d, 0x39cc191a, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x800, 0x5, 0x4, 0x7, 0x4, 0x3c5b, 0x1, 0x24, 0x9, 0x1, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x7, 0x3, 0x7fff, 0x4c74, 0x101, 0x242, 0xc, 0xe, 0x0, 0x71, 0x7, 0x7, 0x3, 0x2, 0x8005, 0x3f, 0x8f, 0x6, 0x6, 0x0, 0x5, 0x4, 0x3, 0x0, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0xffff, 0x12f, 0x8000, 0x10, 0xfffffff3, 0x529432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x6c9, 0x9, 0xfffffffc, 0x3, 0x0, 0x7, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x9, 0x3, 0x3, 0x8000, 0x9, 0x3ff, 0x401, 0x6, 0x5, 0x8, 0x5, 0x10005, 0x5f31, 0x4, 0x0, 0x2, 0x2, 0x9, 0x4, 0x9, 0x8, 0x9, 0x6, 0x7, 0x28, 0x1, 0xfe000000, 0xffff, 0x2, 0x7, 0x9, 0x3ff, 0x3, 0x8, 0x1, 0x7, 0x3, 0x9, 0x48c93690, 0x12000000, 0x2], [0x100007, 0x4, 0x7, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0x2, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x8, 0x8, 0x86, 0x10000003, 0x1000, 0x3e7, 0x9, 0x5, 0x2, 0x2, 0x5, 0x8, 0x4, 0x6d01, 0x5, 0x38, 0x800003, 0x200, 0x80, 0x83, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0x53cf697b, 0x5, 0x6, 0x2ac8, 0xbf, 0x2, 0x3, 0x7ff, 0xfffffff9, 0x0, 0x1, 0xffff, 0x0, 0x4, 0x1c, 0x120000, 0x3, 0x6, 0xaaed, 0x4, 0x25], [0x9, 0x6, 0x3, 0xb, 0xfffffbff, 0x934, 0x6, 0x6, 0x0, 0xbdfe, 0xce7, 0x1ff, 0xfffffffe, 0x7, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x8003, 0xffff, 0x81, 0xc, 0x5, 0x1, 0xfffffffe, 0x14c, 0x60a7, 0xa71d, 0x6, 0xffffffff, 0x80000000, 0x10005, 0x8, 0xc8, 0xee1, 0xfffff000, 0xffff, 0x3, 0x7f, 0x3ff, 0x9602, 0x7, 0x3, 0x7, 0x6, 0x1, 0x8000, 0x5, 0x8, 0x30b1d693, 0xa23, 0xc, 0x7, 0x800001, 0x6c1b, 0x0, 0x4, 0x5, 0x2, 0x1, 0x200, 0xffff3441, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}], 0x1, 0x0, 0x0, 0x0)

1.241262477s ago: executing program 1 (id=2395):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_open_dev$I2C(&(0x7f0000000100), 0x2, 0x1)
ioctl$I2C_RDWR(r1, 0x707, 0x0)

1.241007781s ago: executing program 3 (id=2396):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newlink={0x40, 0x10, 0x401, 0x2000000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x13101}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x80)
r2 = syz_open_dev$vbi(&(0x7f00000000c0), 0x3, 0x2)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000280)={0x7fffffff, 0xb, 0x4, 0x5}, 0x14)
ioctl$VIDIOC_G_DV_TIMINGS(r2, 0xc0845658, &(0x7f0000000100)={0x0, @reserved})
rseq(0x0, 0xfffffffffffffe9a, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x8000}, [@call={0x85, 0x0, 0x0, 0x75}]}, 0x0}, 0x94)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r4}, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[], 0x58}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000300)={'wpan4\x00', <r7=>0x0})
sendmsg$NL802154_CMD_SET_LBT_MODE(r6, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x38, 0x0, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x1}, @NL802154_ATTR_LBT_MODE={0x5}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}]}, 0x38}, 0x1, 0x0, 0x0, 0x8880}, 0x850)
write$cgroup_type(r5, &(0x7f0000000180), 0x40010)
r8 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="98000000", @ANYRES16=r8, @ANYBLOB="2da52abd7000fbdbdf250300000008000100000000000800010000000000340007800c0001"], 0x98}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000)

1.137727443s ago: executing program 3 (id=2397):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x13, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207baaf8ff00000000bda107000000000007010000f8ffffffb702000008000000b703000000000000850000000500000018010000202070250000000000202020c31af8ff00000000bfa100000000000007010000b8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=<r0=>0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x4, &(0x7f0000000500)={0x15, 0x0, 0x0, &(0x7f0000000780)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
socket$kcm(0x21, 0x2, 0xa)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs2/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x2008, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000000)=""/5, 0x1c000, 0x800, 0x8, 0x2}, 0x1c)
setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r2, 0x11b, 0x5, &(0x7f00000000c0)=0x100, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(r2, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
bind$xdp(r2, &(0x7f00000001c0)={0x2c, 0x0, r5}, 0x10)
bind$xdp(r2, &(0x7f0000000280)={0x2c, 0x4, r5, 0x8000000, r2}, 0x10)
r6 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000001c0)={'team0\x00'})
sendmsg$nl_route(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000a80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="1957000000000000140012800b0001006d616373656300000400028008000500", @ANYRES64=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3], 0x44}, 0x1, 0x0, 0x0, 0x2004d808}, 0x0)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r8, &(0x7f0000000980), 0xe)
ioctl$SIOCGSKNS(r6, 0x894c, &(0x7f0000000040)={'gretap0\x00', 0x200})
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000005}, 0x0, 0x0)

259.720726ms ago: executing program 3 (id=2398):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="4c000000020601010000000000000000fbee9023050005000a000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x4)
sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="640000000906010800000000000000000600000505000100070000003c0007801800148014000240fc0000000000000000000000000000011800018014000240ff01000000000000000000000000000105000300070000000900020073797a31"], 0x64}}, 0x4800)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c00000003060102000000f697bd51cc67ae7d000080000007"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40814)
setreuid(0xffffffffffffffff, 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r3 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f0000000380)={0xc, 0x8, 0x143, {0x0}}, 0x10)
sendmsg$NBD_CMD_RECONFIGURE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="98000000", @ANYRES16=r2, @ANYBLOB="2da52abd7000fbdbdf250300000008000100"], 0x98}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000)

257.387679ms ago: executing program 3 (id=2406):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4040001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = syz_open_dev$sg(0x0, 0x0, 0x5)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$SG_BLKTRACESETUP(r1, 0xc0401273, &(0x7f00000001c0)={'\x00', 0x8, 0x9, 0x80000001, 0x8, 0xb, r2})
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000840), 0x2, 0x0)
ioctl$UI_DEV_SETUP(r5, 0x405c5503, &(0x7f0000000280)={{0x5}, 'syz1\x00', 0x10})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffff1e00ff130012800b0001006261746164760000", @ANYRES32], 0x3c}}, 0x0)
syz_clone(0x2000211, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f00000021c0), 0x2000, &(0x7f0000000140)={&(0x7f0000000000)={0x43, 0x0, 0x0, {0x7, 0x29, 0x3, 0x20010001, 0x40, 0x5e16, 0x7, 0x59, 0x0, 0x0, 0x4, 0x1}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004300)="d5c2280baf4e05cfa1d1112770cf43a123827586f0f2675b130041ff58ba6533ea7947f2f65b1d458fe88a96133ea3927f41fa6976fad8c967c88679769ee674b80debcd1ec6ce1eb490888bd66a52141fa82f51882b22a8e36ff462b51560307cd0048156800ad137f359719a9c5d6ad6a8c999984f22461c4ca6614ca4cbbd5e9103a3459228e3bd35e3c1cd5f2a83fbefafe7c5a39617ba1d856f37977da077ffcf4d52f5bb3feffa9e100b0279cb635a61ae9f5f4491bb1c9f04c041818a1ae9a25cbca38c4b4754a8be4f52db20ca464b3b4faf0ea8ff193b414e7b7a4ec8aec2e77adc43d09c62d37fc0aa6296a56a9445f264a245d41e77de43c2694cc5885ebd454a3b78b60172e3e6a2fd79efa8b5fbbe827512aa0656920858da51616244ad32e53ed039a270c042662bc966a8fa05e23a51c76585a6f753e57c63b5a1dd11c4ce8773702c5c759471b79ee9bed600d99853afda9b675f071bdf6ff4eb99cb1ae0128ac1f8132f9b7bef82221276395e59f1323c9f9f6bb937a9db0bc2088670ffc3e6233ba73d4e324df7bc866e84e82ab707ab8aadd593913dd3533cddb396e804a63155ad6911962bc49bad21faba90b5570b62d98eb5328214a7198b36ea6df9a72dc248311040e01539112e1d6bcb4ed9d7fb70d22768ec6603e4727b6ed2616eb9108524985ccd70f1361f68b1fb7088829acdd59ec5af9e84409737f0d852a3c55993cb7398b5640c458bc036115b86de7b8e68f1cff882ee5707040571c3e5c9602c773459cfecad4917d8ba2902bd64a676e2c6e507d06dbc806c13c0fd18175087440ce7d7300dfe745b8e98ac63b400e449a3f2518c6112c9864fde68f580ebc2d72e4bbd03f16a7289be813c258b02f76ce901afdafc69046c947c9e801ac635b2a95cca291c052c7f8149c92aaeaab41edb34a70604a7538c4bb6486b983416843fe6a65d7b828d66deb991e71526b7627e71c6a795a02e787bc561ec4b65d4742a129c59bc71b323850cb416f3d32494d6dbfe3ea73cb473b093ae0b0ebbbd3e3251ece756b3cc381f05ea1b8c3f7fbcbb16fc446fc084725e6c3a608221aad8d8179112f9e5ee3697346a0dc0645e530df523cf4daea14764c25da2da863adebaccefc2c83a9257b3131ac2fe04a27bf3aea8979b6f3091b4fef99e203725368d297bad3b020273d0b606d2368e2ecb0776349cb86bbcbaa5c910636527e3cbeca06b4135170d8808c5f113fcd77ecb2f099d1e663617a46ffc5275c8fcc339d315ca1583f66fe7a7e6430405c0be889826c07fcafa17f04e08bc39570a1f499092d390c5dba82d259f652307ff941e9f1f569a48144da846f14452df295553de6ef4e9ba0cd98dd16cf89d8bead08eacd4eea71cc5f8232349f2d8519b1172c724d3bbc415c19c9e679b5a96bc9051cf6f243f243366622023ab1b7039a89152e7db97f291bb3f0213c445c25caf5f0a5a2b382c841cd8a490dc97d008966e94ed0b5ce07bcc0c13b39c349e4b596147a633f3a73ab6012a1582d3d283293bd7c01f99cdbad8e18d24867c39ed0dc3fc3cc800edd23af24b225acb2cca5aa264bcda40e1432cf2cc0050efdff48fd49ae4225a983d1b12facbaaba73294eb225fff64a677d0ed2cd71bab61b3fde8a1fdae638d2036283a8a4ff5a548d05cb706f56ce7e3f55a688fa6c70393c53c33be11f34a38f61f80c8e94e50fc9d7c3695d234705bb9e0b2a8316cf54d7963f548d49f153bf796d0970ed1264c19d79eb77fd0aad4844796cec73a08206b9eca76f2ad76318a20d52e7d3338eac40d03775cca0c2b29a451cb10bc141289c2703198e7137200a360463000fab97d0da72a7b4e8aadfa8a2e559a7d06bf49d6d4a932cb29994ef7ca0c1beabf05b898bb2338e89a67373d50614300f13523fe451d4058e5a522d364ec884099ee3c6e6db8d4ec1e5dc08d127b6301a308a1d6798878c28ef828b91b529a22b7519d249a189a7eb942b94ce26148ea8bf16a44261cd9691ba980ec2d0c710dbee41756cb39b88213ad5763239ae7636e983580c41a40b0f3a3af9fa6f995ed1981d073f63a623554bb01869bdfda190bc8d9507cc067b897e1c5f0d087cf8dfcb171169541fa3cce7c3a620544c74f2d3234935a0acf6c804c43992812925cbaaa24f497e7a00efb20c45c7acb80adb3322cbe0f08d1015b40f5ae1366003ebea977b7b95f803487d10aedca3fd018cfa7b267dae604ed0ada202cbebd731f86b7c6764911d4ff0c75a318ee43b1b556781ac58fbd773b2bd0dd693f9b12fa149bbe392cb2d6bf72015912f4a120e47654d42d14107c67b4502b5ad62044d0022c7f8b255a3e46da4bb8f9e44515e4076ce7b1aefd57c4e264b2cbee4a9e8612ce8517b028067644c927a9ce7564449c8fb0471a87b9b76f374c7c2559379a3004326bdc91be5ec52672dc5fac0883ec527f2a1248601bb9267c3123568b815b90b40ba06c250e3068dee2d7fc232141eaaa130443a5775d049464ec454a7c980d9eebaa4f67a75075a6bc28ded9a5f07fe658a2b9eafa37f14055155409d1aa50be6343d13d515d0531b84644d2f58c280d6d008dee95607f67eb74c900f664d97f411f4ac6afc18f11b6fb75e78b3ff25680ed3bbf5b20969678475b86faa02a751e4cec87735645753f245047371c9e6e2e7ab5a9ea3182b4c96934a21b9df3628b478f5ef705aeda49a0609d4b8f5bf34424581557d029438306002fd4e9cff5a2d4e7d5e23c2992032d314b8fbb46ccda250070fc1b679c9c8646c5fe22d8fe2e0fff73d8153fc46ef7885aeaa2d1eabbe455544d46fdef8e3ef9debfe589870942bcc7196e62736e927c311782b5e4da2889d530a7c1550bff4909d2055941655cbcc5c924a477c80fc3b8a904cd9e62f5fb005b5b00154db5becbe327c0f3ec8314ef3fb53977ec24ff7d15aa83a13b23ab99c5332306023005d2dfb70d3ea2aefababd019ae16d304c083e38997cc94bdeb746fc151849c98dc2a23554e6fe789d3aba8bf4e31133c7f93a3cdcd884271dfdd2c45be398a5349ef5d08456178dfafa31cb4c607f09394d71b3405b3d615c7c59c125db88f72380140345d24c56094711dd833221d6b7c5864d049585605c1301c31982d19e403b601b797fe99d0bbfe30d647a913da72b4c5306f6123e7c572828308a9a8f4c686d07125d0006229c2e890ff7d3c354dde61ccd3b26069a81a98e112e61a930f253d607cda5023f002a09df6b1371638d9661c5a06bed166434f07120ad21476de8ad47296af4b449d581cddc74f9be42a84596fb0634f330a856216a9b32b080c8b66e9f51a758b9ca2e1215ddfe633714ca512032f6547217b1a60fcdb27ac8a04bc7851718b38607bc92c13118a323c3221bad99a8639762abcc4a08654da9938aeb301c55546f5ae7f61439dd883a1b2dede156a57c805ab12337d5381a2fb25b32916a8827fc4de8e2ecc70eeebeb01659d6bf88055477b863fb897d5db275a0c222d261e7df79474858b721e57747fe8997faaf36f5f175b23dd3c5efb2b93fb5824da18d635cd7027a3b0b1c87e7c90a5681682b8a7c47dc82fdd3f329c7b60270100dec8ccdd310245b92f4b0bd9a92e1f2a5733b1b91966be15a4761b06f6fe3b05b60ee7964b4d028257c2210ca88031db0590190d3714c1b6ec86e2821dca03db2fc0c9f0ad9800d1773c8037e9b38c7eb7c99618b731e0526f8453c7e1bb67cffcc2d96cc297e1f917b13dd7dda2a8b12191ed107c1e076ffd4965b9415f830be97935cac23a87f07e26354273c2663c7ef19a27dfe08543fa057e1285c909051602981f5929078214058684bc80bed493f6ef853012cb654d180e414fd484f5cb2cfd06c9b753f417697ff42794649e05fcaa3d53ad0fdfbb0db57dc549115e59978b14dd621370d136176098af2f39a2de72482a29b616e8b308b3d9b46ac9abf3d57ff89fe59b5a97966cc4b97d06c20ee4fd765e1c2abce54dc271a7c7efe656648800c27a9988583b4b76572222cb28916b9ff5f6f649de93923179809405c879a90cb450f604cbe8af55cf2a6d844a59ab0393b394e09c79e1b3c403af6eba69330f6969f78a49eb7022e77a39363f11e07fcc69f670f63c11497352f3f5bfea0aee446da35428cebe28f1c2d23ef3ff97e16ceeb2f88ab19b2b69dcdcc81b947b483cc06c776c52232489f86f4c377eb38056042e2e9e0943fc0ef1490df472b9b244235598894a2ffc296f0a2e4257baca6a3ea8cfb1a22ea8295ab9e5faaa2a9e964ae7625dbf945cdbb369265f429d475ab69413cc5bcb89af57b1b966bd0076f799a401d4b46e5045aceb1ef36e5bbfb037bb7681f2a38ef1df9b84baa3598201d13a813165355bf052bb5e456dc0abdefed995b4eb37a39b313af800f6029243a6a7bec75a23389a90034cac8df6713b919028a14649d756d0093550278aad494de2dfeb76220fd3ee5be31f73839ace7f0d6da650e26f5ded30471ed55d2e814fc1b89102e5917b4e58840ecc211eaffa5a2937abeb882ccdf29308e3ac30e23d66ee79c29b4fb7e793a55e344cac298e30f1ca3333df8b58f43126a3404a61501ce06b75e6e6a4bf13dbfb05efd7b9b4219efd428c8f7f345884640d19f5515abcce05f315f00e65d9aa8022890a23da45ede06f455d66e0c96bbf7e9cc74eddca999a51174b4784eba8a9ebed13415de6bd0f160443d43b78181cfa381313a54e25f6751a38f290e5972ff7f70692e18c4737af2a7f6d4eac52ea594a22be4fd00fac1484e6d2d4d3196b49212b49598f5bc77b34d8a3633cf7212c869557d6eb27bf0d0a02555d9318194e9de9c9730ac72daee7cad6c2d4b248a8744515670766a8f1c739917fb859d98974532477989f4c24345f120f5320fdb8d8d56fa6ff2511e701bab399513cecb3e740e3761d02685a765f5267554d0f9243b51620197adc3b561b59c58f334307220db357c1121d7dbf593898b5d2c505f333445c084a6cbc6a7e5252724c83fcee85e304534780a01e7ecceb2ef53ffb6bc6cb9051b1400493ce55d62c01e972fff3cc7d0b68a2dd4d263c9191df1b629e323797f570083f122db3df6abb6fd6c4a351bb7500c7241e4392ac76e04259968e517a43e907cb0b0533d6750b9587a1a5d852639c6b789d333e848e3ad66cbf19c5ee5a641036cb7a858f822f657dec36cc134d6c1a629cfce1f1e24dbb73d09fba04f53b2c6309d71d92211a1f08535244eefcbb52e095626bcc78b950db1cb8facc3660fa705dceef155b00aef3291367ffcea06b5abe588bbdcea2637761308dc65509798b6a494dae4a75c1922c1234248dbfcabfaab3088a0dad09a135a45d75105314020f3ba8901dc39ee624a32e9f863ff55844974b44e57b30302cd0c349f3cc091befd5665f918c298ba89454fb811ce573e41f27490853a52abd6144e85d77de88c3f2e5506c8de40a3957e65936f3b294ce92610b63cec888cb16fe0e8a7af3dd142da96b57f602cc64ba69966724584c2872e5fc42348a324ff082a3ecfded82c3e5b7292d3726c4800176acab6a7a1479a0b5fea79f299e90ffdb1b3843e2349b8f8dc7881145b3796380474c2ceb57e27726c9e50b746a2b12a214fea9cfd6c668363fe6e402710665118928fedb2f4900322b0c7d2c348881ea52278dae765c14b51fd5e8f000602aa3978d83b76056410c2260931e35d841793c8a36b191f93c33c0e4e6367ef45a1cf5145d774861224afbb11a7b77bb94492ec49827f713f8309d80d22e17701046e04c5b277f7b423cbbada01e6d40beb56e755e583b8f3de4b67c4b5ac83771b805fa7af49de2fc8b9a223293d83e7eb4eea3a3af1d1221e5d458e7cab60eaf1b51550a1b125ce018d76096f16d922f4aba48a728ec1b7d4812fe2ca789261b6d8e0c8edb3ba9007649084899c4f6b7986c1cb4a98d412c801fb91675ee42e2bb511bff6700772d3c03a7cb6adb41cbddc33053f8f65c164e9bd47b931510046506b169216d0a04edc479bc51c28acc536ced3834a7a9ce8fb55b72fa186a559437bf41f04b733e05986c915bc19f1b2f99d3bae6c13873d32e3c809b71881c3075f8dd1746f36409ac7934c25236ee2752560fcdd5175037a6fc5f0da58a229418ce30f3e64f9eb6ff3fe4498f47fdd69ceac5e792c8c9f087316f334b7f75e3432d3f1d03ee97c8f16485ec906c94e6c9580f7d03d98a8da85ec118b77c6c1d3b2e99fbf4b45e66cb4f8817f786d1f90e1e5e250be8c240a9648a219a02e62acbd72d1b0c0b42c75065a35664ea6a03cb05ea179f2e8e50e3d7ed53d31cdc10cf5fce48781fa338e3ee819f410540f045cb0edd7b2d219993faaa97cf95aa6144e889a02069421291d05eade30693a751039fece452c22d1afba081d1c40178fed7684cae475fcc365484118a184670cd7aa2758bdb01058ea9b244d5241f627bc5be11c9395e3cb839b0eac7842a312e1fc8b4ddae2aa4ef907ca5c9b847785051323e16d5497c4424289496277475bba67da750fa05bd8be730e4aabaeb94641fa2263dd3d4eb511b4fa40b8cf8b16d7aded1163f2258add79b04e1eb888afa27d057de2523863fc2da38d44cc69ae2d455900eede5fce69d7e9f8707cdb2456a45dda14d257eee4982f86259b855a0293068aa4aeff9439bc06c8ed5a370fe46fa88fa9bb92872166ac69152d1cbb4720eec5b9a057890cbb838aef12091454fe721395b46f9fa29ec1829fedf65aaec1176bb9eb15511bd77e7d4fe7321b3e0dfda95e5c90c3663956477885d6d94b280f58edbc77e864dca73536cd4988bcde2a3edb91704ad59148d85a001e393cebdb56ee088fa1033cdc6fbcbea30e2974035bfe29cee1eace13e30950bb4658886dae7e565ffd7b71e41feecbcac35fd97c81a8fff9d2a1d43f183c6e984671e06645eb0a60228d1b6c12c28bc6eaa4b9125c57b48ced2e199ed3acf12dbe10af4a56f2f5dca829fd07fc3f7e0de6913c73be0ada3e43bcbe70de784de699d0b51d7a56a3eacaf5d7dcd77d73cfb82e04633574213e05dc98850d822bc6dc90dc3fd6184296287342e2243fe6f0cf94e6d02a1b900d0c718e2afbe7fea2fafa375f209fb9cef5d844b861a1029aa3dd7081e81fe6501bbb413dcd23e013f279ef87e082335ade324b7688054992ccc63fbf9153213ab6d07ed0b79945d19639aaa5dd10e53aafe57f1e323300246cb1d6ede1eb1f319ca6fe1b0cc8e733b34818425888110b6eabe2db302310d0a8bcdd5342146b29c535cc9a95a455c8926d77323a31b948d47dc611815a329654a252fd09dbcec5f3cd8bc7e465759eb8e72ff6fd4ef1f375e4e8762a58148622d14480b7bb9aca2eeab3367a7376c9c85e6ba1735e56a2fcc6baf92c8d21942883f318eab7a568fc7ff01885a7089aa7661b15d73799bc0b8f8ce6a3b61adb6949965a223850b6825616c036e099952e04fde7cf086b5e76d45b86ab78b322f9af580173f2e798a39df7cade0d365c9d46d3fb36970f8a99d7b20a1b275afff852126f21ac24ca8c34deb49ba511f4d9edb4f56941aaaa477253f9bfc9a25a2694bbbe3b917074dd4eb6f1be20395ac33dd932a7ccf0604d64257b5af3faf271c145c190a528e471a7f23a53b5f9ea1bd0cc36410e9c538e91dd01d162edde856087b60dcba2042e65b6ae7b81787bd3308db9eb025b6fd930a9eb74a30883b83cfa8be5270dd3ee3408db7f7b136adebb3ee30f0e0b8835a0ded325363e4a2991cafd4a73483954c0f5d3358b25780608fa48f3f527c7e617ec12eb017df33f5088676d8bc476da251e608394e3d8fc0883fd4d1804f8e07f5e12ffa4ee80365a88abf29936bf1b255539fef95f5cf3bebcd26817edb28e7b6adf4851dcfe8aa1aa097f67c51557326ccf9c46ee2780d491e87774324d4dc5e199b0cdef01094ea72bd5ad5fe1be6c9d545df3dc5de550665d220718a2c0baed2833cfb1428e2d1c2b9ea1e29f4b07fd6c51492643d4000716cd1e8a4f9d58b6b04b805d8962495323fd62949b17348418201664c6f2f651f99d73f8d17bb5e52dba2e6f94fa33f816d74bb6a45bd6cbdbd07f530406227c8fd11f390e805bbc17bc0e81076a27c0be023b64777afec0a7a0c3f53f03bc2ca72ae2873d68217a1a6905f414c2cb1b9561dfd07850a026da5f5775a66f8f3a6bc29b48c8a81b06ba30994ba8e7e233e3a3a5d886767ea6de91fbfc0a594c2375d62e71c7209d87d0f6c7a79a0d80da328e93f08650ec745495c771410913d094e4190075b7225761172eb420c82ab493548f6de38e17d3e687a89ce77c67c58b875c48c8a4d1664cbc6f67df357e040444fcd515d92d5823fc3ef6485208b6f3eda8cd09ea3b004f7eb06ac268ae8c3bf571aa3f619222a47540f9af340c80c587f7226e3d715b18c3ee41f64777d3a0a09f32190ad67922f6ecc63c956a715c3c42a6aaaf5e588d119210083ceaa414820b62fef87a678cd3f24f8fa3cdb6629b041cd7555974313f56d1b0e117ea925dc95e18b5d3f4ba9812f1067022945c3f5d547370d45853c4db3c9ca4436d7e649e1ac3ec02f9c1e9139849b46027d4b276cb0eb4b09848999f466f528290e47ba9540ceca89390db3fcbacb1d566e22e917f01f4442bd4dd0d350d057ffdf5b3549ca559901e6ff5147bdc25c11b23f1678f02c20e4e2e6f339b262e2b82eae0b15b4227f1d514f99ec78fbcf80c8f6f243536f2d7a809de05ae5e1d676fe950ad3513f801bbe4d16737def4b5ec4b62f8562cd5432bd372645202edeb286662d7e8d0dadac5b91c903c2756bdc4f5a7c931f2c3f7feace2b83f5459a196000e2ed1e1b2accaa9d637d5e408340161331c4b0047bf2ab31d317bb1c8f6e1b3d52f9f240bd971a447942dd4b73301781656aad9ce9b01aed907b7eb3a78397b97e601b04a4cb028d327ef32cf20c34e8dad9c9b1f981ab5c06a2b0271852e2a1016ee460d8568391c9ece5a2b8f29cbc6f2d6cc2e66c30c96df548e67dd6ad8c1ff09dfa22b2e8b2c52a3948c4febb0910c2d34c0604a5ef930cd53be69a4bed9c9ee057178ece02a6b4df4624191590952888bdfafd2dbeca128d500872a8b236fba9623672c4dc15f56a761ee0c54026112fc464f72d3039587f009b94930dac0dbe444a939b38c0f5bce7aa366bfc2bb909db231178228846f71a56ab219e28cef1b102c1bfadbe8f0916d10a573b8cb38cc2cc2ec496a410a4e82847006d2ed4bac927a63a00416d0bfce59cc69aaf78ddc9566f23582999a655c8ad3b217486fb5a037ce089baf344d55bbd475be4e90b10e92c9c1bae3202c2d63355549f0ac95058724fea81ff9cec027e7b93e2cee43af81c6978fee5faf6216118785251b8ca023115b2f87d5d4b10c29aa3616628ab40a8ef36668ef57d7f9be505eabc01947ca222362818a71b3d63e5725a4d8a2c619b1867f70daa07703360d026d6f65247330be1ba84ddaaa7779591ca261beda4f4c094af65c5c276fe3bfb89f067c8c54af67e78f61bdc114ed4aa869c3adf282d7a8e7272579e9fd9e47611e0dc89f97561110e0141c69b1fa114e27b3d1e2c825ea008a370e08cd0a0610edef20cdd8a7cda0922fff046edfd2ff391a10ffce5dd6045619ce9af6b03f4193d858a76b201ed5beb0f11321707b7b593b23adaee4a0c0caf39dfeebcbd2948030435dc94ca00990c728502ec4686194f0f454304a422023c1b2c5b1ebbcd8cd50fa2d11361e3bbdc306e2739e27de300eda27b1c1ea62d773104cea77c18037c6bcc76423621b45abbe789b384bfdfb46efa1627ff29d9d840bf6e1f05e7e13fae6383e42ce153dcb062fa0cefd0fe9298ddbe77fd78d7036b5a815504b48267203da08ca685bfe8ae89c031074bbe5d3d6dcc6a3a8a8a4d3102765c3b714867f4516df62f214351b97bb8b5697a9f9a9dd78627342b239c524a3943d1d70f8cdd7391f05e7395731a8fc05210c6733ea256040bbbb53389229b84dafaaa3db1d5eca2971d9e550149461f1a672eae2319a99beed48934520666bc54b63085a744b5fc9a9b089b16c50ae945f74adcd4c5d064a12a6e103ef59bcc035a755ad31836eb7d04e5900d3800c822b96b466a9f6611f46b8a7d6131f91c625a5604de5bf01e5ca5d99a714c8dc1160260010f8d55f9125ee453b61c911bdf0824caa804c76d6512802875c5433de9b2e8b6c579a67fec5d2bc64ed3d1c313854221b75c9a0ed42af6f5354e7b1d1bf8661baa1261e68fc20d14b5652d25a536f208bff2b90fefa163a232696e655bcf95bed39355ec865e272fed582aae18858f5096ece40b9108efb00147f9c2ced59bfe2a79826851850ed95b35908dfb4d9ab7da0668a1fa8933ac4f6534e9598481477791fd1a1c269011ac9fe81f0491790e8aac121ffc00e38a7619a1855e6899abc2c670375a3ba4ac0cf652da89a70628cee1a35ae17b3490102e3c88ca324d06fce2151bc9de49472cf6e76ccb16d2a9cbf4161812e2c7758d73631024190fe9b71935de6968b289d3503b497f3f4b6306446ae9c312f8f1c63c1f7e62652173d9ed48cb128815bd44a12061f9b73fbdc6674ab9e0d01807f7bcfa0aa59168420e5ad8b72d7b576e273a1d229934fce2867689a41cb17767cf9defe1a96515a677ba08e10e187a3ce2f1d78e6b43b0d46c36163a1967b203df4f53379ee98422e973ab5c090adff21b5cc84fc78358021f681a0f0fd744f687e4f6c295470bf8f548d2d3dc841481dd51db9124cacde83bc9fef44a3e69e1cb28579d897f3013ac6133395328247fdcc152e5563678258936576196ced017c79bb6a4ea501a44cb25e5af1697afbdb3abb316837470ffdbe985ac3967334a90731602d3fac4f5c2758f04ec9c161a7cf330b7c7549fb62e6c15d07a7203c94edd3a8141c91b2029d6a90b14322337e6610822d9d7bff58c10d9c6cff71822f6456a421a65fdaa5d2c793f256a4e7a39f0d85d65fb95479eff79345c0615c9bbb4fb3324f9360b70dc709b0200042e8461b8cee9ce30beab3e276df48f41f001262fc14153f9764e13b50397442e00d7b11266bde10a3b7f83818086ff0015409679e4472d9e0215804fa9d21cebfa5cb5099cf88750cbeaaf58c2743f2746ea4cb73760ba88a07b91b68553716d563af5d7702219d0c600916dc54242d825c6d68320baf234a39f0b9ea9e6a4a72c4d5829b2f28508f54b33c7e0394a43fe23e7940d9b04bbe790d903a2d2c979e0ea79931b934d094fa2d5948c05cf278c341d788f2061ff617c9fa4700b1e1f0fbfa1b8c42848f2ea01cd318a8748c3336622ead25527ddbcd8a12ba3a5183f4419deb13558ed0ec99e73448c21ede0dbee9c01fc7675e54c60d4dee29c0f8fe81af6fe7b726f5d3c50dac634aefbf1ca6aa4df1b340a4109acf30939f6094c8591218729788111bfde98cd96d4b04b25bcd1bcb7f826241995573bae00", 0x2000, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x78, 0x0, 0x2007, {0x11, 0xcbff, 0x0, {0x5, 0xfffffffdfffffff9, 0x72, 0x1af3, 0x401, 0x7, 0x5, 0x6, 0xfff, 0x4000, 0xd, 0xffffffffffffffff, 0x0, 0x4, 0x1c00}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x2)
llistxattr(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
write$FUSE_NOTIFY_INVAL_INODE(r6, &(0x7f0000000040)={0x28, 0x2, 0x0, {0x1, 0x85, 0x96}}, 0x28)
syz_fuse_handle_req(r6, &(0x7f00000021c0)="000000000000000000000000000000000000000000000000000000d455b4da00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bd1d8811cd8a942e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400", 0x2000, &(0x7f00000041c0)={&(0x7f00000001c0)={0x50, 0xfffffffffffffffe, 0x0, {0x7, 0x29, 0x7, 0x2110029, 0x100, 0x0, 0x1, 0x57, 0x0, 0x0, 0x80, 0x4020}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

0s ago: executing program 4 (id=2399):
io_setup(0x8, &(0x7f0000004200))
recvmsg(0xffffffffffffffff, 0x0, 0x10000)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x2000)=nil, 0x2000, &(0x7f0000000000))
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x10)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x30, 0x40, 0x107, 0xfffffffe, 0x25dfdbff, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0xc, 0x2, 0x0, 0x1, [@nested={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x20}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
close_range(r1, r1, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r4 = fanotify_init(0x200, 0x0)
fanotify_mark(r4, 0x1, 0x4800003e, r3, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r5 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000340)=<r6=>0x0, &(0x7f0000000000)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r5, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)

kernel console output (not intermixed with test programs):

 1 prio class 2
[  329.369180][T12996] Buffer I/O error on dev nbd3, logical block 1, async page read
[  329.373726][T12996] I/O error, dev nbd3, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  329.373874][T12996] Buffer I/O error on dev nbd3, logical block 2, async page read
[  329.374649][T12996] I/O error, dev nbd3, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  329.374720][T12996] Buffer I/O error on dev nbd3, logical block 3, async page read
[  329.374982][T12996] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  329.374997][T12996] Buffer I/O error on dev nbd3, logical block 0, async page read
[  329.375952][T12996] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  329.376133][T12996] Buffer I/O error on dev nbd3, logical block 1, async page read
[  329.397973][T13002] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2122'.
[  329.398005][T13002] netlink: 92 bytes leftover after parsing attributes in process `syz.0.2122'.
[  329.415547][T12996] ldm_validate_partition_table(): Disk read failed.
[  329.424970][T12996] Dev nbd3: unable to read RDB block 0
[  329.429345][T12996]  nbd3: unable to read partition table
[  329.429860][T13001] /dev/nbd3: Can't open blockdev
[  329.458973][ T5991] kernel read not supported for file /dsp (pid: 5991 comm: kworker/1:4)
[  329.955858][T13016] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2123'.
[  330.049893][T13018] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  330.052535][T13018] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  330.055744][T13018] vhci_hcd vhci_hcd.0: Device attached
[  330.162652][T13028] fuse: Bad value for 'fd'
[  330.179655][ T6725] usb 38-1: device descriptor read/8, error -110
[  330.258758][T13034] fuse: Bad value for 'group_id'
[  330.261207][T13034] fuse: Bad value for 'group_id'
[  330.264501][T13034] fuse: Unknown parameter '°{è©XXÒfIÓ»äí¬ÚÖŒYÓâÑR0BÁEfd'
[  330.302417][ T5352] ldm_validate_partition_table(): Disk read failed.
[  330.306617][ T5352] Dev nbd3: unable to read RDB block 0
[  330.311142][ T5352]  nbd3: unable to read partition table
[  330.324158][   T61] usb 46-1: SetAddress Request (10) to port 0
[  330.325964][ T5352] ldm_validate_partition_table(): Disk read failed.
[  330.326094][   T61] usb 46-1: new SuperSpeed USB device number 10 using vhci_hcd
[  330.335233][ T5352] Dev nbd3: unable to read RDB block 0
[  330.340592][ T5352]  nbd3: unable to read partition table
[  330.357955][T13039] binder: 13038:13039 ioctl 400c620e 80000000 returned -22
[  330.385725][ T9566] ldm_validate_partition_table(): Disk read failed.
[  330.392262][ T9566] Dev nbd3: unable to read RDB block 0
[  330.396245][ T9566]  nbd3: unable to read partition table
[  330.407377][ T9566] ldm_validate_partition_table(): Disk read failed.
[  330.412819][ T9566] Dev nbd3: unable to read RDB block 0
[  330.416815][ T9566]  nbd3: unable to read partition table
[  330.476221][ T5947] block nbd66: Wrong magic (0x989b4372)
[  330.529759][T13041] nbd66: detected capacity change from 0 to 127
[  330.533168][T13047] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2136'.
[  330.533252][ T9566] block nbd66: Dead connection, failed to find a fallback
[  330.536306][T13047] block nbd0: reconnected socket
[  330.539651][ T9566] block nbd66: shutting down sockets
[  330.540555][T13047] nbd: socks must be embedded in a SOCK_ITEM attr
[  330.544435][ T9566] ldm_validate_partition_table(): Disk read failed.
[  330.547383][ T9566] Dev nbd66: unable to read RDB block 0
[  330.550135][ T9566]  nbd66: unable to read partition table
[  330.550751][ T5947] block nbd0: Receive control failed (result -32)
[  330.564053][ T9566] ldm_validate_partition_table(): Disk read failed.
[  330.567174][ T9566] Dev nbd66: unable to read RDB block 0
[  330.574421][ T9566]  nbd66: unable to read partition table
[  330.585169][T13055] FAULT_INJECTION: forcing a failure.
[  330.585169][T13055] name failslab, interval 1, probability 0, space 0, times 0
[  330.590354][T13055] CPU: 3 UID: 0 PID: 13055 Comm: syz.0.2141 Not tainted syzkaller #0 PREEMPT(full) 
[  330.590381][T13055] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  330.590393][T13055] Call Trace:
[  330.590399][T13055]  <TASK>
[  330.590412][T13055]  dump_stack_lvl+0x16c/0x1f0
[  330.590441][T13055]  should_fail_ex+0x512/0x640
[  330.590473][T13055]  should_failslab+0xc2/0x120
[  330.590499][T13055]  kmem_cache_alloc_noprof+0x75/0x6e0
[  330.590518][T13055]  ? skb_clone+0x190/0x3f0
[  330.590542][T13055]  ? skb_clone+0x190/0x3f0
[  330.590559][T13055]  skb_clone+0x190/0x3f0
[  330.590579][T13055]  bpf_clone_redirect+0xb2/0x3f0
[  330.590601][T13055]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  330.590627][T13055]  bpf_prog_bd919e7baf24f63c+0x5f/0x68
[  330.590646][T13055]  ? register_pidns_sysctls+0x150/0x1b0
[  330.590674][T13055]  ? unwind_get_return_address+0x59/0xa0
[  330.590699][T13055]  ? __lock_acquire+0xb8a/0x1c90
[  330.590726][T13055]  ? __lock_acquire+0x622/0x1c90
[  330.590757][T13055]  ? find_held_lock+0x2b/0x80
[  330.590780][T13055]  ? ktime_get+0x200/0x310
[  330.590800][T13055]  ? lockdep_hardirqs_on+0x7c/0x110
[  330.590822][T13055]  ? ktime_get+0x1a7/0x310
[  330.590844][T13055]  ? __pfx___cant_migrate+0x10/0x10
[  330.590865][T13055]  ? bpf_test_timer_continue+0x13e/0x610
[  330.590891][T13055]  ? lockdep_hardirqs_on+0x7c/0x110
[  330.590910][T13055]  bpf_test_run+0x3d3/0xa60
[  330.590992][T13055]  ? __pfx_bpf_test_run+0x10/0x10
[  330.591033][T13055]  ? do_csum+0x26f/0x2d0
[  330.591069][T13055]  bpf_prog_test_run_skb+0xbae/0x2290
[  330.591091][T13055]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  330.591108][T13055]  ? fput+0x9b/0xd0
[  330.591129][T13055]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  330.591143][T13055]  __sys_bpf+0x1035/0x4980
[  330.591162][T13055]  ? __pfx___sys_bpf+0x10/0x10
[  330.591176][T13055]  ? find_held_lock+0x2b/0x80
[  330.591196][T13055]  ? find_held_lock+0x2b/0x80
[  330.591220][T13055]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  330.591250][T13055]  ? fput+0x9b/0xd0
[  330.591269][T13055]  ? ksys_write+0x1ac/0x250
[  330.591284][T13055]  ? __pfx_ksys_write+0x10/0x10
[  330.591305][T13055]  __ia32_sys_bpf+0x76/0xe0
[  330.591321][T13055]  __do_fast_syscall_32+0x7c/0x300
[  330.591342][T13055]  do_fast_syscall_32+0x32/0x80
[  330.591360][T13055]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  330.591379][T13055] RIP: 0023:0xf7f36579
[  330.591391][T13055] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  330.591406][T13055] RSP: 002b:00000000f542655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  330.591421][T13055] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000f00
[  330.591431][T13055] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000
[  330.591440][T13055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  330.591448][T13055] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  330.591457][T13055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  330.591478][T13055]  </TASK>
[  330.615282][ T5947] block nbd67: Wrong magic (0x989b4372)
[  330.620704][ T6725] usb usb38-port1: attempt power cycle
[  330.735198][T13021] vhci_hcd: connection reset by peer
[  330.737889][   T13] vhci_hcd: stop threads
[  330.739729][   T13] vhci_hcd: release socket
[  330.741795][   T13] vhci_hcd: disconnect device
[  330.749973][T13045] nbd67: detected capacity change from 0 to 127
[  330.753966][ T9566] block nbd67: Dead connection, failed to find a fallback
[  330.757705][T13051] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2138'.
[  330.762142][T13051] block nbd0: reconnected socket
[  330.762256][ T9566] block nbd67: shutting down sockets
[  330.764275][T13051] nbd: socks must be embedded in a SOCK_ITEM attr
[  330.767831][ T9566] ldm_validate_partition_table(): Disk read failed.
[  330.773404][T13057] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2140'.
[  330.774611][ T9566] Dev nbd67: unable to read RDB block 0
[  330.779127][ T9566]  nbd67: unable to read partition table
[  330.780962][ T5947] block nbd0: Receive control failed (result -32)
[  330.788474][ T9566] ldm_validate_partition_table(): Disk read failed.
[  330.793271][ T9566] Dev nbd67: unable to read RDB block 0
[  330.801886][ T9566]  nbd67: unable to read partition table
[  331.136697][T13074] ldm_validate_partition_table(): Disk read failed.
[  331.167341][T13074] Dev nbd1: unable to read RDB block 0
[  331.221370][T13074]  nbd1: unable to read partition table
[  331.294771][ T6725] usb usb38-port1: unable to enumerate USB device
[  331.310664][T13074] /dev/nbd1: Can't open blockdev
[  331.711086][T13090] fuse: Bad value for 'fd'
[  331.769076][T13091] fuse: Unknown parameter 'roXhF'xRVZ0000t¤æ'
[  331.808197][ T5352] ldm_validate_partition_table(): Disk read failed.
[  331.821040][ T5352] Dev nbd1: unable to read RDB block 0
[  331.835693][ T5352]  nbd1: unable to read partition table
[  332.079699][ T9288] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  332.120384][ T5352] ldm_validate_partition_table(): Disk read failed.
[  332.123358][ T5352] Dev nbd1: unable to read RDB block 0
[  332.126207][ T5352]  nbd1: unable to read partition table
[  332.238211][ T6072] ldm_validate_partition_table(): Disk read failed.
[  332.245067][ T9288] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  332.251196][ T6072] Dev nbd1: unable to read RDB block 0
[  332.262668][ T9288] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  332.265533][ T9288] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  332.266173][ T6072]  nbd1: unable to read partition table
[  332.268425][ T9288] usb 5-1: Product: syz
[  332.268443][ T9288] usb 5-1: Manufacturer: syz
[  332.273865][ T9288] usb 5-1: SerialNumber: syz
[  332.280318][ T9288] usb 5-1: config 0 descriptor??
[  332.286765][ T6072] ldm_validate_partition_table(): Disk read failed.
[  332.291359][ T6072] Dev nbd1: unable to read RDB block 0
[  332.295643][ T6072]  nbd1: unable to read partition table
[  332.504071][T13099] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2153'.
[  332.518358][T13099] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2153'.
[  332.589805][ T6725] usb 6-1: new high-speed USB device number 21 using dummy_hcd
[  332.690620][T13093] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2150'.
[  332.694657][ T6022] usb 5-1: USB disconnect, device number 28
[  332.789605][ T6725] usb 6-1: Using ep0 maxpacket: 16
[  332.793644][ T6725] usb 6-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  332.799076][ T6725] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  332.802388][ T6725] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  332.805117][ T6725] usb 6-1: Product: syz
[  332.806688][ T6725] usb 6-1: Manufacturer: syz
[  332.808316][ T6725] usb 6-1: SerialNumber: syz
[  332.813703][ T6725] usb 6-1: config 0 descriptor??
[  332.840293][ T1133] usb 9-1: new high-speed USB device number 28 using dummy_hcd
[  332.888346][T13109] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2155'.
[  332.989632][ T1133] usb 9-1: Using ep0 maxpacket: 8
[  332.998179][ T1133] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  333.003101][ T1133] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  333.007212][ T1133] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.016615][ T1133] usb 9-1: config 0 descriptor??
[  333.234228][ T1133] iowarrior 9-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  333.330886][T13113] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2157'.
[  333.334764][T13113] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  333.623266][T13122] FAULT_INJECTION: forcing a failure.
[  333.623266][T13122] name failslab, interval 1, probability 0, space 0, times 0
[  333.628483][T13122] CPU: 3 UID: 0 PID: 13122 Comm: syz.3.2161 Not tainted syzkaller #0 PREEMPT(full) 
[  333.628505][T13122] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  333.628516][T13122] Call Trace:
[  333.628523][T13122]  <TASK>
[  333.628530][T13122]  dump_stack_lvl+0x16c/0x1f0
[  333.628552][T13122]  should_fail_ex+0x512/0x640
[  333.628580][T13122]  should_failslab+0xc2/0x120
[  333.628601][T13122]  kmem_cache_alloc_noprof+0x75/0x6e0
[  333.628616][T13122]  ? lock_acquire+0x179/0x350
[  333.628638][T13122]  ? skb_clone+0x190/0x3f0
[  333.628657][T13122]  ? skb_clone+0x190/0x3f0
[  333.628670][T13122]  skb_clone+0x190/0x3f0
[  333.628686][T13122]  dev_queue_xmit_nit+0x3e7/0xca0
[  333.628720][T13122]  dev_hard_start_xmit+0x5c3/0x740
[  333.628746][T13122]  __dev_queue_xmit+0xa46/0x4490
[  333.628777][T13122]  ? __pfx___dev_queue_xmit+0x10/0x10
[  333.628803][T13122]  ? trace_kmem_cache_alloc+0x28/0xc0
[  333.628824][T13122]  ? kmem_cache_alloc_node_noprof+0x2d8/0x770
[  333.628840][T13122]  ? kmalloc_reserve+0x18b/0x2c0
[  333.628861][T13122]  ? skb_release_data+0x79a/0x9e0
[  333.628877][T13122]  ? kmalloc_reserve+0x18b/0x2c0
[  333.628893][T13122]  ? kmalloc_reserve+0x13c/0x2c0
[  333.628911][T13122]  ? skb_headers_offset_update+0x129/0x260
[  333.628937][T13122]  ? __pfx_pskb_expand_head+0x10/0x10
[  333.628956][T13122]  __bpf_redirect+0x71c/0xfc0
[  333.628980][T13122]  bpf_clone_redirect+0x2ce/0x3f0
[  333.628997][T13122]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  333.629020][T13122]  bpf_prog_bd919e7baf24f63c+0x5f/0x68
[  333.629034][T13122]  ? register_pidns_sysctls+0x150/0x1b0
[  333.629058][T13122]  ? unwind_get_return_address+0x59/0xa0
[  333.629080][T13122]  ? __lock_acquire+0xb8a/0x1c90
[  333.629103][T13122]  ? __lock_acquire+0x622/0x1c90
[  333.629130][T13122]  ? find_held_lock+0x2b/0x80
[  333.629150][T13122]  ? ktime_get+0x200/0x310
[  333.629169][T13122]  ? lockdep_hardirqs_on+0x7c/0x110
[  333.629186][T13122]  ? ktime_get+0x1a7/0x310
[  333.629205][T13122]  ? __pfx___cant_migrate+0x10/0x10
[  333.629224][T13122]  ? bpf_test_timer_continue+0x13e/0x610
[  333.629247][T13122]  ? lockdep_hardirqs_on+0x7c/0x110
[  333.629270][T13122]  bpf_test_run+0x3d3/0xa60
[  333.629302][T13122]  ? __pfx_bpf_test_run+0x10/0x10
[  333.629336][T13122]  ? do_csum+0x26f/0x2d0
[  333.629369][T13122]  bpf_prog_test_run_skb+0xbae/0x2290
[  333.629394][T13122]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  333.629413][T13122]  ? fput+0x9b/0xd0
[  333.629437][T13122]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  333.629453][T13122]  __sys_bpf+0x1035/0x4980
[  333.629474][T13122]  ? __pfx___sys_bpf+0x10/0x10
[  333.629490][T13122]  ? find_held_lock+0x2b/0x80
[  333.629512][T13122]  ? find_held_lock+0x2b/0x80
[  333.629553][T13122]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  333.629586][T13122]  ? fput+0x9b/0xd0
[  333.629606][T13122]  ? ksys_write+0x1ac/0x250
[  333.629623][T13122]  ? __pfx_ksys_write+0x10/0x10
[  333.629645][T13122]  __ia32_sys_bpf+0x76/0xe0
[  333.629663][T13122]  __do_fast_syscall_32+0x7c/0x300
[  333.629684][T13122]  do_fast_syscall_32+0x32/0x80
[  333.629703][T13122]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  333.629723][T13122] RIP: 0023:0xf7f83579
[  333.629737][T13122] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  333.629752][T13122] RSP: 002b:00000000f547655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  333.629768][T13122] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000f00
[  333.629779][T13122] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000
[  333.629789][T13122] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  333.629798][T13122] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  333.629808][T13122] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  333.629830][T13122]  </TASK>
[  333.778306][    C3] vkms_vblank_simulate: vblank timer overrun
[  333.840790][T13129] FAULT_INJECTION: forcing a failure.
[  333.840790][T13129] name failslab, interval 1, probability 0, space 0, times 0
[  333.844760][T13129] CPU: 2 UID: 0 PID: 13129 Comm: syz.3.2163 Not tainted syzkaller #0 PREEMPT(full) 
[  333.844776][T13129] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  333.844783][T13129] Call Trace:
[  333.844788][T13129]  <TASK>
[  333.844793][T13129]  dump_stack_lvl+0x16c/0x1f0
[  333.844809][T13129]  should_fail_ex+0x512/0x640
[  333.844838][T13129]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  333.844852][T13129]  should_failslab+0xc2/0x120
[  333.844869][T13129]  kmem_cache_alloc_node_noprof+0x78/0x770
[  333.844881][T13129]  ? __alloc_skb+0x2b2/0x380
[  333.844901][T13129]  ? __alloc_skb+0x2b2/0x380
[  333.844917][T13129]  ? __pfx_netlink_insert+0x10/0x10
[  333.844928][T13129]  __alloc_skb+0x2b2/0x380
[  333.844944][T13129]  ? __pfx___alloc_skb+0x10/0x10
[  333.844962][T13129]  ? netlink_autobind.isra.0+0x158/0x370
[  333.844977][T13129]  netlink_alloc_large_skb+0x69/0x140
[  333.844990][T13129]  netlink_sendmsg+0x698/0xdd0
[  333.845004][T13129]  ? __pfx_netlink_sendmsg+0x10/0x10
[  333.845025][T13129]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  333.845044][T13129]  ____sys_sendmsg+0xa98/0xc70
[  333.845060][T13129]  ? __pfx_____sys_sendmsg+0x10/0x10
[  333.845074][T13129]  ? get_compat_msghdr+0x11a/0x170
[  333.845098][T13129]  ___sys_sendmsg+0x134/0x1d0
[  333.845109][T13129]  ? __pfx____sys_sendmsg+0x10/0x10
[  333.845126][T13129]  ? find_held_lock+0x2b/0x80
[  333.845147][T13129]  __sys_sendmsg+0x16d/0x220
[  333.845158][T13129]  ? __pfx___sys_sendmsg+0x10/0x10
[  333.845175][T13129]  ? rcu_is_watching+0x12/0xc0
[  333.845189][T13129]  __do_fast_syscall_32+0x7c/0x300
[  333.845204][T13129]  do_fast_syscall_32+0x32/0x80
[  333.845217][T13129]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  333.845231][T13129] RIP: 0023:0xf7f83579
[  333.845240][T13129] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  333.845252][T13129] RSP: 002b:00000000f547655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  333.845262][T13129] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000200
[  333.845269][T13129] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[  333.845276][T13129] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  333.845282][T13129] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  333.845288][T13129] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  333.845302][T13129]  </TASK>
[  333.859858][T13126] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2162'.
[  333.929351][T13132] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2164'.
[  333.932636][T13132] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2164'.
[  333.935922][T13126] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2162'.
[  333.975321][T13136] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2166'.
[  333.978231][T13136] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  334.015708][   T12] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  334.053152][   T40] audit: type=1326 audit(1761675123.549:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13144 comm="syz.3.2170" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f83579 code=0x0
[  334.825280][T13160] fuse: Bad value for 'fd'
[  334.913005][T13166] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  335.342930][   T40] audit: type=1800 audit(1761675124.839:191): pid=13179 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2180" name="SYSV00000000" dev="hugetlbfs" ino=4 res=0 errno=0
[  335.379695][   T61] usb 46-1: device descriptor read/8, error -110
[  335.478785][T13184] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9)
[  335.480873][T13184] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  335.483411][T13184] vhci_hcd vhci_hcd.0: Device attached
[  335.488935][T13184] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[  335.587661][ T6022] usb 9-1: USB disconnect, device number 28
[  335.742623][ T5947] block nbd68: Wrong magic (0x989b4372)
[  335.744422][ T1133] usb 37-1: new low-speed USB device number 3 using vhci_hcd
[  335.781121][   T61] usb usb46-port1: attempt power cycle
[  335.799633][T13199] nbd68: detected capacity change from 0 to 127
[  335.802376][ T9566] block nbd68: Dead connection, failed to find a fallback
[  335.804659][ T9566] block nbd68: shutting down sockets
[  335.806917][ T9566] blk_print_req_error: 966 callbacks suppressed
[  335.806927][ T9566] I/O error, dev nbd68, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  335.806986][T13202] block nbd0: reconnected socket
[  335.809946][ T9566] buffer_io_error: 966 callbacks suppressed
[  335.809956][ T9566] Buffer I/O error on dev nbd68, logical block 0, async page read
[  335.818646][ T9566] I/O error, dev nbd68, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  335.821679][ T9566] Buffer I/O error on dev nbd68, logical block 1, async page read
[  335.821905][T13202] nbd: socks must be embedded in a SOCK_ITEM attr
[  335.824198][ T9566] I/O error, dev nbd68, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  335.829140][ T9566] Buffer I/O error on dev nbd68, logical block 2, async page read
[  335.831686][ T9566] I/O error, dev nbd68, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  335.834480][ T9566] Buffer I/O error on dev nbd68, logical block 3, async page read
[  335.836928][ T9566] I/O error, dev nbd68, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  335.839969][ T9566] Buffer I/O error on dev nbd68, logical block 0, async page read
[  335.842491][ T9566] I/O error, dev nbd68, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  335.845434][ T9566] Buffer I/O error on dev nbd68, logical block 1, async page read
[  335.847915][ T9566] I/O error, dev nbd68, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  335.851054][ T9566] Buffer I/O error on dev nbd68, logical block 2, async page read
[  335.853589][ T9566] I/O error, dev nbd68, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  335.854375][ T5947] block nbd0: Receive control failed (result -32)
[  335.856408][ T9566] Buffer I/O error on dev nbd68, logical block 3, async page read
[  335.861025][ T9566] I/O error, dev nbd68, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  335.864529][ T9566] Buffer I/O error on dev nbd68, logical block 0, async page read
[  335.867626][ T9566] I/O error, dev nbd68, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  335.871133][ T9566] Buffer I/O error on dev nbd68, logical block 1, async page read
[  335.874895][ T9566] ldm_validate_partition_table(): Disk read failed.
[  335.878085][ T9566] Dev nbd68: unable to read RDB block 0
[  335.880976][ T9566]  nbd68: unable to read partition table
[  335.972068][ T9566] ldm_validate_partition_table(): Disk read failed.
[  335.975033][ T9566] Dev nbd68: unable to read RDB block 0
[  335.978063][ T9566]  nbd68: unable to read partition table
[  336.182745][ T1453] usb 6-1: USB disconnect, device number 21
[  336.211801][T13220] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  336.215006][T13220] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off.
[  336.218286][T13220] overlayfs: failed to set uuid (585/file0, err=-13); falling back to uuid=null.
[  336.256082][T13185] vhci_hcd: connection reset by peer
[  336.257957][   T13] vhci_hcd: stop threads
[  336.259333][   T13] vhci_hcd: release socket
[  336.261516][   T13] vhci_hcd: disconnect device
[  336.387415][T13223] netlink: 'syz.1.2193': attribute type 5 has an invalid length.
[  336.389640][   T34] usb 9-1: new high-speed USB device number 29 using dummy_hcd
[  336.390226][T13223] netlink: 'syz.1.2193': attribute type 8 has an invalid length.
[  336.399374][T13223] geneve3: entered promiscuous mode
[  336.406002][T13223] geneve3: entered allmulticast mode
[  336.410013][   T13] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0
[  336.412792][   T13] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0
[  336.415392][   T13] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0
[  336.418125][   T13] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0
[  336.520927][   T61] usb usb46-port1: unable to enumerate USB device
[  336.539684][   T34] usb 9-1: Using ep0 maxpacket: 8
[  336.542464][   T34] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  336.545982][   T34] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  336.548858][   T34] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  336.553204][   T34] usb 9-1: config 0 descriptor??
[  336.765423][   T34] iowarrior 9-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  336.893114][T13238] FAULT_INJECTION: forcing a failure.
[  336.893114][T13238] name failslab, interval 1, probability 0, space 0, times 0
[  336.898355][T13238] CPU: 1 UID: 0 PID: 13238 Comm: syz.0.2198 Not tainted syzkaller #0 PREEMPT(full) 
[  336.898379][T13238] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  336.898390][T13238] Call Trace:
[  336.898398][T13238]  <TASK>
[  336.898407][T13238]  dump_stack_lvl+0x16c/0x1f0
[  336.898432][T13238]  should_fail_ex+0x512/0x640
[  336.898458][T13238]  ? __kmalloc_noprof+0xca/0x880
[  336.898488][T13238]  should_failslab+0xc2/0x120
[  336.898512][T13238]  __kmalloc_noprof+0xdd/0x880
[  336.898537][T13238]  ? __pfx___mutex_trylock_common+0x10/0x10
[  336.898563][T13238]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  336.898593][T13238]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  336.898615][T13238]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  336.898639][T13238]  ? __mutex_lock+0x1c5/0x1060
[  336.898664][T13238]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  336.898688][T13238]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  336.898709][T13238]  ? genl_get_cmd+0x194/0x580
[  336.898739][T13238]  ? ____sys_sendmsg+0xa98/0xc70
[  336.898759][T13238]  ? ___sys_sendmsg+0x134/0x1d0
[  336.898773][T13238]  ? __radix_tree_lookup+0x21f/0x2c0
[  336.898806][T13238]  genl_rcv_msg+0x55c/0x800
[  336.898832][T13238]  ? __pfx_genl_rcv_msg+0x10/0x10
[  336.898854][T13238]  ? __pfx_nbd_genl_reconfigure+0x10/0x10
[  336.898886][T13238]  ? __lock_acquire+0x622/0x1c90
[  336.898915][T13238]  netlink_rcv_skb+0x158/0x420
[  336.898934][T13238]  ? __pfx_genl_rcv_msg+0x10/0x10
[  336.898957][T13238]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  336.898993][T13238]  ? netlink_deliver_tap+0x1ae/0xd30
[  336.899026][T13238]  genl_rcv+0x28/0x40
[  336.899044][T13238]  netlink_unicast+0x5aa/0x870
[  336.899066][T13238]  ? __pfx_netlink_unicast+0x10/0x10
[  336.899095][T13238]  netlink_sendmsg+0x8c8/0xdd0
[  336.899119][T13238]  ? __pfx_netlink_sendmsg+0x10/0x10
[  336.899141][T13238]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  336.899172][T13238]  ____sys_sendmsg+0xa98/0xc70
[  336.899196][T13238]  ? __pfx_____sys_sendmsg+0x10/0x10
[  336.899217][T13238]  ? get_compat_msghdr+0x11a/0x170
[  336.899257][T13238]  ___sys_sendmsg+0x134/0x1d0
[  336.899276][T13238]  ? __pfx____sys_sendmsg+0x10/0x10
[  336.899307][T13238]  ? find_held_lock+0x2b/0x80
[  336.899343][T13238]  __sys_sendmsg+0x16d/0x220
[  336.899361][T13238]  ? __pfx___sys_sendmsg+0x10/0x10
[  336.899390][T13238]  ? rcu_is_watching+0x12/0xc0
[  336.899414][T13238]  __do_fast_syscall_32+0x7c/0x300
[  336.899438][T13238]  do_fast_syscall_32+0x32/0x80
[  336.899459][T13238]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  336.899482][T13238] RIP: 0023:0xf7f36579
[  336.899496][T13238] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  336.899514][T13238] RSP: 002b:00000000f542655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  336.899547][T13238] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000200
[  336.899559][T13238] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[  336.899571][T13238] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  336.899581][T13238] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  336.899592][T13238] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  336.899621][T13238]  </TASK>
[  337.209196][T13244] fuse: Unknown parameter '0x0000000000000003'
[  337.309801][ T1453] usb 5-1: new full-speed USB device number 29 using dummy_hcd
[  337.477682][ T1453] usb 5-1: config 0 has no interfaces?
[  337.528597][ T1453] usb 5-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=39.ac
[  337.533543][ T1453] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=67
[  337.536578][ T1453] usb 5-1: Product: syz
[  337.538137][ T1453] usb 5-1: Manufacturer: syz
[  337.546422][ T1453] usb 5-1: SerialNumber: syz
[  337.549440][ T1453] usb 5-1: config 0 descriptor??
[  337.574488][ T5947] block nbd69: Wrong magic (0x989b4372)
[  337.619750][T13257] nbd69: detected capacity change from 0 to 127
[  337.622598][T13259] __nla_validate_parse: 19 callbacks suppressed
[  337.622617][T13259] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2206'.
[  337.628359][T13259] block nbd0: reconnected socket
[  337.630053][ T9566] block nbd69: Dead connection, failed to find a fallback
[  337.630067][ T9566] block nbd69: shutting down sockets
[  337.631806][ T9566] ldm_validate_partition_table(): Disk read failed.
[  337.632496][T13259] nbd: socks must be embedded in a SOCK_ITEM attr
[  337.635216][ T9566] Dev nbd69: unable to read RDB block 0
[  337.639726][ T5947] block nbd0: Receive control failed (result -32)
[  337.642096][ T9566]  nbd69: unable to read partition table
[  337.648377][ T9566] ldm_validate_partition_table(): Disk read failed.
[  337.651660][ T9566] Dev nbd69: unable to read RDB block 0
[  337.655472][ T9566]  nbd69: unable to read partition table
[  337.753614][ T5947] block nbd70: Wrong magic (0x989b4372)
[  337.755891][T13240] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  337.760833][T13240] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  337.764772][ T5947] Bluetooth: hci1: Malformed LE Event: 0x02
[  337.768453][ T1453] usb 5-1: USB disconnect, device number 29
[  337.790305][T13264] nbd70: detected capacity change from 0 to 127
[  337.792699][T13266] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2208'.
[  337.793662][ T9566] block nbd70: Dead connection, failed to find a fallback
[  337.795568][T13266] block nbd0: reconnected socket
[  337.798043][ T9566] block nbd70: shutting down sockets
[  337.799481][T13266] nbd: socks must be embedded in a SOCK_ITEM attr
[  337.803992][ T5947] block nbd0: Receive control failed (result -32)
[  337.808624][ T9566] ldm_validate_partition_table(): Disk read failed.
[  337.812769][ T9566] Dev nbd70: unable to read RDB block 0
[  337.832313][ T9566]  nbd70: unable to read partition table
[  337.839794][ T9566] ldm_validate_partition_table(): Disk read failed.
[  337.843078][ T9566] Dev nbd70: unable to read RDB block 0
[  337.846108][ T9566]  nbd70: unable to read partition table
[  338.005301][T13273] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2210'.
[  338.179674][    C2] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  338.559596][T13261] comedi comedi0: reset error (fatal)
[  338.849660][ T6725] usb 6-1: new low-speed USB device number 22 using dummy_hcd
[  339.005872][ T6725] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  339.009508][ T6725] usb 6-1: config 0 has no interface number 0
[  339.012549][ T6725] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  339.017085][ T6725] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  339.023938][ T6725] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  339.029016][ T6725] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  339.034092][ T6725] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  339.038591][ T6725] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  339.044336][ T6725] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  339.048228][ T6725] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  339.070098][ T6725] usb 6-1: config 0 descriptor??
[  339.078924][T13281] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  339.084101][T13281] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  339.123777][ T5947] block nbd71: Wrong magic (0x989b4372)
[  339.148947][   T34] usb 9-1: USB disconnect, device number 29
[  339.156973][ T6725] ldusb 6-1:0.55: LD USB Device #1 now attached to major 180 minor 1
[  339.180188][T13290] nbd71: detected capacity change from 0 to 127
[  339.187297][ T9566] block nbd71: Dead connection, failed to find a fallback
[  339.190246][T13292] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2216'.
[  339.193360][T13292] block nbd0: reconnected socket
[  339.193526][ T9566] block nbd71: shutting down sockets
[  339.196590][T13292] nbd: socks must be embedded in a SOCK_ITEM attr
[  339.201896][ T9566] ldm_validate_partition_table(): Disk read failed.
[  339.204869][ T5947] block nbd0: Receive control failed (result -32)
[  339.206256][ T9566] Dev nbd71: unable to read RDB block 0
[  339.212091][ T9566]  nbd71: unable to read partition table
[  339.222792][ T9566] ldm_validate_partition_table(): Disk read failed.
[  339.225374][ T5352] block nbd0: Dead connection, failed to find a fallback
[  339.226387][ T9566] Dev nbd71: unable to read RDB block 0
[  339.227475][ T5352] block nbd0: shutting down sockets
[  339.231223][ T9566]  nbd71: unable to read partition table
[  339.241306][ T5352] ldm_validate_partition_table(): Disk read failed.
[  339.244220][T13297] netlink: 124 bytes leftover after parsing attributes in process `syz.3.2218'.
[  339.244302][ T5352] Dev nbd0: unable to read RDB block 0
[  339.250331][ T5352]  nbd0: unable to read partition table
[  339.260047][ T9566] ldm_validate_partition_table(): Disk read failed.
[  339.263025][ T9566] Dev nbd0: unable to read RDB block 0
[  339.265632][ T9566]  nbd0: unable to read partition table
[  339.272771][ T9566] ldm_validate_partition_table(): Disk read failed.
[  339.275634][ T9566] Dev nbd0: unable to read RDB block 0
[  339.278255][ T9566]  nbd0: unable to read partition table
[  339.864326][ T9288] usb 6-1: USB disconnect, device number 22
[  339.870753][ T9288] ldusb 6-1:0.55: LD USB Device #1 now disconnected
[  339.894119][T13309] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2221'.
[  339.938123][T13311] input: syz0 as /devices/virtual/input/input30
[  340.439685][ T9288] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  340.589823][ T9288] usb 5-1: Using ep0 maxpacket: 8
[  340.593844][ T9288] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  340.597848][ T9288] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  340.601720][ T9288] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  340.607216][ T9288] usb 5-1: config 0 descriptor??
[  340.814901][ T9288] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  340.899685][ T1133] vhci_hcd: vhci_device speed not set
[  340.911529][ T5947] block nbd72: Wrong magic (0x989b4372)
[  340.969705][T13340] nbd72: detected capacity change from 0 to 127
[  340.972800][ T9566] block nbd72: Dead connection, failed to find a fallback
[  340.975164][ T9566] block nbd72: shutting down sockets
[  340.976870][ T9566] blk_print_req_error: 794 callbacks suppressed
[  340.976879][ T9566] I/O error, dev nbd72, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  340.978406][T13344] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2231'.
[  340.980381][ T9566] buffer_io_error: 794 callbacks suppressed
[  340.980392][ T9566] Buffer I/O error on dev nbd72, logical block 0, async page read
[  340.982987][T13344] block nbd0: reconnected socket
[  340.986135][ T9566] I/O error, dev nbd72, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  340.987983][T13344] nbd: socks must be embedded in a SOCK_ITEM attr
[  340.990996][ T9566] Buffer I/O error on dev nbd72, logical block 1, async page read
[  340.996332][ T5947] block nbd0: Receive control failed (result -32)
[  340.997415][ T9566] I/O error, dev nbd72, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  341.005660][ T9566] Buffer I/O error on dev nbd72, logical block 2, async page read
[  341.008344][ T9566] I/O error, dev nbd72, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  341.012443][ T9566] Buffer I/O error on dev nbd72, logical block 3, async page read
[  341.016099][ T9566] I/O error, dev nbd72, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  341.020267][ T9566] Buffer I/O error on dev nbd72, logical block 0, async page read
[  341.023746][ T9566] I/O error, dev nbd72, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  341.027720][ T9566] Buffer I/O error on dev nbd72, logical block 1, async page read
[  341.031448][ T9566] I/O error, dev nbd72, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  341.035164][ T9566] Buffer I/O error on dev nbd72, logical block 2, async page read
[  341.038979][ T9566] I/O error, dev nbd72, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  341.042944][ T9566] Buffer I/O error on dev nbd72, logical block 3, async page read
[  341.046290][ T9566] I/O error, dev nbd72, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  341.050372][ T9566] Buffer I/O error on dev nbd72, logical block 0, async page read
[  341.053694][ T9566] I/O error, dev nbd72, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  341.057537][ T9566] Buffer I/O error on dev nbd72, logical block 1, async page read
[  341.063792][ T9566] ldm_validate_partition_table(): Disk read failed.
[  341.067072][ T9566] Dev nbd72: unable to read RDB block 0
[  341.070526][ T9566]  nbd72: unable to read partition table
[  341.085807][ T9566] ldm_validate_partition_table(): Disk read failed.
[  341.088863][ T9566] Dev nbd72: unable to read RDB block 0
[  341.091616][ T9566]  nbd72: unable to read partition table
[  341.187113][T13353] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2234'.
[  341.190043][T13353] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2234'.
[  341.250853][T13356] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2235'.
[  341.258060][T13356] bridge0: port 2(bridge_slave_1) entered disabled state
[  341.773869][ T5303] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  341.778191][ T5303] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  341.783612][ T5303] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  341.786707][ T5303] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  341.791739][ T5303] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  341.913298][ T5947] block nbd73: Wrong magic (0x989b4372)
[  341.934361][T13374] chnl_net:caif_netlink_parms(): no params data found
[  341.949745][T13377] nbd73: detected capacity change from 0 to 127
[  341.952478][ T9566] block nbd73: Dead connection, failed to find a fallback
[  341.954802][T13379] block nbd0: reconnected socket
[  341.956360][T13379] nbd: socks must be embedded in a SOCK_ITEM attr
[  341.958415][ T9566] block nbd73: shutting down sockets
[  341.959409][ T5947] block nbd0: Receive control failed (result -32)
[  341.965798][ T9566] ldm_validate_partition_table(): Disk read failed.
[  341.968864][ T9566] Dev nbd73: unable to read RDB block 0
[  341.971555][ T9566]  nbd73: unable to read partition table
[  341.978659][ T9566] ldm_validate_partition_table(): Disk read failed.
[  341.981906][ T9566] Dev nbd73: unable to read RDB block 0
[  341.984528][ T9566]  nbd73: unable to read partition table
[  342.034693][T13374] bridge0: port 1(bridge_slave_0) entered blocking state
[  342.037296][T13374] bridge0: port 1(bridge_slave_0) entered disabled state
[  342.039509][T13374] bridge_slave_0: entered allmulticast mode
[  342.042224][T13374] bridge_slave_0: entered promiscuous mode
[  342.045865][T13374] bridge0: port 2(bridge_slave_1) entered blocking state
[  342.049222][T13374] bridge0: port 2(bridge_slave_1) entered disabled state
[  342.053830][T13391] FAULT_INJECTION: forcing a failure.
[  342.053830][T13391] name failslab, interval 1, probability 0, space 0, times 0
[  342.054365][T13374] bridge_slave_1: entered allmulticast mode
[  342.058075][T13391] CPU: 0 UID: 0 PID: 13391 Comm: syz.3.2244 Not tainted syzkaller #0 PREEMPT(full) 
[  342.058091][T13391] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  342.058098][T13391] Call Trace:
[  342.058104][T13391]  <TASK>
[  342.058109][T13391]  dump_stack_lvl+0x16c/0x1f0
[  342.058126][T13391]  should_fail_ex+0x512/0x640
[  342.058146][T13391]  should_failslab+0xc2/0x120
[  342.058162][T13391]  kmem_cache_alloc_noprof+0x75/0x6e0
[  342.058175][T13391]  ? inet_frag_find+0x6d3/0x21a0
[  342.058193][T13391]  ? inet_frag_find+0x6d3/0x21a0
[  342.058206][T13391]  ? rcu_read_lock_any_held+0x3c/0xa0
[  342.058219][T13391]  inet_frag_find+0x6d3/0x21a0
[  342.058234][T13391]  ? __pfx_ip4_obj_cmpfn+0x10/0x10
[  342.058249][T13391]  ? __pfx_inet_frag_find+0x10/0x10
[  342.058264][T13391]  ? kmem_cache_alloc_noprof+0x250/0x6e0
[  342.058275][T13391]  ? skb_clone+0x190/0x3f0
[  342.058285][T13391]  ? dev_queue_xmit_nit+0x3e7/0xca0
[  342.058302][T13391]  ? dev_hard_start_xmit+0x5c3/0x740
[  342.058320][T13391]  ip_defrag+0x2ea/0x2880
[  342.058329][T13391]  ? do_fast_syscall_32+0x32/0x80
[  342.058342][T13391]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  342.058358][T13391]  ? do_csum+0x26f/0x2d0
[  342.058371][T13391]  ? csum_partial+0x46/0x60
[  342.058383][T13391]  ? __pfx_ip_defrag+0x10/0x10
[  342.058400][T13391]  ip_check_defrag+0x462/0x670
[  342.058412][T13391]  ? __pfx_ip_check_defrag+0x10/0x10
[  342.058424][T13391]  ? __asan_memcpy+0x3c/0x60
[  342.058436][T13391]  ? __asan_memcpy+0x3c/0x60
[  342.058449][T13391]  packet_rcv_fanout+0x4e3/0x780
[  342.058468][T13391]  ? __pfx_packet_rcv_fanout+0x10/0x10
[  342.058486][T13391]  dev_queue_xmit_nit+0x8f4/0xca0
[  342.058509][T13391]  dev_hard_start_xmit+0x5c3/0x740
[  342.058528][T13391]  __dev_queue_xmit+0xa46/0x4490
[  342.058552][T13391]  ? __pfx___dev_queue_xmit+0x10/0x10
[  342.058578][T13391]  ? trace_kmem_cache_alloc+0x28/0xc0
[  342.058600][T13391]  ? kmem_cache_alloc_node_noprof+0x2d8/0x770
[  342.058619][T13391]  ? kmalloc_reserve+0x18b/0x2c0
[  342.058642][T13391]  ? skb_release_data+0x79a/0x9e0
[  342.058659][T13391]  ? kmalloc_reserve+0x18b/0x2c0
[  342.058674][T13391]  ? kmalloc_reserve+0x13c/0x2c0
[  342.058687][T13391]  ? skb_headers_offset_update+0x129/0x260
[  342.058705][T13391]  ? __pfx_pskb_expand_head+0x10/0x10
[  342.058718][T13391]  __bpf_redirect+0x71c/0xfc0
[  342.058734][T13391]  bpf_clone_redirect+0x2ce/0x3f0
[  342.058747][T13391]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  342.058763][T13391]  bpf_prog_bd919e7baf24f63c+0x5f/0x68
[  342.058774][T13391]  ? register_pidns_sysctls+0x150/0x1b0
[  342.058792][T13391]  ? unwind_get_return_address+0x59/0xa0
[  342.058807][T13391]  ? __lock_acquire+0xb8a/0x1c90
[  342.058824][T13391]  ? __lock_acquire+0x622/0x1c90
[  342.058850][T13391]  ? find_held_lock+0x2b/0x80
[  342.058866][T13391]  ? ktime_get+0x200/0x310
[  342.058880][T13391]  ? lockdep_hardirqs_on+0x7c/0x110
[  342.058893][T13391]  ? ktime_get+0x1a7/0x310
[  342.058907][T13391]  ? __pfx___cant_migrate+0x10/0x10
[  342.058920][T13391]  ? bpf_test_timer_continue+0x13e/0x610
[  342.058941][T13391]  ? lockdep_hardirqs_on+0x7c/0x110
[  342.058954][T13391]  bpf_test_run+0x3d3/0xa60
[  342.058975][T13391]  ? __pfx_bpf_test_run+0x10/0x10
[  342.058998][T13391]  ? do_csum+0x26f/0x2d0
[  342.059018][T13391]  bpf_prog_test_run_skb+0xbae/0x2290
[  342.059034][T13391]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  342.059047][T13391]  ? fput+0x9b/0xd0
[  342.059063][T13391]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  342.059075][T13391]  __sys_bpf+0x1035/0x4980
[  342.059089][T13391]  ? __pfx___sys_bpf+0x10/0x10
[  342.059100][T13391]  ? find_held_lock+0x2b/0x80
[  342.059114][T13391]  ? find_held_lock+0x2b/0x80
[  342.059129][T13391]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  342.059150][T13391]  ? fput+0x9b/0xd0
[  342.059165][T13391]  ? ksys_write+0x1ac/0x250
[  342.059178][T13391]  ? __pfx_ksys_write+0x10/0x10
[  342.059193][T13391]  __ia32_sys_bpf+0x76/0xe0
[  342.059206][T13391]  __do_fast_syscall_32+0x7c/0x300
[  342.059221][T13391]  do_fast_syscall_32+0x32/0x80
[  342.059234][T13391]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  342.059248][T13391] RIP: 0023:0xf7f83579
[  342.059257][T13391] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  342.059268][T13391] RSP: 002b:00000000f547655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  342.059280][T13391] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000f00
[  342.059287][T13391] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000
[  342.059294][T13391] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  342.059300][T13391] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  342.059306][T13391] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  342.059320][T13391]  </TASK>
[  342.253221][T13374] bridge_slave_1: entered promiscuous mode
[  342.313292][T13374] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  342.317970][T13374] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  342.357101][T13374] team0: Port device team_slave_0 added
[  342.361849][T13374] team0: Port device team_slave_1 added
[  342.397929][T13374] batman_adv: batadv0: Adding interface: batadv_slave_0
[  342.400661][T13374] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  342.410379][T13374] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  342.416034][T13374] batman_adv: batadv0: Adding interface: batadv_slave_1
[  342.418839][T13374] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  342.429301][T13374] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  342.455852][ T5947] block nbd74: Wrong magic (0x989b4372)
[  342.489978][T13374] hsr_slave_0: entered promiscuous mode
[  342.492339][T13374] hsr_slave_1: entered promiscuous mode
[  342.499805][T13395] nbd74: detected capacity change from 0 to 127
[  342.502697][ T9566] block nbd74: Dead connection, failed to find a fallback
[  342.506587][ T9566] block nbd74: shutting down sockets
[  342.506721][T13398] block nbd0: reconnected socket
[  342.510057][ T9566] ldm_validate_partition_table(): Disk read failed.
[  342.510068][T13398] nbd: socks must be embedded in a SOCK_ITEM attr
[  342.513017][ T9566] Dev nbd74: unable to read RDB block 0
[  342.516898][ T9566]  nbd74: unable to read partition table
[  342.523658][ T9566] ldm_validate_partition_table(): Disk read failed.
[  342.525877][ T5947] block nbd0: Receive control failed (result -32)
[  342.528819][ T9566] Dev nbd74: unable to read RDB block 0
[  342.532533][ T9566]  nbd74: unable to read partition table
[  342.653381][T13374] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  342.657668][T13374] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  342.726278][T13374] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  342.729416][T13374] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  342.802824][T13374] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  342.806031][T13374] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  342.876623][T13374] bond0: (slave netdevsim0): Releasing backup interface
[  342.881072][T13374] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  342.884539][T13374] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  342.958915][T13403] bridge2: entered promiscuous mode
[  343.022651][T13404] input: syz1 as /devices/virtual/input/input31
[  343.094261][T13374] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  343.098629][T13374] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  343.108714][T13374] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  343.114823][T13374] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  343.204140][T13374] 8021q: adding VLAN 0 to HW filter on device bond0
[  343.233048][ T7973] usb 5-1: USB disconnect, device number 30
[  343.322996][T13374] 8021q: adding VLAN 0 to HW filter on device team0
[  343.352640][ T5947] block nbd75: Wrong magic (0x989b4372)
[  343.381252][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  343.383557][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  343.409749][T13412] nbd75: detected capacity change from 0 to 127
[  343.411960][T13418] __nla_validate_parse: 6 callbacks suppressed
[  343.411968][T13418] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2249'.
[  343.418125][T13418] block nbd0: reconnected socket
[  343.419819][T13418] nbd: socks must be embedded in a SOCK_ITEM attr
[  343.424423][ T5947] block nbd0: Receive control failed (result -32)
[  343.427843][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state
[  343.430083][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state
[  343.440101][ T9566] block nbd75: Dead connection, failed to find a fallback
[  343.442337][ T9566] block nbd75: shutting down sockets
[  343.461661][ T9566] ldm_validate_partition_table(): Disk read failed.
[  343.464571][ T9566] Dev nbd75: unable to read RDB block 0
[  343.467182][ T9566]  nbd75: unable to read partition table
[  343.503429][ T9566] ldm_validate_partition_table(): Disk read failed.
[  343.506291][ T9566] Dev nbd75: unable to read RDB block 0
[  343.513187][ T9566]  nbd75: unable to read partition table
[  343.573866][T13423] sp0: Synchronizing with TNC
[  343.729455][T13438] block nbd0: Cannot use ioctl interface on a netlink controlled device.
[  343.781618][ T5352] block nbd0: Dead connection, failed to find a fallback
[  343.786882][ T5352] block nbd0: shutting down sockets
[  343.796411][T13374] 8021q: adding VLAN 0 to HW filter on device batadv0
[  343.807802][ T5352] ldm_validate_partition_table(): Disk read failed.
[  343.841876][ T5352] Dev nbd0: unable to read RDB block 0
[  343.848873][ T5352]  nbd0: unable to read partition table
[  343.859801][ T5947] Bluetooth: hci4: command tx timeout
[  343.872195][ T6082] ldm_validate_partition_table(): Disk read failed.
[  343.875094][ T6082] Dev nbd0: unable to read RDB block 0
[  343.877715][ T6082]  nbd0: unable to read partition table
[  343.892595][ T6082] ldm_validate_partition_table(): Disk read failed.
[  343.897339][ T6082] Dev nbd0: unable to read RDB block 0
[  343.901763][ T6082]  nbd0: unable to read partition table
[  343.912944][T13374] veth0_vlan: entered promiscuous mode
[  343.918172][T13374] veth1_vlan: entered promiscuous mode
[  343.939097][T13374] veth0_macvtap: entered promiscuous mode
[  343.949365][T13374] veth1_macvtap: entered promiscuous mode
[  343.968969][T13374] batman_adv: batadv0: Interface activated: batadv_slave_0
[  343.977037][T13374] batman_adv: batadv0: Interface activated: batadv_slave_1
[  343.988260][   T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  343.991612][   T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  343.995507][   T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  343.998759][   T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  344.037552][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  344.041225][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  344.049786][ T7973] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  344.057905][ T1141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  344.060805][ T1141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  344.199608][ T7973] usb 5-1: Using ep0 maxpacket: 8
[  344.205294][ T7973] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  344.208884][ T7973] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  344.211951][ T7973] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.218635][ T7973] usb 5-1: config 0 descriptor??
[  344.429252][ T7973] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  344.792237][T13458] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  344.796491][T13458] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  344.816286][T13458] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  344.820360][T13458] overlayfs: failed to look up (tracing) for ino (-66)
[  344.829196][T13458] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2262'.
[  344.833660][T13458] netlink: 288 bytes leftover after parsing attributes in process `syz.3.2262'.
[  344.838890][T13458] netlink: 288 bytes leftover after parsing attributes in process `syz.3.2262'.
[  344.843887][T13458] binder: 13457:13458 ioctl 4018620d 0 returned -22
[  345.019152][T13465] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  345.889172][T13477] loop2: detected capacity change from 0 to 7
[  345.892735][T13477]  loop2:
[  345.894024][T13477] loop2: partition table partially beyond EOD, truncated
[  345.936311][T13479] FAULT_INJECTION: forcing a failure.
[  345.936311][T13479] name failslab, interval 1, probability 0, space 0, times 0
[  345.940392][T13479] CPU: 2 UID: 0 PID: 13479 Comm: syz.3.2269 Not tainted syzkaller #0 PREEMPT(full) 
[  345.940407][T13479] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  345.940414][T13479] Call Trace:
[  345.940418][T13479]  <TASK>
[  345.940423][T13479]  dump_stack_lvl+0x16c/0x1f0
[  345.940440][T13479]  should_fail_ex+0x512/0x640
[  345.940460][T13479]  should_failslab+0xc2/0x120
[  345.940477][T13479]  kmem_cache_alloc_noprof+0x75/0x6e0
[  345.940489][T13479]  ? lock_acquire+0x179/0x350
[  345.940505][T13479]  ? skb_clone+0x190/0x3f0
[  345.940519][T13479]  ? skb_clone+0x190/0x3f0
[  345.940528][T13479]  skb_clone+0x190/0x3f0
[  345.940539][T13479]  dev_queue_xmit_nit+0x3e7/0xca0
[  345.940562][T13479]  dev_hard_start_xmit+0x5c3/0x740
[  345.940581][T13479]  __dev_queue_xmit+0xa46/0x4490
[  345.940603][T13479]  ? __pfx___dev_queue_xmit+0x10/0x10
[  345.940621][T13479]  ? trace_kmem_cache_alloc+0x28/0xc0
[  345.940636][T13479]  ? kmem_cache_alloc_node_noprof+0x2d8/0x770
[  345.940648][T13479]  ? kmalloc_reserve+0x18b/0x2c0
[  345.940662][T13479]  ? skb_release_data+0x79a/0x9e0
[  345.940673][T13479]  ? kmalloc_reserve+0x18b/0x2c0
[  345.940685][T13479]  ? kmalloc_reserve+0x13c/0x2c0
[  345.940698][T13479]  ? skb_headers_offset_update+0x129/0x260
[  345.940716][T13479]  ? __pfx_pskb_expand_head+0x10/0x10
[  345.940729][T13479]  __bpf_redirect+0x71c/0xfc0
[  345.940746][T13479]  bpf_clone_redirect+0x2ce/0x3f0
[  345.940758][T13479]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  345.940775][T13479]  bpf_prog_bd919e7baf24f63c+0x5f/0x68
[  345.940785][T13479]  ? register_pidns_sysctls+0x150/0x1b0
[  345.940803][T13479]  ? unwind_get_return_address+0x59/0xa0
[  345.940819][T13479]  ? __lock_acquire+0xb8a/0x1c90
[  345.940836][T13479]  ? __lock_acquire+0x622/0x1c90
[  345.940855][T13479]  ? find_held_lock+0x2b/0x80
[  345.940869][T13479]  ? ktime_get+0x200/0x310
[  345.940883][T13479]  ? lockdep_hardirqs_on+0x7c/0x110
[  345.940896][T13479]  ? ktime_get+0x1a7/0x310
[  345.940909][T13479]  ? __pfx___cant_migrate+0x10/0x10
[  345.940922][T13479]  ? bpf_test_timer_continue+0x13e/0x610
[  345.940940][T13479]  ? lockdep_hardirqs_on+0x7c/0x110
[  345.940952][T13479]  bpf_test_run+0x3d3/0xa60
[  345.940973][T13479]  ? __pfx_bpf_test_run+0x10/0x10
[  345.940996][T13479]  ? do_csum+0x26f/0x2d0
[  345.941017][T13479]  bpf_prog_test_run_skb+0xbae/0x2290
[  345.941033][T13479]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  345.941045][T13479]  ? fput+0x9b/0xd0
[  345.941062][T13479]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  345.941074][T13479]  __sys_bpf+0x1035/0x4980
[  345.941089][T13479]  ? __pfx___sys_bpf+0x10/0x10
[  345.941100][T13479]  ? find_held_lock+0x2b/0x80
[  345.941114][T13479]  ? find_held_lock+0x2b/0x80
[  345.941128][T13479]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  345.941150][T13479]  ? fput+0x9b/0xd0
[  345.941165][T13479]  ? ksys_write+0x1ac/0x250
[  345.941177][T13479]  ? __pfx_ksys_write+0x10/0x10
[  345.941192][T13479]  __ia32_sys_bpf+0x76/0xe0
[  345.941208][T13479]  __do_fast_syscall_32+0x7c/0x300
[  345.941224][T13479]  do_fast_syscall_32+0x32/0x80
[  345.941237][T13479]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  345.941252][T13479] RIP: 0023:0xf7f83579
[  345.941260][T13479] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  345.941272][T13479] RSP: 002b:00000000f547655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  345.941283][T13479] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000f00
[  345.941290][T13479] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000
[  345.941296][T13479] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  345.941303][T13479] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  345.941309][T13479] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  345.941323][T13479]  </TASK>
[  345.961820][ T5947] Bluetooth: hci4: command tx timeout
[  346.122744][ T5947] block nbd76: Wrong magic (0x989b4372)
[  346.192075][T13492] blk_print_req_error: 794 callbacks suppressed
[  346.192087][T13492] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  346.197649][T13492] buffer_io_error: 794 callbacks suppressed
[  346.197659][T13492] Buffer I/O error on dev nbd3, logical block 0, async page read
[  346.200589][T13482] nbd76: detected capacity change from 0 to 127
[  346.202522][T13492] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  346.205776][ T9566] block nbd76: Dead connection, failed to find a fallback
[  346.208098][T13492] Buffer I/O error on dev nbd3, logical block 1, async page read
[  346.208982][T13484] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2270'.
[  346.209047][T13484] block nbd0: reconnected socket
[  346.209055][T13484] nbd: socks must be embedded in a SOCK_ITEM attr
[  346.211062][ T9566] block nbd76: shutting down sockets
[  346.213920][ T5947] block nbd0: Receive control failed (result -32)
[  346.213988][T13492] I/O error, dev nbd3, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  346.214007][T13492] Buffer I/O error on dev nbd3, logical block 2, async page read
[  346.214072][T13492] I/O error, dev nbd3, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  346.214086][T13492] Buffer I/O error on dev nbd3, logical block 3, async page read
[  346.214155][T13492] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  346.214176][T13492] Buffer I/O error on dev nbd3, logical block 0, async page read
[  346.214235][T13492] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  346.214249][T13492] Buffer I/O error on dev nbd3, logical block 1, async page read
[  346.214307][T13492] I/O error, dev nbd3, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  346.214321][T13492] Buffer I/O error on dev nbd3, logical block 2, async page read
[  346.214380][T13492] I/O error, dev nbd3, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  346.214394][T13492] Buffer I/O error on dev nbd3, logical block 3, async page read
[  346.214457][T13492] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  346.214470][T13492] Buffer I/O error on dev nbd3, logical block 0, async page read
[  346.214528][T13492] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  346.214540][T13492] Buffer I/O error on dev nbd3, logical block 1, async page read
[  346.215731][T13492] ldm_validate_partition_table(): Disk read failed.
[  346.216647][T13492] Dev nbd3: unable to read RDB block 0
[  346.217840][ T9566] ldm_validate_partition_table(): Disk read failed.
[  346.218667][ T9566] Dev nbd76: unable to read RDB block 0
[  346.223141][T13492]  nbd3: unable to read partition table
[  346.224840][ T9566]  nbd76: unable to read partition table
[  346.254205][T13492] block nbd3: Cannot use ioctl interface on a netlink controlled device.
[  346.287414][ T9566] ldm_validate_partition_table(): Disk read failed.
[  346.291217][ T9566] Dev nbd76: unable to read RDB block 0
[  346.294251][ T9566]  nbd76: unable to read partition table
[  346.309376][ T5352] ldm_validate_partition_table(): Disk read failed.
[  346.326002][ T5352] Dev nbd3: unable to read RDB block 0
[  346.328838][ T5352]  nbd3: unable to read partition table
[  346.468169][ T5352] ldm_validate_partition_table(): Disk read failed.
[  346.471609][ T5352] Dev nbd3: unable to read RDB block 0
[  346.474413][ T5352]  nbd3: unable to read partition table
[  346.485952][ T9566] ldm_validate_partition_table(): Disk read failed.
[  346.488889][ T9566] Dev nbd3: unable to read RDB block 0
[  346.491839][ T9566]  nbd3: unable to read partition table
[  346.507703][ T9566] ldm_validate_partition_table(): Disk read failed.
[  346.513442][ T9566] Dev nbd3: unable to read RDB block 0
[  346.516413][ T9566]  nbd3: unable to read partition table
[  346.623977][T13509] loop2: detected capacity change from 0 to 7
[  346.630214][T13509]  loop2:
[  346.631317][T13509] loop2: partition table partially beyond EOD, truncated
[  346.669649][    C2] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  346.700242][T13512] FAULT_INJECTION: forcing a failure.
[  346.700242][T13512] name failslab, interval 1, probability 0, space 0, times 0
[  346.704444][T13512] CPU: 1 UID: 0 PID: 13512 Comm: syz.1.2279 Not tainted syzkaller #0 PREEMPT(full) 
[  346.704461][T13512] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  346.704469][T13512] Call Trace:
[  346.704474][T13512]  <TASK>
[  346.704479][T13512]  dump_stack_lvl+0x16c/0x1f0
[  346.704496][T13512]  should_fail_ex+0x512/0x640
[  346.704517][T13512]  should_failslab+0xc2/0x120
[  346.704536][T13512]  kmem_cache_alloc_noprof+0x75/0x6e0
[  346.704553][T13512]  ? inet_frag_find+0x6d3/0x21a0
[  346.704585][T13512]  ? inet_frag_find+0x6d3/0x21a0
[  346.704597][T13512]  ? rcu_read_lock_any_held+0x3c/0xa0
[  346.704610][T13512]  inet_frag_find+0x6d3/0x21a0
[  346.704625][T13512]  ? __pfx_ip4_obj_cmpfn+0x10/0x10
[  346.704640][T13512]  ? __pfx_inet_frag_find+0x10/0x10
[  346.704655][T13512]  ? kmem_cache_alloc_noprof+0x250/0x6e0
[  346.704666][T13512]  ? skb_clone+0x190/0x3f0
[  346.704676][T13512]  ? dev_queue_xmit_nit+0x3e7/0xca0
[  346.704694][T13512]  ? dev_hard_start_xmit+0x5c3/0x740
[  346.704723][T13512]  ip_defrag+0x2ea/0x2880
[  346.704733][T13512]  ? do_fast_syscall_32+0x32/0x80
[  346.704746][T13512]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  346.704762][T13512]  ? do_csum+0x26f/0x2d0
[  346.704776][T13512]  ? csum_partial+0x46/0x60
[  346.704788][T13512]  ? __pfx_ip_defrag+0x10/0x10
[  346.704805][T13512]  ip_check_defrag+0x462/0x670
[  346.704817][T13512]  ? __pfx_ip_check_defrag+0x10/0x10
[  346.704829][T13512]  ? __asan_memcpy+0x3c/0x60
[  346.704841][T13512]  ? __asan_memcpy+0x3c/0x60
[  346.704854][T13512]  packet_rcv_fanout+0x4e3/0x780
[  346.704873][T13512]  ? __pfx_packet_rcv_fanout+0x10/0x10
[  346.704896][T13512]  dev_queue_xmit_nit+0x8f4/0xca0
[  346.704918][T13512]  dev_hard_start_xmit+0x5c3/0x740
[  346.704937][T13512]  __dev_queue_xmit+0xa46/0x4490
[  346.704958][T13512]  ? __pfx___dev_queue_xmit+0x10/0x10
[  346.704976][T13512]  ? trace_kmem_cache_alloc+0x28/0xc0
[  346.704992][T13512]  ? kmem_cache_alloc_node_noprof+0x2d8/0x770
[  346.705003][T13512]  ? kmalloc_reserve+0x18b/0x2c0
[  346.705017][T13512]  ? skb_release_data+0x79a/0x9e0
[  346.705028][T13512]  ? kmalloc_reserve+0x18b/0x2c0
[  346.705040][T13512]  ? kmalloc_reserve+0x13c/0x2c0
[  346.705054][T13512]  ? skb_headers_offset_update+0x129/0x260
[  346.705072][T13512]  ? __pfx_pskb_expand_head+0x10/0x10
[  346.705085][T13512]  __bpf_redirect+0x71c/0xfc0
[  346.705101][T13512]  bpf_clone_redirect+0x2ce/0x3f0
[  346.705113][T13512]  ? kernel_text_address+0x8d/0x100
[  346.705134][T13512]  bpf_prog_bd919e7baf24f63c+0x5f/0x68
[  346.705150][T13512]  ? __pfx___schedule+0x10/0x10
[  346.705160][T13512]  ? __lock_acquire+0x622/0x1c90
[  346.705180][T13512]  ? find_held_lock+0x2b/0x80
[  346.705192][T13512]  ? preempt_schedule_thunk+0x16/0x30
[  346.705211][T13512]  ? preempt_schedule_common+0x44/0xc0
[  346.705223][T13512]  ? preempt_schedule_thunk+0x16/0x30
[  346.705241][T13512]  ? __pfx___cant_migrate+0x10/0x10
[  346.705253][T13512]  ? bpf_test_timer_continue+0x13e/0x610
[  346.705270][T13512]  ? lockdep_hardirqs_on+0x7c/0x110
[  346.705284][T13512]  bpf_test_run+0x3d3/0xa60
[  346.705305][T13512]  ? __pfx_bpf_test_run+0x10/0x10
[  346.705327][T13512]  ? do_csum+0x26f/0x2d0
[  346.705347][T13512]  bpf_prog_test_run_skb+0xbae/0x2290
[  346.705363][T13512]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  346.705376][T13512]  ? fput+0x9b/0xd0
[  346.705393][T13512]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  346.705404][T13512]  __sys_bpf+0x1035/0x4980
[  346.705419][T13512]  ? __pfx___sys_bpf+0x10/0x10
[  346.705430][T13512]  ? find_held_lock+0x2b/0x80
[  346.705444][T13512]  ? find_held_lock+0x2b/0x80
[  346.705459][T13512]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  346.705480][T13512]  ? sched_clock_cpu+0x6c/0x530
[  346.705495][T13512]  ? __pfx_sched_clock_cpu+0x10/0x10
[  346.705509][T13512]  ? __pfx_do_sync_core+0x10/0x10
[  346.705523][T13512]  __ia32_sys_bpf+0x76/0xe0
[  346.705535][T13512]  __do_fast_syscall_32+0x7c/0x300
[  346.705550][T13512]  do_fast_syscall_32+0x32/0x80
[  346.705563][T13512]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  346.705577][T13512] RIP: 0023:0xf705d579
[  346.705586][T13512] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  346.705597][T13512] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  346.705609][T13512] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000f00
[  346.705616][T13512] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000
[  346.705622][T13512] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  346.705628][T13512] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  346.705635][T13512] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  346.705649][T13512]  </TASK>
[  346.890109][ T7973] usb 5-1: USB disconnect, device number 31
[  347.071156][   T40] audit: type=1326 audit(1761675136.559:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.0.2281" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  347.103263][   T40] audit: type=1326 audit(1761675136.559:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.0.2281" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  347.115338][   T40] audit: type=1326 audit(1761675136.559:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.0.2281" exe="/syz-executor" sig=0 arch=40000003 syscall=323 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  347.122490][   T40] audit: type=1326 audit(1761675136.559:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.0.2281" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  347.129319][   T40] audit: type=1326 audit(1761675136.559:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.0.2281" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  347.138322][   T40] audit: type=1326 audit(1761675136.559:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.0.2281" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  347.145343][   T40] audit: type=1326 audit(1761675136.559:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.0.2281" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  347.152597][   T40] audit: type=1326 audit(1761675136.559:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.0.2281" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  347.159732][   T40] audit: type=1326 audit(1761675136.559:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.0.2281" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  347.166346][   T40] audit: type=1326 audit(1761675136.579:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13515 comm="syz.0.2281" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  347.402896][ T5947] block nbd77: Wrong magic (0x989b4372)
[  347.469752][T13522] nbd77: detected capacity change from 0 to 127
[  347.472408][T13526] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2283'.
[  347.477739][ T9566] block nbd77: Dead connection, failed to find a fallback
[  347.480884][T13526] block nbd0: reconnected socket
[  347.482810][T13526] nbd: socks must be embedded in a SOCK_ITEM attr
[  347.485670][ T9566] block nbd77: shutting down sockets
[  347.487396][ T5947] block nbd0: Receive control failed (result -32)
[  347.490404][ T9566] ldm_validate_partition_table(): Disk read failed.
[  347.500439][ T9566] Dev nbd77: unable to read RDB block 0
[  347.504166][ T9566]  nbd77: unable to read partition table
[  347.550809][T13529] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2286'.
[  347.554291][T13529] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2286'.
[  347.717027][T13536] FAULT_INJECTION: forcing a failure.
[  347.717027][T13536] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  347.722723][T13536] CPU: 3 UID: 0 PID: 13536 Comm: syz.1.2285 Not tainted syzkaller #0 PREEMPT(full) 
[  347.722741][T13536] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  347.722749][T13536] Call Trace:
[  347.722753][T13536]  <TASK>
[  347.722758][T13536]  dump_stack_lvl+0x16c/0x1f0
[  347.722774][T13536]  should_fail_ex+0x512/0x640
[  347.722807][T13536]  _copy_from_iter+0x29f/0x1720
[  347.722827][T13536]  ? __alloc_skb+0x200/0x380
[  347.722845][T13536]  ? __pfx__copy_from_iter+0x10/0x10
[  347.722863][T13536]  ? netlink_autobind.isra.0+0x158/0x370
[  347.722885][T13536]  netlink_sendmsg+0x820/0xdd0
[  347.722899][T13536]  ? __pfx_netlink_sendmsg+0x10/0x10
[  347.722913][T13536]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  347.722933][T13536]  ____sys_sendmsg+0xa98/0xc70
[  347.722949][T13536]  ? __pfx_____sys_sendmsg+0x10/0x10
[  347.722963][T13536]  ? get_compat_msghdr+0x11a/0x170
[  347.722987][T13536]  ___sys_sendmsg+0x134/0x1d0
[  347.722999][T13536]  ? __pfx____sys_sendmsg+0x10/0x10
[  347.723016][T13536]  ? find_held_lock+0x2b/0x80
[  347.723038][T13536]  __sys_sendmsg+0x16d/0x220
[  347.723048][T13536]  ? __pfx___sys_sendmsg+0x10/0x10
[  347.723066][T13536]  ? rcu_is_watching+0x12/0xc0
[  347.723080][T13536]  __do_fast_syscall_32+0x7c/0x300
[  347.723095][T13536]  do_fast_syscall_32+0x32/0x80
[  347.723109][T13536]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  347.723126][T13536] RIP: 0023:0xf705d579
[  347.723135][T13536] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  347.723146][T13536] RSP: 002b:00000000f544d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  347.723157][T13536] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  347.723164][T13536] RDX: 000000000000c000 RSI: 0000000000000000 RDI: 0000000000000000
[  347.723171][T13536] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  347.723177][T13536] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  347.723184][T13536] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  347.723198][T13536]  </TASK>
[  347.802786][T13537] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2287'.
[  347.885291][ T9566] ldm_validate_partition_table(): Disk read failed.
[  347.889478][ T9566] Dev nbd77: unable to read RDB block 0
[  347.892316][ T9566]  nbd77: unable to read partition table
[  347.915785][T13541] loop2: detected capacity change from 0 to 7
[  347.918980][T13541]  loop2:
[  347.920300][T13541] loop2: partition table partially beyond EOD, truncated
[  348.099862][ T5947] Bluetooth: hci4: command tx timeout
[  348.345902][T13554] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  348.348023][T13554] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  348.369791][T13554] vhci_hcd vhci_hcd.0: Device attached
[  348.679730][ T1453] usb 46-1: SetAddress Request (14) to port 0
[  348.681842][ T1453] usb 46-1: new SuperSpeed USB device number 14 using vhci_hcd
[  349.101388][T13557] bond0: (slave bond_slave_0): Releasing backup interface
[  349.107006][T13557] team_slave_0: left promiscuous mode
[  349.109924][T13557] team0: Port device team_slave_0 removed
[  349.112189][T13557] team_slave_1: left promiscuous mode
[  349.123050][T13555] vhci_hcd: connection reset by peer
[  349.125423][   T46] vhci_hcd: stop threads
[  349.127269][   T46] vhci_hcd: release socket
[  349.129275][   T46] vhci_hcd: disconnect device
[  349.134842][T13557] team0: Port device team_slave_1 removed
[  349.138318][T13557] batman_adv: batadv0: Removing interface: batadv_slave_0
[  349.141630][T13557] batman_adv: batadv0: Removing interface: batadv_slave_1
[  349.145554][T13557] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  349.171390][ T5947] block nbd78: Wrong magic (0x989b4372)
[  349.209775][T13561] nbd78: detected capacity change from 0 to 127
[  349.212676][ T9566] block nbd78: Dead connection, failed to find a fallback
[  349.213960][T13563] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2294'.
[  349.215139][ T9566] block nbd78: shutting down sockets
[  349.218210][ T9566] ldm_validate_partition_table(): Disk read failed.
[  349.220092][T13563] block nbd0: reconnected socket
[  349.223909][ T9566] Dev nbd78: unable to read RDB block 0
[  349.224298][T13563] nbd: socks must be embedded in a SOCK_ITEM attr
[  349.227968][ T9566]  nbd78: unable to read partition table
[  349.232803][ T5947] block nbd0: Receive control failed (result -32)
[  349.243503][ T9566] ldm_validate_partition_table(): Disk read failed.
[  349.247557][ T9566] Dev nbd78: unable to read RDB block 0
[  349.253918][ T9566]  nbd78: unable to read partition table
[  349.903410][T13578] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  349.928142][T13578] input: syz0 as /devices/virtual/input/input32
[  350.180086][ T5947] Bluetooth: hci4: command tx timeout
[  350.544902][T13613] ldm_validate_partition_table(): Disk read failed.
[  350.657932][T13619] loop2: detected capacity change from 0 to 7
[  350.662741][T13619]  loop2:
[  350.664110][T13619] loop2: partition table partially beyond EOD, truncated
[  350.674052][T13613] Dev nbd3: unable to read RDB block 0
[  350.710395][T13613]  nbd3: unable to read partition table
[  350.931252][T13601] /dev/nbd3: Can't open blockdev
[  351.128684][T13634] vlan2: entered promiscuous mode
[  351.130526][T13634] hsr0: entered promiscuous mode
[  351.501374][T13635] blk_print_req_error: 838 callbacks suppressed
[  351.501464][T13635] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[  351.508017][T13635] buffer_io_error: 838 callbacks suppressed
[  351.508067][T13635] Buffer I/O error on dev nbd4, logical block 0, async page read
[  351.523775][T13635] I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[  351.526720][T13635] Buffer I/O error on dev nbd4, logical block 1, async page read
[  351.684381][T13639] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.2313'.
[  351.687112][T13635] I/O error, dev nbd4, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[  351.687885][T13637] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.2313'.
[  351.702109][T13639] befs: (loop3): No write support. Marking filesystem read-only
[  351.706532][T13639] befs: (loop3): unable to read superblock
[  351.711281][T13635] Buffer I/O error on dev nbd4, logical block 2, async page read
[  351.713804][T13637] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2313'.
[  351.717785][T13637] nbd: socks must be embedded in a SOCK_ITEM attr
[  351.721436][ T5352] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.722665][T13635] I/O error, dev nbd4, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[  351.724938][ T5352] Buffer I/O error on dev nbd3, logical block 0, async page read
[  351.728325][T13635] Buffer I/O error on dev nbd4, logical block 3, async page read
[  351.734967][T13635] I/O error, dev nbd4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[  351.739219][T13635] Buffer I/O error on dev nbd4, logical block 0, async page read
[  351.749742][ T5352] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.752636][ T5352] Buffer I/O error on dev nbd3, logical block 1, async page read
[  351.761320][T13635] I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[  351.762633][ T5352] I/O error, dev nbd3, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.770004][ T5352] Buffer I/O error on dev nbd3, logical block 2, async page read
[  351.772757][ T5352] I/O error, dev nbd3, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  351.775712][ T5352] Buffer I/O error on dev nbd3, logical block 3, async page read
[  351.788902][T13635] Buffer I/O error on dev nbd4, logical block 1, async page read
[  351.790746][ T5352] ldm_validate_partition_table(): Disk read failed.
[  351.796547][ T5352] Dev nbd3: unable to read RDB block 0
[  351.800503][ T5352]  nbd3: unable to read partition table
[  351.813037][ T5352] ldm_validate_partition_table(): Disk read failed.
[  351.822062][ T5352] Dev nbd3: unable to read RDB block 0
[  351.825113][ T5352]  nbd3: unable to read partition table
[  351.871873][T13635] ldm_validate_partition_table(): Disk read failed.
[  351.873181][ T9566] ldm_validate_partition_table(): Disk read failed.
[  351.875081][T13635] Dev nbd4: unable to read RDB block 0
[  351.877209][ T9566] Dev nbd3: unable to read RDB block 0
[  351.879226][T13635]  nbd4: unable to read partition table
[  351.882685][ T9566]  nbd3: unable to read partition table
[  351.903598][ T9566] ldm_validate_partition_table(): Disk read failed.
[  351.906661][ T9566] Dev nbd3: unable to read RDB block 0
[  351.909413][ T9566]  nbd3: unable to read partition table
[  351.928104][T13640] /dev/nbd4: Can't open blockdev
[  352.100799][ T5947] block nbd79: Wrong magic (0x989b4372)
[  352.154229][ T5352] ldm_validate_partition_table(): Disk read failed.
[  352.158693][ T5352] Dev nbd4: unable to read RDB block 0
[  352.191676][ T5352]  nbd4: unable to read partition table
[  352.196316][ T5352] ldm_validate_partition_table(): Disk read failed.
[  352.199645][ T5352] Dev nbd4: unable to read RDB block 0
[  352.202908][ T5352]  nbd4: unable to read partition table
[  352.214398][ T9566] ldm_validate_partition_table(): Disk read failed.
[  352.217452][ T9566] Dev nbd4: unable to read RDB block 0
[  352.220384][ T9566]  nbd4: unable to read partition table
[  352.226894][ T9566] ldm_validate_partition_table(): Disk read failed.
[  352.229713][T13648] nbd79: detected capacity change from 0 to 127
[  352.230593][ T9566] Dev nbd4: unable to read RDB block 0
[  352.232590][ T5940] block nbd79: Dead connection, failed to find a fallback
[  352.234902][ T9566]  nbd4: unable to read partition table
[  352.236455][ T5940] block nbd79: shutting down sockets
[  352.242476][T13652] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2315'.
[  352.245573][ T5940] ldm_validate_partition_table(): Disk read failed.
[  352.248979][T13652] block nbd0: reconnected socket
[  352.249106][ T5940] Dev nbd79: unable to read RDB block 0
[  352.251438][T13652] nbd: socks must be embedded in a SOCK_ITEM attr
[  352.253804][ T5940]  nbd79: unable to read partition table
[  352.256149][ T5947] block nbd0: Receive control failed (result -32)
[  352.278349][ T5940] ldm_validate_partition_table(): Disk read failed.
[  352.289923][ T5940] Dev nbd79: unable to read RDB block 0
[  352.292635][ T5940]  nbd79: unable to read partition table
[  352.305102][T13661] loop2: detected capacity change from 0 to 7
[  352.311493][T13661]  loop2:
[  352.312889][T13661] loop2: partition table partially beyond EOD, truncated
[  352.361139][T13666] FAULT_INJECTION: forcing a failure.
[  352.361139][T13666] name failslab, interval 1, probability 0, space 0, times 0
[  352.365373][T13666] CPU: 3 UID: 0 PID: 13666 Comm: syz.3.2321 Not tainted syzkaller #0 PREEMPT(full) 
[  352.365390][T13666] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  352.365398][T13666] Call Trace:
[  352.365402][T13666]  <TASK>
[  352.365408][T13666]  dump_stack_lvl+0x16c/0x1f0
[  352.365426][T13666]  should_fail_ex+0x512/0x640
[  352.365446][T13666]  should_failslab+0xc2/0x120
[  352.365463][T13666]  kmem_cache_alloc_noprof+0x75/0x6e0
[  352.365476][T13666]  ? inet_frag_find+0x6d3/0x21a0
[  352.365494][T13666]  ? inet_frag_find+0x6d3/0x21a0
[  352.365507][T13666]  ? rcu_read_lock_any_held+0x3c/0xa0
[  352.365520][T13666]  inet_frag_find+0x6d3/0x21a0
[  352.365536][T13666]  ? __pfx_ip4_obj_cmpfn+0x10/0x10
[  352.365552][T13666]  ? __pfx_inet_frag_find+0x10/0x10
[  352.365567][T13666]  ? kmem_cache_alloc_noprof+0x250/0x6e0
[  352.365578][T13666]  ? skb_clone+0x190/0x3f0
[  352.365589][T13666]  ? dev_queue_xmit_nit+0x3e7/0xca0
[  352.365607][T13666]  ? dev_hard_start_xmit+0x5c3/0x740
[  352.365626][T13666]  ip_defrag+0x2ea/0x2880
[  352.365636][T13666]  ? do_fast_syscall_32+0x32/0x80
[  352.365649][T13666]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  352.365665][T13666]  ? do_csum+0x26f/0x2d0
[  352.365679][T13666]  ? csum_partial+0x46/0x60
[  352.365692][T13666]  ? __pfx_ip_defrag+0x10/0x10
[  352.365710][T13666]  ip_check_defrag+0x462/0x670
[  352.365722][T13666]  ? __pfx_ip_check_defrag+0x10/0x10
[  352.365734][T13666]  ? __asan_memcpy+0x3c/0x60
[  352.365747][T13666]  ? __asan_memcpy+0x3c/0x60
[  352.365760][T13666]  packet_rcv_fanout+0x4e3/0x780
[  352.365779][T13666]  ? __pfx_packet_rcv_fanout+0x10/0x10
[  352.365802][T13666]  dev_queue_xmit_nit+0x8f4/0xca0
[  352.365824][T13666]  dev_hard_start_xmit+0x5c3/0x740
[  352.365843][T13666]  __dev_queue_xmit+0xa46/0x4490
[  352.365866][T13666]  ? __pfx___dev_queue_xmit+0x10/0x10
[  352.365884][T13666]  ? trace_kmem_cache_alloc+0x28/0xc0
[  352.365900][T13666]  ? kmem_cache_alloc_node_noprof+0x2d8/0x770
[  352.365911][T13666]  ? kmalloc_reserve+0x18b/0x2c0
[  352.365925][T13666]  ? skb_release_data+0x79a/0x9e0
[  352.365936][T13666]  ? kmalloc_reserve+0x18b/0x2c0
[  352.365948][T13666]  ? kmalloc_reserve+0x13c/0x2c0
[  352.365960][T13666]  ? skb_headers_offset_update+0x129/0x260
[  352.365979][T13666]  ? __pfx_pskb_expand_head+0x10/0x10
[  352.365992][T13666]  __bpf_redirect+0x71c/0xfc0
[  352.366008][T13666]  bpf_clone_redirect+0x2ce/0x3f0
[  352.366021][T13666]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  352.366038][T13666]  bpf_prog_bd919e7baf24f63c+0x5f/0x68
[  352.366048][T13666]  ? register_pidns_sysctls+0x150/0x1b0
[  352.366066][T13666]  ? unwind_get_return_address+0x59/0xa0
[  352.366081][T13666]  ? __lock_acquire+0xb8a/0x1c90
[  352.366098][T13666]  ? __lock_acquire+0x622/0x1c90
[  352.366118][T13666]  ? find_held_lock+0x2b/0x80
[  352.366131][T13666]  ? ktime_get+0x200/0x310
[  352.366145][T13666]  ? lockdep_hardirqs_on+0x7c/0x110
[  352.366157][T13666]  ? ktime_get+0x1a7/0x310
[  352.366171][T13666]  ? __pfx___cant_migrate+0x10/0x10
[  352.366184][T13666]  ? bpf_test_timer_continue+0x13e/0x610
[  352.366201][T13666]  ? lockdep_hardirqs_on+0x7c/0x110
[  352.366214][T13666]  bpf_test_run+0x3d3/0xa60
[  352.366236][T13666]  ? __pfx_bpf_test_run+0x10/0x10
[  352.366259][T13666]  ? do_csum+0x26f/0x2d0
[  352.366280][T13666]  bpf_prog_test_run_skb+0xbae/0x2290
[  352.366296][T13666]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  352.366309][T13666]  ? fput+0x9b/0xd0
[  352.366326][T13666]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  352.366337][T13666]  __sys_bpf+0x1035/0x4980
[  352.366352][T13666]  ? __pfx___sys_bpf+0x10/0x10
[  352.366363][T13666]  ? find_held_lock+0x2b/0x80
[  352.366377][T13666]  ? find_held_lock+0x2b/0x80
[  352.366392][T13666]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  352.366414][T13666]  ? fput+0x9b/0xd0
[  352.366428][T13666]  ? ksys_write+0x1ac/0x250
[  352.366440][T13666]  ? __pfx_ksys_write+0x10/0x10
[  352.366455][T13666]  __ia32_sys_bpf+0x76/0xe0
[  352.366467][T13666]  __do_fast_syscall_32+0x7c/0x300
[  352.366482][T13666]  do_fast_syscall_32+0x32/0x80
[  352.366495][T13666]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  352.366508][T13666] RIP: 0023:0xf7f83579
[  352.366517][T13666] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  352.366529][T13666] RSP: 002b:00000000f547655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  352.366540][T13666] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000f00
[  352.366547][T13666] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000
[  352.366554][T13666] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  352.366560][T13666] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  352.366566][T13666] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  352.366581][T13666]  </TASK>
[  352.493863][T13662] fuse: Unknown parameter 'ft'
[  352.586992][T13679] team0: No ports can be present during mode change
[  352.628771][T13679] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2324'.
[  352.739949][ T1341] usb 9-1: new high-speed USB device number 30 using dummy_hcd
[  352.890259][ T1341] usb 9-1: Using ep0 maxpacket: 8
[  352.913381][ T1341] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  352.922601][ T1341] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  352.927231][ T1341] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  352.951424][ T1341] usb 9-1: config 0 descriptor??
[  352.990216][T13686] vlan2: entered promiscuous mode
[  352.992269][T13686] hsr0: entered promiscuous mode
[  353.031913][ T5947] block nbd80: Wrong magic (0x989b4372)
[  353.079842][T13688] nbd80: detected capacity change from 0 to 127
[  353.084888][ T9566] block nbd80: Dead connection, failed to find a fallback
[  353.087991][T13690] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2326'.
[  353.092019][ T9566] block nbd80: shutting down sockets
[  353.097484][ T9566] ldm_validate_partition_table(): Disk read failed.
[  353.100447][T13690] block nbd0: reconnected socket
[  353.100464][T13690] nbd: socks must be embedded in a SOCK_ITEM attr
[  353.108039][ T9566] Dev nbd80: unable to read RDB block 0
[  353.112307][ T9566]  nbd80: unable to read partition table
[  353.169634][ T5947] block nbd0: Receive control failed (result -32)
[  353.200296][ T9566] ldm_validate_partition_table(): Disk read failed.
[  353.203302][ T9566] Dev nbd80: unable to read RDB block 0
[  353.206375][ T9566]  nbd80: unable to read partition table
[  353.266425][ T1341] iowarrior 9-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  353.462498][T13695] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2329'.
[  353.465967][T13695] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2329'.
[  353.578009][T13703] ldm_validate_partition_table(): Disk read failed.
[  353.602969][T13703] Dev nbd3: unable to read RDB block 0
[  353.626826][T13703]  nbd3: unable to read partition table
[  353.715439][T13703] block nbd3: Cannot use ioctl interface on a netlink controlled device.
[  353.772626][T13699] /dev/nbd3: Can't open blockdev
[  353.895040][ T1453] usb 46-1: device descriptor read/8, error -110
[  354.271603][ T5352] ldm_validate_partition_table(): Disk read failed.
[  354.276293][ T5352] Dev nbd3: unable to read RDB block 0
[  354.281294][ T5352]  nbd3: unable to read partition table
[  354.288612][ T5352] ldm_validate_partition_table(): Disk read failed.
[  354.290299][ T1453] usb usb46-port1: attempt power cycle
[  354.293619][ T5352] Dev nbd3: unable to read RDB block 0
[  354.298069][ T5352]  nbd3: unable to read partition table
[  354.313392][ T9566] ldm_validate_partition_table(): Disk read failed.
[  354.317929][ T9566] Dev nbd3: unable to read RDB block 0
[  354.322596][ T9566]  nbd3: unable to read partition table
[  354.332522][ T9566] ldm_validate_partition_table(): Disk read failed.
[  354.336891][ T9566] Dev nbd3: unable to read RDB block 0
[  354.341361][ T9566]  nbd3: unable to read partition table
[  354.404646][T13712] loop2: detected capacity change from 0 to 7
[  354.407174][T13712]  loop2:
[  354.408267][T13712] loop2: partition table partially beyond EOD, truncated
[  354.453708][T13714] FAULT_INJECTION: forcing a failure.
[  354.453708][T13714] name failslab, interval 1, probability 0, space 0, times 0
[  354.458221][T13714] CPU: 1 UID: 0 PID: 13714 Comm: syz.3.2334 Not tainted syzkaller #0 PREEMPT(full) 
[  354.458237][T13714] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  354.458244][T13714] Call Trace:
[  354.458249][T13714]  <TASK>
[  354.458254][T13714]  dump_stack_lvl+0x16c/0x1f0
[  354.458272][T13714]  should_fail_ex+0x512/0x640
[  354.458292][T13714]  should_failslab+0xc2/0x120
[  354.458308][T13714]  kmem_cache_alloc_noprof+0x75/0x6e0
[  354.458320][T13714]  ? skb_clone+0x190/0x3f0
[  354.458334][T13714]  ? skb_clone+0x190/0x3f0
[  354.458343][T13714]  skb_clone+0x190/0x3f0
[  354.458354][T13714]  bpf_clone_redirect+0xb2/0x3f0
[  354.458367][T13714]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  354.458384][T13714]  bpf_prog_bd919e7baf24f63c+0x5f/0x68
[  354.458394][T13714]  ? register_pidns_sysctls+0x150/0x1b0
[  354.458418][T13714]  ? __pfx___schedule+0x10/0x10
[  354.458429][T13714]  ? __lock_acquire+0x622/0x1c90
[  354.458449][T13714]  ? find_held_lock+0x2b/0x80
[  354.458461][T13714]  ? preempt_schedule_thunk+0x16/0x30
[  354.458481][T13714]  ? preempt_schedule_common+0x44/0xc0
[  354.458493][T13714]  ? preempt_schedule_thunk+0x16/0x30
[  354.458511][T13714]  ? __pfx___cant_migrate+0x10/0x10
[  354.458524][T13714]  ? bpf_test_timer_continue+0x13e/0x610
[  354.458542][T13714]  ? lockdep_hardirqs_on+0x7c/0x110
[  354.458555][T13714]  bpf_test_run+0x3d3/0xa60
[  354.458576][T13714]  ? __pfx_bpf_test_run+0x10/0x10
[  354.458598][T13714]  ? do_csum+0x26f/0x2d0
[  354.458618][T13714]  bpf_prog_test_run_skb+0xbae/0x2290
[  354.458634][T13714]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  354.458647][T13714]  ? fput+0x9b/0xd0
[  354.458663][T13714]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  354.458674][T13714]  __sys_bpf+0x1035/0x4980
[  354.458688][T13714]  ? __pfx___sys_bpf+0x10/0x10
[  354.458699][T13714]  ? find_held_lock+0x2b/0x80
[  354.458713][T13714]  ? find_held_lock+0x2b/0x80
[  354.458727][T13714]  ? __mutex_unlock_slowpath+0x161/0x7b0
[  354.458749][T13714]  ? fput+0x9b/0xd0
[  354.458763][T13714]  ? ksys_write+0x1ac/0x250
[  354.458775][T13714]  ? __pfx_ksys_write+0x10/0x10
[  354.458789][T13714]  __ia32_sys_bpf+0x76/0xe0
[  354.458802][T13714]  __do_fast_syscall_32+0x7c/0x300
[  354.458817][T13714]  do_fast_syscall_32+0x32/0x80
[  354.458830][T13714]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  354.458849][T13714] RIP: 0023:0xf7f83579
[  354.458857][T13714] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  354.458869][T13714] RSP: 002b:00000000f547655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  354.458880][T13714] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000f00
[  354.458887][T13714] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000
[  354.458893][T13714] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  354.458899][T13714] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  354.458906][T13714] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  354.458919][T13714]  </TASK>
[  354.563830][T13716] binder: BINDER_SET_CONTEXT_MGR already set
[  354.566041][T13716] binder: 13715:13716 ioctl 4018620d 80000040 returned -16
[  354.700415][T13720] binder: 13715:13720 ioctl c0306201 0 returned -14
[  354.982903][ T1453] usb usb46-port1: unable to enumerate USB device
[  355.188559][T13727] ldm_validate_partition_table(): Disk read failed.
[  355.198957][T13727] Dev nbd3: unable to read RDB block 0
[  355.401396][T13727]  nbd3: unable to read partition table
[  355.482524][   T61] usb 9-1: USB disconnect, device number 30
[  355.524143][   T34] IPVS: starting estimator thread 0...
[  355.606662][T13727] block nbd3: Cannot use ioctl interface on a netlink controlled device.
[  355.619981][T13731] IPVS: using max 24 ests per chain, 57600 per kthread
[  355.628800][T13727] /dev/nbd3: Can't open blockdev
[  355.940112][T13741] ldm_validate_partition_table(): Disk read failed.
[  355.943326][T13741] Dev nbd1: unable to read RDB block 0
[  355.947344][T13741]  nbd1: unable to read partition table
[  355.968059][T13741] block nbd1: Cannot use ioctl interface on a netlink controlled device.
[  355.982752][T13741] /dev/nbd1: Can't open blockdev
[  356.237675][ T5352] ldm_validate_partition_table(): Disk read failed.
[  356.241678][ T5352] Dev nbd3: unable to read RDB block 0
[  356.244909][ T5352]  nbd3: unable to read partition table
[  356.249764][ T5352] ldm_validate_partition_table(): Disk read failed.
[  356.253910][ T5352] Dev nbd3: unable to read RDB block 0
[  356.257758][ T5352]  nbd3: unable to read partition table
[  356.284795][ T9566] ldm_validate_partition_table(): Disk read failed.
[  356.293098][ T9566] Dev nbd3: unable to read RDB block 0
[  356.302261][ T9566]  nbd3: unable to read partition table
[  356.311953][ T9566] ldm_validate_partition_table(): Disk read failed.
[  356.316028][ T9566] Dev nbd3: unable to read RDB block 0
[  356.320077][ T9566]  nbd3: unable to read partition table
[  356.340542][T13748] ldm_validate_partition_table(): Disk read failed.
[  356.357999][T13748] Dev nbd4: unable to read RDB block 0
[  356.384832][T13748]  nbd4: unable to read partition table
[  356.644240][ T5947] block nbd81: Wrong magic (0x989b4372)
[  356.689591][T13750] nbd81: detected capacity change from 0 to 127
[  356.692477][T13752] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2344'.
[  356.692524][ T9566] block nbd81: Dead connection, failed to find a fallback
[  356.696850][T13752] block nbd0: reconnected socket
[  356.697867][ T9566] block nbd81: shutting down sockets
[  356.699479][T13752] nbd: socks must be embedded in a SOCK_ITEM attr
[  356.704834][ T9566] blk_print_req_error: 1710 callbacks suppressed
[  356.704846][ T9566] I/O error, dev nbd81, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  356.710013][ T9566] buffer_io_error: 1710 callbacks suppressed
[  356.710023][ T9566] Buffer I/O error on dev nbd81, logical block 0, async page read
[  356.714584][ T9566] I/O error, dev nbd81, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  356.717499][ T9566] Buffer I/O error on dev nbd81, logical block 1, async page read
[  356.720664][ T9566] I/O error, dev nbd81, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  356.723291][ T5947] block nbd0: Receive control failed (result -32)
[  356.724172][ T9566] Buffer I/O error on dev nbd81, logical block 2, async page read
[  356.728732][ T9566] I/O error, dev nbd81, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  356.731733][ T9566] Buffer I/O error on dev nbd81, logical block 3, async page read
[  356.734407][ T9566] I/O error, dev nbd81, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  356.737465][ T9566] Buffer I/O error on dev nbd81, logical block 0, async page read
[  356.741131][ T9566] I/O error, dev nbd81, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  356.744175][ T9566] Buffer I/O error on dev nbd81, logical block 1, async page read
[  356.746987][ T9566] I/O error, dev nbd81, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  356.750084][ T9566] Buffer I/O error on dev nbd81, logical block 2, async page read
[  356.752750][ T9566] I/O error, dev nbd81, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  356.755885][ T9566] Buffer I/O error on dev nbd81, logical block 3, async page read
[  356.758406][ T9566] I/O error, dev nbd81, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  356.761633][ T9566] Buffer I/O error on dev nbd81, logical block 0, async page read
[  356.764322][ T9566] I/O error, dev nbd81, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  356.767354][ T9566] Buffer I/O error on dev nbd81, logical block 1, async page read
[  356.778807][ T9566] ldm_validate_partition_table(): Disk read failed.
[  356.782248][ T9566] Dev nbd81: unable to read RDB block 0
[  356.784941][ T9566]  nbd81: unable to read partition table
[  356.792155][ T9566] ldm_validate_partition_table(): Disk read failed.
[  356.795441][ T9566] Dev nbd81: unable to read RDB block 0
[  356.800967][ T9566]  nbd81: unable to read partition table
[  356.819052][ T5352] ldm_validate_partition_table(): Disk read failed.
[  356.829843][ T5352] Dev nbd1: unable to read RDB block 0
[  356.832564][ T5352]  nbd1: unable to read partition table
[  356.869441][ T5352] ldm_validate_partition_table(): Disk read failed.
[  356.872474][ T5352] Dev nbd1: unable to read RDB block 0
[  356.875185][ T5352]  nbd1: unable to read partition table
[  356.885879][ T9566] ldm_validate_partition_table(): Disk read failed.
[  356.889048][ T9566] Dev nbd1: unable to read RDB block 0
[  356.893732][ T9566]  nbd1: unable to read partition table
[  356.903168][ T9566] ldm_validate_partition_table(): Disk read failed.
[  356.907123][ T9566] Dev nbd1: unable to read RDB block 0
[  356.912440][ T9566]  nbd1: unable to read partition table
[  356.920890][T13761] netlink: 212 bytes leftover after parsing attributes in process `syz.0.2348'.
[  357.011158][ T5352] ldm_validate_partition_table(): Disk read failed.
[  357.015414][ T5352] Dev nbd4: unable to read RDB block 0
[  357.020141][ T5352]  nbd4: unable to read partition table
[  357.024380][ T5352] ldm_validate_partition_table(): Disk read failed.
[  357.027260][ T5352] Dev nbd4: unable to read RDB block 0
[  357.032048][ T5352]  nbd4: unable to read partition table
[  357.042723][ T9566] ldm_validate_partition_table(): Disk read failed.
[  357.046838][ T9566] Dev nbd4: unable to read RDB block 0
[  357.056206][ T9566]  nbd4: unable to read partition table
[  357.064595][ T9566] ldm_validate_partition_table(): Disk read failed.
[  357.070019][ T9566] Dev nbd4: unable to read RDB block 0
[  357.073985][ T9566]  nbd4: unable to read partition table
[  357.190165][   T61] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  357.289852][T13769] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2351'.
[  357.293493][T13769] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2351'.
[  357.298200][T13770] ldm_validate_partition_table(): Disk read failed.
[  357.314292][T13770] Dev nbd1: unable to read RDB block 0
[  357.323282][T13770]  nbd1: unable to read partition table
[  357.333324][T13770] block nbd1: Cannot use ioctl interface on a netlink controlled device.
[  357.342340][   T61] usb 5-1: config index 0 descriptor too short (expected 9, got 0)
[  357.342803][T13770] /dev/nbd1: Can't open blockdev
[  357.346022][   T61] usb 5-1: can't read configurations, error -22
[  357.479748][   T61] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  357.597429][T13774] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2353'.
[  357.600769][T13774] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2353'.
[  357.631324][   T61] usb 5-1: config index 0 descriptor too short (expected 9, got 0)
[  357.634676][   T61] usb 5-1: can't read configurations, error -22
[  357.637107][   T61] usb usb5-port1: attempt power cycle
[  357.691162][T13784] loop2: detected capacity change from 0 to 7
[  357.694641][ T9566]  loop2:
[  357.696027][ T9566] loop2: partition table partially beyond EOD, truncated
[  357.701998][T13784]  loop2:
[  357.703003][T13784] loop2: partition table partially beyond EOD, truncated
[  357.769453][T13788] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2358'.
[  357.811216][T13790] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2359'.
[  357.813993][T13790] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2359'.
[  357.857959][T13792] netlink: 'syz.4.2360': attribute type 29 has an invalid length.
[  357.864508][   T40] kauditd_printk_skb: 33 callbacks suppressed
[  357.864521][   T40] audit: type=1326 audit(1761675147.359:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.4.2360" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x0
[  357.909314][ T5352] ldm_validate_partition_table(): Disk read failed.
[  357.913875][ T5352] Dev nbd1: unable to read RDB block 0
[  357.916753][ T5352]  nbd1: unable to read partition table
[  357.922185][ T5352] ldm_validate_partition_table(): Disk read failed.
[  357.926457][ T5352] Dev nbd1: unable to read RDB block 0
[  357.930606][ T5352]  nbd1: unable to read partition table
[  357.951237][ T9566] ldm_validate_partition_table(): Disk read failed.
[  357.955599][ T9566] Dev nbd1: unable to read RDB block 0
[  357.959476][ T9566]  nbd1: unable to read partition table
[  357.965388][ T9566] ldm_validate_partition_table(): Disk read failed.
[  357.968298][ T9566] Dev nbd1: unable to read RDB block 0
[  357.970542][   T61] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  357.970976][T13793] netlink: 'syz.4.2360': attribute type 21 has an invalid length.
[  357.976073][ T9566]  nbd1: unable to read partition table
[  357.977425][T13793] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2360'.
[  358.003853][   T61] usb 5-1: config index 0 descriptor too short (expected 9, got 0)
[  358.006244][   T61] usb 5-1: can't read configurations, error -22
[  358.139720][   T61] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  358.171548][   T61] usb 5-1: config index 0 descriptor too short (expected 9, got 0)
[  358.174370][   T61] usb 5-1: can't read configurations, error -22
[  358.176468][   T61] usb usb5-port1: unable to enumerate USB device
[  358.273965][T13797] ldm_validate_partition_table(): Disk read failed.
[  358.281633][T13797] Dev nbd1: unable to read RDB block 0
[  358.290032][T13797]  nbd1: unable to read partition table
[  358.325735][T13797] block nbd1: Cannot use ioctl interface on a netlink controlled device.
[  358.338687][T13797] /dev/nbd1: Can't open blockdev
[  358.782817][T13810] binder: BINDER_SET_CONTEXT_MGR already set
[  358.784852][T13810] binder: 13808:13810 ioctl 4018620d 80004a80 returned -16
[  358.788249][T13810] binder_alloc: 13808: binder_alloc_buf, no vma
[  358.880456][ T5352] ldm_validate_partition_table(): Disk read failed.
[  358.884810][ T5352] Dev nbd1: unable to read RDB block 0
[  358.889079][ T5352]  nbd1: unable to read partition table
[  358.894903][ T5352] ldm_validate_partition_table(): Disk read failed.
[  358.898120][ T5352] Dev nbd1: unable to read RDB block 0
[  358.901643][ T5352]  nbd1: unable to read partition table
[  358.916098][ T9566] ldm_validate_partition_table(): Disk read failed.
[  358.919508][ T9566] Dev nbd1: unable to read RDB block 0
[  358.922538][ T9566]  nbd1: unable to read partition table
[  358.928191][ T9566] ldm_validate_partition_table(): Disk read failed.
[  358.931274][ T9566] Dev nbd1: unable to read RDB block 0
[  358.943567][ T9566]  nbd1: unable to read partition table
[  359.013134][ T5947] block nbd82: Wrong magic (0x989b4372)
[  359.049700][T13812] nbd82: detected capacity change from 0 to 127
[  359.052260][T13814] block nbd0: reconnected socket
[  359.052418][ T5940] block nbd82: Dead connection, failed to find a fallback
[  359.053891][T13814] nbd: socks must be embedded in a SOCK_ITEM attr
[  359.056220][ T5940] block nbd82: shutting down sockets
[  359.062048][ T5940] ldm_validate_partition_table(): Disk read failed.
[  359.063630][ T5947] block nbd0: Receive control failed (result -32)
[  359.065233][ T5940] Dev nbd82: unable to read RDB block 0
[  359.069253][ T5940]  nbd82: unable to read partition table
[  359.076112][ T5940] ldm_validate_partition_table(): Disk read failed.
[  359.082000][ T5940] Dev nbd82: unable to read RDB block 0
[  359.085201][ T5940]  nbd82: unable to read partition table
[  359.096316][ T9566] ldm_validate_partition_table(): Disk read failed.
[  359.099344][ T9566] Dev nbd82: unable to read RDB block 0
[  359.102995][ T9566]  nbd82: unable to read partition table
[  359.111511][ T9566] ldm_validate_partition_table(): Disk read failed.
[  359.114878][ T9566] Dev nbd82: unable to read RDB block 0
[  359.118643][ T9566]  nbd82: unable to read partition table
[  359.217687][ T5947] block nbd83: Wrong magic (0x989b4372)
[  359.239490][T13823] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  359.249729][T13818] nbd83: detected capacity change from 0 to 127
[  359.258699][T13822] block nbd0: reconnected socket
[  359.264521][ T9566] block nbd83: Dead connection, failed to find a fallback
[  359.266795][ T9566] block nbd83: shutting down sockets
[  359.268574][T13822] nbd: socks must be embedded in a SOCK_ITEM attr
[  359.277451][ T9566] ldm_validate_partition_table(): Disk read failed.
[  359.281816][ T9566] Dev nbd83: unable to read RDB block 0
[  359.285205][ T9566]  nbd83: unable to read partition table
[  359.289014][ T5947] block nbd0: Receive control failed (result -32)
[  359.293925][ T9566] ldm_validate_partition_table(): Disk read failed.
[  359.297442][ T9566] Dev nbd83: unable to read RDB block 0
[  359.310768][ T9566]  nbd83: unable to read partition table
[  359.986026][T13832] netlink: 'syz.0.2374': attribute type 1 has an invalid length.
[  360.309643][ T6022] usb 9-1: new high-speed USB device number 31 using dummy_hcd
[  360.324410][T13844] block nbd0: Cannot use ioctl interface on a netlink controlled device.
[  360.337405][T13844] /dev/nbd0: Can't open blockdev
[  360.369371][T13846] FAULT_INJECTION: forcing a failure.
[  360.369371][T13846] name failslab, interval 1, probability 0, space 0, times 0
[  360.375491][T13846] CPU: 3 UID: 0 PID: 13846 Comm: syz.3.2379 Not tainted syzkaller #0 PREEMPT(full) 
[  360.375515][T13846] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  360.375527][T13846] Call Trace:
[  360.375534][T13846]  <TASK>
[  360.375541][T13846]  dump_stack_lvl+0x16c/0x1f0
[  360.375568][T13846]  should_fail_ex+0x512/0x640
[  360.375594][T13846]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  360.375626][T13846]  should_failslab+0xc2/0x120
[  360.375651][T13846]  kmem_cache_alloc_noprof+0x75/0x6e0
[  360.375670][T13846]  ? skb_clone+0x190/0x3f0
[  360.375693][T13846]  ? skb_clone+0x190/0x3f0
[  360.375708][T13846]  skb_clone+0x190/0x3f0
[  360.375725][T13846]  netlink_deliver_tap+0xabd/0xd30
[  360.375761][T13846]  netlink_unicast+0x71f/0x870
[  360.375784][T13846]  ? __pfx_netlink_unicast+0x10/0x10
[  360.375802][T13846]  ? genl_rcv_msg+0x4bb/0x800
[  360.375857][T13846]  netlink_ack+0x696/0xb80
[  360.375885][T13846]  netlink_rcv_skb+0x332/0x420
[  360.375903][T13846]  ? __pfx_genl_rcv_msg+0x10/0x10
[  360.375929][T13846]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  360.375960][T13846]  ? netlink_deliver_tap+0x1ae/0xd30
[  360.375994][T13846]  genl_rcv+0x28/0x40
[  360.376012][T13846]  netlink_unicast+0x5aa/0x870
[  360.376036][T13846]  ? __pfx_netlink_unicast+0x10/0x10
[  360.376074][T13846]  netlink_sendmsg+0x8c8/0xdd0
[  360.376099][T13846]  ? __pfx_netlink_sendmsg+0x10/0x10
[  360.376123][T13846]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  360.376155][T13846]  ____sys_sendmsg+0xa98/0xc70
[  360.376182][T13846]  ? __pfx_____sys_sendmsg+0x10/0x10
[  360.376202][T13846]  ? get_compat_msghdr+0x11a/0x170
[  360.376244][T13846]  ___sys_sendmsg+0x134/0x1d0
[  360.376265][T13846]  ? __pfx____sys_sendmsg+0x10/0x10
[  360.376319][T13846]  ? find_held_lock+0x2b/0x80
[  360.376360][T13846]  __sys_sendmsg+0x16d/0x220
[  360.376379][T13846]  ? __pfx___sys_sendmsg+0x10/0x10
[  360.376411][T13846]  ? rcu_is_watching+0x12/0xc0
[  360.376435][T13846]  __do_fast_syscall_32+0x7c/0x300
[  360.376461][T13846]  do_fast_syscall_32+0x32/0x80
[  360.376483][T13846]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  360.376507][T13846] RIP: 0023:0xf7f83579
[  360.376522][T13846] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  360.376539][T13846] RSP: 002b:00000000f547655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  360.376558][T13846] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  360.376570][T13846] RDX: 000000000000c000 RSI: 0000000000000000 RDI: 0000000000000000
[  360.376582][T13846] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  360.376593][T13846] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  360.376604][T13846] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  360.376630][T13846]  </TASK>
[  360.480621][ T6022] usb 9-1: Using ep0 maxpacket: 16
[  360.484979][ T6022] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  360.492934][ T6022] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  360.500328][ T6022] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  360.503678][ T6022] usb 9-1: Product: syz
[  360.509896][ T6022] usb 9-1: Manufacturer: syz
[  360.599708][ T6022] usb 9-1: SerialNumber: syz
[  360.633076][ T6022] usb 9-1: config 0 descriptor??
[  360.648754][ T6022] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  360.656562][ T6022] em28xx 9-1:0.0: DVB interface 0 found: bulk
[  360.813750][T13853] ldm_validate_partition_table(): Disk read failed.
[  360.832333][T13853] Dev nbd3: unable to read RDB block 0
[  360.840975][T13853]  nbd3: unable to read partition table
[  360.875718][T13853] block nbd3: Cannot use ioctl interface on a netlink controlled device.
[  360.889488][T13854] ldm_validate_partition_table(): Disk read failed.
[  360.895916][T13854] Dev nbd1: unable to read RDB block 0
[  360.904543][T13854]  nbd1: unable to read partition table
[  360.913447][T13853] /dev/nbd3: Can't open blockdev
[  360.951107][T13854] block nbd1: Cannot use ioctl interface on a netlink controlled device.
[  360.968566][ T5352] block nbd0: Dead connection, failed to find a fallback
[  360.971670][ T5352] block nbd0: shutting down sockets
[  360.975277][T13854] /dev/nbd1: Can't open blockdev
[  360.975455][ T5352] ldm_validate_partition_table(): Disk read failed.
[  360.981409][ T5352] Dev nbd0: unable to read RDB block 0
[  360.985208][ T5352]  nbd0: unable to read partition table
[  361.002216][ T9566] ldm_validate_partition_table(): Disk read failed.
[  361.007107][ T9566] Dev nbd0: unable to read RDB block 0
[  361.011313][ T9566]  nbd0: unable to read partition table
[  361.058942][ T9566] ldm_validate_partition_table(): Disk read failed.
[  361.065687][ T9566] Dev nbd0: unable to read RDB block 0
[  361.070328][ T9566]  nbd0: unable to read partition table
[  361.263106][ T6022] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  361.517719][ T5352] ldm_validate_partition_table(): Disk read failed.
[  361.521086][ T5352] Dev nbd1: unable to read RDB block 0
[  361.524125][ T5352]  nbd1: unable to read partition table
[  361.528516][ T5352] ldm_validate_partition_table(): Disk read failed.
[  361.532145][ T5352] Dev nbd1: unable to read RDB block 0
[  361.534887][ T5352]  nbd1: unable to read partition table
[  361.548339][ T9566] ldm_validate_partition_table(): Disk read failed.
[  361.553498][ T9566] Dev nbd1: unable to read RDB block 0
[  361.557482][ T9566]  nbd1: unable to read partition table
[  361.565833][ T9566] ldm_validate_partition_table(): Disk read failed.
[  361.570880][ T9566] Dev nbd1: unable to read RDB block 0
[  361.574994][ T9566]  nbd1: unable to read partition table
[  361.680330][ T6022] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  361.682859][ T6022] em28xx 9-1:0.0: board has no eeprom
[  361.709647][ T5352] blk_print_req_error: 2448 callbacks suppressed
[  361.709660][ T5352] I/O error, dev nbd3, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  361.714854][ T5352] I/O error, dev nbd3, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  361.718152][ T5352] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  361.721405][ T5352] buffer_io_error: 2450 callbacks suppressed
[  361.721415][ T5352] Buffer I/O error on dev nbd3, logical block 0, async page read
[  361.726055][ T5352] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  361.728965][ T5352] Buffer I/O error on dev nbd3, logical block 1, async page read
[  361.731581][ T5352] I/O error, dev nbd3, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  361.734367][ T5352] Buffer I/O error on dev nbd3, logical block 2, async page read
[  361.737019][ T5352] I/O error, dev nbd3, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  361.740701][ T5352] Buffer I/O error on dev nbd3, logical block 3, async page read
[  361.747395][ T5352] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  361.750610][ T6022] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  361.751177][ T5352] Buffer I/O error on dev nbd3, logical block 0, async page read
[  361.754347][ T6022] em28xx 9-1:0.0: dvb set to bulk mode.
[  361.757070][ T5352] I/O error, dev nbd3, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  361.762553][ T7973] em28xx 9-1:0.0: Binding DVB extension
[  361.767757][ T5352] Buffer I/O error on dev nbd3, logical block 1, async page read
[  361.769327][ T6022] usb 9-1: USB disconnect, device number 31
[  361.771241][ T5352] I/O error, dev nbd3, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  361.774870][ T6022] em28xx 9-1:0.0: Disconnecting em28xx
[  361.797856][T13859] __nla_validate_parse: 10 callbacks suppressed
[  361.797872][T13859] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2383'.
[  361.799281][ T7973] em28xx 9-1:0.0: Registering input extension
[  361.802938][ T5352] Buffer I/O error on dev nbd3, logical block 2, async page read
[  361.803839][ T6022] em28xx 9-1:0.0: Closing input extension
[  361.806188][ T5352] I/O error, dev nbd3, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  361.818390][ T5352] Buffer I/O error on dev nbd3, logical block 3, async page read
[  361.822514][ T5352] Buffer I/O error on dev nbd3, logical block 0, async page read
[  361.825816][ T5352] Buffer I/O error on dev nbd3, logical block 1, async page read
[  361.829272][ T5352] ldm_validate_partition_table(): Disk read failed.
[  361.838537][ T5352] Dev nbd3: unable to read RDB block 0
[  361.842667][ T5352]  nbd3: unable to read partition table
[  361.851222][ T6022] em28xx 9-1:0.0: Freeing device
[  361.865035][T13862] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2384'.
[  361.868251][T13862] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2384'.
[  361.874147][ T5352] ldm_validate_partition_table(): Disk read failed.
[  361.877081][ T5352] Dev nbd3: unable to read RDB block 0
[  361.889800][ T5352]  nbd3: unable to read partition table
[  361.912993][ T5940] ldm_validate_partition_table(): Disk read failed.
[  361.916452][ T5940] Dev nbd3: unable to read RDB block 0
[  361.919489][ T5940]  nbd3: unable to read partition table
[  361.968463][ T5940] ldm_validate_partition_table(): Disk read failed.
[  361.981021][ T5940] Dev nbd3: unable to read RDB block 0
[  361.986065][ T5940]  nbd3: unable to read partition table
[  362.135547][T13870] ldm_validate_partition_table(): Disk read failed.
[  362.144956][T13870] Dev nbd3: unable to read RDB block 0
[  362.151987][T13870]  nbd3: unable to read partition table
[  362.224993][T13872] input: syz1 as /devices/virtual/input/input35
[  362.258844][ T5303] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  362.264570][ T5303] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  362.268144][ T5303] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  362.274344][ T5303] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  362.277152][ T5303] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  362.402610][T13873] chnl_net:caif_netlink_parms(): no params data found
[  362.479217][T13873] bridge0: port 1(bridge_slave_0) entered blocking state
[  362.482218][T13873] bridge0: port 1(bridge_slave_0) entered disabled state
[  362.485567][T13873] bridge_slave_0: entered allmulticast mode
[  362.488241][T13873] bridge_slave_0: entered promiscuous mode
[  362.492988][T13873] bridge0: port 2(bridge_slave_1) entered blocking state
[  362.499849][T13873] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.502559][T13873] bridge_slave_1: entered allmulticast mode
[  362.505967][T13873] bridge_slave_1: entered promiscuous mode
[  362.661404][T13873] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  362.690394][T13873] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  362.774198][T13873] team0: Port device team_slave_0 added
[  362.777448][T13873] team0: Port device team_slave_1 added
[  362.822141][T13873] batman_adv: batadv0: Adding interface: batadv_slave_0
[  362.824798][T13873] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  362.833445][T13873] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  362.837588][T13873] batman_adv: batadv0: Adding interface: batadv_slave_1
[  362.839959][T13873] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  362.852653][T13873] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  362.880947][ T5352] ldm_validate_partition_table(): Disk read failed.
[  362.894100][ T5352] Dev nbd3: unable to read RDB block 0
[  362.906261][ T5352]  nbd3: unable to read partition table
[  362.919372][ T5352] ldm_validate_partition_table(): Disk read failed.
[  362.926922][ T5352] Dev nbd3: unable to read RDB block 0
[  362.931486][ T5352]  nbd3: unable to read partition table
[  362.942490][T13873] hsr_slave_0: entered promiscuous mode
[  362.947552][T13873] hsr_slave_1: entered promiscuous mode
[  362.952456][T13873] debugfs: 'hsr0' already exists in 'hsr'
[  362.954405][T13873] Cannot create hsr debugfs directory
[  362.959129][ T9566] ldm_validate_partition_table(): Disk read failed.
[  362.976897][ T9566] Dev nbd3: unable to read RDB block 0
[  363.003456][ T9566]  nbd3: unable to read partition table
[  363.010473][ T9566] ldm_validate_partition_table(): Disk read failed.
[  363.014191][ T9566] Dev nbd3: unable to read RDB block 0
[  363.017091][ T9566]  nbd3: unable to read partition table
[  363.129029][T13873] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  363.193954][T13873] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  363.282283][T13873] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  363.309653][    C2] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  363.349895][T13873] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  363.375709][T13893] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2392'.
[  363.426477][T13895] fuse: Bad value for 'fd'
[  363.488614][T13873] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  363.496552][T13873] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  363.502743][T13873] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  363.509097][T13873] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  363.577314][T13873] 8021q: adding VLAN 0 to HW filter on device bond0
[  363.593540][T13873] 8021q: adding VLAN 0 to HW filter on device team0
[  363.602731][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  363.606062][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  363.615594][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  363.617794][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  363.777307][T13873] 8021q: adding VLAN 0 to HW filter on device batadv0
[  363.830392][T13873] veth0_vlan: entered promiscuous mode
[  363.842318][T13873] veth1_vlan: entered promiscuous mode
[  363.865818][T13873] veth0_macvtap: entered promiscuous mode
[  363.869932][T13873] veth1_macvtap: entered promiscuous mode
[  363.879113][T13873] batman_adv: batadv0: Interface activated: batadv_slave_0
[  363.886952][T13873] batman_adv: batadv0: Interface activated: batadv_slave_1
[  363.893039][ T1145] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  363.896939][ T1145] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  363.901403][ T1145] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  363.904403][ T1145] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  363.956238][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  363.958709][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  363.979226][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  363.982696][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  364.279001][T13914] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2396'.
[  364.283381][T13914] nbd: socks must be embedded in a SOCK_ITEM attr
[  364.300020][ T1341] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  364.349691][ T5947] Bluetooth: hci1: command tx timeout
[  364.382743][T13919] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2397'.
[  364.449604][ T1341] usb 5-1: Using ep0 maxpacket: 8
[  364.452875][ T1341] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  364.459804][ T1341] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  364.462774][ T1341] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  364.466744][ T1341] usb 5-1: config 0 descriptor??
[  364.469685][   T34] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  364.679686][ T1341] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  364.999658][   T34] usb 6-1: Using ep0 maxpacket: 16
[  365.003381][   T34] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  365.008001][   T34] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  365.011081][   T34] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  365.013569][   T34] usb 6-1: Product: syz
[  365.014891][   T34] usb 6-1: Manufacturer: syz
[  365.016383][   T34] usb 6-1: SerialNumber: syz
[  365.019074][   T34] usb 6-1: config 0 descriptor??
[  365.022649][   T34] em28xx 6-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  365.025528][   T34] em28xx 6-1:0.0: DVB interface 0 found: bulk
[  365.192638][T13922] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2398'.
[  365.198229][T13922] netlink: 124 bytes leftover after parsing attributes in process `syz.3.2398'.
[  365.620065][T13929] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  365.629957][   T34] em28xx 6-1:0.0: unknown em28xx chip ID (0)
[  366.037997][   T34] em28xx 6-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  366.040570][   T34] em28xx 6-1:0.0: board has no eeprom
[  366.099617][   T34] em28xx 6-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  366.102168][   T34] em28xx 6-1:0.0: dvb set to bulk mode.
[  366.120734][   T61] em28xx 6-1:0.0: Binding DVB extension
[  366.126226][   T34] usb 6-1: USB disconnect, device number 23
[  366.136047][   T34] em28xx 6-1:0.0: Disconnecting em28xx
[  366.156860][   T61] em28xx 6-1:0.0: Registering input extension
[  366.159048][   T34] em28xx 6-1:0.0: Closing input extension
[  366.166280][   T34] em28xx 6-1:0.0: Freeing device
[  366.339718][   T61] Oops: general protection fault, probably for non-canonical address 0xdffffc000000004c: 0000 [#1] SMP KASAN NOPTI
[  366.344246][   T61] KASAN: null-ptr-deref in range [0x0000000000000260-0x0000000000000267]
[  366.349272][   T61] CPU: 3 UID: 0 PID: 61 Comm: kworker/3:1 Not tainted syzkaller #0 PREEMPT(full) 
[  366.353033][   T61] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  366.357383][   T61] Workqueue: events l2cap_info_timeout
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  366.359754][   T61] RIP: 0010:kasan_byte_accessible+0x15/0x30
[  366.362529][   T61] Code: 00 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 40 d6 48 b8 00 00 00 00 00 fc ff df 48 c1 ef 03 48 01 c7 <0f> b6 07 3c 07 0f 96 c0 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00
[  366.370603][   T61] RSP: 0018:ffffc900009df9f0 EFLAGS: 00010282
[  366.373169][   T61] RAX: dffffc0000000000 RBX: 0000000000000260 RCX: 0000000000000000
[  366.376536][   T61] RDX: 0000000000000000 RSI: ffffffff89263171 RDI: dffffc000000004c
[  366.380164][   T61] RBP: 0000000000000260 R08: 0000000000000001 R09: 0000000000000000
[  366.383402][   T61] R10: 00000000ffffff80 R11: 0000000000000001 R12: ffffffff89263171
[  366.386637][   T61] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  366.389858][   T61] FS:  0000000000000000(0000) GS:ffff888097b10000(0000) knlGS:0000000000000000
[  366.393861][   T61] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  366.396659][   T61] CR2: 00007f901f005e9c CR3: 000000005e32f000 CR4: 0000000000352ef0
[  366.400138][   T61] Call Trace:
[  366.401586][   T61]  <TASK>
[  366.402822][   T61]  __kasan_check_byte+0x13/0x50
[  366.404905][   T61]  lock_acquire+0xfc/0x350
[  366.406493][   T61]  lock_sock_nested+0x41/0xf0
[  366.408532][   T61]  ? l2cap_sock_ready_cb+0x41/0x170
[  366.410665][   T61]  l2cap_sock_ready_cb+0x41/0x170
[  366.412702][   T61]  l2cap_conn_start+0x144/0xb30
[  366.414721][   T61]  ? __pfx_l2cap_conn_start+0x10/0x10
[  366.416677][   T61]  ? __pfx___mutex_lock+0x10/0x10
[  366.418283][   T61]  ? debug_object_deactivate+0x1ec/0x3a0
[  366.420154][   T61]  l2cap_info_timeout+0x81/0xa0
[  366.421756][   T61]  process_one_work+0x9cf/0x1b70
[  366.423318][   T61]  ? __pfx_ovs_dp_masks_rebalance+0x10/0x10
[  366.425180][   T61]  ? __pfx_process_one_work+0x10/0x10
[  366.426842][   T61]  ? assign_work+0x1a0/0x250
[  366.428298][   T61]  worker_thread+0x6c8/0xf10
[  366.429739][   T61]  ? __kthread_parkme+0x19e/0x250
[  366.431279][   T61]  ? __pfx_worker_thread+0x10/0x10
[  366.432806][   T61]  kthread+0x3c5/0x780
[  366.434034][   T61]  ? __pfx_kthread+0x10/0x10
[  366.435428][   T61]  ? rcu_is_watching+0x12/0xc0
[  366.436957][   T61]  ? __pfx_kthread+0x10/0x10
[  366.438359][   T61]  ret_from_fork+0x675/0x7d0
[  366.439824][   T61]  ? __pfx_kthread+0x10/0x10
[  366.441340][   T61]  ret_from_fork_asm+0x1a/0x30
[  366.442837][   T61]  </TASK>
[  366.443837][   T61] Modules linked in:
[  366.445461][   T61] ---[ end trace 0000000000000000 ]---
[  366.456887][ T5947] Bluetooth: hci1: command tx timeout
[  366.459319][   T61] RIP: 0010:kasan_byte_accessible+0x15/0x30
[  366.461415][   T61] Code: 00 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 40 d6 48 b8 00 00 00 00 00 fc ff df 48 c1 ef 03 48 01 c7 <0f> b6 07 3c 07 0f 96 c0 c3 cc cc cc cc 66 66 2e 0f 1f 84 00 00 00
[  366.467343][   T61] RSP: 0018:ffffc900009df9f0 EFLAGS: 00010282
[  366.469444][   T61] RAX: dffffc0000000000 RBX: 0000000000000260 RCX: 0000000000000000
[  366.472189][   T61] RDX: 0000000000000000 RSI: ffffffff89263171 RDI: dffffc000000004c
[  366.474865][   T61] RBP: 0000000000000260 R08: 0000000000000001 R09: 0000000000000000
[  366.477513][   T61] R10: 00000000ffffff80 R11: 0000000000000001 R12: ffffffff89263171
[  366.480141][   T61] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  366.482593][   T61] FS:  0000000000000000(0000) GS:ffff888097b10000(0000) knlGS:0000000000000000
[  366.485333][   T61] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  366.487392][   T61] CR2: 00007f901f005e9c CR3: 000000002adc9000 CR4: 0000000000352ef0
[  366.490005][   T61] Kernel panic - not syncing: Fatal exception
[  366.492679][   T61] Kernel Offset: disabled
[  366.494011][   T61] Rebooting in 86400 seconds..

VM DIAGNOSIS:
18:08:46  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000003 RCX=ffffffff84aa86f6 RDX=0000000000000040
RSI=0000000000000040 RDI=0000000000000001 RBP=ffffffff8bf098c0 RSP=ffffc900038cf1b8
R8 =0000000000000001 R9 =0000000000000020 R10=0000000000000040 R11=0000000000000012
R12=0000000000000040 R13=0000000000000001 R14=0000000000000003 R15=ffffffff8bf09da5
RIP=ffffffff81bc672f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fc8ce9ce300 ffffffff 00c00000
GS =0000 ffff888097810000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055c43a85d000 CR3=000000004aaf1000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff849e846c ffffffff833d73aa 0000000200000004 0000000600040008
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000968 0000001800000000 0000000000000000 0000000000000017
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8003200800060800 200800060071962c 00000c6d00000014 0000000100000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffef 0802800300737562 2f2e01ffffffffff fffffff308038003
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0008000c80020401 40ea007375622f2e 01ffffffffffffff fff3080c80030008
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00018002040140ea 0031656c69662f2e 01ffffffffffffff ffef080180030008
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0004800201c70800 060140ee0030656c 69662f2e01ffffff ffffffffffef0804
ZMM24=a13f7d2ba13f7d2b a13f7d2ba13f7d2b a13f7d2ba13f7d2b a13f7d2ba13f7d2b a13f7d2ba13f7d2b a13f7d2ba13f7d2b a13f7d2ba13f7d2b a13f7d2ba13f7d2b
ZMM25=fcb87a1afcb87a1a fcb87a1afcb87a1a fcb87a1afcb87a1a fcb87a1afcb87a1a fcb87a1afcb87a1a fcb87a1afcb87a1a fcb87a1afcb87a1a fcb87a1afcb87a1a
ZMM26=ca9f3490ca9f3490 ca9f3490ca9f3490 ca9f3490ca9f3490 ca9f3490ca9f3490 ca9f3490ca9f3490 ca9f3490ca9f3490 ca9f3490ca9f3490 ca9f3490ca9f3490
ZMM27=ed7418f4ed7418f4 ed7418f4ed7418f4 ed7418f4ed7418f4 ed7418f4ed7418f4 ed7418f4ed7418f4 ed7418f4ed7418f4 ed7418f4ed7418f4 ed7418f4ed7418f4
ZMM28=000000400000003f 0000003e0000003d 0000003c0000003b 0000003a00000039 0000003800000037 0000003600000035 0000003400000033 0000003200000031
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=3c0e00003c0e0000 3c0e00003c0e0000 3c0e00003c0e0000 3c0e00003c0e0000 3c0e00003c0e0000 3c0e00003c0e0000 3c0e00003c0e0000 3c0e00003c0e0000
info registers vcpu 1

CPU#1
RAX=0000000000b84824 RBX=0000000000000001 RCX=ffffffff8b5d22a9 RDX=ffffed1005666656
RSI=ffffffff8bf07340 RDI=ffffffff8191d11d RBP=ffffed1003b5a490 RSP=ffffc9000046fde8
R8 =0000000000000000 R9 =ffffed1005666655 R10=ffff88802b3332ab R11=0000000000000001
R12=0000000000000001 R13=ffff88801dad2480 R14=ffffffff90822cd0 R15=0000000000000000
RIP=ffffffff8b5d0d5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097910000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7446288 CR3=0000000065b18000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffff88802b542500 RCX=ffffffff81b066f1 RDX=ffff88802128a480
RSI=ffffffff81b066cb RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc9000104f878
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=dffffc0000000000 R13=ffffed10056a84a1 R14=0000000000000001 R15=0000000000000003
RIP=ffffffff81b066cd RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097a10000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000319f3ffc CR3=000000000e182000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85266c55 RDI=ffffffff9adc2da0 RBP=ffffffff9adc2d60 RSP=ffffc900009df3f0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=0000000000000030 R14=ffffffff9adc2d60 R15=ffffffff85266bf0
RIP=ffffffff85266c7f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097b10000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f901f005e9c CR3=000000005e32f000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000