last executing test programs:

21.575286403s ago: executing program 3 (id=310):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
io_destroy(0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4008095}, 0x4000814)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x9, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x4c}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
read$FUSE(r5, &(0x7f0000002480)={0x2020, 0x0, 0x0, <r6=>0x0}, 0x2020)
read$FUSE(r5, &(0x7f0000004580)={0x2020, 0x0, <r7=>0x0, <r8=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r5, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r7}, 0x10)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r10=>0x0})
r11 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a00000000000000", @ANYRES32=r10, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@bloom_filter={0x1e, 0xd52, 0x8, 0x8, 0x200, 0xffffffffffffffff, 0x7ece, '\x00', r10, r4, 0x1, 0x0, 0x1, 0x1, @void, @value, @void, @value}, 0x50)
r12 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r13 = dup3(r12, r5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x44042, 0x0)
sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000080)={0x1b4, r3, 0x300, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0xfc}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0x184, 0x22, 0x0, 0x1, [{0x4}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xffff}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x71f2}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xb9}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xa88a}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x6}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x7d28}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xc}, @NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x8}]}, {0x4}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xfff}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xb}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xe4bd}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8001}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}, @NL80211_ATTR_DFS_CAC_TIME={0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x6}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xa}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x1}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x2}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x80000000}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x28f40b9d}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x1}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x4}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x9}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x6}]}, 0x1b4}, 0x1, 0x0, 0x0, 0x4001}, 0x40000)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000001c80)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001c40)={&(0x7f0000001100)={0xb40, 0x0, 0x100, 0x70bd2c, 0x25dfdbff, {}, [{{0x8, 0x1, r10}, {0x124, 0x2, 0x0, 0x1, [{0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0xd5, 0xc2, 0x5}]}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}]}}, {{0x8}, {0xb0, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xe4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}]}}, {{0x8, 0x1, r10}, {0x138, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6b2}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0x3, 0x2, 0x7, 0x4}, {0x4, 0xf1, 0xfb, 0x7}]}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}]}}, {{0x8, 0x1, r10}, {0x21c, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x80800000}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x10}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r10}}}, {0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xebb7}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}, {0x8, 0x6, r10}}}, {0x74, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x44, 0x4, [{0xaf01, 0x0, 0x8, 0x1c0}, {0x2, 0x8, 0x4, 0x53}, {0x101, 0x5, 0xe1, 0x5}, {0x2, 0x0, 0x5, 0x38e}, {0x3ff, 0x0, 0xf0, 0x3ab}, {0x9, 0xe2, 0x5}, {0xff, 0x0, 0x9, 0x1}, {0x500, 0xf, 0x40, 0x800}]}}}]}}, {{0x8, 0x1, r10}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0xfffffd56}}, {0x8}}}]}}, {{0x8, 0x1, r10}, {0x234, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x8001}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xa8eb}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r10}}}]}}, {{0x8}, {0x100, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8}}}]}}, {{0x8, 0x1, r10}, {0x204, 0x2, 0x0, 0x1, [{0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0x5, 0x6, 0x9, 0x81}]}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x3, 0x7, 0xfe, 0x9}, {0x1, 0x81, 0xfb, 0x7fff}, {0x5, 0x8, 0x6, 0x9}, {0x4, 0x0, 0x2, 0x1}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x100}}, {0x8}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r10}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}]}}, {{0x8}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}]}, 0xb40}, 0x1, 0x0, 0x0, 0x24000045}, 0x0)
sendmsg$nl_xfrm(r13, &(0x7f0000000600)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000440)=@updpolicy={0x1a4, 0x19, 0x2, 0x70bd28, 0x25dfdbfe, {{@in=@broadcast, @in=@dev={0xac, 0x14, 0x14, 0x1}, 0x4e21, 0x5, 0x4e21, 0xcec, 0x2, 0x20, 0x20, 0x3b, r10, r6}, {0x1, 0x8, 0xff, 0xfffffffffffff993, 0x1a10efd2, 0xffffffffffffffff, 0x1000, 0xe}, {0x5f8f, 0x0, 0x5, 0x5}, 0xffffffff, 0x6e6bb0, 0x0, 0x0, 0x4, 0x3}, [@tfcpad={0x8, 0x16, 0x10000}, @sa={0xe4, 0x6, {{@in=@multicast1, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x4e22, 0x81, 0x4e20, 0x9, 0x2, 0x20, 0x0, 0x32, r10, r8}, {@in=@dev={0xac, 0x14, 0x14, 0x39}, 0x4d4, 0x6c}, @in=@multicast2, {0x7, 0xfffffffffffffffb, 0x6, 0x8, 0x7fffffffffffffff, 0x0, 0x1ff}, {0x8001, 0xa48, 0x3, 0x10001}, {0x3, 0x5, 0x8}, 0x70bd2d, 0x34ff, 0xa, 0x0, 0x7, 0xb7}}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x4040000}, 0x8000)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000a40)={'wlan0\x00', <r14=>0x0})
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000040)={0x1c, 0x0, 0x1, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r14}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20008804}, 0x404c000)

21.499703607s ago: executing program 3 (id=313):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="240000002000010327bd0c00ffdbdf2502200003000000081a000000080001"], 0x24}}, 0x0) (async)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x0, 0x0)
setsockopt$PNPIPE_HANDLE(r1, 0x113, 0x3, &(0x7f00000001c0), 0x4) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001c2df6f270000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r3}, 0x10) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000011c0)=@newlink={0xe8, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x400300}, [@IFLA_LINKINFO={0xb8, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xa8, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0xc554}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x8100}, @IFLA_VLAN_INGRESS_QOS={0x1c, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x2, 0x800}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x6, 0x6}}]}, @IFLA_VLAN_INGRESS_QOS={0x70, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x10000, 0x10010}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x3}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0x8, 0x1, {0x2, 0x8001}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xb22, 0x1}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x4, 0x1}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x806, 0x2}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x1}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x80, 0x6}}]}]}}}, @IFLA_PORT_SELF={0x0, 0x19, 0x0, 0x1, [@IFLA_PORT_VF={0x0, 0x1, 0x6}]}, @IFLA_MASTER={0x8}]}, 0xe8}, 0x1, 0xba01, 0x0, 0x44844}, 0x0)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0x38, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x38}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, &(0x7f0000000080)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xae}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

21.498240929s ago: executing program 3 (id=316):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0xffffff1f, 0x70bd26, 0x0, {0x0, 0x0, 0xc3}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x3c}}, 0x400c004)

21.370191205s ago: executing program 3 (id=317):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x2, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
symlink(0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x2020840, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mlockall(0x7)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x700000e, 0x50032, 0xffffffffffffffff, 0x0)
syz_clone(0x80000480, 0x0, 0x0, 0x0, 0x0, 0x0)
mlockall(0x7)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$SNDCTL_SEQ_GETOUTCOUNT(r1, 0x80045104, &(0x7f0000000080))

21.150037639s ago: executing program 3 (id=326):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vcan0\x00', <r1=>0x0})
r2 = socket(0x1d, 0x2, 0x6)
bind$can_j1939(r2, &(0x7f0000000000)={0x1d, r1, 0x3}, 0x18)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r3, 0x20, &(0x7f0000000100)={0x0, 0x0, <r4=>0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=r4, 0x4)
r5 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r6 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r7 = dup3(r6, r5, 0x0)
getsockname$packet(r7, 0x0, &(0x7f0000000340))
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x18, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000006000000000000000000040018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000001000950000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000009500000000000000852000000500000018000000000008000000000008000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x80, '\x00', r1, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

20.840080585s ago: executing program 3 (id=337):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
r2 = fsopen(&(0x7f00000000c0)='fuseblk\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYRES16=r2, @ANYRES16, @ANYBLOB="14000000000000000000090000003000038008000500ac1414aa0800f1ffffff0000140002007475ee6c30000000000400000000000800010000000000"], 0x44}}, 0x0)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
preadv(r5, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r5, &(0x7f0000001980)={&(0x7f00000018c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001940)={&(0x7f0000000540)=ANY=[@ANYBLOB="2c00000000090100fffffffffff300000a0000060c000480a80f08000140000010000900010073797a31000000002086efb760e6e66c7494c51445a0e6abda5ab96f8824404469facd9ff5db448a83ee080300000000000000fef997bc3fc97186e42aa12973001868cd2385c792b6a2534e029497b2b33f48c5c735cebbf12dda8ebf80b55eafc025ede89265c7e6c2cd"], 0x2c}, 0x1, 0x0, 0x0, 0x2d6d5c008164e674}, 0x5)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x45, &(0x7f0000001a40)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@map_idx_val={0x18, 0x3, 0x6, 0x0, 0x8}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r5}}, @tail_call, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}}, @jmp={0x5, 0x1, 0xa, 0x1, 0x7, 0x10, 0xffffffffffffffff}, @alu={0x4, 0x1, 0x3, 0x6, 0x0, 0x0, 0xffffffffffffffff}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffffffc0}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000340)='GPL\x00', 0x0, 0x1000, &(0x7f00000008c0)=""/4096, 0x41000, 0x69, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000640)={0x7, 0x3}, 0x8, 0x10, &(0x7f0000000680)={0x5, 0x7, 0x1, 0x8}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000006c0)=[0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, r5, 0xffffffffffffffff], &(0x7f0000000700), 0x10, 0x80000001, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000800)={&(0x7f0000000300)='jbd2_shrink_checkpoint_list\x00', r6}, 0x10)
sendmsg$DEVLINK_CMD_PORT_SET(r3, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="050f94a0", @ANYRES16=r4, @ANYBLOB="00042cbd7000fedbdf2506000000080001007063690006000200303030303a30303a31302e300000000008000300030000000600040003000000080001007063690011000200303030303a30303a31302e300000000008000300020000000600040003000000080001007063690011000200303030303a30303a31302e3000000000080003000200000006000400020000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008000300020000000600040003000000"], 0xc8}, 0x1, 0x0, 0x0, 0x41}, 0x80)
lsm_get_self_attr(0xf, 0x0, &(0x7f0000000080), 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000280)='source', &(0x7f00000002c0)='!\x95}\x00', 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newtaction={0x14, 0x30, 0xffff}, 0x14}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r8=>0x0})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000015c0)=ANY=[@ANYBLOB="9c9cc250da5648aab377cec1f13f2f1200ed63f2b1065f02848d8672ebc7c70e5c8403ff836a6b9c4f7762e5ab5669725254c085a1291030debdb774458562a92b315c3a6ae61abb77fe7a7cea2dde9fbcae0d40efcea44e4f8c84a2e850cc03faf19e2382298a", @ANYRES16=r1, @ANYBLOB="010000100000000800000700000008000300", @ANYRES32=r8, @ANYBLOB="14000400726f73653000000000000000000000000800050008000000"], 0x38}}, 0x0)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000000c0), 0x400, 0x0)
r9 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r10 = fcntl$dupfd(r9, 0x0, r9)
r11 = add_key$user(&(0x7f00000000c0), &(0x7f0000000280)={'syz', 0x3}, &(0x7f0000000180)="d3a24845fed3b644db111f6660fcd399052be391b829c18141634298ceeb56ee051e22d30dbb5f2c5ab2078c2c8cf5b9a0385ac162b836c7957ec2752acb894b12c965ca0e6ef3be0e26d7ce463ba7d45d493070046ee8bf617e890cd5321ff6387b3c061c485ebc22948c0292c94d7463b0a2daf8dd3e66c957e3aef3a4b95f4935d34e1bcbc49fc30eb919f98f0c8eeedbb598bc77f0ea766d13268eb19b0cfd6d9624efc20e49f72912e99e06f832a5d6a336636bcef1293071e0a88f8453", 0xc0, 0xffffffffffffffff)
r12 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000080)="f9", 0x1, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000300)={r12, r11, r11}, &(0x7f0000001480)=""/83, 0x53, &(0x7f0000000400)={&(0x7f00000002c0)={'sha256-ssse3\x00'}})
ioctl$SG_GET_REQUEST_TABLE(r10, 0x2275, &(0x7f00000018c0))

20.782420166s ago: executing program 32 (id=337):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
r2 = fsopen(&(0x7f00000000c0)='fuseblk\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYRES16=r2, @ANYRES16, @ANYBLOB="14000000000000000000090000003000038008000500ac1414aa0800f1ffffff0000140002007475ee6c30000000000400000000000800010000000000"], 0x44}}, 0x0)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), 0xffffffffffffffff)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
preadv(r5, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(r5, &(0x7f0000001980)={&(0x7f00000018c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001940)={&(0x7f0000000540)=ANY=[@ANYBLOB="2c00000000090100fffffffffff300000a0000060c000480a80f08000140000010000900010073797a31000000002086efb760e6e66c7494c51445a0e6abda5ab96f8824404469facd9ff5db448a83ee080300000000000000fef997bc3fc97186e42aa12973001868cd2385c792b6a2534e029497b2b33f48c5c735cebbf12dda8ebf80b55eafc025ede89265c7e6c2cd"], 0x2c}, 0x1, 0x0, 0x0, 0x2d6d5c008164e674}, 0x5)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x45, &(0x7f0000001a40)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@map_idx_val={0x18, 0x3, 0x6, 0x0, 0x8}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r5}}, @tail_call, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}}, @jmp={0x5, 0x1, 0xa, 0x1, 0x7, 0x10, 0xffffffffffffffff}, @alu={0x4, 0x1, 0x3, 0x6, 0x0, 0x0, 0xffffffffffffffff}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffffffc0}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000340)='GPL\x00', 0x0, 0x1000, &(0x7f00000008c0)=""/4096, 0x41000, 0x69, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000640)={0x7, 0x3}, 0x8, 0x10, &(0x7f0000000680)={0x5, 0x7, 0x1, 0x8}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000006c0)=[0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, r5, 0xffffffffffffffff], &(0x7f0000000700), 0x10, 0x80000001, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000800)={&(0x7f0000000300)='jbd2_shrink_checkpoint_list\x00', r6}, 0x10)
sendmsg$DEVLINK_CMD_PORT_SET(r3, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="050f94a0", @ANYRES16=r4, @ANYBLOB="00042cbd7000fedbdf2506000000080001007063690006000200303030303a30303a31302e300000000008000300030000000600040003000000080001007063690011000200303030303a30303a31302e300000000008000300020000000600040003000000080001007063690011000200303030303a30303a31302e3000000000080003000200000006000400020000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008000300020000000600040003000000"], 0xc8}, 0x1, 0x0, 0x0, 0x41}, 0x80)
lsm_get_self_attr(0xf, 0x0, &(0x7f0000000080), 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000280)='source', &(0x7f00000002c0)='!\x95}\x00', 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newtaction={0x14, 0x30, 0xffff}, 0x14}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r8=>0x0})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000015c0)=ANY=[@ANYBLOB="9c9cc250da5648aab377cec1f13f2f1200ed63f2b1065f02848d8672ebc7c70e5c8403ff836a6b9c4f7762e5ab5669725254c085a1291030debdb774458562a92b315c3a6ae61abb77fe7a7cea2dde9fbcae0d40efcea44e4f8c84a2e850cc03faf19e2382298a", @ANYRES16=r1, @ANYBLOB="010000100000000800000700000008000300", @ANYRES32=r8, @ANYBLOB="14000400726f73653000000000000000000000000800050008000000"], 0x38}}, 0x0)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000000c0), 0x400, 0x0)
r9 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r10 = fcntl$dupfd(r9, 0x0, r9)
r11 = add_key$user(&(0x7f00000000c0), &(0x7f0000000280)={'syz', 0x3}, &(0x7f0000000180)="d3a24845fed3b644db111f6660fcd399052be391b829c18141634298ceeb56ee051e22d30dbb5f2c5ab2078c2c8cf5b9a0385ac162b836c7957ec2752acb894b12c965ca0e6ef3be0e26d7ce463ba7d45d493070046ee8bf617e890cd5321ff6387b3c061c485ebc22948c0292c94d7463b0a2daf8dd3e66c957e3aef3a4b95f4935d34e1bcbc49fc30eb919f98f0c8eeedbb598bc77f0ea766d13268eb19b0cfd6d9624efc20e49f72912e99e06f832a5d6a336636bcef1293071e0a88f8453", 0xc0, 0xffffffffffffffff)
r12 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000080)="f9", 0x1, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000300)={r12, r11, r11}, &(0x7f0000001480)=""/83, 0x53, &(0x7f0000000400)={&(0x7f00000002c0)={'sha256-ssse3\x00'}})
ioctl$SG_GET_REQUEST_TABLE(r10, 0x2275, &(0x7f00000018c0))

2.829214766s ago: executing program 2 (id=762):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x1, @dev, 0x4}, 0x1c)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc601})
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_pressure(r2, &(0x7f0000000180)='cpu.pressure\x00', 0x2, 0x0)
r4 = socket(0x15, 0x80005, 0x0)
getsockopt(r4, 0x200000000114, 0x5, &(0x7f0000019b00)=""/102385, &(0x7f0000000000)=0x18ff1)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@loopback, 0xfffffffc, 0x1, 0x0, 0x2, 0x78a4}, 0x20)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl(r5, 0x8b32, &(0x7f0000000040))
r6 = socket(0x15, 0x80005, 0x0)
getsockopt(r6, 0x200000000114, 0x5, &(0x7f0000019b00)=""/102385, &(0x7f0000000000)=0x18ff1)
pread64(r3, &(0x7f0000001180)=""/4096, 0x1000, 0x9)
r7 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/3\x00')
pread64(r7, &(0x7f0000000080)=""/237, 0xed, 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r8, 0x400455c8, 0x4)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000840), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r9, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f00000006c0)={0x14, r10, 0x319, 0x0, 0x0, {0x3d}}, 0x14}}, 0x0)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000040)=0x32)
r11 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r11, 0x1, 0x19, &(0x7f00000001c0)='wg0\x00', 0x4)
bind$inet6(r11, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @rand_addr, 0x1}, 0x1c)

2.610135595s ago: executing program 0 (id=768):
r0 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0xc8d03)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000000)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000100)={@local})
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r1, 0x7b2, &(0x7f0000001680)={&(0x7f0000000680)=[0x100000, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x71, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe], 0x1, 0x400})
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r1, 0x7b1, &(0x7f0000000080)={0x0, 0x1})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000000)={<r2=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(r0, 0xc01864cd, &(0x7f0000000180)={&(0x7f0000000080)=[r2], 0x0, 0x1})
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r5 = dup(r4)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
shutdown(r7, 0x0)
r8 = dup3(r7, r6, 0x0)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r8)
sendmsg$NL80211_CMD_GET_SCAN(r8, &(0x7f0000000580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)={0x20, r9, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x5, 0x1b}}}}, ["", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x4004}, 0x81)
recvmmsg(r8, &(0x7f00000004c0)=[{{0x0, 0x0, 0x0}}], 0xf00, 0xf0, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000300), r8)
write$FUSE_BMAP(r5, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r5, &(0x7f0000000500)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec0400339b8fd15e58a83b3da942"], 0xb0)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0))
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
r10 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
read$FUSE(r10, &(0x7f0000004180)={0x2020}, 0x2020)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(r0, 0xc01064c1, &(0x7f0000000240)={r2})

2.549289318s ago: executing program 0 (id=770):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000560001832e0000000000000007"], 0x18}, 0x1, 0x0, 0xffff0000}, 0x0)

2.469101671s ago: executing program 0 (id=771):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
io_destroy(0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4008095}, 0x4000814)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x9, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x4c}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
read$FUSE(r5, &(0x7f0000002480)={0x2020, 0x0, 0x0, <r6=>0x0}, 0x2020)
read$FUSE(r5, &(0x7f0000004580)={0x2020, 0x0, <r7=>0x0, <r8=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r5, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r7}, 0x10)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r10=>0x0})
r11 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r10, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@bloom_filter={0x1e, 0xd52, 0x8, 0x8, 0x200, 0xffffffffffffffff, 0x7ece, '\x00', r10, r4, 0x1, 0x0, 0x1, 0x1, @void, @value, @void, @value}, 0x50)
r12 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r13 = dup3(r12, r5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x44042, 0x0)
sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000080)={0x190, r3, 0x300, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0xfc}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0x160, 0x22, 0x0, 0x1, [{0x4}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xffff}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x71f2}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xb9}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xa88a}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x6}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x7d28}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xc}, @NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x8}]}, {0x4}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xfff}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xb}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xe4bd}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8001}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}, @NL80211_ATTR_DFS_CAC_TIME={0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x6}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xa}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x1}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x2}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x80000000}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x28f40b9d}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x1}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x6}]}, 0x190}, 0x1, 0x0, 0x0, 0x4001}, 0x40000)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000001c80)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001c40)={&(0x7f0000001100)={0xb40, 0x0, 0x100, 0x70bd2c, 0x25dfdbff, {}, [{{0x8, 0x1, r10}, {0x124, 0x2, 0x0, 0x1, [{0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0xd5, 0xc2, 0x5}]}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}]}}, {{0x8}, {0xb0, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xe4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}]}}, {{0x8, 0x1, r10}, {0x138, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6b2}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0x3, 0x2, 0x7, 0x4}, {0x4, 0xf1, 0xfb, 0x7}]}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}]}}, {{0x8, 0x1, r10}, {0x21c, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x80800000}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x10}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r10}}}, {0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xebb7}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}, {0x8, 0x6, r10}}}, {0x74, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x44, 0x4, [{0xaf01, 0x0, 0x8, 0x1c0}, {0x2, 0x8, 0x4, 0x53}, {0x101, 0x5, 0xe1, 0x5}, {0x2, 0x0, 0x5, 0x38e}, {0x3ff, 0x0, 0xf0, 0x3ab}, {0x9, 0xe2, 0x5}, {0xff, 0x0, 0x9, 0x1}, {0x500, 0xf, 0x40, 0x800}]}}}]}}, {{0x8, 0x1, r10}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0xfffffd56}}, {0x8}}}]}}, {{0x8, 0x1, r10}, {0x234, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x8001}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xa8eb}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r10}}}]}}, {{0x8}, {0x100, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8}}}]}}, {{0x8, 0x1, r10}, {0x204, 0x2, 0x0, 0x1, [{0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0x5, 0x6, 0x9, 0x81}]}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x3, 0x7, 0xfe, 0x9}, {0x1, 0x81, 0xfb, 0x7fff}, {0x5, 0x8, 0x6, 0x9}, {0x4, 0x0, 0x2, 0x1}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x100}}, {0x8}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r10}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}]}}, {{0x8}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}]}, 0xb40}, 0x1, 0x0, 0x0, 0x24000045}, 0x0)
sendmsg$nl_xfrm(r13, &(0x7f0000000600)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000440)=@updpolicy={0x1a4, 0x19, 0x2, 0x70bd28, 0x25dfdbfe, {{@in=@broadcast, @in=@dev={0xac, 0x14, 0x14, 0x1}, 0x4e21, 0x5, 0x4e21, 0xcec, 0x2, 0x20, 0x20, 0x3b, r10, r6}, {0x1, 0x8, 0xff, 0xfffffffffffff993, 0x1a10efd2, 0xffffffffffffffff, 0x1000, 0xe}, {0x5f8f, 0x0, 0x5, 0x5}, 0xffffffff, 0x6e6bb0, 0x0, 0x0, 0x4, 0x3}, [@tfcpad={0x8, 0x16, 0x10000}, @sa={0xe4, 0x6, {{@in=@multicast1, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x4e22, 0x81, 0x4e20, 0x9, 0x2, 0x20, 0x0, 0x32, r10, r8}, {@in=@dev={0xac, 0x14, 0x14, 0x39}, 0x4d4, 0x6c}, @in=@multicast2, {0x7, 0xfffffffffffffffb, 0x6, 0x8, 0x7fffffffffffffff, 0x0, 0x1ff}, {0x8001, 0xa48, 0x3, 0x10001}, {0x3, 0x5, 0x8}, 0x70bd2d, 0x34ff, 0xa, 0x0, 0x7, 0xb7}}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x4040000}, 0x8000)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000a40)={'wlan0\x00', <r14=>0x0})
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000040)={0x1c, 0x0, 0x1, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r14}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20008804}, 0x404c000)

2.468315651s ago: executing program 0 (id=772):
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, &(0x7f0000000380)={{0x0, 0x0, 0x80, {0x0, 0x0, 0x3}}, "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", "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"})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r4 = syz_open_dev$video4linux(&(0x7f0000000080), 0x8005, 0x103800)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(0xffffffffffffffff, 0x18, &(0x7f00000000c0)={0x0, r1, 0x2, {0x48000000, 0x7c2a}, 0xc}, 0x1)
ioctl$VIDIOC_SUBDEV_S_FMT(r4, 0xc0585605, &(0x7f0000000000)={0x0, 0x0, {0xfffffffe, 0x9b, 0x300e, 0x0, 0x1, 0xa, 0x0, 0x700}})
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
listen(r0, 0x5)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000040)={0x1, 0x1}, 0x8)
io_uring_setup(0x2c4d, &(0x7f0000000200))
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

2.339923379s ago: executing program 0 (id=775):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
syz_emit_ethernet(0xfe53, &(0x7f0000000440)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x88, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @parameter_prob={0xc, 0x0, 0x0, 0x0, 0xb, 0x3, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast1, @multicast2}}}}}}, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$setregs(0xd, r2, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$getregset(0x4204, r2, 0x200, &(0x7f0000000340)={&(0x7f00000003c0)=""/240, 0xf0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r4=>0x0})
tkill(r2, 0x28)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r1, 0x1, 0x70bd2d, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}}, 0x8004090)

2.260252665s ago: executing program 0 (id=778):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
unshare(0x4000400)
r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x3, &(0x7f0000000580)=@raw=[@map_val={0x18, 0x0, 0x2, 0x0, r1}, @exit], &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x400)
mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000002, 0x8012, r0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0x5008, 0x0)
r2 = syz_usb_connect(0x0, 0x3f, &(0x7f00000007c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x1, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x0, 0x0, 0x1, 0x0, 0xb}]}, &(0x7f00000003c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_usb_control_io(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, 0x0, 0x0)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$int_in(r3, 0x5452, &(0x7f0000000080)=0x236a639e)
poll(&(0x7f0000000140)=[{r0, 0x6154}], 0x1, 0x7f)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r4, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
sendto$inet6(r4, &(0x7f0000000300), 0x5d5, 0x0, 0x0, 0xfffffffffffffdfd)

609.932434ms ago: executing program 2 (id=813):
r0 = socket$netlink(0x10, 0x3, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0x6000, 0x2000, &(0x7f0000fa2000/0x2000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x26e8, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) (async, rerun: 64)
close_range(r0, 0xffffffffffffffff, 0x0) (async, rerun: 64)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff) (async, rerun: 64)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc) (rerun: 64)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a54000000060a0b0400000000000000000200000028000480240001800b000100657874686472000014000280080001400000000008000640000000000900010073797a30000000000900020073797a3200000000140000001100010000000000000000000000000a8bf8acf07adcbf2dd48d79e7b0db1d20286b49dffe182927c69eae90a59b0ee8eeb1cce3e480e1ba712269689a1f2c0627821aec2cc571a1a29eea2c2899b60bd6da17f1429132a82fb0d11839fb747f78db64302500b74a1a4063efe6ac288b"], 0x7c}}, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000400)={'wpan0\x00', <r7=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000800000008000300", @ANYRES32=r7, @ANYBLOB="20002f800c000200000000000000000010000380040003800800010000"], 0x3c}, 0x1, 0x0, 0x0, 0x40c0}, 0x0)
r8 = socket(0x2a, 0x2, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r8, &(0x7f0000000200)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x34, 0x24, 0xf0b, 0x4, 0x25dfdbfe, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0) (async)
sendmsg$nl_route_sched(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000600)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, r9, {0x0, 0xfff4}, {}, {0xa}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_HASH={0x8, 0x2, 0x3}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x0) (async, rerun: 32)
r11 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x80, 0x0) (rerun: 32)
getsockopt$sock_timeval(r11, 0x1, 0x42, &(0x7f00000001c0), &(0x7f0000000240)=0x10) (async)
sendmmsg(r10, &(0x7f00000002c0), 0x40000000000009f, 0x0)

497.677107ms ago: executing program 4 (id=816):
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x1, 0x0, 0x1}, &(0x7f0000000480), &(0x7f0000000500))
r1 = eventfd(0x6)
io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x21, &(0x7f0000000000)=r1, 0x1)
chdir(&(0x7f0000000040)='./file0\x00')
r2 = socket$inet6_icmp(0xa, 0x2, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x21, 0x3, 0x580, 0x4b0, 0xffffffff, 0xffffffff, 0x248, 0xffffffff, 0x4b0, 0xffffffff, 0xffffffff, 0x4b0, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private2, @private2, [], [], 'veth0\x00', 'syzkaller1\x00'}, 0x0, 0x220, 0x248, 0x0, {}, [@common=@inet=@hashlimit2={{0x150}, {'sit0\x00', {0x0, 0x6, 0x0, 0x0, 0x0, 0x101, 0x5}}}, @inet=@rpfilter={{0x28}, {0xbc}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x3}}, {{@ipv6={@empty, @mcast1, [], [], 'batadv0\x00', 'veth1\x00'}, 0x0, 0x200, 0x268, 0x0, {}, [@common=@inet=@policy={{0x158}, {[{@ipv6=@private1, [], @ipv4=@remote}, {@ipv6=@dev, [], @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {@ipv4=@multicast2, [], @ipv6=@loopback}, {@ipv6=@remote, [], @ipv4=@local}]}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5f0)

497.174925ms ago: executing program 2 (id=817):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0xffffff1f, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, 0xff00}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x3c}}, 0x400c004)

424.771553ms ago: executing program 4 (id=818):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x4b0}}, 0x0)

424.456772ms ago: executing program 2 (id=819):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4138ae84, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) (async)
r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r3, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
socket$inet6_udplite(0xa, 0x2, 0x88) (async)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCBRDELBR(r4, 0x89a1, &(0x7f00000001c0)='netpci0\x00')
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r3, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_AGP_ALLOC(r3, 0xc0206434, &(0x7f0000000040)={0xfffffffffffffffc, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r3, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r5], &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000040)})

412.913947ms ago: executing program 1 (id=821):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
io_destroy(0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4008095}, 0x4000814)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x9, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x4c}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
read$FUSE(r5, &(0x7f0000002480)={0x2020, 0x0, 0x0, <r6=>0x0}, 0x2020)
read$FUSE(r5, &(0x7f0000004580)={0x2020, 0x0, <r7=>0x0, <r8=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r5, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r7}, 0x10)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r10=>0x0})
r11 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r10, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@bloom_filter={0x1e, 0xd52, 0x8, 0x8, 0x200, 0xffffffffffffffff, 0x7ece, '\x00', r10, r4, 0x1, 0x0, 0x1, 0x1, @void, @value, @void, @value}, 0x50)
r12 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r13 = dup3(r12, r5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x44042, 0x0)
sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000080)={0x1ac, r3, 0x300, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0xfc}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0x17c, 0x22, 0x0, 0x1, [{0x4}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xffff}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x71f2}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xb9}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xa88a}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x6}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x7d28}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xc}, @NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x8}]}, {0x4}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xfff}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xb}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xe4bd}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8001}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}, @NL80211_ATTR_DFS_CAC_TIME={0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x6}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xa}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x1}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x2}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x80000000}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x28f40b9d}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x1}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x4}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x6}]}, 0x1ac}, 0x1, 0x0, 0x0, 0x4001}, 0x40000)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000001c80)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001c40)={&(0x7f0000001100)={0xb40, 0x0, 0x100, 0x70bd2c, 0x25dfdbff, {}, [{{0x8, 0x1, r10}, {0x124, 0x2, 0x0, 0x1, [{0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0xd5, 0xc2, 0x5}]}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}]}}, {{0x8}, {0xb0, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xe4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}]}}, {{0x8, 0x1, r10}, {0x138, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6b2}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0x3, 0x2, 0x7, 0x4}, {0x4, 0xf1, 0xfb, 0x7}]}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}]}}, {{0x8, 0x1, r10}, {0x21c, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x80800000}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x10}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r10}}}, {0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xebb7}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}, {0x8, 0x6, r10}}}, {0x74, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x44, 0x4, [{0xaf01, 0x0, 0x8, 0x1c0}, {0x2, 0x8, 0x4, 0x53}, {0x101, 0x5, 0xe1, 0x5}, {0x2, 0x0, 0x5, 0x38e}, {0x3ff, 0x0, 0xf0, 0x3ab}, {0x9, 0xe2, 0x5}, {0xff, 0x0, 0x9, 0x1}, {0x500, 0xf, 0x40, 0x800}]}}}]}}, {{0x8, 0x1, r10}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0xfffffd56}}, {0x8}}}]}}, {{0x8, 0x1, r10}, {0x234, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x8001}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xa8eb}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r10}}}]}}, {{0x8}, {0x100, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8}}}]}}, {{0x8, 0x1, r10}, {0x204, 0x2, 0x0, 0x1, [{0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0x5, 0x6, 0x9, 0x81}]}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x3, 0x7, 0xfe, 0x9}, {0x1, 0x81, 0xfb, 0x7fff}, {0x5, 0x8, 0x6, 0x9}, {0x4, 0x0, 0x2, 0x1}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x100}}, {0x8}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r10}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}]}}, {{0x8}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}]}, 0xb40}, 0x1, 0x0, 0x0, 0x24000045}, 0x0)
sendmsg$nl_xfrm(r13, &(0x7f0000000600)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000440)=@updpolicy={0x1a4, 0x19, 0x2, 0x70bd28, 0x25dfdbfe, {{@in=@broadcast, @in=@dev={0xac, 0x14, 0x14, 0x1}, 0x4e21, 0x5, 0x4e21, 0xcec, 0x2, 0x20, 0x20, 0x3b, r10, r6}, {0x1, 0x8, 0xff, 0xfffffffffffff993, 0x1a10efd2, 0xffffffffffffffff, 0x1000, 0xe}, {0x5f8f, 0x0, 0x5, 0x5}, 0xffffffff, 0x6e6bb0, 0x0, 0x0, 0x4, 0x3}, [@tfcpad={0x8, 0x16, 0x10000}, @sa={0xe4, 0x6, {{@in=@multicast1, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x4e22, 0x81, 0x4e20, 0x9, 0x2, 0x20, 0x0, 0x32, r10, r8}, {@in=@dev={0xac, 0x14, 0x14, 0x39}, 0x4d4, 0x6c}, @in=@multicast2, {0x7, 0xfffffffffffffffb, 0x6, 0x8, 0x7fffffffffffffff, 0x0, 0x1ff}, {0x8001, 0xa48, 0x3, 0x10001}, {0x3, 0x5, 0x8}, 0x70bd2d, 0x34ff, 0xa, 0x0, 0x7, 0xb7}}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x4040000}, 0x8000)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000a40)={'wlan0\x00', <r14=>0x0})
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000040)={0x1c, 0x0, 0x1, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r14}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20008804}, 0x404c000)

319.775161ms ago: executing program 1 (id=822):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x1, @dev, 0x4}, 0x1c)
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x66e80, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r1, 0x1, 0x19, &(0x7f00000001c0)='wg0\x00', 0x4)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x8, @dev={0xfe, 0x80, '\x00', 0x2b}, 0xfffffffe}, 0x1c)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x6)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x20008040}, 0x4000010)
r2 = syz_io_uring_setup(0x77eb, &(0x7f0000000080)={0x0, 0xfffffffd, 0x200, 0x4000}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000004c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000200)=ANY=[@ANYBLOB=','], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r2, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000000040)="a72d11a15c048c0a7d63aebc5cea1f81510ff6091475aeec600831aa9d3944e60bc2ad06a619c560aa0118b28f68f1eb14549d633b4b23f179fb680716faa43414787559be90843c35ab30acad8a6740140e00721abc2eb362f7bde53b3c992d3e28ccc20ec84fdc", 0x68}], 0x1, 0x0, 0x6b}, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
dup2(r6, r6)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000340)={0x3, &(0x7f0000000280)=[{0xfffc, 0x7, 0xe9, 0xffffffbe}, {0x3, 0xb, 0x8, 0x5}, {0x80, 0x2, 0x8, 0x4}]})
r7 = accept$inet(r6, &(0x7f0000000400)={0x2, 0x0, @broadcast}, &(0x7f0000000440)=0x10)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r7, 0x0, 0x60, &(0x7f0000000380)={'filter\x00', 0x4, [{0x11}, {0x0, 0x100000000000000}]}, 0x68)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000200"/29], 0x48)
r10 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32, @ANYBLOB="0500"/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000000)=ANY=[@ANYBLOB="1808000009000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bca90000000000003509010000000000950000000000000075090200020000007b9a00fe00000000b509000000000000c39a04fee1000000bf8700000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018290000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf9800000000000056080000000040008500000007000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
write$cgroup_subtree(r8, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r8, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f00000000c0)={@broadcast, @multicast1, <r11=>0x0}, &(0x7f0000000100)=0xc)
sendto$packet(r8, &(0x7f0000000200)="fa2561e235324fd3746657c2ff0127daa811ed17af8c19ce990a3fc3d738a27aa492e4", 0x23, 0x4000, &(0x7f0000000180)={0x11, 0x3, r11, 0x1, 0x3, 0x6, @local}, 0x14)

318.361401ms ago: executing program 2 (id=823):
syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x1c3200) (async)
r0 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x1c3200)
ioctl$CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000040)={"803d0385", 0x9, 0x1, 0x9, 0x6, 0x6, "6eae514b7993ff71255f27266c336f", "89ef1494", "d2b8e5d9", "cae2ba23", ["a8624d72e111a6086ccee647", "4b9b427dc6b7686c39f5a2cd", "8985181c76fd971d376f3469", "07b413742c447d588baf402d"]})
io_uring_setup(0xc6b, &(0x7f00000000c0)={0x0, 0xff65, 0x20, 0x3, 0x2db}) (async)
r1 = io_uring_setup(0xc6b, &(0x7f00000000c0)={0x0, 0xff65, 0x20, 0x3, 0x2db})
io_uring_enter(r1, 0x557e, 0xb5b2, 0xa, &(0x7f0000000140)={[0x8]}, 0x8)
connect$pptp(0xffffffffffffffff, &(0x7f0000000180)={0x18, 0x2, {0x1, @multicast2}}, 0x1e)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r3 = epoll_create(0x0)
epoll_pwait2(r3, &(0x7f00000001c0)=[{}, {}, {}, {}], 0x4, &(0x7f0000000200)={0x0, 0x989680}, &(0x7f0000000240)={[0xfffffffffffffff8]}, 0x8)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000280)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r4, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000340)={0x18c, r5, 0x400, 0x70bd28, 0x25dfdbfe, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x2}, {0x6}, {0x8, 0x15, 0x1000}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0xa17}, {0x6, 0x11, 0xff1c}, {0x8, 0x15, 0x10}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0xfff7}, {0x8, 0x15, 0x81}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x4}, {0x8, 0x15, 0x3cdeba94}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}, {0x6, 0x11, 0x3}, {0x8, 0x15, 0x4c}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x7ff}, {0x6, 0x11, 0x6000}, {0x8, 0x15, 0x5}}]}, 0x18c}, 0x1, 0x0, 0x0, 0x40800}, 0x1)
sendmsg$nl_generic(r4, &(0x7f00000007c0)={&(0x7f0000000580), 0xc, &(0x7f0000000780)={&(0x7f00000005c0)={0x18c, 0x1e, 0x20, 0x70bd27, 0x25dfdbff, {0x1f}, [@nested={0x176, 0xf, 0x0, 0x1, [@generic="385bff4e7200b10db7f94b70023b473feec2e23ba146f998dbcabcc4a9d2284fcc8b8028cc1a0879a83e4aa4abc60be0bc560186a4c64a79e5dd3d136d4a0561ca4d51750752f6deb8bc39840fe6079af7d59804e9fab877cd41d04c911a5bf858f5fc0cec27432231e2104f211807a268cf640f34a4a366e2970cc1516a38ccf5d4d414f552270126", @generic="c60420d2928bcae40ec882bf18de18d038b44485ab4616c6e38c0232cdb148e9e7845aa26036e0a57778f2fc1e43d8f31c929d3867fd45e646cd5996a77c4e5776494f21d1bc22c38819e01b030343fe8d6e436c8732e7b32adce3dc71b3dc21e236e00b3143c90777b4c31ead7d3e80012e16f991b72ab97b54e70ded6764807215aa3fa53229d568e310748b3b3f3c279107b1905c26b627aaf11f9c53f74839c839c104e2d052abfbccd12c92d23b7f255213933995f2be0a1a71bec2156282706b44ea1b2834f0a5d585e391296e173b609d38b51e534e41a88b5ca41e811c", @generic, @nested={0x4, 0x58}, @generic, @nested={0x4, 0x101}]}]}, 0x18c}, 0x1, 0x0, 0x0, 0x1}, 0x24004000)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r4)
sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000a40)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000840)={0x1a4, 0x0, 0x8, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0xfffffffb}]}, @TIPC_NLA_BEARER={0x7c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xca}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}]}, @TIPC_NLA_LINK={0x90, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xba5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}]}, @TIPC_NLA_LINK={0x48, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x21}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}]}, @TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MON={0x24, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x65}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}]}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x8040}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000a40)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000840)={0x1a4, 0x0, 0x8, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0xfffffffb}]}, @TIPC_NLA_BEARER={0x7c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xca}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}]}, @TIPC_NLA_LINK={0x90, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xba5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}]}, @TIPC_NLA_LINK={0x48, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x21}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}]}, @TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MON={0x24, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x65}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}]}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x8040}, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000ac0), r4)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000b00)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r4, &(0x7f0000000c00)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x4c, r6, 0x200, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0xfffffffe, 0x46}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4008000}, 0x4800)
epoll_create1(0x80000) (async)
epoll_create1(0x80000)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000002540)) (async)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000002540)={'team0\x00', <r8=>0x0})
sendmmsg(r4, &(0x7f0000002c40)=[{{0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000000c40)="cbc98998f3b8dea44a4d4056057ca0b477bc1b6425f40a2cb1e320f5110a6e314696f0a748850fe64738aa500a8fcda051f05f", 0x33}, {&(0x7f0000000c80)="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", 0x1000}, {&(0x7f0000001c80)}, {&(0x7f0000001cc0)="58a4db54e18482c774fa35cae6c24c6b867588", 0x13}, {&(0x7f0000001d00)="c297e362fdf5169957e4d8e52db2a2795bc09b23d94de3e14e0294ada82933ee7dded944424c026d188b2377c071cc10b8f98cdcffb1a919449726afce2e00bac01ad50e74ae9d37fa8563c5f362f198faad649a1d7bed6e9f983aef1cf52afdac9ffe111730c6890d6050c01815d28cc91c6543673db7171353452b38892680cef2b297a02d1493cbf36f8532a10132ccfbe5d6a4d30e71b471fc858ee66da5ab012cd87392cede076dd4a80d84586439", 0xb1}], 0x5, &(0x7f0000001e40)=[{0x100, 0x8, 0x6, "83a376e60d42efc8df832df3066a94b4aa7673cc2ba71c2012a870061deecb6acfbad242d80e76d89a1c18951f4cf76def700d14678df9a303934bc87e326e9593daa453748a62c34c7ed63ac8e1e62d6add3f7b7bd5b50ae977872b76a33160852ce59c48590b04d6c6c6cd5c6fb3a6824cd519bab21333ce3ed81d382402f979744dfd659ea810f94a9850f4c0c58b1bb9de7e780cad0618d7abd4987087243c3a675c5fac3f3cda3b68553339e85647d74f60d750a2c320a2223a355d95bd8594b96d1547debb9dd947bef3a4bed05a7ee671de6d45a65f15c9b57fbf2e0031f9e85ab9a92c7346d4"}, {0x40, 0x116, 0x7, "88436d0d67f3e0e1c96c9ace8f9de82a3f9bdedc667acd3a2fcc37166ba7fb2b0006fe1ac81f4e100e75cb"}], 0x140}}, {{&(0x7f0000001f80)=@x25={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x0}}, 0x80, &(0x7f0000002000), 0x0, &(0x7f0000002040)=[{0xb8, 0x29, 0x2, "c72fa44eb0f3db24b1f070c0dd4601874673a08b8d3703f1679c46375517c73f4738a58b3692f3d293abfef64956628a18a341c4c04c0fbdc3dc1e77e2ff2b423bd9731e0f096338c6ed5b03b36c27fd2c1356ee88afc25be4ac1f37c360369969ec13307edffb5ae7d722c2813153356351f2dbb9ba510695339360721f1bb55ef359e8660d2ae5330c7e2aa34a4568ecfac86335ecb2da34c139956f2eadfe043cf7adea"}, {0xc8, 0x10d, 0x4, "e1f64132380951adc463e4594b7b1e6888f3f398486871d20b261ab0e863f119ee8bd9048623397faafe2faf020c46b4fb7e85c617668dfb9b2de163d8437f3bc71e6f8b31bcc9511a0bf44c7042032e0f78f17f1fd80a57072170c5ce7810c254129cd8b2d2095714fa351559ae04f60400cd7775f24e63b2aa1e87c9daccfed4813600850f6486f93d2760a96dbd238d3235c3536c30522dab8f46ed31b5410350b1b20d3a279f8384be5b4b74c0818f8a26b65a81"}], 0x180}}, {{0x0, 0x0, &(0x7f00000024c0)=[{&(0x7f00000021c0)="b21267b3aa23cbaf60af5419c43ccd048d9fc0acce0b195bdc5240e6c8aac694188c58bc630e69f730ae2dda8755e7b300777864001bff2e97a20e0aebff36bab309", 0x42}, {&(0x7f0000002240)="9cad4cf0f782ed88c79e55ceec5d762feea4", 0x12}, {&(0x7f0000002280)="b4254534eb099685e27ac835333073", 0xf}, {&(0x7f00000022c0)="05440e71f8bfb352f13f2e9d24284674b40793ec3596c6b4ca425d4163f0ad4bee40ebb2be572af019346416eb47867fd1d939f47d6a2b5ee7b9a464c5f4369173a6f1a2f05e593b4b9880a940a6b3ea21809404a4f7962e369fdfaadef0bf89927ee134f271d6f7fedb8051c9a45d74946f09965566c9c41786c4266105c850961a057588d27e5a0933f5ff6300164b5073f57e39917648c7022bb2439285c5e0ddd48b97cad9a7fbe3c956e5f3a327ac703ac44ee3024bc5714ddd1b2862fdaaa4c83e7618", 0xc6}, {&(0x7f00000023c0)="3d828806391265a174b1ea666d9e75901371edb7476569ef981e6e7d133f5695feb0decacff3ddd55fea60d6ff4093d980e17f010461bbbb79c74b7bb5a098d8bc8e1c9781aeb7fa12c2391443041b3eec0792d210db21a87640285c6443c4b9063a0a2b0184b524b8f31e31b50d0be75b669c203cf44ae3b53384709bd2b352db52edcd36c641b88d56d905e17847c6259c07cc79265de850309611ebac92adbb65f6116beb5bb673e2ba7872ad9d166e66b20e93f6778089bb79d85895d93d0905e3fe6c5ccf7106dfd4ed9994d36da50ba8d16c582a4686884f2d3d887a48957aa0a492f5376ffe649d6663c8ae2932e34e6649799c", 0xf7}], 0x5}}, {{&(0x7f0000002580)=@ll={0x11, 0x10, r8, 0x1, 0xd, 0x6, @multicast}, 0x80, &(0x7f0000002840)=[{&(0x7f0000002600)="a6f742dad181e5c7ea7a60ae108e1fe9b719a364780096ac0e9ff3dbbdd241eb2965820de0d8d37104a742b3bfcbc45c350de1c5c3b08da705373d1b9f34e11ac620df30f3321990566167532a02aeef0d7dc20dc10a8f2b3cfa8ba3b1acd4623a7ecebec90a52169ae8850bc5729ffdcc86c6fe4e99b8346a86f5c2c02f12eddb647c3d652cd79f76d50afcc9e6beb7da9ca126a011a262c6d17b8551f99413c751ba7e39e403b67d92e26dcbd835fdcf7663a9d03346d4e06bee4f4b4e85", 0xbf}, {&(0x7f00000026c0)="da8a2c46c46cbf19273f5890631b88b55033570f3c5bc789aa83adf3c3be0d0c6e6a254bfbd01f15412296a5139c11aaafae7488ef8664eee0a7538fd87a2909e0dd098fd570b6302b690d5ef4509f84cbce719c5a8cc2cd44b79303314795275467b25c02e17180ecd1f7e6343f95ce2ec084f9906e694229cabaf9dd2afeaabecc2c304f033818a82bd3e69a4a0a5e3f4dae077170265511451efaf58bc46c6823e3c14a2205bddb0ba4", 0xab}, {&(0x7f0000002780)="1db4461a397fabebee5677a2a3472156f7df48ff13919ed472578e8795d10a339551a5a59aca709c597d0f1527cb6b74db928fbf57551fae4a213817a58eeedef67d843feed5b6b70858e4cf3b029f77b65dcc3dafb2ab8e9b0508f51bc574e240cadc709b17f3561a7a7f1e51c47cbfd1fc970babc9bcd97236f05c9140ea3b3e97c7e8437ee0d40d281b25210202e2", 0x90}], 0x3, &(0x7f0000002880)=[{0x90, 0x112, 0x6, "c0e803c0b0922f0b461850b84baacb0d9f542cbf9ee96934d56509b5f5b1921edd7ccdac6af73999bd63925f6db68c1b4361c5e8cebae430af534b591132b88de9d273155d7abc2c541e7c03efe1759b5ea540414c3810cf93cf5bea860321d33de4aca567d1e024796d59c1f89899dde6a137f69fc227f20d"}, {0xc0, 0x115, 0x101, "a139a30bb0732dbc76ecd054758199d7b45ac7fec0d13a17d6ba78f19e9f51cae6815ca8d5c5eac37af0295dc53b4e4941eb51a08e64aa42daff6bfd7c5c1bd668e6161590c8c8242eb34f47bd08419d73b7692b247649040f7c565b7322371c4e2c83abedbb42562653b18df81501cc47345d67ef95e6fd5600d25871c15ab6e2e2fd2ee15946d7fe1762af9a3abe75cfb3d769e08b035c71bbdce210d1407870302c935f785e86e19b8ad91bd51d84"}, {0xa8, 0x1, 0x604, "7c2f6c2036b73939b986486663fc7cf53b844b01c4d4ad2e59efd390ae45c50c1aaaad2a1f92292e3e9725048579d4face833d275bdfdaaec9907f1225370624604620837b5af2bbfcc52f4b91a20122a5d13bffa471bbb4db461456c1f62e94c32fa14924801d0f05ef350d627ee559c282121509861984e169a0d10b0ddea3e075cdf42cdaa7183007f26330f64a457c70ad753c586ea4"}, {0x20, 0xff, 0x6b, "1010e73a3a9e14708458e9eb32"}, {0xe0, 0x3a, 0x5, "44044a2f123704d683fe3db54bbfd1e99cceb62f25ae700d62707d0337d7750b4ce1582d8b0bd6d66925cd51e9fedcc8d8318dd9791b7d0a344aa36384bc0a9e701dda21a104189b64699baac4c7b0503511ed8afa1b183c8ae229c134c23346316a23ac0e2446cb63527d2058fa668f28bc6ee4ae754f7f1233d487dac15c75a2d231e4cb336841a0babb4c903ae5d3e1d70e05c00890f674ced56b25748aae02bea6ff7cded1265a7ca8619d2976a4b997034267a492c270a50e072031d82d19ba07e5b63ae7fc806ecb7eb21ebe4f"}, {0xb8, 0xff, 0x2, "bf0bb24f9e6e96ba94cfef512d11e6184808e1d1d4d48500b7be23863b5666d40ed0b8755275cfe875f7883dfc600e99a54c6acec9dcc16e610f6a608045c1d49fcb1af601abe808cb338c4185d8f379860ecbfffca3be9c291535cda8498ed251f2c83203ec452f8c00fbb138cb36b7f5901fc61230f122abd337a2d160cfc1d08a40abc40750076a5e4c55d2fb1f87110b1a7a9a325e9319bee6cd9a167e3abb5eac5c"}], 0x3b0}}], 0x4, 0x8000)
socket(0x9, 0x2, 0x2) (async)
socket(0x9, 0x2, 0x2)
pselect6(0x40, &(0x7f0000002d40)={0x8, 0x169891f0, 0x90, 0x0, 0x1, 0x80, 0x8, 0x905a}, &(0x7f0000002d80)={0x6000000000000000, 0xb24, 0x3, 0x800, 0x4, 0x3ff, 0xe5f, 0x7}, &(0x7f0000002dc0)={0x2, 0x9, 0x80000001, 0x2, 0xde, 0xa4f5, 0x7, 0x9}, &(0x7f0000002e00)={0x77359400}, &(0x7f0000002e80)={&(0x7f0000002e40)={[0x2]}, 0x8})
rt_sigpending(&(0x7f0000002ec0), 0x8)
ioctl$SG_GET_RESERVED_SIZE(r4, 0x2272, &(0x7f0000002f00))
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f0000002f40))
r9 = semget(0x3, 0x4, 0x46)
clock_gettime(0x0, &(0x7f0000002fc0)) (async)
clock_gettime(0x0, &(0x7f0000002fc0)={<r10=>0x0, <r11=>0x0})
semtimedop(r9, &(0x7f0000002f80)=[{0x1, 0xfff, 0x1800}, {0x1, 0x200}], 0x2, &(0x7f0000003000)={r10, r11+60000000}) (async)
semtimedop(r9, &(0x7f0000002f80)=[{0x1, 0xfff, 0x1800}, {0x1, 0x200}], 0x2, &(0x7f0000003000)={r10, r11+60000000})
sendfile(r1, r2, &(0x7f0000003040)=0x4, 0x1000) (async)
sendfile(r1, r2, &(0x7f0000003040)=0x4, 0x1000)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000003080)={0x48, 0x5, 0x0, 0x0, 0xffffffffffffffff, 0x7421e7e46cd65d7b}) (async)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000003080)={0x48, 0x5, 0x0, 0x0, 0xffffffffffffffff, 0x7421e7e46cd65d7b})

318.002187ms ago: executing program 1 (id=824):
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x12, &(0x7f00000000c0)=0x7b, 0x4) (async)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x12, &(0x7f00000000c0)=0x7b, 0x4)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fd7000/0x18000)=nil, &(0x7f0000005700)=[@text32={0x20, 0x0}], 0x1, 0xc, 0x0, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fd7000/0x18000)=nil, &(0x7f0000005700)=[@text32={0x20, 0x0}], 0x1, 0xc, 0x0, 0x0)
ioctl$FS_IOC_GETFSUUID(r1, 0x80111500, &(0x7f0000000100))
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000003680)={{0x0, 0x0, 0x80}, "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", "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"}) (async)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000003680)={{0x0, 0x0, 0x80}, "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", "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"})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000140)="65660fc736b9230200000f320fc5b0040000000f0f10970fe8fa640f01cfc4e21d4501c744240000000000c74424021c320000c744240600000000c4e17de69222ad2eec0fc76e04b8200fae82ef66bafc0c66b8004066ef66b8296c", 0x5c}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) (async)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r2, 0x4068aea3, &(0x7f00000001c0)={0xbe, 0x0, 0x1})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_DEBUGREGS(r2, 0x4080aea2, &(0x7f0000000000)={[0xeeee0000, 0x8000000, 0x6000, 0x4], 0x3, 0x40, 0x7})

230.395055ms ago: executing program 4 (id=825):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000560001832e0000000000000007"], 0x18}, 0x1, 0x0, 0xffffffffffffffa6}, 0x0)

229.231532ms ago: executing program 2 (id=826):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x3, 0x2, @remote, 0x12}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='dctcp\x00', 0x6)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, &(0x7f0000000240)={0x0, 0xf0ffffff, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec0012100001400a0c0c00bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

229.008619ms ago: executing program 4 (id=827):
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x86)
acct(&(0x7f0000000240)='./file0\x00')
acct(&(0x7f0000000600)='./file0\x00')
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={<r1=>0xffffffffffffffff, 0x8000, 0x8, 0x1})
r2 = mmap$binder(&(0x7f0000d48000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x8)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000440)={0xc0, 0x0, &(0x7f0000000640)=[@dead_binder_done, @register_looper, @transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x70, 0x18, &(0x7f0000000140)={@ptr={0x70742a85, 0x1, &(0x7f00000000c0)=""/103, 0x67, 0x0, 0x34}, @ptr={0x70742a85, 0x0, &(0x7f0000000040)=""/47, 0x2f, 0x0, 0x12}, @fda={0x66646185, 0x3, 0x5, 0x20}}, &(0x7f00000001c0)={0x0, 0x28, 0x50}}, 0x1000}, @acquire_done={0x40106309, 0x200}, @transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000280)={@fda={0x66646185, 0x0, 0x2, 0x4000000000034}, @fda={0x66646185, 0x7, 0x1, 0xc}, @ptr={0x70742a85, 0x3, &(0x7f0000000200)=""/94, 0x5e, 0x2, 0x39}}, &(0x7f0000000300)={0x0, 0x20, 0x40}}}, @free_buffer={0x40086303, r2}], 0x33, 0x0, &(0x7f0000000400)="339f1d9af881e9621fb317232a4adb8007352205d1f1ad551f6f9318ad25df47d96edbeee12892a115d666eadcf921c485d48a"})
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
ioctl$KDSKBENT(r4, 0x4b47, &(0x7f0000000000)={0x1, 0x0, 0x27f})
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x2, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2a, 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
unshare(0x72040200)
r5 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r5, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GET_LEASE(r5, 0xc01064c8, 0x0)
ioperm(0x0, 0x5, 0x6)
r6 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r6, 0xc008561c, &(0x7f0000000040)={0xf0f028, 0x1})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r7, &(0x7f00000005c0)={&(0x7f0000000480), 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x5c, r8, 0x300, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth0_macvtap\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @local}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x1d}}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}]}, 0x5c}, 0x1, 0x0, 0x0, 0xc040}, 0x881)
move_pages(0x0, 0x1, &(0x7f0000000080)=[&(0x7f0000ea4000/0x2000)=nil], &(0x7f0000000100), &(0x7f0000000080), 0x2)

150.251582ms ago: executing program 4 (id=828):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0xffffff1f, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, 0xff7f}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x3c}}, 0x400c004)

148.381269ms ago: executing program 1 (id=829):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000049d000/0x18000)=nil, &(0x7f0000000400)=[@text64={0x40, &(0x7f0000000080)="c9470f71e248480f20c03507000000440f22c00f8b0c0000000f20db6567cfc7442400f4350000c7442402e0000000c74424060000000065660f3882b87a880000667fc566ba6100b000eec4217d7ff6", 0x50}], 0x1, 0x42, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000793000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = socket$inet6(0xa, 0x80002, 0x88)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0) (async)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0)
getresgid(0x0, 0x0, 0x0)
write$FUSE_ATTR(0xffffffffffffffff, 0x0, 0x0)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x3, @mcast2, 0x6}, 0xfffffffffffffec3)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, 0x0, 0x0)
socket$unix(0x1, 0x1, 0x0) (async)
r4 = socket$unix(0x1, 0x1, 0x0)
getsockopt$sock_int(r4, 0x1, 0x6, &(0x7f0000000000), &(0x7f0000000040)=0x4) (async)
getsockopt$sock_int(r4, 0x1, 0x6, &(0x7f0000000000), &(0x7f0000000040)=0x4)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e23, 0x7, @local, 0x1}, 0x1c)
socket$inet6_udp(0xa, 0x2, 0x0) (async)
socket$inet6_udp(0xa, 0x2, 0x0)
rename(0x0, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaa79ff030486dd601b8b97004d88c19e9ace00000000000000002100000002ff02000000000000000000000000000104004e200008b0"], 0x0) (async)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaa79ff030486dd601b8b97004d88c19e9ace00000000000000002100000002ff02000000000000000000000000000104004e200008b0"], 0x0)

9.909925ms ago: executing program 1 (id=830):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
io_destroy(0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4008095}, 0x4000814)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x9, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x4c}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
read$FUSE(r5, &(0x7f0000002480)={0x2020, 0x0, 0x0, <r6=>0x0}, 0x2020)
read$FUSE(r5, &(0x7f0000004580)={0x2020, 0x0, <r7=>0x0, <r8=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r5, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r7}, 0x10)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r10=>0x0})
r11 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r10, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@bloom_filter={0x1e, 0xd52, 0x8, 0x8, 0x200, 0xffffffffffffffff, 0x7ece, '\x00', r10, r4, 0x1, 0x0, 0x1, 0x1, @void, @value, @void, @value}, 0x50)
r12 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r13 = dup3(r12, r5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x44042, 0x0)
sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000080)={0x1ac, r3, 0x300, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0xfc}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0x17c, 0x22, 0x0, 0x1, [{0x4}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xffff}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x71f2}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xb9}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xa88a}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x6}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x7d28}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xc}, @NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x8}]}, {0x4}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xfff}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xb}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xe4bd}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8001}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}, @NL80211_ATTR_DFS_CAC_TIME={0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x6}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xa}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x1}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x2}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x80000000}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x28f40b9d}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x1}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x4}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x6}]}, 0x1ac}, 0x1, 0x0, 0x0, 0x4001}, 0x40000)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000001c80)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001c40)={&(0x7f0000001100)={0xb40, 0x0, 0x100, 0x70bd2c, 0x25dfdbff, {}, [{{0x8, 0x1, r10}, {0x124, 0x2, 0x0, 0x1, [{0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0xd5, 0xc2, 0x5}]}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}]}}, {{0x8}, {0xb0, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xe4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}]}}, {{0x8, 0x1, r10}, {0x138, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6b2}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0x3, 0x2, 0x7, 0x4}, {0x4, 0xf1, 0xfb, 0x7}]}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}]}}, {{0x8, 0x1, r10}, {0x21c, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x80800000}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x10}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r10}}}, {0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xebb7}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}, {0x8, 0x6, r10}}}, {0x74, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x44, 0x4, [{0xaf01, 0x0, 0x8, 0x1c0}, {0x2, 0x8, 0x4, 0x53}, {0x101, 0x5, 0xe1, 0x5}, {0x2, 0x0, 0x5, 0x38e}, {0x3ff, 0x0, 0xf0, 0x3ab}, {0x9, 0xe2, 0x5}, {0xff, 0x0, 0x9, 0x1}, {0x500, 0xf, 0x40, 0x800}]}}}]}}, {{0x8, 0x1, r10}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0xfffffd56}}, {0x8}}}]}}, {{0x8, 0x1, r10}, {0x234, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x8001}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xa8eb}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r10}}}]}}, {{0x8}, {0x100, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8}}}]}}, {{0x8, 0x1, r10}, {0x204, 0x2, 0x0, 0x1, [{0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0x5, 0x6, 0x9, 0x81}]}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x3, 0x7, 0xfe, 0x9}, {0x1, 0x81, 0xfb, 0x7fff}, {0x5, 0x8, 0x6, 0x9}, {0x4, 0x0, 0x2, 0x1}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x100}}, {0x8}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r10}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}]}}, {{0x8}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}]}, 0xb40}, 0x1, 0x0, 0x0, 0x24000045}, 0x0)
sendmsg$nl_xfrm(r13, &(0x7f0000000600)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000440)=@updpolicy={0x1a4, 0x19, 0x2, 0x70bd28, 0x25dfdbfe, {{@in=@broadcast, @in=@dev={0xac, 0x14, 0x14, 0x1}, 0x4e21, 0x5, 0x4e21, 0xcec, 0x2, 0x20, 0x20, 0x3b, r10, r6}, {0x1, 0x8, 0xff, 0xfffffffffffff993, 0x1a10efd2, 0xffffffffffffffff, 0x1000, 0xe}, {0x5f8f, 0x0, 0x5, 0x5}, 0xffffffff, 0x6e6bb0, 0x0, 0x0, 0x4, 0x3}, [@tfcpad={0x8, 0x16, 0x10000}, @sa={0xe4, 0x6, {{@in=@multicast1, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x4e22, 0x81, 0x4e20, 0x9, 0x2, 0x20, 0x0, 0x32, r10, r8}, {@in=@dev={0xac, 0x14, 0x14, 0x39}, 0x4d4, 0x6c}, @in=@multicast2, {0x7, 0xfffffffffffffffb, 0x6, 0x8, 0x7fffffffffffffff, 0x0, 0x1ff}, {0x8001, 0xa48, 0x3, 0x10001}, {0x3, 0x5, 0x8}, 0x70bd2d, 0x34ff, 0xa, 0x0, 0x7, 0xb7}}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x4040000}, 0x8000)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000a40)={'wlan0\x00', <r14=>0x0})
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000040)={0x1c, 0x0, 0x1, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r14}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20008804}, 0x404c000)

9.563896ms ago: executing program 4 (id=831):
keyctl$session_to_parent(0x12)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$sw_sync(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f00000002c0)={0x10000, "421ae3753785259249154c944122ad063ff47d3b4c879afae6889cba3ab4c981", <r2=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r2, 0xc0303e03, &(0x7f00000000c0)={"e50d1af889b4ea0700000000000000f3c49e4906eddfecd83634e4a37ef94add", r2, <r3=>0xffffffffffffffff})
ioctl$SYNC_IOC_FILE_INFO(r3, 0x40103e05, &(0x7f00000001c0)={""/32, 0x0, 0x0, 0x0, 0x0, 0x0})
getsockopt$inet_tcp_int(r0, 0x6, 0x19, 0x0, &(0x7f00000006c0))
keyctl$session_to_parent(0x12)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f0000000100)={0xfffff384, "07aa9880c6a48720aa5a5fd1ced2414b0a727172978eb09e5c2e6f31cb945157"})
ioctl$CEC_RECEIVE(0xffffffffffffffff, 0xc0386106, &(0x7f0000000180)={0x1, 0x1, 0x0, 0x0, 0x0, 0x0, "5debca561a5fbf61048955f6f876b2ff", 0x0, 0x2})
r4 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000000)={r4, r4, r4}, 0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={'sha1-ssse3\x00'}})
keyctl$session_to_parent(0x12)

0s ago: executing program 1 (id=832):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f00000002c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000000540)=""/32, 0x20}}, 0x120) (async)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1201000000000040341a02080000000000010902"], 0x0) (async, rerun: 32)
r1 = syz_open_dev$hidraw(&(0x7f0000000080), 0x1, 0x200) (rerun: 32)
write$UHID_DESTROY(r0, &(0x7f0000000040), 0x4) (async)
readv(r1, &(0x7f0000000240)=[{&(0x7f00000001c0)=""/66, 0x42}], 0x1) (async)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000340)={0x73622a85, 0x0, 0x4001}) (async)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) (async, rerun: 32)
r4 = dup3(r3, r2, 0x0) (rerun: 32)
ioctl$VIDIOC_G_FMT(r4, 0xc0d05604, &(0x7f00000001c0)={0x2, @sliced={0xd, [0x1, 0x0, 0x81, 0x8001, 0x7ff, 0x4, 0x5, 0x2, 0xf, 0x9, 0x3ff, 0x1, 0x0, 0x8, 0x7, 0x400, 0xf725, 0x4, 0x2, 0x7, 0x4040, 0x80, 0x800, 0x8, 0x2, 0x2, 0x9, 0x197d, 0x5, 0x100, 0xfeff, 0x9b, 0x7, 0xfff7, 0xfffc, 0x3b3a, 0x6, 0x97a, 0x2c15, 0x2, 0xcee, 0xaf6, 0x6, 0x8, 0x15e, 0x1, 0x4], 0x3}})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000540)={0x6c, 0x0, &(0x7f0000000440)=[@increfs_done={0x40106308, 0x3}, @decrefs, @enter_looper, @increfs={0x40046304, 0x2}, @acquire_done={0x40106309, 0x1}, @release={0x40046306, 0x2}, @increfs={0x40046304, 0x1}, @decrefs={0x40046307, 0x1}, @acquire_done={0x40106309, 0x2}, @exit_looper], 0x0, 0x0, 0x0})

kernel console output (not intermixed with test programs):

60][ T6418] openvswitch: netlink: Either Ethernet header or EtherType is required.
[   53.000666][ T6421] netlink: 'syz.0.171': attribute type 1 has an invalid length.
[   53.011297][ T6424] FAULT_INJECTION: forcing a failure.
[   53.011297][ T6424] name failslab, interval 1, probability 0, space 0, times 0
[   53.015041][ T6424] CPU: 0 UID: 0 PID: 6424 Comm: syz.1.172 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   53.018363][ T6424] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   53.021529][ T6424] Call Trace:
[   53.022467][ T6424]  <TASK>
[   53.023458][ T6424]  dump_stack_lvl+0x16c/0x1f0
[   53.024750][ T6424]  should_fail_ex+0x497/0x5b0
[   53.025961][ T6424]  ? fs_reclaim_acquire+0xae/0x150
[   53.027206][ T6424]  should_failslab+0xc2/0x120
[   53.028490][ T6424]  __kmalloc_noprof+0xcb/0x510
[   53.029957][ T6424]  snd_seq_oss_readq_new+0x99/0x2c0
[   53.031500][ T6424]  snd_seq_oss_open+0x54b/0xa20
[   53.032778][ T6424]  odev_open+0x6f/0x90
[   53.034125][ T6424]  ? __pfx_odev_open+0x10/0x10
[   53.035593][ T6424]  soundcore_open+0x409/0x580
[   53.037114][ T6424]  ? __pfx_soundcore_open+0x10/0x10
[   53.038767][ T6424]  chrdev_open+0x237/0x6a0
[   53.039961][ T6424]  ? __pfx_chrdev_open+0x10/0x10
[   53.041545][ T6424]  do_dentry_open+0xf59/0x1ea0
[   53.042917][ T6424]  ? __pfx_chrdev_open+0x10/0x10
[   53.044356][ T6424]  ? inode_permission+0xdd/0x5f0
[   53.045901][ T6424]  vfs_open+0x82/0x3f0
[   53.047196][ T6424]  ? may_open+0x1f2/0x400
[   53.048605][ T6424]  path_openat+0x1e6a/0x2d60
[   53.050046][ T6424]  ? __pfx_path_openat+0x10/0x10
[   53.051585][ T6424]  ? __pfx___lock_acquire+0x10/0x10
[   53.053228][ T6424]  ? lock_acquire.part.0+0x11b/0x380
[   53.054695][ T6424]  ? find_held_lock+0x2d/0x110
[   53.056137][ T6424]  do_filp_open+0x20c/0x470
[   53.057259][ T6424]  ? __pfx_do_filp_open+0x10/0x10
[   53.058819][ T6424]  ? find_held_lock+0x2d/0x110
[   53.060381][ T6424]  ? alloc_fd+0x41f/0x760
[   53.061612][ T6424]  do_sys_openat2+0x17a/0x1e0
[   53.062868][ T6424]  ? __pfx_do_sys_openat2+0x10/0x10
[   53.064411][ T6424]  ? __fget_files+0x206/0x3a0
[   53.065876][ T6424]  __x64_sys_openat+0x175/0x210
[   53.067120][ T6424]  ? __pfx___x64_sys_openat+0x10/0x10
[   53.068750][ T6424]  ? ksys_write+0x1ba/0x250
[   53.070111][ T6424]  do_syscall_64+0xcd/0x250
[   53.071254][ T6424]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.073203][ T6424] RIP: 0033:0x7fce2c17ff19
[   53.074755][ T6424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.080153][ T6424] RSP: 002b:00007fce2cf17058 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   53.082566][ T6424] RAX: ffffffffffffffda RBX: 00007fce2c345fa0 RCX: 00007fce2c17ff19
[   53.084915][ T6424] RDX: 0000000000000000 RSI: 0000000020000100 RDI: ffffffffffffff9c
[   53.086938][ T6424] RBP: 00007fce2cf170a0 R08: 0000000000000000 R09: 0000000000000000
[   53.088935][ T6424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   53.090838][ T6424] R13: 0000000000000001 R14: 00007fce2c345fa0 R15: 00007ffe16716928
[   53.092794][ T6424]  </TASK>
[   53.113028][ T6427] overlayfs: missing 'lowerdir'
[   53.116475][ T6427] overlayfs: overlapping lowerdir path
[   53.197317][ T6438] overlayfs: overlapping lowerdir path
[   53.257164][ T6445] gfs2: gfs2 mount does not exist
[   53.344768][ T6454] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.348314][ T6454] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.351499][ T6454] bridge0: entered allmulticast mode
[   53.357372][ T6454] bridge_slave_1: left allmulticast mode
[   53.359058][ T6454] bridge_slave_1: left promiscuous mode
[   53.361318][ T6454] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.370847][ T6454] bridge_slave_0: left allmulticast mode
[   53.372714][ T6454] bridge_slave_0: left promiscuous mode
[   53.374402][ T6454] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.438633][ T6462] can: request_module (can-proto-0) failed.
[   53.447938][ T6462] loop1: detected capacity change from 0 to 6
[   53.452407][ T6462] Dev loop1: unable to read RDB block 6
[   53.454990][ T6462]  loop1: unable to read partition table
[   53.457218][ T6462] loop1: partition table beyond EOD, truncated
[   53.459607][ T6462] loop_reread_partitions: partition scan of loop1 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[   53.459607][ T6462] 
) failed (rc=-5)
[   53.530274][ T6457] sp0: Synchronizing with TNC
[   53.629319][ T6485] netlink: 'syz.1.196': attribute type 1 has an invalid length.
[   53.641727][ T6485] 8021q: adding VLAN 0 to HW filter on device bond1
[   53.651207][ T6485] 8021q: adding VLAN 0 to HW filter on device batadv1
[   53.653967][ T6485] bond1: (slave batadv1): making interface the new active one
[   53.656211][ T6485] bond1: (slave batadv1): Enslaving as an active interface with an up link
[   53.778517][ T6506] FAULT_INJECTION: forcing a failure.
[   53.778517][ T6506] name failslab, interval 1, probability 0, space 0, times 0
[   53.783879][ T6506] CPU: 3 UID: 0 PID: 6506 Comm: syz.2.203 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   53.787367][ T6506] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   53.790726][ T6506] Call Trace:
[   53.791840][ T6506]  <TASK>
[   53.792827][ T6506]  dump_stack_lvl+0x16c/0x1f0
[   53.794375][ T6506]  should_fail_ex+0x497/0x5b0
[   53.795898][ T6506]  ? fs_reclaim_acquire+0xae/0x150
[   53.797572][ T6506]  should_failslab+0xc2/0x120
[   53.799073][ T6506]  __kmalloc_cache_noprof+0x68/0x410
[   53.800823][ T6506]  ? snd_seq_port_use_ptr+0x3c/0x1a0
[   53.802543][ T6506]  snd_seq_port_connect+0x61/0x550
[   53.804524][ T6506]  ? _raw_read_unlock+0x28/0x50
[   53.806128][ T6506]  ? check_subscription_permission.isra.0+0xf5/0x240
[   53.808292][ T6506]  snd_seq_ioctl_subscribe_port+0x1fe/0x430
[   53.810229][ T6506]  ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10
[   53.812351][ T6506]  ? mark_held_locks+0x9f/0xe0
[   53.813957][ T6506]  snd_seq_kernel_client_ctl+0x107/0x1c0
[   53.815891][ T6506]  snd_seq_oss_midi_open+0x4c2/0x6d0
[   53.817723][ T6506]  ? __pfx_snd_seq_oss_midi_open+0x10/0x10
[   53.819753][ T6506]  ? lockdep_hardirqs_on+0x7c/0x110
[   53.821504][ T6506]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   53.823533][ T6506]  snd_seq_oss_synth_setup_midi+0x131/0x540
[   53.825527][ T6506]  snd_seq_oss_open+0x893/0xa20
[   53.827307][ T6506]  odev_open+0x6f/0x90
[   53.828655][ T6506]  ? __pfx_odev_open+0x10/0x10
[   53.830238][ T6506]  soundcore_open+0x409/0x580
[   53.831779][ T6506]  ? __pfx_soundcore_open+0x10/0x10
[   53.833486][ T6506]  chrdev_open+0x237/0x6a0
[   53.834959][ T6506]  ? __pfx_chrdev_open+0x10/0x10
[   53.836578][ T6506]  do_dentry_open+0xf59/0x1ea0
[   53.837793][ T6506]  ? __pfx_chrdev_open+0x10/0x10
[   53.838994][ T6506]  ? inode_permission+0xdd/0x5f0
[   53.840253][ T6506]  vfs_open+0x82/0x3f0
[   53.841252][ T6506]  ? may_open+0x1f2/0x400
[   53.842300][ T6506]  path_openat+0x1e6a/0x2d60
[   53.843432][ T6506]  ? __pfx_path_openat+0x10/0x10
[   53.844794][ T6506]  ? __pfx___lock_acquire+0x10/0x10
[   53.846625][ T6506]  ? lock_acquire.part.0+0x11b/0x380
[   53.848483][ T6506]  ? find_held_lock+0x2d/0x110
[   53.850078][ T6506]  do_filp_open+0x20c/0x470
[   53.851244][ T6506]  ? __pfx_do_filp_open+0x10/0x10
[   53.852535][ T6506]  ? find_held_lock+0x2d/0x110
[   53.853706][ T6506]  ? alloc_fd+0x41f/0x760
[   53.854801][ T6506]  do_sys_openat2+0x17a/0x1e0
[   53.855979][ T6506]  ? __pfx_do_sys_openat2+0x10/0x10
[   53.857311][ T6506]  ? __fget_files+0x206/0x3a0
[   53.858455][ T6506]  __x64_sys_openat+0x175/0x210
[   53.859660][ T6506]  ? __pfx___x64_sys_openat+0x10/0x10
[   53.861025][ T6506]  ? ksys_write+0x1ba/0x250
[   53.862149][ T6506]  do_syscall_64+0xcd/0x250
[   53.863255][ T6506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   53.863428][ T5937] Bluetooth: hci3: command tx timeout
[   53.864715][ T6506] RIP: 0033:0x7f98a657ff19
[   53.867527][ T6506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.872147][ T6506] RSP: 002b:00007f98a72f8058 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   53.873915][ T5937] Bluetooth: hci0: command tx timeout
[   53.874298][ T6506] RAX: ffffffffffffffda RBX: 00007f98a6745fa0 RCX: 00007f98a657ff19
[   53.874308][ T6506] RDX: 0000000000000000 RSI: 0000000020000100 RDI: ffffffffffffff9c
[   53.880041][ T6506] RBP: 00007f98a72f80a0 R08: 0000000000000000 R09: 0000000000000000
[   53.882035][ T6506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   53.883950][ T6506] R13: 0000000000000001 R14: 00007f98a6745fa0 R15: 00007ffd24edaa28
[   53.885866][ T6506]  </TASK>
[   53.943001][   T56] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   53.943040][ T5937] Bluetooth: hci2: command tx timeout
[   53.945024][ T5942] Bluetooth: hci1: command tx timeout
[   54.095971][ T6531] netlink: 'syz.0.214': attribute type 1 has an invalid length.
[   54.105026][ T6531] 8021q: adding VLAN 0 to HW filter on device bond1
[   54.106387][   T56] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   54.109658][   T56] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[   54.112529][   T56] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[   54.114770][   T56] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[   54.115759][ T6531] 8021q: adding VLAN 0 to HW filter on device batadv1
[   54.117418][   T56] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[   54.122441][ T6531] bond1: (slave batadv1): making interface the new active one
[   54.125039][   T56] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   54.125053][   T56] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   54.125063][   T56] usb 8-1: Product: syz
[   54.125070][   T56] usb 8-1: Manufacturer: syz
[   54.127293][   T56] cdc_wdm 8-1:1.0: skipping garbage
[   54.129321][ T6531] bond1: (slave batadv1): Enslaving as an active interface with an up link
[   54.130319][   T56] cdc_wdm 8-1:1.0: skipping garbage
[   54.131674][   T56] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[   54.139077][   T56] cdc_wdm 8-1:1.0: Unknown control protocol
[   54.162983][    T9] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   54.218894][ T6541] FAULT_INJECTION: forcing a failure.
[   54.218894][ T6541] name failslab, interval 1, probability 0, space 0, times 0
[   54.222065][ T6541] CPU: 2 UID: 0 PID: 6541 Comm: syz.0.218 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   54.225361][ T6541] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   54.228715][ T6541] Call Trace:
[   54.229783][ T6541]  <TASK>
[   54.230690][ T6541]  dump_stack_lvl+0x16c/0x1f0
[   54.231909][ T6541]  should_fail_ex+0x497/0x5b0
[   54.233315][ T6541]  ? fs_reclaim_acquire+0xae/0x150
[   54.234966][ T6541]  should_failslab+0xc2/0x120
[   54.236196][ T6541]  __kmalloc_cache_noprof+0x68/0x410
[   54.237982][ T6541]  ? snd_seq_port_use_ptr+0x3c/0x1a0
[   54.239639][ T6541]  snd_seq_port_connect+0x61/0x550
[   54.241233][ T6541]  ? _raw_read_unlock+0x28/0x50
[   54.242918][ T6541]  ? check_subscription_permission.isra.0+0xf5/0x240
[   54.245100][ T6541]  snd_seq_ioctl_subscribe_port+0x1fe/0x430
[   54.247126][ T6541]  ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10
[   54.249314][ T6541]  ? mark_held_locks+0x9f/0xe0
[   54.250975][ T6541]  snd_seq_kernel_client_ctl+0x107/0x1c0
[   54.252849][ T6541]  snd_seq_oss_midi_open+0x4c2/0x6d0
[   54.254565][ T6541]  ? __pfx_snd_seq_oss_midi_open+0x10/0x10
[   54.256574][ T6541]  ? lockdep_hardirqs_on+0x7c/0x110
[   54.258278][ T6541]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   54.260119][ T6541]  snd_seq_oss_synth_setup_midi+0x131/0x540
[   54.261969][ T6541]  snd_seq_oss_open+0x893/0xa20
[   54.263651][ T6541]  odev_open+0x6f/0x90
[   54.265092][ T6541]  ? __pfx_odev_open+0x10/0x10
[   54.266712][ T6541]  soundcore_open+0x409/0x580
[   54.268374][ T6541]  ? __pfx_soundcore_open+0x10/0x10
[   54.270205][ T6541]  chrdev_open+0x237/0x6a0
[   54.271744][ T6541]  ? __pfx_chrdev_open+0x10/0x10
[   54.273481][ T6541]  do_dentry_open+0xf59/0x1ea0
[   54.275187][ T6541]  ? __pfx_chrdev_open+0x10/0x10
[   54.276855][ T6541]  ? inode_permission+0xdd/0x5f0
[   54.278553][ T6541]  vfs_open+0x82/0x3f0
[   54.279987][ T6541]  ? may_open+0x1f2/0x400
[   54.281486][ T6541]  path_openat+0x1e6a/0x2d60
[   54.283116][ T6541]  ? __pfx_path_openat+0x10/0x10
[   54.284827][ T6541]  ? __pfx___lock_acquire+0x10/0x10
[   54.286628][ T6541]  ? lock_acquire.part.0+0x11b/0x380
[   54.288488][ T6541]  ? find_held_lock+0x2d/0x110
[   54.290180][ T6541]  do_filp_open+0x20c/0x470
[   54.291745][ T6541]  ? __pfx_do_filp_open+0x10/0x10
[   54.293500][ T6541]  ? find_held_lock+0x2d/0x110
[   54.295152][ T6541]  ? alloc_fd+0x41f/0x760
[   54.296606][ T6541]  do_sys_openat2+0x17a/0x1e0
[   54.298174][ T6541]  ? __pfx_do_sys_openat2+0x10/0x10
[   54.300048][ T6541]  ? __fget_files+0x206/0x3a0
[   54.301726][ T6541]  __x64_sys_openat+0x175/0x210
[   54.303463][ T6541]  ? __pfx___x64_sys_openat+0x10/0x10
[   54.305308][ T6541]  ? ksys_write+0x1ba/0x250
[   54.306887][ T6541]  do_syscall_64+0xcd/0x250
[   54.308504][ T6541]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   54.310360][ T6541] RIP: 0033:0x7f7f55b7ff19
[   54.311884][ T6541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.312978][    T9] usb 7-1: Using ep0 maxpacket: 16
[   54.318306][ T6541] RSP: 002b:00007f7f568b1058 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   54.318330][ T6541] RAX: ffffffffffffffda RBX: 00007f7f55d45fa0 RCX: 00007f7f55b7ff19
[   54.318343][ T6541] RDX: 0000000000000000 RSI: 0000000020000100 RDI: ffffffffffffff9c
[   54.318356][ T6541] RBP: 00007f7f568b10a0 R08: 0000000000000000 R09: 0000000000000000
[   54.320952][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   54.322200][ T6541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   54.322215][ T6541] R13: 0000000000000001 R14: 00007f7f55d45fa0 R15: 00007ffdaa20e948
[   54.324362][    T9] usb 7-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[   54.326978][ T6541]  </TASK>
[   54.327063][    C2] vkms_vblank_simulate: vblank timer overrun
[   54.329747][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   54.344704][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[   54.346557][    T9] usb 7-1: config 0 descriptor??
[   54.347448][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[   54.353729][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[   54.355863][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[   54.358062][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[   54.360238][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[   54.363586][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[   54.365738][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[   54.367940][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[   54.370023][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[   54.372218][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[   54.374386][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[   54.376537][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[   54.378634][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[   54.380771][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[   54.382894][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[   54.385042][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[   54.387126][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[   54.389280][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[   54.391412][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[   54.395120][   T56] usb 8-1: USB disconnect, device number 2
[   54.397050][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[   54.404621][ T6543] Mount JFS Failure: -22
[   54.463000][   T25] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   54.613554][   T25] usb 6-1: Using ep0 maxpacket: 8
[   54.616954][   T25] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[   54.619466][   T25] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   54.621823][   T25] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   54.624654][   T25] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   54.627042][   T25] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   54.630156][   T25] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   54.632399][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   54.759379][    T9] hid-steam 0003:28DE:1102.0003: unknown main item tag 0x0
[   54.761314][    T9] hid-steam 0003:28DE:1102.0003: unknown main item tag 0x0
[   54.764356][    T9] hid-steam 0003:28DE:1102.0003: : USB HID v0.00 Device [HID 28de:1102] on usb-dummy_hcd.2-1/input0
[   54.823434][    T9] hid-steam 0003:28DE:1102.0003: Steam Controller 'XXXXXXXXXX' connected
[   54.827639][    T9] input: Steam Controller as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:28DE:1102.0003/input/input6
[   54.840119][   T25] usb 6-1: usb_control_msg returned -32
[   54.840471][    T9] hid-steam 0003:28DE:1102.0004: unknown main item tag 0x0
[   54.841878][   T25] usbtmc 6-1:16.0: can't read capabilities
[   54.846474][    T9] hid-steam 0003:28DE:1102.0004: unknown main item tag 0x0
[   54.855210][    T9] hid-steam 0003:28DE:1102.0004: hidraw1: USB HID v0.00 Device [HID 28de:1102] on usb-dummy_hcd.2-1/input0
[   54.985036][ T6516] netlink: 12 bytes leftover after parsing attributes in process `syz.2.206'.
[   55.120395][ T6576] netlink: 'syz.0.230': attribute type 1 has an invalid length.
[   55.134788][ T6576] 8021q: adding VLAN 0 to HW filter on device bond2
[   55.145266][ T6576] 8021q: adding VLAN 0 to HW filter on device batadv2
[   55.147709][ T6576] bond2: (slave batadv2): making interface the new active one
[   55.151489][ T6576] bond2: (slave batadv2): Enslaving as an active interface with an up link
[   55.222316][ T6586] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   55.226092][ T6586] tmpfs: Bad value for 'mpol'
[   55.256226][ T6586] kvm: apic: phys broadcast and lowest prio
[   55.258398][ T6591] FAULT_INJECTION: forcing a failure.
[   55.258398][ T6591] name failslab, interval 1, probability 0, space 0, times 0
[   55.262251][ T6591] CPU: 1 UID: 0 PID: 6591 Comm: syz.3.237 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   55.264914][ T6591] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.267572][ T6591] Call Trace:
[   55.268434][ T6591]  <TASK>
[   55.269176][ T6591]  dump_stack_lvl+0x16c/0x1f0
[   55.270378][ T6591]  should_fail_ex+0x497/0x5b0
[   55.271582][ T6591]  ? fs_reclaim_acquire+0xae/0x150
[   55.272869][ T6591]  should_failslab+0xc2/0x120
[   55.274060][ T6591]  __kmalloc_cache_noprof+0x68/0x410
[   55.275399][ T6591]  ? snd_seq_port_use_ptr+0x3c/0x1a0
[   55.276740][ T6591]  snd_seq_port_connect+0x61/0x550
[   55.278026][ T6591]  ? _raw_read_unlock+0x28/0x50
[   55.279278][ T6591]  ? check_subscription_permission.isra.0+0xf5/0x240
[   55.281319][ T6591]  snd_seq_ioctl_subscribe_port+0x1fe/0x430
[   55.283159][ T6591]  ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10
[   55.285461][ T6591]  ? mark_held_locks+0x9f/0xe0
[   55.287032][ T6591]  snd_seq_kernel_client_ctl+0x107/0x1c0
[   55.288907][ T6591]  snd_seq_oss_midi_open+0x4c2/0x6d0
[   55.290820][ T6591]  ? __pfx_snd_seq_oss_midi_open+0x10/0x10
[   55.292301][ T6591]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   55.294026][ T6591]  snd_seq_oss_synth_setup_midi+0x131/0x540
[   55.295766][ T6591]  snd_seq_oss_open+0x893/0xa20
[   55.297115][ T6591]  odev_open+0x6f/0x90
[   55.298300][ T6591]  ? __pfx_odev_open+0x10/0x10
[   55.299799][ T6591]  soundcore_open+0x409/0x580
[   55.301117][ T6591]  ? __pfx_soundcore_open+0x10/0x10
[   55.302806][ T6591]  chrdev_open+0x237/0x6a0
[   55.304316][ T6591]  ? __pfx_chrdev_open+0x10/0x10
[   55.305950][ T6591]  do_dentry_open+0xf59/0x1ea0
[   55.307203][ T6591]  ? __pfx_chrdev_open+0x10/0x10
[   55.308452][ T6591]  ? inode_permission+0xdd/0x5f0
[   55.309705][ T6591]  vfs_open+0x82/0x3f0
[   55.310824][ T6591]  ? may_open+0x1f2/0x400
[   55.312264][ T6591]  path_openat+0x1e6a/0x2d60
[   55.313908][ T6591]  ? __pfx_path_openat+0x10/0x10
[   55.315331][ T6591]  ? __pfx___lock_acquire+0x10/0x10
[   55.317003][ T6591]  ? lock_acquire.part.0+0x11b/0x380
[   55.318681][ T6591]  ? find_held_lock+0x2d/0x110
[   55.320107][ T6591]  do_filp_open+0x20c/0x470
[   55.321291][ T6591]  ? __pfx_do_filp_open+0x10/0x10
[   55.322703][ T6591]  ? find_held_lock+0x2d/0x110
[   55.324305][ T6591]  ? alloc_fd+0x41f/0x760
[   55.325496][ T6591]  do_sys_openat2+0x17a/0x1e0
[   55.326968][ T6591]  ? __pfx_do_sys_openat2+0x10/0x10
[   55.328807][ T6591]  ? __fget_files+0x206/0x3a0
[   55.330197][ T6591]  __x64_sys_openat+0x175/0x210
[   55.331553][ T6591]  ? __pfx___x64_sys_openat+0x10/0x10
[   55.332997][ T6591]  ? ksys_write+0x1ba/0x250
[   55.334156][ T6591]  do_syscall_64+0xcd/0x250
[   55.335311][ T6591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   55.336813][ T6591] RIP: 0033:0x7fe5ea77ff19
[   55.337932][ T6591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   55.342722][ T6591] RSP: 002b:00007fe5eb508058 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   55.344974][ T6591] RAX: ffffffffffffffda RBX: 00007fe5ea945fa0 RCX: 00007fe5ea77ff19
[   55.347580][ T6591] RDX: 0000000000000000 RSI: 0000000020000100 RDI: ffffffffffffff9c
[   55.349684][ T6591] RBP: 00007fe5eb5080a0 R08: 0000000000000000 R09: 0000000000000000
[   55.351703][ T6591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   55.353701][ T6591] R13: 0000000000000001 R14: 00007fe5ea945fa0 R15: 00007ffd7876c2a8
[   55.355714][ T6591]  </TASK>
[   55.465637][   T40] kauditd_printk_skb: 60 callbacks suppressed
[   55.465674][   T40] audit: type=1400 audit(1733267061.289:297): avc:  denied  { unmount } for  pid=5940 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[   55.493193][ T5942] Bluetooth: hci2: Received unexpected HCI Event 0x00
[   55.504189][ T6596] netlink: 'syz.0.239': attribute type 27 has an invalid length.
[   55.507201][ T6597] netlink: 'syz.0.239': attribute type 27 has an invalid length.
[   55.524478][   T40] audit: type=1400 audit(1733267061.349:298): avc:  denied  { map } for  pid=6600 comm="syz.2.240" path="/63/file0" dev="tmpfs" ino=367 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   55.548709][ T6596] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.551284][ T6596] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.668006][ T6596] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   55.685789][ T6596] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   55.758650][ T6596] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   55.761190][ T6596] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   55.764743][ T6596] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   55.767131][ T6596] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   55.909154][   T62] usb 6-1: USB disconnect, device number 2
[   55.933024][   T40] audit: type=1400 audit(1733267061.749:299): avc:  denied  { watch watch_reads } for  pid=6616 comm="syz.3.246" path="/72" dev="tmpfs" ino=390 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   56.042600][ T6628] netlink: 'syz.1.248': attribute type 1 has an invalid length.
[   56.045337][   T40] audit: type=1400 audit(1733267061.859:300): avc:  denied  { create } for  pid=6629 comm="syz.0.249" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   56.070412][ T6628] 8021q: adding VLAN 0 to HW filter on device bond2
[   56.080265][ T6628] 8021q: adding VLAN 0 to HW filter on device batadv2
[   56.084111][ T6628] bond2: (slave batadv2): making interface the new active one
[   56.087394][ T6628] bond2: (slave batadv2): Enslaving as an active interface with an up link
[   56.199596][ T6643] FAULT_INJECTION: forcing a failure.
[   56.199596][ T6643] name failslab, interval 1, probability 0, space 0, times 0
[   56.203558][ T6643] CPU: 1 UID: 0 PID: 6643 Comm: syz.0.254 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   56.206139][ T6643] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   56.208729][ T6643] Call Trace:
[   56.209595][ T6643]  <TASK>
[   56.210330][ T6643]  dump_stack_lvl+0x16c/0x1f0
[   56.211788][ T6643]  should_fail_ex+0x497/0x5b0
[   56.212982][ T6643]  ? fs_reclaim_acquire+0xae/0x150
[   56.214260][ T6643]  should_failslab+0xc2/0x120
[   56.215464][ T6643]  __kmalloc_cache_noprof+0x68/0x410
[   56.216897][ T6643]  ? snd_seq_port_use_ptr+0x3c/0x1a0
[   56.218605][ T6643]  snd_seq_port_connect+0x61/0x550
[   56.220226][ T6643]  ? _raw_read_unlock+0x28/0x50
[   56.221416][ T6643]  ? check_subscription_permission.isra.0+0xf5/0x240
[   56.223058][ T6643]  snd_seq_ioctl_subscribe_port+0x1fe/0x430
[   56.224541][ T6643]  ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10
[   56.226226][ T6643]  ? mark_held_locks+0x9f/0xe0
[   56.227779][ T6643]  snd_seq_kernel_client_ctl+0x107/0x1c0
[   56.229563][ T6643]  snd_seq_oss_midi_open+0x4c2/0x6d0
[   56.231315][ T6643]  ? __pfx_snd_seq_oss_midi_open+0x10/0x10
[   56.233210][ T6643]  ? lockdep_hardirqs_on+0x7c/0x110
[   56.234571][ T6643]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   56.236285][ T6643]  snd_seq_oss_synth_setup_midi+0x131/0x540
[   56.238247][ T6643]  snd_seq_oss_open+0x893/0xa20
[   56.239725][ T6643]  odev_open+0x6f/0x90
[   56.240820][ T6643]  ? __pfx_odev_open+0x10/0x10
[   56.241805][ T6646] netlink: 8 bytes leftover after parsing attributes in process `syz.1.255'.
[   56.242602][ T6643]  soundcore_open+0x409/0x580
[   56.246103][ T6643]  ? __pfx_soundcore_open+0x10/0x10
[   56.247422][ T6643]  chrdev_open+0x237/0x6a0
[   56.248553][ T6643]  ? __pfx_chrdev_open+0x10/0x10
[   56.249832][ T6643]  do_dentry_open+0xf59/0x1ea0
[   56.251058][ T6643]  ? __pfx_chrdev_open+0x10/0x10
[   56.252333][ T6643]  ? inode_permission+0xdd/0x5f0
[   56.253600][ T6643]  vfs_open+0x82/0x3f0
[   56.254643][ T6643]  ? may_open+0x1f2/0x400
[   56.255708][ T6643]  path_openat+0x1e6a/0x2d60
[   56.256857][ T6643]  ? __pfx_path_openat+0x10/0x10
[   56.258146][ T6643]  ? __pfx___lock_acquire+0x10/0x10
[   56.259505][ T6643]  ? lock_acquire.part.0+0x11b/0x380
[   56.261262][ T6643]  ? find_held_lock+0x2d/0x110
[   56.262711][ T6643]  do_filp_open+0x20c/0x470
[   56.263845][ T6643]  ? __pfx_do_filp_open+0x10/0x10
[   56.265089][ T6643]  ? find_held_lock+0x2d/0x110
[   56.266326][ T6643]  ? alloc_fd+0x41f/0x760
[   56.267399][ T6643]  do_sys_openat2+0x17a/0x1e0
[   56.268559][ T6643]  ? __pfx_do_sys_openat2+0x10/0x10
[   56.269843][ T6643]  ? __fget_files+0x206/0x3a0
[   56.271043][ T6643]  __x64_sys_openat+0x175/0x210
[   56.272235][ T6643]  ? __pfx___x64_sys_openat+0x10/0x10
[   56.273543][ T6643]  ? ksys_write+0x1ba/0x250
[   56.274675][ T6643]  do_syscall_64+0xcd/0x250
[   56.275833][ T6643]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.277294][ T6643] RIP: 0033:0x7f7f55b7ff19
[   56.278419][ T6643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.283143][ T6643] RSP: 002b:00007f7f568b1058 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   56.285194][ T6643] RAX: ffffffffffffffda RBX: 00007f7f55d45fa0 RCX: 00007f7f55b7ff19
[   56.287282][ T6643] RDX: 0000000000000000 RSI: 0000000020000100 RDI: ffffffffffffff9c
[   56.289216][ T6643] RBP: 00007f7f568b10a0 R08: 0000000000000000 R09: 0000000000000000
[   56.291165][ T6643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   56.293100][ T6643] R13: 0000000000000001 R14: 00007f7f55d45fa0 R15: 00007ffdaa20e948
[   56.295157][ T6643]  </TASK>
[   56.306970][   T40] audit: type=1326 audit(1733267062.129:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6644 comm="syz.1.255" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fce2c17ff19 code=0x0
[   56.316339][ T6646] netlink: 'syz.1.255': attribute type 2 has an invalid length.
[   56.318314][ T6646] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check.
[   56.386518][   T40] audit: type=1400 audit(1733267062.209:302): avc:  denied  { mount } for  pid=6650 comm="syz.0.257" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[   56.396749][ T6651] syz.0.257 uses obsolete (PF_INET,SOCK_PACKET)
[   56.427771][ T6656] netlink: 36 bytes leftover after parsing attributes in process `syz.1.258'.
[   56.489879][   T40] audit: type=1400 audit(1733267062.309:303): avc:  denied  { add_name } for  pid=6663 comm="syz.1.259" name="cgroup.kill" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   56.497662][   T40] audit: type=1400 audit(1733267062.309:304): avc:  denied  { create } for  pid=6663 comm="syz.1.259" name="cgroup.kill" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   56.507252][   T40] audit: type=1400 audit(1733267062.309:305): avc:  denied  { associate } for  pid=6663 comm="syz.1.259" name="cgroup.kill" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   56.514811][   T40] audit: type=1400 audit(1733267062.339:306): avc:  denied  { unmount } for  pid=5940 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1
[   56.529990][ T6664] netfs: Couldn't get user pages (rc=-14)
[   56.532042][ T6666] netlink: 'syz.0.261': attribute type 1 has an invalid length.
[   56.554267][ T6666] 8021q: adding VLAN 0 to HW filter on device bond3
[   56.564436][ T6666] 8021q: adding VLAN 0 to HW filter on device batadv3
[   56.568860][ T6666] bond3: (slave batadv3): making interface the new active one
[   56.572167][ T6666] bond3: (slave batadv3): Enslaving as an active interface with an up link
[   56.723911][ T6679] netlink: 36 bytes leftover after parsing attributes in process `syz.3.267'.
[   56.733287][ T6683] FAULT_INJECTION: forcing a failure.
[   56.733287][ T6683] name failslab, interval 1, probability 0, space 0, times 0
[   56.736471][ T6683] CPU: 2 UID: 0 PID: 6683 Comm: syz.0.268 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   56.739074][ T6683] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   56.741771][ T6683] Call Trace:
[   56.742706][ T6683]  <TASK>
[   56.743499][ T6683]  dump_stack_lvl+0x16c/0x1f0
[   56.744655][ T6683]  should_fail_ex+0x497/0x5b0
[   56.745849][ T6683]  ? fs_reclaim_acquire+0xae/0x150
[   56.747224][ T6683]  should_failslab+0xc2/0x120
[   56.748424][ T6683]  __kmalloc_cache_noprof+0x68/0x410
[   56.749743][ T6683]  ? snd_seq_port_use_ptr+0x3c/0x1a0
[   56.751051][ T6683]  snd_seq_port_connect+0x61/0x550
[   56.752449][ T6683]  ? _raw_read_unlock+0x28/0x50
[   56.753757][ T6683]  ? check_subscription_permission.isra.0+0xf5/0x240
[   56.755432][ T6683]  snd_seq_ioctl_subscribe_port+0x1fe/0x430
[   56.756920][ T6683]  ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10
[   56.758907][ T6683]  ? mark_held_locks+0x9f/0xe0
[   56.760240][ T6683]  snd_seq_kernel_client_ctl+0x107/0x1c0
[   56.761675][ T6683]  snd_seq_oss_midi_open+0x4c2/0x6d0
[   56.763153][ T6683]  ? __pfx_snd_seq_oss_midi_open+0x10/0x10
[   56.764673][ T6683]  ? lockdep_hardirqs_on+0x7c/0x110
[   56.766012][ T6683]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   56.767555][ T6683]  snd_seq_oss_synth_setup_midi+0x131/0x540
[   56.769059][ T6683]  snd_seq_oss_open+0x893/0xa20
[   56.770253][ T6683]  odev_open+0x6f/0x90
[   56.771275][ T6683]  ? __pfx_odev_open+0x10/0x10
[   56.772569][ T6683]  soundcore_open+0x409/0x580
[   56.773814][ T6683]  ? __pfx_soundcore_open+0x10/0x10
[   56.775400][ T6683]  chrdev_open+0x237/0x6a0
[   56.776819][ T6683]  ? __pfx_chrdev_open+0x10/0x10
[   56.778408][ T6683]  do_dentry_open+0xf59/0x1ea0
[   56.779957][ T6683]  ? __pfx_chrdev_open+0x10/0x10
[   56.781523][ T6683]  ? inode_permission+0xdd/0x5f0
[   56.783178][ T6683]  vfs_open+0x82/0x3f0
[   56.784388][ T6683]  ? may_open+0x1f2/0x400
[   56.785461][ T6683]  path_openat+0x1e6a/0x2d60
[   56.786602][ T6683]  ? __pfx_path_openat+0x10/0x10
[   56.788081][ T6683]  ? __pfx___lock_acquire+0x10/0x10
[   56.789768][ T6683]  ? lock_acquire.part.0+0x11b/0x380
[   56.791526][ T6683]  ? find_held_lock+0x2d/0x110
[   56.792761][ T6683]  do_filp_open+0x20c/0x470
[   56.793923][ T6683]  ? __pfx_do_filp_open+0x10/0x10
[   56.795204][ T6683]  ? find_held_lock+0x2d/0x110
[   56.796595][ T6683]  ? alloc_fd+0x41f/0x760
[   56.797759][ T6683]  do_sys_openat2+0x17a/0x1e0
[   56.798971][ T6683]  ? __pfx_do_sys_openat2+0x10/0x10
[   56.800321][ T6683]  ? __fget_files+0x206/0x3a0
[   56.801649][ T6683]  __x64_sys_openat+0x175/0x210
[   56.802928][ T6683]  ? __pfx___x64_sys_openat+0x10/0x10
[   56.804267][ T6683]  ? ksys_write+0x1ba/0x250
[   56.805381][ T6683]  do_syscall_64+0xcd/0x250
[   56.806576][ T6683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.808003][ T6683] RIP: 0033:0x7f7f55b7ff19
[   56.809090][ T6683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.813853][ T6683] RSP: 002b:00007f7f568b1058 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   56.815873][ T6683] RAX: ffffffffffffffda RBX: 00007f7f55d45fa0 RCX: 00007f7f55b7ff19
[   56.817818][ T6683] RDX: 0000000000000000 RSI: 0000000020000100 RDI: ffffffffffffff9c
[   56.819723][ T6683] RBP: 00007f7f568b10a0 R08: 0000000000000000 R09: 0000000000000000
[   56.821782][ T6683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   56.822538][ T6685] netlink: 120 bytes leftover after parsing attributes in process `syz.3.269'.
[   56.823762][ T6683] R13: 0000000000000001 R14: 00007f7f55d45fa0 R15: 00007ffdaa20e948
[   56.823779][ T6683]  </TASK>
[   56.823856][    C2] vkms_vblank_simulate: vblank timer overrun
[   56.988583][ T6703] netlink: 'syz.2.274': attribute type 1 has an invalid length.
[   57.000113][ T6703] 8021q: adding VLAN 0 to HW filter on device bond3
[   57.009822][ T6703] 8021q: adding VLAN 0 to HW filter on device batadv3
[   57.015947][ T6703] bond3: (slave batadv3): making interface the new active one
[   57.018763][ T6703] bond3: (slave batadv3): Enslaving as an active interface with an up link
[   57.125862][ T6712] netlink: 36 bytes leftover after parsing attributes in process `syz.1.278'.
[   57.150513][ T6720] FAULT_INJECTION: forcing a failure.
[   57.150513][ T6720] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   57.156068][ T6720] CPU: 3 UID: 0 PID: 6720 Comm: syz.0.281 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   57.159182][ T6720] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   57.162259][ T6720] Call Trace:
[   57.163413][ T6720]  <TASK>
[   57.164295][ T6720]  dump_stack_lvl+0x16c/0x1f0
[   57.165734][ T6720]  should_fail_ex+0x497/0x5b0
[   57.167094][ T6720]  _copy_to_user+0x32/0xd0
[   57.168396][ T6720]  simple_read_from_buffer+0xd0/0x160
[   57.169838][ T6720]  proc_fail_nth_read+0x198/0x270
[   57.171198][ T6720]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   57.172642][ T6720]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   57.174050][ T6720]  vfs_read+0x1df/0xbe0
[   57.175143][ T6720]  ? __fget_files+0x1fc/0x3a0
[   57.176359][ T6720]  ? __pfx___mutex_lock+0x10/0x10
[   57.177602][ T6720]  ? __pfx_vfs_read+0x10/0x10
[   57.178882][ T6720]  ? __fget_files+0x206/0x3a0
[   57.180078][ T6720]  ksys_read+0x12b/0x250
[   57.181135][ T6720]  ? __pfx_ksys_read+0x10/0x10
[   57.182444][ T6720]  do_syscall_64+0xcd/0x250
[   57.183585][ T6720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.185367][ T6720] RIP: 0033:0x7f7f55b7e92c
[   57.186829][ T6720] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   57.193108][ T6720] RSP: 002b:00007f7f568b1050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   57.195843][ T6720] RAX: ffffffffffffffda RBX: 00007f7f55d45fa0 RCX: 00007f7f55b7e92c
[   57.198531][ T6720] RDX: 000000000000000f RSI: 00007f7f568b10b0 RDI: 0000000000000003
[   57.201170][ T6720] RBP: 00007f7f568b10a0 R08: 0000000000000000 R09: 0000000000000000
[   57.203945][ T6720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   57.206779][ T6720] R13: 0000000000000001 R14: 00007f7f55d45fa0 R15: 00007ffdaa20e948
[   57.209560][ T6720]  </TASK>
[   57.275816][ T6729] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[   57.363451][ T6740] netlink: 'syz.1.289': attribute type 1 has an invalid length.
[   57.373329][ T6740] 8021q: adding VLAN 0 to HW filter on device bond3
[   57.380494][ T6740] 8021q: adding VLAN 0 to HW filter on device batadv3
[   57.384229][ T6739] netlink: 36 bytes leftover after parsing attributes in process `syz.2.290'.
[   57.386585][ T6740] bond3: (slave batadv3): making interface the new active one
[   57.389744][ T6740] bond3: (slave batadv3): Enslaving as an active interface with an up link
[   57.657276][ T6770] netlink: 36 bytes leftover after parsing attributes in process `syz.1.299'.
[   57.702849][ T6778] 8021q: adding VLAN 0 to HW filter on device bond4
[   57.710982][ T6778] 8021q: adding VLAN 0 to HW filter on device batadv4
[   57.723392][ T6778] bond4: (slave batadv4): making interface the new active one
[   57.726350][ T6778] bond4: (slave batadv4): Enslaving as an active interface with an up link
[   57.854501][ T6800] netlink: 36 bytes leftover after parsing attributes in process `syz.3.310'.
[   57.961299][ T6817] 8021q: adding VLAN 0 to HW filter on device bond2
[   57.968570][ T6817] 8021q: adding VLAN 0 to HW filter on device batadv2
[   57.971066][ T6817] bond2: (slave batadv2): making interface the new active one
[   57.974580][ T6817] bond2: (slave batadv2): Enslaving as an active interface with an up link
[   58.084142][ T6829] sp0: Synchronizing with TNC
[   58.086514][ T6827] [U] è
[   58.131941][ T6841] __nla_validate_parse: 1 callbacks suppressed
[   58.131958][ T6841] netlink: 56 bytes leftover after parsing attributes in process `syz.0.323'.
[   58.183784][ T6845] 8021q: adding VLAN 0 to HW filter on device bond4
[   58.193388][ T6845] 8021q: adding VLAN 0 to HW filter on device batadv4
[   58.197437][ T6845] bond4: (slave batadv4): making interface the new active one
[   58.198720][ T6847] MTD: Couldn't look up 'mountinfo': -2
[   58.200591][ T6845] bond4: (slave batadv4): Enslaving as an active interface with an up link
[   58.732992][   T35] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   58.778128][ T5937] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   58.786133][ T5937] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   58.800385][ T5937] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   58.804216][ T5937] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   58.810249][ T5937] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   58.813338][ T5937] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   58.892995][   T35] usb 5-1: Using ep0 maxpacket: 32
[   58.896146][   T35] usb 5-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[   58.898586][   T35] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   58.902093][   T35] usb 5-1: config 0 descriptor??
[   58.915909][   T35] as10x_usb: device has been detected
[   58.918275][   T35] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[   58.947796][   T35] usb 5-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[   58.976189][   T35] as10x_usb: error during firmware upload part1
[   58.978607][   T35] Registered device nBox DVB-T Dongle
[   59.119439][   T25] usb 5-1: USB disconnect, device number 3
[   59.167064][   T25] Unregistered device nBox DVB-T Dongle
[   59.170088][   T25] as10x_usb: device has been disconnected
[   59.677194][ T6890] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[   59.679956][ T6890] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   59.681810][ T6876] chnl_net:caif_netlink_parms(): no params data found
[   59.761049][ T6876] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.763173][ T6876] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.765095][ T6876] bridge_slave_0: entered allmulticast mode
[   59.768067][ T6876] bridge_slave_0: entered promiscuous mode
[   59.770645][ T6876] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.772720][ T6876] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.775434][ T6876] bridge_slave_1: entered allmulticast mode
[   59.787084][ T6876] bridge_slave_1: entered promiscuous mode
[   59.789424][ T6902] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   59.791458][ T6902] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   59.813166][ T6876] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.816911][ T6876] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.857068][ T6876] team0: Port device team_slave_0 added
[   59.859947][ T6876] team0: Port device team_slave_1 added
[   59.907065][ T6876] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.909059][ T6876] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.921449][ T6876] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.926787][ T6876] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.929193][ T6876] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.938563][ T6876] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   60.005278][ T6876] hsr_slave_0: entered promiscuous mode
[   60.008161][ T6876] hsr_slave_1: entered promiscuous mode
[   60.010718][ T6876] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   60.014856][ T6876] Cannot create hsr debugfs directory
[   60.121237][ T6876] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   60.128114][ T6876] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   60.135510][ T6876] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   60.144299][ T6876] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   60.170239][ T6876] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.173187][ T6876] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.176203][ T6876] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.177988][ T6876] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.230535][ T6876] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.244425][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.248311][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.304567][ T6939] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6939 comm=syz.1.359
[   60.306882][ T6876] 8021q: adding VLAN 0 to HW filter on device team0
[   60.337290][ T6941] macvtap1: entered promiscuous mode
[   60.339059][ T6941] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode
[   60.340984][ T6941] macvtap1: entered allmulticast mode
[   60.342412][ T6941] mac80211_hwsim hwsim8 wlan0: entered allmulticast mode
[   60.355231][ T6941] mac80211_hwsim hwsim8 wlan0: left allmulticast mode
[   60.357117][ T6941] mac80211_hwsim hwsim8 wlan0: left promiscuous mode
[   60.404128][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.406196][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.416534][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.418410][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.458981][ T6876] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   60.462243][ T6876] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   60.649243][ T6876] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.819003][ T6876] veth0_vlan: entered promiscuous mode
[   60.828343][ T6876] veth1_vlan: entered promiscuous mode
[   60.848238][ T6876] veth0_macvtap: entered promiscuous mode
[   60.860997][ T6876] veth1_macvtap: entered promiscuous mode
[   60.879870][ T6876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.884362][ T6876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.887920][ T6876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.895958][ T6876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.899547][ T6876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.904804][   T40] kauditd_printk_skb: 41 callbacks suppressed
[   60.904813][   T40] audit: type=1400 audit(1733267066.729:348): avc:  denied  { create } for  pid=6969 comm="syz.0.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   60.905234][   T40] audit: type=1400 audit(1733267066.729:349): avc:  denied  { connect } for  pid=6969 comm="syz.0.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   60.905402][ T5942] Bluetooth: hci3: command tx timeout
[   60.906614][   T40] audit: type=1400 audit(1733267066.729:350): avc:  denied  { setopt } for  pid=6969 comm="syz.0.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   60.906782][   T40] audit: type=1400 audit(1733267066.729:351): avc:  denied  { write } for  pid=6969 comm="syz.0.365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   60.913571][ T6876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.933525][ T6876] batman_adv: batadv0: Interface activated: batadv_slave_0
[   60.946448][ T6876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.949876][ T6876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.953564][ T6876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.957225][ T6876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.960821][ T6876] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.964851][ T6876] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.969290][ T6876] batman_adv: batadv0: Interface activated: batadv_slave_1
[   60.975168][ T6876] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.978229][ T6876] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.981332][ T6876] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.981582][ T6974] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1011 sclass=netlink_route_socket pid=6974 comm=syz.0.368
[   60.984700][ T6876] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.989855][ T6974] tmpfs: Bad value for 'mpol'
[   61.047789][   T77] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.049935][   T77] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.067954][   T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.072651][   T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.102945][   T40] audit: type=1400 audit(1733267066.909:352): avc:  denied  { mounton } for  pid=6876 comm="syz-executor" path="/syzkaller.DSS7Jz/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   61.161573][ T6992] validate_nla: 4 callbacks suppressed
[   61.161593][ T6992] netlink: 'syz.4.338': attribute type 1 has an invalid length.
[   61.234803][   T40] audit: type=1400 audit(1733267067.059:353): avc:  denied  { read } for  pid=7000 comm="syz.1.377" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   61.244041][   T40] audit: type=1400 audit(1733267067.059:354): avc:  denied  { open } for  pid=7000 comm="syz.1.377" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   61.252431][   T40] audit: type=1400 audit(1733267067.059:355): avc:  denied  { ioctl } for  pid=7000 comm="syz.1.377" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x9379 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[   61.307846][ T7004] ªªªªª: renamed from bond_slave_1 (while UP)
[   61.321691][ T7004] netlink: 12 bytes leftover after parsing attributes in process `syz.1.378'.
[   61.516394][ T7026] Cannot find add_set index 1 as target
[   61.521115][ T7026] dccp_invalid_packet: P.CsCov 4 exceeds packet length 28
[   61.523765][ T7026] netlink: 60 bytes leftover after parsing attributes in process `syz.2.387'.
[   61.533059][   T25] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   61.597014][ T7034] netlink: 'syz.1.390': attribute type 1 has an invalid length.
[   61.612218][ T7034] 8021q: adding VLAN 0 to HW filter on device bond5
[   61.615860][   T40] audit: type=1400 audit(1733267067.439:356): avc:  denied  { getopt } for  pid=7029 comm="syz.2.388" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   61.634625][ T7034] 8021q: adding VLAN 0 to HW filter on device batadv5
[   61.638609][ T7034] bond5: (slave batadv5): making interface the new active one
[   61.641424][ T7034] bond5: (slave batadv5): Enslaving as an active interface with an up link
[   61.662169][   T40] audit: type=1400 audit(1733267067.479:357): avc:  denied  { create } for  pid=7039 comm="syz.4.392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   61.670710][ T7041] overlay: ./file0 is not a directory
[   61.703036][   T25] usb 5-1: Using ep0 maxpacket: 32
[   61.707487][   T25] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[   61.709739][   T25] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   61.711969][   T25] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[   61.721617][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   61.724519][   T25] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   61.726467][ T7045] FAULT_INJECTION: forcing a failure.
[   61.726467][ T7045] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.727600][   T25] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   61.730567][ T7045] CPU: 1 UID: 0 PID: 7045 Comm: syz.1.394 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   61.730581][ T7045] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.730591][ T7045] Call Trace:
[   61.730597][ T7045]  <TASK>
[   61.742293][ T7045]  dump_stack_lvl+0x16c/0x1f0
[   61.742377][   T25] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   61.743731][ T7045]  should_fail_ex+0x497/0x5b0
[   61.743764][ T7045]  _copy_from_user+0x2e/0xd0
[   61.743783][ T7045]  copy_msghdr_from_user+0x99/0x160
[   61.751121][ T7045]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   61.753218][ T7045]  ___sys_sendmsg+0xff/0x1e0
[   61.754962][ T7045]  ? __pfx____sys_sendmsg+0x10/0x10
[   61.756765][ T7045]  ? __pfx_lock_release+0x10/0x10
[   61.758442][ T7045]  ? trace_lock_acquire+0x14e/0x1f0
[   61.760262][ T7045]  ? __fget_files+0x206/0x3a0
[   61.761917][ T7045]  __sys_sendmsg+0x16e/0x220
[   61.763396][ T7045]  ? __pfx___sys_sendmsg+0x10/0x10
[   61.764765][ T7045]  do_syscall_64+0xcd/0x250
[   61.765970][ T7045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.767534][ T7045] RIP: 0033:0x7fce2c17ff19
[   61.768696][ T7045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.773608][ T7045] RSP: 002b:00007fce2cf17058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   61.775766][ T7045] RAX: ffffffffffffffda RBX: 00007fce2c345fa0 RCX: 00007fce2c17ff19
[   61.777821][ T7045] RDX: 0000000008004090 RSI: 0000000020000280 RDI: 0000000000000003
[   61.779880][ T7045] RBP: 00007fce2cf170a0 R08: 0000000000000000 R09: 0000000000000000
[   61.781950][ T7045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.784486][ T7045] R13: 0000000000000000 R14: 00007fce2c345fa0 R15: 00007ffe16716928
[   61.786833][ T7045]  </TASK>
[   61.787748][    C1] vkms_vblank_simulate: vblank timer overrun
[   61.787756][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   61.798532][   T25] usb 5-1: config 0 descriptor??
[   62.008963][   T25] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   62.015813][   T25] usb 5-1: USB disconnect, device number 4
[   62.027294][   T25] usblp0: removed
[   62.027482][ T7066] input: syz0 as /devices/virtual/input/input7
[   62.031945][ T7066] input: failed to attach handler leds to device input7, error: -6
[   62.145392][ T7074] 9pnet_virtio: no channels available for device syz
[   62.199109][ T7076] netlink: 'syz.4.405': attribute type 1 has an invalid length.
[   62.280270][ T7080] binder: 7079:7080 ioctl 5315 20000840 returned -22
[   62.283343][ T7080] netlink: 'syz.1.407': attribute type 1 has an invalid length.
[   62.443579][ T7089] FAULT_INJECTION: forcing a failure.
[   62.443579][ T7089] name failslab, interval 1, probability 0, space 0, times 0
[   62.449412][ T7089] CPU: 2 UID: 0 PID: 7089 Comm: syz.4.409 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   62.452472][ T7089] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   62.456117][ T7089] Call Trace:
[   62.457302][ T7089]  <TASK>
[   62.458362][ T7089]  dump_stack_lvl+0x16c/0x1f0
[   62.459726][ T7089]  should_fail_ex+0x497/0x5b0
[   62.460976][ T7089]  ? fs_reclaim_acquire+0xae/0x150
[   62.462558][ T7089]  should_failslab+0xc2/0x120
[   62.463054][ T5282] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   62.464160][ T7089]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[   62.467734][ T7089]  ? __alloc_skb+0x2b1/0x380
[   62.469301][ T7089]  __alloc_skb+0x2b1/0x380
[   62.470805][ T7089]  ? __pfx___alloc_skb+0x10/0x10
[   62.472498][ T7089]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[   62.474620][ T7089]  netlink_alloc_large_skb+0x69/0x130
[   62.476450][ T7089]  netlink_sendmsg+0x689/0xd70
[   62.478070][ T7089]  ? __pfx_netlink_sendmsg+0x10/0x10
[   62.479870][ T7089]  ____sys_sendmsg+0xaaf/0xc90
[   62.481486][ T7089]  ? copy_msghdr_from_user+0x10b/0x160
[   62.483343][ T7089]  ? __pfx_____sys_sendmsg+0x10/0x10
[   62.485155][ T7089]  ___sys_sendmsg+0x135/0x1e0
[   62.486730][ T7089]  ? __pfx____sys_sendmsg+0x10/0x10
[   62.488493][ T7089]  ? __pfx_lock_release+0x10/0x10
[   62.490181][ T7089]  ? trace_lock_acquire+0x14e/0x1f0
[   62.491952][ T7089]  ? __fget_files+0x206/0x3a0
[   62.493538][ T7089]  __sys_sendmsg+0x16e/0x220
[   62.495097][ T7089]  ? __pfx___sys_sendmsg+0x10/0x10
[   62.496834][ T7089]  do_syscall_64+0xcd/0x250
[   62.498373][ T7089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.500365][ T7089] RIP: 0033:0x7ff53917ff19
[   62.501917][ T7089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.508338][ T7089] RSP: 002b:00007ff539fac058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   62.511116][ T7089] RAX: ffffffffffffffda RBX: 00007ff539345fa0 RCX: 00007ff53917ff19
[   62.513764][ T7089] RDX: 0000000008004090 RSI: 0000000020000280 RDI: 0000000000000003
[   62.516454][ T7089] RBP: 00007ff539fac0a0 R08: 0000000000000000 R09: 0000000000000000
[   62.518727][ T7089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.521358][ T7089] R13: 0000000000000000 R14: 00007ff539345fa0 R15: 00007ffc93e6ee08
[   62.524088][ T7089]  </TASK>
[   62.613151][ T5282] usb 5-1: Using ep0 maxpacket: 32
[   62.626928][ T5282] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[   62.630075][ T5282] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   62.633580][ T5282] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[   62.636840][ T5282] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   62.640676][ T5282] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   62.645778][ T5282] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   62.650533][ T5282] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   62.653981][ T5282] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.666217][ T7105] netlink: 28 bytes leftover after parsing attributes in process `syz.2.416'.
[   62.670263][ T7105] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.673069][ T7105] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.682248][ T5282] usb 5-1: config 0 descriptor??
[   62.807022][ T7114] netlink: 'syz.4.418': attribute type 1 has an invalid length.
[   62.889975][ T5282] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 5 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   62.913493][ T7120] loop4: detected capacity change from 0 to 16384
[   62.972428][ T7125] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains
[   62.979335][ T7127] I/O error, dev loop4, sector 0 op 0x1:(WRITE) flags 0x8800 phys_seg 16 prio class 0
[   62.983193][ T7127] I/O error, dev loop4, sector 0 op 0x1:(WRITE) flags 0x8800 phys_seg 16 prio class 0
[   62.987746][ T5942] Bluetooth: hci3: command tx timeout
[   62.988558][ T7127] 9pnet: Unknown protocol version 9p2000.uÿÿÿÿÿÿ
[   63.095324][ T5978] usb 5-1: USB disconnect, device number 5
[   63.100247][ T5978] usblp0: removed
[   63.281180][ T7136] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   63.285303][ T7136] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   63.457020][ T7149] netlink: 'syz.4.434': attribute type 1 has an invalid length.
[   63.600796][ T7151] FAULT_INJECTION: forcing a failure.
[   63.600796][ T7151] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   63.605629][ T7151] CPU: 0 UID: 0 PID: 7151 Comm: syz.4.435 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   63.609222][ T7151] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   63.612685][ T7151] Call Trace:
[   63.613867][ T7151]  <TASK>
[   63.614837][ T7151]  dump_stack_lvl+0x16c/0x1f0
[   63.616512][ T7151]  should_fail_ex+0x497/0x5b0
[   63.618172][ T7151]  _copy_from_iter+0x2a1/0x1560
[   63.619877][ T7151]  ? trace_lock_acquire+0x14e/0x1f0
[   63.621705][ T7151]  ? __alloc_skb+0x1fe/0x380
[   63.623347][ T7151]  ? __pfx__copy_from_iter+0x10/0x10
[   63.625213][ T7151]  ? __virt_addr_valid+0x1a4/0x590
[   63.627060][ T7151]  ? __virt_addr_valid+0x5e/0x590
[   63.628866][ T7151]  ? __phys_addr_symbol+0x30/0x80
[   63.630675][ T7151]  ? __check_object_size+0x488/0x710
[   63.632573][ T7151]  netlink_sendmsg+0x813/0xd70
[   63.634296][ T7151]  ? __pfx_netlink_sendmsg+0x10/0x10
[   63.636168][ T7151]  ____sys_sendmsg+0xaaf/0xc90
[   63.637878][ T7151]  ? copy_msghdr_from_user+0x10b/0x160
[   63.639718][ T7151]  ? __pfx_____sys_sendmsg+0x10/0x10
[   63.641546][ T7151]  ___sys_sendmsg+0x135/0x1e0
[   63.643223][ T7151]  ? __pfx____sys_sendmsg+0x10/0x10
[   63.645089][ T7151]  ? __pfx_lock_release+0x10/0x10
[   63.646877][ T7151]  ? trace_lock_acquire+0x14e/0x1f0
[   63.648753][ T7151]  ? __fget_files+0x206/0x3a0
[   63.650479][ T7151]  __sys_sendmsg+0x16e/0x220
[   63.652167][ T7151]  ? __pfx___sys_sendmsg+0x10/0x10
[   63.654044][ T7151]  do_syscall_64+0xcd/0x250
[   63.655711][ T7151]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.657801][ T7151] RIP: 0033:0x7ff53917ff19
[   63.658972][ T7151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.664002][ T7151] RSP: 002b:00007ff539fac058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   63.666171][ T7151] RAX: ffffffffffffffda RBX: 00007ff539345fa0 RCX: 00007ff53917ff19
[   63.668598][ T7151] RDX: 0000000008004090 RSI: 0000000020000280 RDI: 0000000000000003
[   63.670673][ T7151] RBP: 00007ff539fac0a0 R08: 0000000000000000 R09: 0000000000000000
[   63.672766][ T7151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.674804][ T7151] R13: 0000000000000000 R14: 00007ff539345fa0 R15: 00007ffc93e6ee08
[   63.676870][ T7151]  </TASK>
[   63.949617][ T7175] ptrace attach of "/syz-executor exec"[7179] was attempted by "/syz-executor exec"[7175]
[   63.954159][ T7175] netlink: 40 bytes leftover after parsing attributes in process `syz.0.444'.
[   63.983952][ T7163] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[   64.039237][ T7191] netlink: 'syz.4.449': attribute type 1 has an invalid length.
[   64.060728][ T7191] 8021q: adding VLAN 0 to HW filter on device bond1
[   64.069225][ T7191] 8021q: adding VLAN 0 to HW filter on device batadv1
[   64.072434][ T7191] bond1: (slave batadv1): making interface the new active one
[   64.076955][ T7191] bond1: (slave batadv1): Enslaving as an active interface with an up link
[   64.223486][ T7200] fuse: Unknown parameter 'ÏQ
'
[   64.252441][ T7205] FAULT_INJECTION: forcing a failure.
[   64.252441][ T7205] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.257327][ T7205] CPU: 1 UID: 0 PID: 7205 Comm: syz.0.453 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   64.261070][ T7205] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.264901][ T7205] Call Trace:
[   64.266127][ T7205]  <TASK>
[   64.267209][ T7205]  dump_stack_lvl+0x16c/0x1f0
[   64.268919][ T7205]  should_fail_ex+0x497/0x5b0
[   64.270657][ T7205]  _copy_from_iter+0x2a1/0x1560
[   64.272427][ T7205]  ? trace_lock_acquire+0x14e/0x1f0
[   64.274465][ T7205]  ? __alloc_skb+0x1fe/0x380
[   64.276164][ T7205]  ? __pfx__copy_from_iter+0x10/0x10
[   64.278007][ T7205]  ? __virt_addr_valid+0x1a4/0x590
[   64.279819][ T7205]  ? __virt_addr_valid+0x5e/0x590
[   64.281589][ T7205]  ? __phys_addr_symbol+0x30/0x80
[   64.283462][ T7205]  ? __check_object_size+0x488/0x710
[   64.285354][ T7205]  netlink_sendmsg+0x813/0xd70
[   64.287017][ T7205]  ? __pfx_netlink_sendmsg+0x10/0x10
[   64.288954][ T7205]  ____sys_sendmsg+0xaaf/0xc90
[   64.290693][ T7205]  ? copy_msghdr_from_user+0x10b/0x160
[   64.292763][ T7205]  ? __pfx_____sys_sendmsg+0x10/0x10
[   64.294706][ T7205]  ___sys_sendmsg+0x135/0x1e0
[   64.296450][ T7205]  ? __pfx____sys_sendmsg+0x10/0x10
[   64.298380][ T7205]  ? __pfx_lock_release+0x10/0x10
[   64.300374][ T7205]  ? trace_lock_acquire+0x14e/0x1f0
[   64.302287][ T7205]  ? __fget_files+0x206/0x3a0
[   64.304034][ T7205]  __sys_sendmsg+0x16e/0x220
[   64.305700][ T7205]  ? __pfx___sys_sendmsg+0x10/0x10
[   64.307559][ T7205]  do_syscall_64+0xcd/0x250
[   64.309207][ T7205]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.311328][ T7205] RIP: 0033:0x7f7f55b7ff19
[   64.312930][ T7205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.319712][ T7205] RSP: 002b:00007f7f568b1058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   64.322626][ T7205] RAX: ffffffffffffffda RBX: 00007f7f55d45fa0 RCX: 00007f7f55b7ff19
[   64.325457][ T7205] RDX: 0000000008004090 RSI: 0000000020000280 RDI: 0000000000000003
[   64.328280][ T7205] RBP: 00007f7f568b10a0 R08: 0000000000000000 R09: 0000000000000000
[   64.331082][ T7205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.333901][ T7205] R13: 0000000000000000 R14: 00007f7f55d45fa0 R15: 00007ffdaa20e948
[   64.336737][ T7205]  </TASK>
[   64.337970][    C1] vkms_vblank_simulate: vblank timer overrun
[   64.354979][ T7211] syz.2.455: attempt to access beyond end of device
[   64.354979][ T7211] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[   64.359693][ T7211] (syz.2.455,7211,3):ocfs2_get_sector:1769 ERROR: status = -5
[   64.362380][ T7211] (syz.2.455,7211,3):ocfs2_sb_probe:749 ERROR: status = -5
[   64.372983][ T7211] (syz.2.455,7211,2):ocfs2_fill_super:990 ERROR: superblock probe failed!
[   64.376241][ T7211] (syz.2.455,7211,2):ocfs2_fill_super:1178 ERROR: status = -5
[   64.786821][ T7238] netlink: 'syz.0.464': attribute type 1 has an invalid length.
[   64.813521][ T7238] 8021q: adding VLAN 0 to HW filter on device bond4
[   64.823393][ T7238] 8021q: adding VLAN 0 to HW filter on device batadv4
[   64.827400][ T7238] bond4: (slave batadv4): making interface the new active one
[   64.830795][ T7238] bond4: (slave batadv4): Enslaving as an active interface with an up link
[   64.896307][ T7248] FAULT_INJECTION: forcing a failure.
[   64.896307][ T7248] name failslab, interval 1, probability 0, space 0, times 0
[   64.900811][ T7248] CPU: 3 UID: 0 PID: 7248 Comm: syz.1.468 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   64.904573][ T7248] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.908331][ T7248] Call Trace:
[   64.909519][ T7248]  <TASK>
[   64.910582][ T7248]  dump_stack_lvl+0x16c/0x1f0
[   64.912288][ T7248]  should_fail_ex+0x497/0x5b0
[   64.913964][ T7248]  ? fs_reclaim_acquire+0xae/0x150
[   64.915753][ T7248]  should_failslab+0xc2/0x120
[   64.917361][ T7248]  __kmalloc_noprof+0xcb/0x510
[   64.918970][ T7248]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[   64.921341][ T7248]  genl_family_rcv_msg_doit+0xbf/0x2f0
[   64.923181][ T7248]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   64.925228][ T7248]  ? bpf_lsm_capable+0x9/0x10
[   64.926803][ T7248]  ? security_capable+0x7e/0x260
[   64.928475][ T7248]  ? ns_capable+0xd7/0x110
[   64.929975][ T7248]  genl_rcv_msg+0x565/0x800
[   64.931555][ T7248]  ? __pfx_genl_rcv_msg+0x10/0x10
[   64.933271][ T7248]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   64.935153][ T7248]  ? __pfx_nl80211_leave_ibss+0x10/0x10
[   64.937070][ T7248]  ? __pfx_nl80211_post_doit+0x10/0x10
[   64.938862][ T7248]  netlink_rcv_skb+0x16b/0x440
[   64.940482][ T7248]  ? __pfx_genl_rcv_msg+0x10/0x10
[   64.942206][ T7248]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   64.943813][ T7248]  ? down_read+0xc9/0x330
[   64.944898][ T7248]  ? __pfx_down_read+0x10/0x10
[   64.946098][ T7248]  ? netlink_deliver_tap+0x1ae/0xd30
[   64.947420][ T7248]  genl_rcv+0x28/0x40
[   64.948476][ T7248]  netlink_unicast+0x53c/0x7f0
[   64.949734][ T7248]  ? __pfx_netlink_unicast+0x10/0x10
[   64.951125][ T7248]  netlink_sendmsg+0x8b8/0xd70
[   64.952407][ T7248]  ? __pfx_netlink_sendmsg+0x10/0x10
[   64.953933][ T7248]  ____sys_sendmsg+0xaaf/0xc90
[   64.955202][ T7248]  ? copy_msghdr_from_user+0x10b/0x160
[   64.956657][ T7248]  ? __pfx_____sys_sendmsg+0x10/0x10
[   64.958058][ T7248]  ___sys_sendmsg+0x135/0x1e0
[   64.959311][ T7248]  ? __pfx____sys_sendmsg+0x10/0x10
[   64.960680][ T7248]  ? __pfx_lock_release+0x10/0x10
[   64.962018][ T7248]  ? trace_lock_acquire+0x14e/0x1f0
[   64.963399][ T7248]  ? __fget_files+0x206/0x3a0
[   64.964635][ T7248]  __sys_sendmsg+0x16e/0x220
[   64.965848][ T7248]  ? __pfx___sys_sendmsg+0x10/0x10
[   64.967190][ T7248]  do_syscall_64+0xcd/0x250
[   64.968405][ T7248]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.969956][ T7248] RIP: 0033:0x7fce2c17ff19
[   64.971251][ T7248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.976295][ T7248] RSP: 002b:00007fce2cf17058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   64.978431][ T7248] RAX: ffffffffffffffda RBX: 00007fce2c345fa0 RCX: 00007fce2c17ff19
[   64.980491][ T7248] RDX: 0000000008004090 RSI: 0000000020000280 RDI: 0000000000000003
[   64.982545][ T7248] RBP: 00007fce2cf170a0 R08: 0000000000000000 R09: 0000000000000000
[   64.984573][ T7248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.986635][ T7248] R13: 0000000000000000 R14: 00007fce2c345fa0 R15: 00007ffe16716928
[   64.988708][ T7248]  </TASK>
[   65.063051][ T5942] Bluetooth: hci3: command tx timeout
[   65.234488][ T7274] 9pnet: bogus RREAD count (69 > 41)
[   65.236270][ T7276] netlink: 'syz.1.479': attribute type 1 has an invalid length.
[   65.248590][ T7272] netlink: 'syz.2.477': attribute type 19 has an invalid length.
[   65.254781][ T7276] 8021q: adding VLAN 0 to HW filter on device bond6
[   65.263600][ T7272] netlink: 1320 bytes leftover after parsing attributes in process `syz.2.477'.
[   65.265059][ T7276] 8021q: adding VLAN 0 to HW filter on device batadv6
[   65.272075][ T7276] bond6: (slave batadv6): making interface the new active one
[   65.276057][ T7276] bond6: (slave batadv6): Enslaving as an active interface with an up link
[   65.306097][ T7281] FAULT_INJECTION: forcing a failure.
[   65.306097][ T7281] name failslab, interval 1, probability 0, space 0, times 0
[   65.310333][ T7281] CPU: 1 UID: 0 PID: 7281 Comm: syz.4.481 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   65.314100][ T7281] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   65.317875][ T7281] Call Trace:
[   65.319114][ T7281]  <TASK>
[   65.320207][ T7281]  dump_stack_lvl+0x16c/0x1f0
[   65.321934][ T7281]  should_fail_ex+0x497/0x5b0
[   65.323658][ T7281]  ? fs_reclaim_acquire+0xae/0x150
[   65.325523][ T7281]  should_failslab+0xc2/0x120
[   65.327266][ T7281]  kmem_cache_alloc_node_noprof+0x72/0x3c0
[   65.329373][ T7281]  ? __alloc_skb+0x2b1/0x380
[   65.331055][ T7281]  __alloc_skb+0x2b1/0x380
[   65.332692][ T7281]  ? __pfx___alloc_skb+0x10/0x10
[   65.334493][ T7281]  ? genl_rcv_msg+0x510/0x800
[   65.336358][ T7281]  ? genl_rcv_msg+0x4bd/0x800
[   65.338016][ T7281]  netlink_ack+0x15f/0xb80
[   65.339673][ T7281]  netlink_rcv_skb+0x348/0x440
[   65.341358][ T7281]  ? __pfx_genl_rcv_msg+0x10/0x10
[   65.343171][ T7281]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   65.345119][ T7281]  ? down_read+0xc9/0x330
[   65.346701][ T7281]  ? __pfx_down_read+0x10/0x10
[   65.348458][ T7281]  ? netlink_deliver_tap+0x1ae/0xd30
[   65.350372][ T7281]  genl_rcv+0x28/0x40
[   65.351706][ T7281]  netlink_unicast+0x53c/0x7f0
[   65.353083][ T7281]  ? __pfx_netlink_unicast+0x10/0x10
[   65.354667][ T7281]  netlink_sendmsg+0x8b8/0xd70
[   65.356332][ T7281]  ? __pfx_netlink_sendmsg+0x10/0x10
[   65.357702][ T7281]  ____sys_sendmsg+0xaaf/0xc90
[   65.359308][ T7281]  ? copy_msghdr_from_user+0x10b/0x160
[   65.361187][ T7281]  ? __pfx_____sys_sendmsg+0x10/0x10
[   65.363139][ T7281]  ___sys_sendmsg+0x135/0x1e0
[   65.364861][ T7281]  ? __pfx____sys_sendmsg+0x10/0x10
[   65.366716][ T7281]  ? __pfx_lock_release+0x10/0x10
[   65.368091][ T7281]  ? trace_lock_acquire+0x14e/0x1f0
[   65.369724][ T7281]  ? __fget_files+0x206/0x3a0
[   65.371358][ T7281]  __sys_sendmsg+0x16e/0x220
[   65.373027][ T7281]  ? __pfx___sys_sendmsg+0x10/0x10
[   65.374869][ T7281]  do_syscall_64+0xcd/0x250
[   65.376546][ T7281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.378688][ T7281] RIP: 0033:0x7ff53917ff19
[   65.380327][ T7281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.387207][ T7281] RSP: 002b:00007ff539fac058 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   65.390228][ T7281] RAX: ffffffffffffffda RBX: 00007ff539345fa0 RCX: 00007ff53917ff19
[   65.392692][ T7281] RDX: 0000000008004090 RSI: 0000000020000280 RDI: 0000000000000003
[   65.394883][ T7281] RBP: 00007ff539fac0a0 R08: 0000000000000000 R09: 0000000000000000
[   65.396906][ T7281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.398894][ T7281] R13: 0000000000000000 R14: 00007ff539345fa0 R15: 00007ffc93e6ee08
[   65.400847][ T7281]  </TASK>
[   65.402091][    C1] vkms_vblank_simulate: vblank timer overrun
[   65.531954][ T7293] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   65.641912][ T7299] tmpfs: Bad value for 'mpol'
[   65.713554][ T7306] tipc: Started in network mode
[   65.715486][ T7306] tipc: Node identity fe8997a3fb54, cluster identity 4711
[   65.718248][ T7306] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   65.724335][ T7306] netlink: 12 bytes leftover after parsing attributes in process `syz.4.490'.
[   65.728239][ T7306] syzkaller0: MTU too low for tipc bearer
[   65.729742][ T7306] tipc: Disabling bearer <eth:syzkaller0>
[   66.053113][   T62] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   66.186566][ T7323] netlink: 'syz.2.496': attribute type 1 has an invalid length.
[   66.197971][ T7323] 8021q: adding VLAN 0 to HW filter on device bond5
[   66.204509][   T62] usb 6-1: too many configurations: 9, using maximum allowed: 8
[   66.206332][ T7323] 8021q: adding VLAN 0 to HW filter on device batadv5
[   66.208158][   T62] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   66.211784][ T7323] bond5: (slave batadv5): making interface the new active one
[   66.211987][   T62] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   66.217086][ T7323] bond5: (slave batadv5): Enslaving as an active interface with an up link
[   66.217860][   T62] usb 6-1: config 0 interface 0 has no altsetting 0
[   66.224027][   T62] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   66.227207][   T62] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   66.230808][   T62] usb 6-1: config 0 interface 0 has no altsetting 0
[   66.236624][   T62] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   66.239552][   T62] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   66.243353][   T62] usb 6-1: config 0 interface 0 has no altsetting 0
[   66.247974][   T62] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   66.251090][   T62] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   66.258350][   T62] usb 6-1: config 0 interface 0 has no altsetting 0
[   66.261614][   T62] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   66.265279][   T62] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   66.268804][   T62] usb 6-1: config 0 interface 0 has no altsetting 0
[   66.271395][   T62] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   66.274122][   T62] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   66.276971][   T62] usb 6-1: config 0 interface 0 has no altsetting 0
[   66.279891][   T62] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   66.282839][   T62] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   66.287416][   T62] usb 6-1: config 0 interface 0 has no altsetting 0
[   66.291625][   T62] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[   66.294780][   T62] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   66.297752][   T62] usb 6-1: config 0 interface 0 has no altsetting 0
[   66.303356][   T62] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   66.309972][   T62] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   66.313363][   T62] usb 6-1: Product: syz
[   66.314991][   T62] usb 6-1: Manufacturer: syz
[   66.316785][   T62] usb 6-1: SerialNumber: syz
[   66.321019][   T62] usb 6-1: config 0 descriptor??
[   66.328079][   T62] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0
[   66.362125][   T40] kauditd_printk_skb: 25 callbacks suppressed
[   66.362135][   T40] audit: type=1400 audit(1733267072.179:383): avc:  denied  { ioctl } for  pid=7336 comm="syz.2.502" path="socket:[18241]" dev="sockfs" ino=18241 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   66.512667][ T7347] netlink: 'syz.0.507': attribute type 1 has an invalid length.
[   66.521856][ T7347] 8021q: adding VLAN 0 to HW filter on device bond5
[   66.530553][ T7347] 8021q: adding VLAN 0 to HW filter on device batadv5
[   66.533186][ T7347] bond5: (slave batadv5): making interface the new active one
[   66.535632][ T7347] bond5: (slave batadv5): Enslaving as an active interface with an up link
[   66.551733][   T40] audit: type=1400 audit(1733267072.369:384): avc:  denied  { mount } for  pid=7344 comm="syz.2.506" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   66.562415][ T7351] FAULT_INJECTION: forcing a failure.
[   66.562415][ T7351] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   66.566764][ T7351] CPU: 1 UID: 0 PID: 7351 Comm: syz.0.508 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   66.569811][ T7351] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.572564][ T7351] Call Trace:
[   66.573443][ T7351]  <TASK>
[   66.574216][ T7351]  dump_stack_lvl+0x16c/0x1f0
[   66.575453][ T7351]  should_fail_ex+0x497/0x5b0
[   66.576685][ T7351]  _copy_from_user+0x2e/0xd0
[   66.577919][ T7351]  kstrtouint_from_user+0xd7/0x1c0
[   66.579251][ T7351]  ? __pfx_kstrtouint_from_user+0x10/0x10
[   66.580749][ T7351]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   66.582224][ T7351]  proc_fail_nth_write+0x84/0x250
[   66.583552][ T7351]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   66.585006][ T7351]  ? ksys_write+0x12b/0x250
[   66.586214][ T7351]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   66.587717][ T7351]  vfs_write+0x24c/0x1150
[   66.588849][ T7351]  ? __fget_files+0x1fc/0x3a0
[   66.590074][ T7351]  ? __pfx___mutex_lock+0x10/0x10
[   66.591402][ T7351]  ? __pfx_vfs_write+0x10/0x10
[   66.592659][ T7351]  ? __fget_files+0x206/0x3a0
[   66.594055][ T7351]  ksys_write+0x12b/0x250
[   66.595203][ T7351]  ? __pfx_ksys_write+0x10/0x10
[   66.596887][ T7351]  do_syscall_64+0xcd/0x250
[   66.598348][ T7351]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.599849][ T7351] RIP: 0033:0x7f7f55b7e9cf
[   66.600932][ T7351] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   66.605577][ T7351] RSP: 002b:00007f7f568b1050 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   66.607652][ T7351] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7f55b7e9cf
[   66.609697][ T7351] RDX: 0000000000000001 RSI: 00007f7f568b10b0 RDI: 0000000000000005
[   66.611779][ T7351] RBP: 00007f7f568b10a0 R08: 0000000000000000 R09: 0000000000000000
[   66.613830][ T7351] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[   66.616304][ T7351] R13: 0000000000000000 R14: 00007f7f55d45fa0 R15: 00007ffdaa20e948
[   66.618481][ T7351]  </TASK>
[   66.619351][    C1] vkms_vblank_simulate: vblank timer overrun
[   66.623524][    C2] usb 6-1: yurex_control_callback - control failed: -71
[   66.628508][   T62] usb 6-1: USB disconnect, device number 3
[   66.643714][   T62] yurex 6-1:0.0: USB YUREX #0 now disconnected
[   66.757762][   T40] audit: type=1400 audit(1733267072.579:385): avc:  denied  { setopt } for  pid=7362 comm="syz.4.512" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   66.773090][   T40] audit: type=1400 audit(1733267072.579:386): avc:  denied  { connect } for  pid=7362 comm="syz.4.512" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   66.778525][   T40] audit: type=1400 audit(1733267072.589:387): avc:  denied  { read write } for  pid=7362 comm="syz.4.512" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   66.791076][   T40] audit: type=1400 audit(1733267072.589:388): avc:  denied  { open } for  pid=7362 comm="syz.4.512" path="/dev/ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   66.792858][ T7363] netlink: 44 bytes leftover after parsing attributes in process `syz.4.512'.
[   66.798127][   T40] audit: type=1400 audit(1733267072.589:389): avc:  denied  { ioctl } for  pid=7362 comm="syz.4.512" path="/dev/ppp" dev="devtmpfs" ino=730 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   66.881298][   T40] audit: type=1400 audit(1733267072.699:390): avc:  denied  { write } for  pid=7373 comm="syz.2.517" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   66.888167][   T40] audit: type=1400 audit(1733267072.709:391): avc:  denied  { setopt } for  pid=7373 comm="syz.2.517" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   66.954809][ T7382] netlink: 'syz.4.520': attribute type 1 has an invalid length.
[   66.962706][ T7382] 8021q: adding VLAN 0 to HW filter on device bond2
[   66.975084][ T7382] 8021q: adding VLAN 0 to HW filter on device batadv2
[   66.978762][ T7382] bond2: (slave batadv2): making interface the new active one
[   66.981507][   T40] audit: type=1400 audit(1733267072.799:392): avc:  denied  { read } for  pid=7384 comm="syz.2.521" name="hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   66.982269][ T7382] bond2: (slave batadv2): Enslaving as an active interface with an up link
[   66.989885][ T7385] xt_NFQUEUE: number of queues (344) out of range (got 65877)
[   67.143038][ T5942] Bluetooth: hci3: command tx timeout
[   67.157936][ T7403] netlink: 16 bytes leftover after parsing attributes in process `syz.0.524'.
[   67.243546][ T7412] netlink: 'syz.1.531': attribute type 1 has an invalid length.
[   67.254398][ T7412] 8021q: adding VLAN 0 to HW filter on device bond7
[   67.268742][ T7412] 8021q: adding VLAN 0 to HW filter on device batadv7
[   67.271887][ T7412] bond7: (slave batadv7): making interface the new active one
[   67.275354][ T7412] bond7: (slave batadv7): Enslaving as an active interface with an up link
[   67.313452][ T5942] Bluetooth: hci0: Malformed HCI Event: 0x22
[   67.324774][ T7421] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[   67.326986][ T7421] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   67.331642][ T7421] vhci_hcd vhci_hcd.0: Device attached
[   67.460363][ T5942] Bluetooth: hci1: Received unexpected HCI Event 0x00
[   67.512392][  T831] vhci_hcd: vhci_device speed not set
[   67.572968][  T831] usb 39-1: new full-speed USB device number 2 using vhci_hcd
[   67.573115][ T5981] usb 6-1: new low-speed USB device number 4 using dummy_hcd
[   67.685769][ T7441] trusted_key: syz.2.543 sent an empty control message without MSG_MORE.
[   67.713146][ T5981] usb 6-1: device descriptor read/64, error -71
[   67.927195][ T7448] netlink: 'syz.0.544': attribute type 1 has an invalid length.
[   67.936525][ T7448] 8021q: adding VLAN 0 to HW filter on device bond6
[   67.943659][ T7448] 8021q: adding VLAN 0 to HW filter on device batadv6
[   67.946304][ T7448] bond6: (slave batadv6): making interface the new active one
[   67.948871][ T7448] bond6: (slave batadv6): Enslaving as an active interface with an up link
[   67.964337][ T5981] usb 6-1: new low-speed USB device number 5 using dummy_hcd
[   68.092971][ T5981] usb 6-1: device descriptor read/64, error -71
[   68.205697][ T5981] usb usb6-port1: attempt power cycle
[   68.461237][ T7481] netlink: 'syz.0.555': attribute type 1 has an invalid length.
[   68.485142][ T7481] 8021q: adding VLAN 0 to HW filter on device bond7
[   68.494003][ T7481] 8021q: adding VLAN 0 to HW filter on device batadv7
[   68.497973][ T7481] bond7: (slave batadv7): making interface the new active one
[   68.500697][ T7481] bond7: (slave batadv7): Enslaving as an active interface with an up link
[   68.543054][ T5981] usb 6-1: new low-speed USB device number 6 using dummy_hcd
[   68.563747][ T5981] usb 6-1: device descriptor read/8, error -71
[   68.680773][ T7501] xt_hashlimit: size too large, truncated to 1048576
[   68.770561][ T7508] netlink: 'syz.0.566': attribute type 1 has an invalid length.
[   68.781625][ T7508] 8021q: adding VLAN 0 to HW filter on device bond8
[   68.789658][ T7508] 8021q: adding VLAN 0 to HW filter on device batadv8
[   68.792371][ T7508] bond8: (slave batadv8): making interface the new active one
[   68.794919][ T7508] bond8: (slave batadv8): Enslaving as an active interface with an up link
[   68.803140][ T5981] usb 6-1: new low-speed USB device number 7 using dummy_hcd
[   68.824480][ T5981] usb 6-1: device descriptor read/8, error -71
[   68.941045][ T5981] usb usb6-port1: unable to enumerate USB device
[   69.118685][ T7515] e1000e 0000:00:02.0 eth1: NIC Link is Down
[   69.444815][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   69.685083][ T7514] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   69.687116][ T7514] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   69.698527][ T7514] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   69.711239][ T7514] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   69.713621][ T7514] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   69.725777][ T7514] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   69.730160][ T7514] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   69.732125][ T7514] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   69.738295][ T7514] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   69.742648][ T7514] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   69.745123][ T7514] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   69.748880][ T7514] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   69.794090][ T7555] netlink: 8 bytes leftover after parsing attributes in process `syz.0.571'.
[   70.036724][ T7571] netlink: 'syz.2.577': attribute type 1 has an invalid length.
[   70.049199][ T7571] 8021q: adding VLAN 0 to HW filter on device bond6
[   70.056152][ T7571] 8021q: adding VLAN 0 to HW filter on device batadv6
[   70.058754][ T7571] bond6: (slave batadv6): making interface the new active one
[   70.061002][ T7571] bond6: (slave batadv6): Enslaving as an active interface with an up link
[   70.088722][ T7578] program syz.2.579 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   70.137573][ T7588] overlayfs: conflicting options: userxattr,redirect_dir=on
[   70.200433][ T7600] netlink: 'syz.0.588': attribute type 1 has an invalid length.
[   70.223294][ T7604] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   70.225536][ T7604] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   70.232324][ T7604] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1015 sclass=netlink_route_socket pid=7604 comm=syz.2.586
[   70.258533][ T7600] 8021q: adding VLAN 0 to HW filter on device bond9
[   70.262849][ T7606] 8021q: adding VLAN 0 to HW filter on device batadv9
[   70.266324][ T7606] bond9: (slave batadv9): making interface the new active one
[   70.268700][ T7606] bond9: (slave batadv9): Enslaving as an active interface with an up link
[   70.312626][ T7609] netlink: 'syz.0.590': attribute type 4 has an invalid length.
[   70.334505][ T7423] vhci_hcd: connection reset by peer
[   70.340069][ T1137] vhci_hcd: stop threads
[   70.342468][ T1137] vhci_hcd: release socket
[   70.345034][ T1137] vhci_hcd: disconnect device
[   70.401821][ T7625] tipc: Started in network mode
[   70.403208][ T7625] tipc: Node identity ac1414aa, cluster identity 4711
[   70.407235][ T7625] tipc: Enabled bearer <udp:s>, priority 10
[   70.457889][ T7632] 8021q: adding VLAN 0 to HW filter on device bond3
[   70.466107][ T7632] 8021q: adding VLAN 0 to HW filter on device batadv3
[   70.468898][ T7632] bond3: (slave batadv3): making interface the new active one
[   70.471428][ T7632] bond3: (slave batadv3): Enslaving as an active interface with an up link
[   70.505514][ T7639] netlink: 8 bytes leftover after parsing attributes in process `syz.4.601'.
[   70.508806][ T7639] IPVS: Error joining to the multicast group
[   70.629089][ T7645] batadv0: entered promiscuous mode
[   70.757221][ T7659] 8021q: adding VLAN 0 to HW filter on device bond8
[   70.768069][ T7659] 8021q: adding VLAN 0 to HW filter on device batadv8
[   70.770940][ T7659] bond8: (slave batadv8): making interface the new active one
[   70.774743][ T7659] bond8: (slave batadv8): Enslaving as an active interface with an up link
[   70.937757][ T7676] capability: warning: `syz.1.616' uses 32-bit capabilities (legacy support in use)
[   70.947901][ T7677] warning: `syz.1.616' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   70.994248][ T5942] Bluetooth: hci0: command 0x0c1a tx timeout
[   71.144012][ T7692] netlink: 8 bytes leftover after parsing attributes in process `syz.0.620'.
[   71.146126][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[   71.148352][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[   71.193720][ T7708] netlink: 56 bytes leftover after parsing attributes in process `syz.1.624'.
[   71.221548][ T7711] validate_nla: 3 callbacks suppressed
[   71.221559][ T7711] netlink: 'syz.1.625': attribute type 1 has an invalid length.
[   71.234181][ T7711] 8021q: adding VLAN 0 to HW filter on device bond9
[   71.240602][ T7711] 8021q: adding VLAN 0 to HW filter on device batadv9
[   71.243911][ T7711] bond9: (slave batadv9): making interface the new active one
[   71.246308][ T7711] bond9: (slave batadv9): Enslaving as an active interface with an up link
[   71.466549][ T7726] netlink: 12 bytes leftover after parsing attributes in process `syz.1.631'.
[   71.473459][ T7726] bond10: entered promiscuous mode
[   71.501907][ T5942] Bluetooth: hci3: unexpected event for opcode 0x0c12
[   71.524844][ T5981] tipc: Node number set to 2886997162
[   71.536242][   T40] kauditd_printk_skb: 39 callbacks suppressed
[   71.536252][   T40] audit: type=1400 audit(1733267077.359:432): avc:  denied  { write } for  pid=7738 comm="syz.4.637" name="ptp0" dev="devtmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   71.539216][ T7737] netlink: 'syz.0.636': attribute type 1 has an invalid length.
[   71.547619][   T40] audit: type=1400 audit(1733267077.359:433): avc:  denied  { bind } for  pid=7738 comm="syz.4.637" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   71.552507][   T40] audit: type=1400 audit(1733267077.369:434): avc:  denied  { name_bind } for  pid=7738 comm="syz.4.637" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   71.558158][   T40] audit: type=1400 audit(1733267077.369:435): avc:  denied  { node_bind } for  pid=7738 comm="syz.4.637" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[   71.563923][ T7737] 8021q: adding VLAN 0 to HW filter on device bond10
[   71.570847][ T7737] 8021q: adding VLAN 0 to HW filter on device batadv10
[   71.609869][   T40] audit: type=1400 audit(1733267077.429:436): avc:  denied  { execute } for  pid=7744 comm="syz.4.638" path="/dev/dri/card0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[   71.783871][ T5942] Bluetooth: hci2: command 0x0c1a tx timeout
[   71.791542][   T40] audit: type=1400 audit(1733267077.609:437): avc:  denied  { getopt } for  pid=7752 comm="syz.4.641" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   71.796175][ T5942] Bluetooth: hci1: command 0x0c1a tx timeout
[   71.799621][ T7753] netlink: 'syz.4.641': attribute type 21 has an invalid length.
[   71.809148][   T40] audit: type=1800 audit(1733267077.629:438): pid=7756 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.0.642" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[   71.814386][ T7753] overlayfs: workdir and upperdir must be separate subtrees
[   71.817312][   T40] audit: type=1400 audit(1733267077.639:439): avc:  denied  { mounton } for  pid=7752 comm="syz.4.641" path="/79/file0/bus" dev="ramfs" ino=20982 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1
[   71.828124][ T7753] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1409 sclass=netlink_route_socket pid=7753 comm=syz.4.641
[   71.844324][   T40] audit: type=1400 audit(1733267077.669:440): avc:  denied  { unmount } for  pid=6876 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   71.913392][   T40] audit: type=1400 audit(1733267077.729:441): avc:  denied  { write } for  pid=7766 comm="syz.0.646" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[   71.956754][ T7777] netlink: 'syz.1.651': attribute type 1 has an invalid length.
[   71.980055][ T7777] 8021q: adding VLAN 0 to HW filter on device bond11
[   71.990710][ T7777] 8021q: adding VLAN 0 to HW filter on device batadv10
[   71.995057][ T7777] bond11: (slave batadv10): making interface the new active one
[   71.998950][ T7777] bond11: (slave batadv10): Enslaving as an active interface with an up link
[   72.082130][ T7796] macvlan0: entered allmulticast mode
[   72.084676][ T7796] veth1_vlan: entered allmulticast mode
[   72.089679][ T7796] pim6reg: entered allmulticast mode
[   72.092475][ T7796] veth1_vlan: left allmulticast mode
[   72.103397][ T7796] macvlan0 (unregistering): left allmulticast mode
[   72.200244][ T7810] netlink: 'syz.1.663': attribute type 1 has an invalid length.
[   72.221311][ T7810] 8021q: adding VLAN 0 to HW filter on device bond12
[   72.229173][ T7810] 8021q: adding VLAN 0 to HW filter on device batadv11
[   72.592982][   T25] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   72.653071][  T831] vhci_hcd: vhci_device speed not set
[   72.743098][   T25] usb 9-1: Using ep0 maxpacket: 8
[   72.746129][   T25] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[   72.748149][   T25] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   72.751088][   T25] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   72.754673][   T25] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   72.758700][   T25] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   72.763738][   T25] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[   72.766399][   T25] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   72.770360][   T25] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   72.774639][   T25] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   72.778586][   T25] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   72.783681][   T25] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[   72.786406][   T25] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   72.790414][   T25] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   72.794701][   T25] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   72.799714][   T25] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   72.806270][   T25] usb 9-1: string descriptor 0 read error: -22
[   72.808543][   T25] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   72.811758][   T25] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   72.820229][   T25] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   72.842940][ T5978] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[   73.003138][ T5978] usb 6-1: Using ep0 maxpacket: 8
[   73.005848][ T5978] usb 6-1: config 0 has an invalid interface number: 52 but max is 0
[   73.008017][ T5978] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   73.010517][ T5978] usb 6-1: config 0 has no interface number 0
[   73.012098][ T5978] usb 6-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   73.015567][ T5978] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   73.018397][ T5978] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   73.021347][ T5978] usb 6-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   73.024899][ T5978] usb 6-1: config 0 interface 52 has no altsetting 0
[   73.026655][ T5978] usb 6-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 8.00
[   73.029063][ T5978] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.032290][ T5978] usb 6-1: config 0 descriptor??
[   73.064930][ T5942] Bluetooth: hci0: command 0x0c1a tx timeout
[   73.125634][    T9] usb 9-1: USB disconnect, device number 2
[   73.129774][ T7846] usb 9-1: Couldn't submit interrupt_out_urb -19
[   73.237434][ T5978] input: USB Synaptics Device 06cb:0007 (Stick) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.52/input/input8
[   73.745781][ T7861] overlayfs: failed to resolve './file0': -2
[   73.748835][ T7861] netlink: 8 bytes leftover after parsing attributes in process `syz.0.679'.
[   73.775145][ T7863] netlink: 'syz.0.680': attribute type 1 has an invalid length.
[   73.787391][ T7863] 8021q: adding VLAN 0 to HW filter on device bond11
[   73.794970][ T7863] 8021q: adding VLAN 0 to HW filter on device batadv10
[   73.799655][ T7863] bond11: (slave batadv10): making interface the new active one
[   73.802136][ T7863] bond11: (slave batadv10): Enslaving as an active interface with an up link
[   73.863229][ T5942] Bluetooth: hci1: command 0x0c1a tx timeout
[   73.863287][ T5937] Bluetooth: hci2: command 0x0c1a tx timeout
[   73.887313][ T7871] syzkaller1: entered promiscuous mode
[   73.888870][ T7871] syzkaller1: entered allmulticast mode
[   73.951106][ T7876] netlink: 24 bytes leftover after parsing attributes in process `syz.2.685'.
[   74.080713][ T7889] netlink: 'syz.0.689': attribute type 1 has an invalid length.
[   74.092328][ T7889] 8021q: adding VLAN 0 to HW filter on device bond12
[   74.104624][ T7889] batadv11: entered promiscuous mode
[   74.106210][ T7889] batadv11: entered allmulticast mode
[   74.108264][ T7889] 8021q: adding VLAN 0 to HW filter on device batadv11
[   74.110756][ T7889] bond12: (slave batadv11): making interface the new active one
[   74.113271][ T7889] bond12: (slave batadv11): Enslaving as an active interface with an up link
[   74.297854][ T7920] netlink: 12 bytes leftover after parsing attributes in process `syz.4.699'.
[   74.303385][ T7923] netlink: 32 bytes leftover after parsing attributes in process `syz.2.700'.
[   74.306034][ T7924] netlink: 32 bytes leftover after parsing attributes in process `syz.2.700'.
[   74.417135][ T7932] netlink: 'syz.4.702': attribute type 1 has an invalid length.
[   74.429254][ T7932] 8021q: adding VLAN 0 to HW filter on device bond4
[   74.435202][ T7932] batadv4: entered allmulticast mode
[   74.437250][ T7932] 8021q: adding VLAN 0 to HW filter on device batadv4
[   74.440505][ T7932] bond4: (slave batadv4): making interface the new active one
[   74.453987][ T7932] bond4: (slave batadv4): Enslaving as an active interface with an up link
[   74.530771][ T7941] netlink: 'syz.2.706': attribute type 15 has an invalid length.
[   74.614555][ T7951] netlink: 'syz.2.708': attribute type 30 has an invalid length.
[   74.733251][ T7957] 8021q: adding VLAN 0 to HW filter on device bond5
[   74.739404][ T7957] batadv5: entered promiscuous mode
[   74.740810][ T7957] batadv5: entered allmulticast mode
[   74.742797][ T7957] 8021q: adding VLAN 0 to HW filter on device batadv5
[   74.746687][ T7957] bond5: (slave batadv5): making interface the new active one
[   74.749075][ T7957] bond5: (slave batadv5): Enslaving as an active interface with an up link
[   74.782124][ T7962] sctp: [Deprecated]: syz.4.712 (pid 7962) Use of int in max_burst socket option deprecated.
[   74.782124][ T7962] Use struct sctp_assoc_value instead
[   74.790340][ T7962] syz.4.712: vmalloc error: size 3383414784, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   74.799177][ T7962] CPU: 2 UID: 0 PID: 7962 Comm: syz.4.712 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   74.801954][ T7962] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   74.804722][ T7962] Call Trace:
[   74.805599][ T7962]  <TASK>
[   74.806363][ T7962]  dump_stack_lvl+0x16c/0x1f0
[   74.807581][ T7962]  warn_alloc+0x24d/0x3a0
[   74.808692][ T7962]  ? __pfx_warn_alloc+0x10/0x10
[   74.809962][ T7962]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[   74.811379][ T7962]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[   74.812803][ T7962]  ? kasan_save_stack+0x42/0x60
[   74.814105][ T7962]  ? kasan_save_stack+0x33/0x60
[   74.815400][ T7962]  ? kasan_save_track+0x14/0x30
[   74.816687][ T7962]  ? __kasan_kmalloc+0xaa/0xb0
[   74.817953][ T7962]  ? vb2_vmalloc_alloc+0xe2/0x3d0
[   74.819230][ T7962]  ? vb2_core_create_bufs+0x55d/0xab0
[   74.820621][ T7962]  ? vb2_create_bufs+0x566/0x780
[   74.821934][ T7962]  ? v4l_create_bufs+0x156/0x270
[   74.823248][ T7962]  __vmalloc_node_range_noprof+0x10df/0x1530
[   74.824816][ T7962]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[   74.826161][ T7962]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   74.827815][ T7962]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[   74.829158][ T7962]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[   74.830577][ T7962]  vmalloc_user_noprof+0x6b/0x90
[   74.831876][ T7962]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[   74.833222][ T7962]  vb2_vmalloc_alloc+0x11e/0x3d0
[   74.834515][ T7962]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[   74.835935][ T7962]  __vb2_queue_alloc+0x896/0x1230
[   74.837262][ T7962]  vb2_core_create_bufs+0x55d/0xab0
[   74.838616][ T7962]  ? __pfx_vb2_core_create_bufs+0x10/0x10
[   74.840108][ T7962]  ? rcu_is_watching+0x12/0xc0
[   74.841357][ T7962]  ? trace_contention_end+0xee/0x140
[   74.842744][ T7962]  vb2_create_bufs+0x566/0x780
[   74.843985][ T7962]  ? __pfx_vb2_create_bufs+0x10/0x10
[   74.845362][ T7962]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   74.846906][ T7962]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   74.848462][ T7962]  v4l_create_bufs+0x156/0x270
[   74.849714][ T7962]  __video_do_ioctl+0xaf0/0xf00
[   74.851013][ T7962]  ? __pfx___video_do_ioctl+0x10/0x10
[   74.852417][ T7962]  ? __might_fault+0xe3/0x190
[   74.853655][ T7962]  video_usercopy+0x4d2/0x1620
[   74.854908][ T7962]  ? __pfx___video_do_ioctl+0x10/0x10
[   74.856325][ T7962]  ? __pfx_video_usercopy+0x10/0x10
[   74.857693][ T7962]  v4l2_ioctl+0x1ba/0x250
[   74.858833][ T7962]  ? __pfx_v4l2_ioctl+0x10/0x10
[   74.860130][ T7962]  __x64_sys_ioctl+0x190/0x200
[   74.861388][ T7962]  do_syscall_64+0xcd/0x250
[   74.862599][ T7962]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.864149][ T7962] RIP: 0033:0x7ff53917ff19
[   74.865314][ T7962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.870118][ T7962] RSP: 002b:00007ff539fac058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   74.872221][ T7962] RAX: ffffffffffffffda RBX: 00007ff539345fa0 RCX: 00007ff53917ff19
[   74.874212][ T7962] RDX: 00000000200004c0 RSI: 00000000c100565c RDI: 0000000000000003
[   74.876178][ T7962] RBP: 00007ff5391f3986 R08: 0000000000000000 R09: 0000000000000000
[   74.878194][ T7962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   74.880240][ T7962] R13: 0000000000000000 R14: 00007ff539345fa0 R15: 00007ffc93e6ee08
[   74.882227][ T7962]  </TASK>
[   74.885983][ T7962] Mem-Info:
[   74.886858][ T7962] active_anon:11174 inactive_anon:0 isolated_anon:0
[   74.886858][ T7962]  active_file:11565 inactive_file:38847 isolated_file:0
[   74.886858][ T7962]  unevictable:1768 dirty:231 writeback:0
[   74.886858][ T7962]  slab_reclaimable:11717 slab_unreclaimable:79167
[   74.886858][ T7962]  mapped:24149 shmem:7793 pagetables:736
[   74.886858][ T7962]  sec_pagetables:299 bounce:0
[   74.886858][ T7962]  kernel_misc_reclaimable:0
[   74.886858][ T7962]  free:459237 free_pcp:7185 free_cma:0
[   74.898493][ T7962] Node 0 active_anon:39860kB inactive_anon:0kB active_file:46260kB inactive_file:155316kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:96596kB dirty:920kB writeback:0kB shmem:22800kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13264kB pagetables:2944kB sec_pagetables:1196kB all_unreclaimable? no
[   74.906958][ T7962] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:80kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[   74.914679][ T7962] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   74.921565][ T7962] lowmem_reserve[]: 0 1212 0 0 0
[   74.922962][ T7962] Node 0 DMA32 free:251080kB boost:0kB min:27608kB low:34508kB high:41408kB reserved_highatomic:0KB active_anon:28724kB inactive_anon:0kB active_file:46260kB inactive_file:155316kB unevictable:3536kB writepending:928kB present:2080628kB managed:1269940kB mlocked:0kB bounce:0kB free_pcp:23220kB local_pcp:616kB free_cma:0kB
[   74.930336][ T7962] lowmem_reserve[]: 0 0 0 0 0
[   74.931579][ T7962] Node 1 Normal free:1586260kB boost:0kB min:39632kB low:49540kB high:59448kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB writepending:4kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:5616kB local_pcp:500kB free_cma:0kB
[   74.938965][ T7962] lowmem_reserve[]: 0 0 0 0 0
[   74.940253][ T7962] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   74.943768][ T7962] Node 0 DMA32: 425*4kB (UM) 589*8kB (UME) 418*16kB (UME) 380*32kB (UME) 266*64kB (UME) 37*128kB (UME) 5*256kB (UME) 4*512kB (UME) 6*1024kB (UME) 3*2048kB (ME) 46*4096kB (M) = 251052kB
[   74.948527][ T7962] Node 1 Normal: 3*4kB (UME) 10*8kB (UME) 9*16kB (UME) 116*32kB (UME) 56*64kB (UME) 24*128kB (UME) 11*256kB (UE) 6*512kB (UM) 3*1024kB (UE) 5*2048kB (UME) 380*4096kB (M) = 1586284kB
[   74.957015][ T7962] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   74.959499][ T7962] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[   74.962378][ T7962] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   74.967755][ T7962] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   74.970332][ T7962] 52905 total pagecache pages
[   74.971585][ T7962] 0 pages in swap cache
[   74.972690][ T7962] Free swap  = 124440kB
[   74.973984][ T7962] Total swap = 124996kB
[   74.975087][ T7962] 1048443 pages RAM
[   74.976091][ T7962] 0 pages HighMem/MovableOnly
[   74.977333][ T7962] 281637 pages reserved
[   74.978411][ T7962] 0 pages cma reserved
[   75.142965][ T5937] Bluetooth: hci0: command 0x0c1a tx timeout
[   75.312095][ T7990] overlayfs: invalid origin (0000)
[   75.357296][ T7992] 8021q: adding VLAN 0 to HW filter on device bond13
[   75.364751][ T7992] batadv12: entered promiscuous mode
[   75.366676][ T7992] 8021q: adding VLAN 0 to HW filter on device batadv12
[   75.369803][ T7992] bond13: (slave batadv12): making interface the new active one
[   75.373901][ T7992] bond13: (slave batadv12): Enslaving as an active interface with an up link
[   75.416542][ T7999] binder: 7998:7999 ioctl c0306201 20000940 returned -14
[   75.417316][ T8000] binder: 7998:8000 ioctl c0306201 20000940 returned -14
[   75.499442][ T7999] kvm: emulating exchange as write
[   75.617864][   T25] usb 6-1: USB disconnect, device number 8
[   75.670015][ T8026] 8021q: adding VLAN 0 to HW filter on device bond13
[   75.677217][ T8026] 8021q: adding VLAN 0 to HW filter on device batadv11
[   75.679989][ T8026] bond13: (slave batadv11): making interface the new active one
[   75.682421][ T8026] bond13: (slave batadv11): Enslaving as an active interface with an up link
[   75.741066][ T8035] ieee802154 phy0 wpan0: encryption failed: -22
[   75.788425][ T8042] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   75.792710][ T8043] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   75.792735][ T8042] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   75.799739][ T8043] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   75.804962][ T8043] syz.2.738 (8043): /proc/8041/oom_adj is deprecated, please use /proc/8041/oom_score_adj instead.
[   75.943295][ T5937] Bluetooth: hci2: command 0x0c1a tx timeout
[   75.944931][ T5937] Bluetooth: hci1: command 0x0c1a tx timeout
[   76.239460][ T8063] validate_nla: 3 callbacks suppressed
[   76.239471][ T8063] netlink: 'syz.1.745': attribute type 1 has an invalid length.
[   76.249796][ T8063] 8021q: adding VLAN 0 to HW filter on device bond14
[   76.256529][ T8063] batadv12: entered allmulticast mode
[   76.259121][ T8063] 8021q: adding VLAN 0 to HW filter on device batadv12
[   76.262543][ T8063] bond14: (slave batadv12): making interface the new active one
[   76.266277][ T8063] bond14: (slave batadv12): Enslaving as an active interface with an up link
[   76.484696][ T8093] netlink: 'syz.0.755': attribute type 1 has an invalid length.
[   76.492944][ T8093] 8021q: adding VLAN 0 to HW filter on device bond14
[   76.498481][ T8093] batadv13: entered promiscuous mode
[   76.499957][ T8093] batadv13: entered allmulticast mode
[   76.502817][ T8093] 8021q: adding VLAN 0 to HW filter on device batadv13
[   76.505555][ T8093] bond14: (slave batadv13): making interface the new active one
[   76.508023][ T8093] bond14: (slave batadv13): Enslaving as an active interface with an up link
[   76.542403][ T5942] Bluetooth: hci1: ACL packet for unknown connection handle 200
[   76.582023][   T40] kauditd_printk_skb: 22 callbacks suppressed
[   76.582039][   T40] audit: type=1400 audit(1733267082.399:464): avc:  denied  { getopt } for  pid=8104 comm="syz.2.762" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   76.590544][   T40] audit: type=1400 audit(1733267082.409:465): avc:  denied  { create } for  pid=8107 comm="syz.1.761" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1
[   76.596397][   T40] audit: type=1326 audit(1733267082.409:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8107 comm="syz.1.761" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fce2c17ff19 code=0x0
[   76.601967][ T8106] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[   76.635341][ T8114] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=36 sclass=netlink_tcpdiag_socket pid=8114 comm=syz.4.764
[   76.638692][ T8114] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8114 comm=syz.4.764
[   76.642247][   T40] audit: type=1400 audit(1733267082.459:467): avc:  denied  { read } for  pid=8112 comm="syz.4.764" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[   76.642374][ T8114] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=1124 sclass=netlink_tcpdiag_socket pid=8114 comm=syz.4.764
[   76.694337][   T40] audit: type=1400 audit(1733267082.519:468): avc:  denied  { append } for  pid=8107 comm="syz.1.761" name="sg0" dev="devtmpfs" ino=721 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   76.694792][ T8121] program syz.1.761 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   76.696822][ T8120] netlink: 'syz.0.767': attribute type 1 has an invalid length.
[   76.730020][ T8120] 8021q: adding VLAN 0 to HW filter on device bond15
[   76.741131][ T8120] 8021q: adding VLAN 0 to HW filter on device batadv14
[   76.745409][ T8120] bond15: (slave batadv14): making interface the new active one
[   76.748097][ T8120] bond15: (slave batadv14): Enslaving as an active interface with an up link
[   76.782972][   T40] audit: type=1400 audit(1733267082.599:469): avc:  denied  { shutdown } for  pid=8123 comm="syz.0.768" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   76.986536][   T40] audit: type=1400 audit(1733267082.809:470): avc:  denied  { getopt } for  pid=8135 comm="syz.4.773" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   76.992927][   T40] audit: type=1400 audit(1733267082.809:471): avc:  denied  { getattr } for  pid=8135 comm="syz.4.773" path="socket:[22878]" dev="sockfs" ino=22878 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   76.998769][   T40] audit: type=1400 audit(1733267082.809:472): avc:  denied  { read } for  pid=8135 comm="syz.4.773" path="socket:[22878]" dev="sockfs" ino=22878 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   77.128221][ T8147] netlink: 'syz.4.777': attribute type 1 has an invalid length.
[   77.137484][ T8147] 8021q: adding VLAN 0 to HW filter on device bond6
[   77.143078][ T8147] batadv6: entered promiscuous mode
[   77.144445][ T8147] batadv6: entered allmulticast mode
[   77.146231][ T8147] 8021q: adding VLAN 0 to HW filter on device batadv6
[   77.392939][    T9] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   77.421174][ T8107] delete_channel: no stack
[   77.515159][ T8152] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[   77.543934][   T39] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   77.547276][    T9] usb 5-1: Using ep0 maxpacket: 8
[   77.549578][ T5979] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   77.549835][    T9] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   77.553214][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   77.555202][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   77.557118][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   77.559571][    T9] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   77.562310][ T5282] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   77.564722][    T9] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   77.570282][    T9] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   77.572670][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   77.599294][   T40] audit: type=1400 audit(1733267083.419:473): avc:  denied  { bind } for  pid=8171 comm="syz.1.783" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[   77.628162][ T8174] __nla_validate_parse: 1 callbacks suppressed
[   77.628173][ T8174] netlink: 12 bytes leftover after parsing attributes in process `syz.1.784'.
[   77.774829][ T8183] tmpfs: Bad value for 'mpol'
[   77.783385][    T9] usb 5-1: usb_control_msg returned -32
[   77.784916][    T9] usbtmc 5-1:16.0: can't read capabilities
[   77.798948][ T8181] FAULT_INJECTION: forcing a failure.
[   77.798948][ T8181] name failslab, interval 1, probability 0, space 0, times 0
[   77.802163][ T8181] CPU: 3 UID: 0 PID: 8181 Comm: syz.1.787 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   77.804842][ T8181] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.807678][ T8181] Call Trace:
[   77.808615][ T8181]  <TASK>
[   77.809377][ T8181]  dump_stack_lvl+0x16c/0x1f0
[   77.810586][ T8181]  should_fail_ex+0x497/0x5b0
[   77.811836][ T8181]  ? fs_reclaim_acquire+0xae/0x150
[   77.813143][ T8181]  should_failslab+0xc2/0x120
[   77.814360][ T8181]  kmem_cache_alloc_noprof+0x6e/0x3d0
[   77.815726][ T8181]  ? cred_alloc_blank+0x1c/0xa0
[   77.816980][ T8181]  cred_alloc_blank+0x1c/0xa0
[   77.818315][ T8181]  keyctl_session_to_parent+0x55/0xaf0
[   77.819720][ T8181]  __do_sys_keyctl+0x25c/0x590
[   77.820949][ T8181]  do_syscall_64+0xcd/0x250
[   77.822158][ T8181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.823678][ T8181] RIP: 0033:0x7fce2c17ff19
[   77.824936][ T8181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.829807][ T8181] RSP: 002b:00007fce2cf17058 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[   77.831968][ T8181] RAX: ffffffffffffffda RBX: 00007fce2c345fa0 RCX: 00007fce2c17ff19
[   77.833983][ T8181] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000012
[   77.835991][ T8181] RBP: 00007fce2cf170a0 R08: 0000000000000000 R09: 0000000000000000
[   77.838015][ T8181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.840035][ T8181] R13: 0000000000000000 R14: 00007fce2c345fa0 R15: 00007ffe16716928
[   77.842090][ T8181]  </TASK>
[   77.843236][ T8185] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not ''
[   77.891516][ T8191] netlink: 'syz.1.792': attribute type 1 has an invalid length.
[   77.912679][ T8191] 8021q: adding VLAN 0 to HW filter on device bond15
[   77.915259][ T8194] netlink: 172 bytes leftover after parsing attributes in process `syz.4.793'.
[   77.920724][ T8191] 8021q: adding VLAN 0 to HW filter on device batadv13
[   78.081703][ T8201] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   78.087870][ T8201] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   78.095788][ T8201] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   78.102419][ T8201] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   78.105634][ T8201] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   78.111059][ T8201] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   78.299824][ T8213] FAULT_INJECTION: forcing a failure.
[   78.299824][ T8213] name failslab, interval 1, probability 0, space 0, times 0
[   78.303191][ T8213] CPU: 2 UID: 0 PID: 8213 Comm: syz.4.800 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   78.306200][ T8213] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.309011][ T8213] Call Trace:
[   78.309892][ T8213]  <TASK>
[   78.310671][ T8213]  dump_stack_lvl+0x16c/0x1f0
[   78.311881][ T8213]  should_fail_ex+0x497/0x5b0
[   78.313162][ T8213]  ? fs_reclaim_acquire+0xae/0x150
[   78.314499][ T8213]  should_failslab+0xc2/0x120
[   78.315753][ T8213]  __kmalloc_noprof+0xcb/0x510
[   78.317021][ T8213]  ? rcu_is_watching+0x12/0xc0
[   78.318267][ T8213]  lsm_blob_alloc+0x68/0x90
[   78.319431][ T8213]  security_cred_alloc_blank+0x2b/0x260
[   78.320833][ T8213]  cred_alloc_blank+0x61/0xa0
[   78.322042][ T8213]  keyctl_session_to_parent+0x55/0xaf0
[   78.323441][ T8213]  __do_sys_keyctl+0x25c/0x590
[   78.324710][ T8213]  do_syscall_64+0xcd/0x250
[   78.325932][ T8213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.327505][ T8213] RIP: 0033:0x7ff53917ff19
[   78.328877][ T8213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.333980][ T8213] RSP: 002b:00007ff539fac058 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[   78.336167][ T8213] RAX: ffffffffffffffda RBX: 00007ff539345fa0 RCX: 00007ff53917ff19
[   78.338280][ T8213] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000012
[   78.340408][ T8213] RBP: 00007ff539fac0a0 R08: 0000000000000000 R09: 0000000000000000
[   78.342830][ T8213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.345084][ T8213] R13: 0000000000000000 R14: 00007ff539345fa0 R15: 00007ffc93e6ee08
[   78.347272][ T8213]  </TASK>
[   78.399151][ T8225] netlink: 'syz.4.805': attribute type 1 has an invalid length.
[   78.422729][ T8225] 8021q: adding VLAN 0 to HW filter on device bond8
[   78.430441][ T8225] batadv6: entered allmulticast mode
[   78.432447][ T8225] 8021q: adding VLAN 0 to HW filter on device batadv6
[   78.465317][ T8229] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8229 comm=syz.1.806
[   78.662637][ T8236] netlink: 4 bytes leftover after parsing attributes in process `syz.1.809'.
[   78.673004][ T5942] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   78.673013][   T64] Bluetooth: hci4: command 0x1003 tx timeout
[   78.811846][ T8251] FAULT_INJECTION: forcing a failure.
[   78.811846][ T8251] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.815236][ T8251] CPU: 1 UID: 0 PID: 8251 Comm: syz.4.814 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   78.817942][ T8251] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.820585][ T8251] Call Trace:
[   78.821444][ T8251]  <TASK>
[   78.822218][ T8251]  dump_stack_lvl+0x16c/0x1f0
[   78.823431][ T8251]  should_fail_ex+0x497/0x5b0
[   78.824576][ T8251]  _copy_to_user+0x32/0xd0
[   78.825727][ T8251]  simple_read_from_buffer+0xd0/0x160
[   78.827068][ T8251]  proc_fail_nth_read+0x198/0x270
[   78.828311][ T8251]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   78.829670][ T8251]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   78.831035][ T8251]  vfs_read+0x1df/0xbe0
[   78.832051][ T8251]  ? __fget_files+0x1fc/0x3a0
[   78.833223][ T8251]  ? __pfx___mutex_lock+0x10/0x10
[   78.834470][ T8251]  ? __pfx_vfs_read+0x10/0x10
[   78.835619][ T8251]  ? __fget_files+0x206/0x3a0
[   78.836769][ T8251]  ksys_read+0x12b/0x250
[   78.837819][ T8251]  ? __pfx_ksys_read+0x10/0x10
[   78.839017][ T8251]  do_syscall_64+0xcd/0x250
[   78.840179][ T8251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.841666][ T8251] RIP: 0033:0x7ff53917e92c
[   78.842804][ T8251] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   78.847482][ T8251] RSP: 002b:00007ff539fac050 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   78.849519][ T8251] RAX: ffffffffffffffda RBX: 00007ff539345fa0 RCX: 00007ff53917e92c
[   78.851454][ T8251] RDX: 000000000000000f RSI: 00007ff539fac0b0 RDI: 0000000000000004
[   78.853399][ T8251] RBP: 00007ff539fac0a0 R08: 0000000000000000 R09: 0000000000000000
[   78.855420][ T8251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.857453][ T8251] R13: 0000000000000000 R14: 00007ff539345fa0 R15: 00007ffc93e6ee08
[   78.859517][ T8251]  </TASK>
[   78.860403][    C1] vkms_vblank_simulate: vblank timer overrun
[   78.910044][ T8259] netlink: 'syz.2.817': attribute type 1 has an invalid length.
[   78.911252][ T8258] ip6t_rpfilter: unknown options
[   78.921015][ T8259] 8021q: adding VLAN 0 to HW filter on device bond8
[   78.927910][ T8259] batadv7: entered promiscuous mode
[   78.929335][ T8259] batadv7: entered allmulticast mode
[   78.931513][ T8259] 8021q: adding VLAN 0 to HW filter on device batadv7
[   78.935220][ T8259] bond8: (slave batadv7): making interface the new active one
[   78.937592][ T8259] bond8: (slave batadv7): Enslaving as an active interface with an up link
[   79.180073][ T8297] Process accounting resumed
[   79.216126][ T8297] Process accounting resumed
[   79.239431][ T8299] netlink: 'syz.4.828': attribute type 1 has an invalid length.
[   79.248649][ T8299] 8021q: adding VLAN 0 to HW filter on device bond9
[   79.256396][ T8299] batadv6: entered promiscuous mode
[   79.257854][ T8299] batadv6: entered allmulticast mode
[   79.259683][ T8299] 8021q: adding VLAN 0 to HW filter on device batadv6
[   79.424384][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.427109][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.429201][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.431198][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.432953][ T8316] 
[   79.433226][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.433808][ T8316] ======================================================
[   79.433814][ T8316] WARNING: possible circular locking dependency detected
[   79.433818][ T8316] 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0 Not tainted
[   79.433823][ T8316] ------------------------------------------------------
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   79.433826][ T8316] syz.1.832/8316 is trying to acquire lock:
[   79.433832][ T8316] ffff88804eb2a2c0 (
[   79.435798][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.437547][ T8316] &dev->mutex#2){+.+.}-{4:4}, at: __input_unregister_device+0x24/0x450
[   79.437577][ T8316] 
[   79.437577][ T8316] but task is already holding lock:
[   79.437579][ T8316] ffff888012125e20 (&hdev->ll_open_lock){+.+.}-{4:4}
[   79.439495][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.441965][ T8316] , at: hid_hw_open+0x25/0x170
[   79.441983][ T8316] 
[   79.441983][ T8316] which lock already depends on the new lock.
[   79.441983][ T8316] 
[   79.441987][ T8316] 
[   79.441987][ T8316] the existing dependency chain (in reverse order) is:
[   79.441990][ T8316] 
[   79.441990][ T8316] -> #1 (&hdev->ll_open_lock){+.+.}-{4:4}:
[   79.442004][ T8316]        __mutex_lock+0x19b/0xa60
[   79.444391][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.445975][ T8316]        hid_hw_open+0x25/0x170
[   79.445987][ T8316]        input_open_device+0x22c/0x390
[   79.445998][ T8316]        evdev_open+0x52d/0x690
[   79.447170][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.449032][ T8316]        chrdev_open+0x237/0x6a0
[   79.449050][ T8316]        do_dentry_open+0xf59/0x1ea0
[   79.449059][ T8316]        vfs_open+0x82/0x3f0
[   79.449070][ T8316]        path_openat+0x1e6a/0x2d60
[   79.451286][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.453016][ T8316]        do_filp_open+0x20c/0x470
[   79.453029][ T8316]        do_sys_openat2+0x17a/0x1e0
[   79.453040][ T8316]        __x64_sys_openat+0x175/0x210
[   79.453051][ T8316]        do_syscall_64+0xcd/0x250
[   79.454793][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.456659][ T8316]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.456676][ T8316] 
[   79.456676][ T8316] -> #0 (&dev->mutex#2){+.+.}-{4:4}:
[   79.456696][ T8316]        __lock_acquire+0x249e/0x3c40
[   79.458040][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.460668][ T8316]        lock_acquire.part.0+0x11b/0x380
[   79.460685][ T8316]        __mutex_lock+0x19b/0xa60
[   79.460696][ T8316]        __input_unregister_device+0x24/0x450
[   79.460705][ T8316]        input_unregister_device+0xb9/0x100
[   79.463270][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.465142][ T8316]        steam_input_unregister+0x10c/0x2c0
[   79.465156][ T8316]        steam_client_ll_open+0xc9/0x100
[   79.465164][ T8316]        hid_hw_open+0xe2/0x170
[   79.465173][ T8316]        hidraw_open+0x274/0x7e0
[   79.465181][ T8316]        chrdev_open+0x237/0x6a0
[   79.466977][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.468822][ T8316]        do_dentry_open+0xf59/0x1ea0
[   79.468835][ T8316]        vfs_open+0x82/0x3f0
[   79.468845][ T8316]        path_openat+0x1e6a/0x2d60
[   79.468854][ T8316]        do_filp_open+0x20c/0x470
[   79.468863][ T8316]        do_sys_openat2+0x17a/0x1e0
[   79.470447][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.471766][ T8316]        __x64_sys_openat+0x175/0x210
[   79.471781][ T8316]        do_syscall_64+0xcd/0x250
[   79.471792][ T8316]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.471804][ T8316] 
[   79.471804][ T8316] other info that might help us debug this:
[   79.471804][ T8316] 
[   79.471807][ T8316]  Possible unsafe locking scenario:
[   79.471807][ T8316] 
[   79.473429][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.475185][ T8316]        CPU0                    CPU1
[   79.475190][ T8316]        ----                    ----
[   79.475193][ T8316]   lock(&hdev->ll_open_lock);
[   79.475201][ T8316]                                lock(&dev->mutex#2);
[   79.475210][ T8316]                                lock(&hdev->ll_open_lock);
[   79.475216][ T8316]   lock(&dev->mutex#2);
[   79.476855][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.478198][ T8316] 
[   79.478198][ T8316]  *** DEADLOCK ***
[   79.478198][ T8316] 
[   79.478202][ T8316] 2 locks held by syz.1.832/8316:
[   79.478209][ T8316]  #0: ffffffff8fc3cb90 (minors_rwsem){+.+.}-{4:4}, at: hidraw_open+0xa6/0x7e0
[   79.478232][ T8316]  #1: ffff888012125e20 (&hdev->ll_open_lock){+.+.}-{4:4}, at: hid_hw_open+0x25/0x170
[   79.479910][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.481032][ T8316] 
[   79.481032][ T8316] stack backtrace:
[   79.481039][ T8316] CPU: 3 UID: 0 PID: 8316 Comm: syz.1.832 Not tainted 6.13.0-rc1-syzkaller-00005-gceb8bf2ceaa7 #0
[   79.481051][ T8316] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.481057][ T8316] Call Trace:
[   79.481061][ T8316]  <TASK>
[   79.481065][ T8316]  dump_stack_lvl+0x116/0x1f0
[   79.484872][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.486039][ T8316]  print_circular_bug+0x419/0x5d0
[   79.486054][ T8316]  check_noncircular+0x31a/0x400
[   79.486064][ T8316]  ? __pfx_check_noncircular+0x10/0x10
[   79.486074][ T8316]  ? finish_task_switch.isra.0+0x212/0xcc0
[   79.488102][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.489416][ T8316]  ? lockdep_lock+0xc6/0x200
[   79.489432][ T8316]  ? __pfx_lockdep_lock+0x10/0x10
[   79.489446][ T8316]  __lock_acquire+0x249e/0x3c40
[   79.489458][ T8316]  ? __pfx___lock_acquire+0x10/0x10
[   79.489469][ T8316]  ? find_held_lock+0x2d/0x110
[   79.492915][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.493588][ T8316]  lock_acquire.part.0+0x11b/0x380
[   79.493601][ T8316]  ? __input_unregister_device+0x24/0x450
[   79.493611][ T8316]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   79.493622][ T8316]  ? rcu_is_watching+0x12/0xc0
[   79.496334][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.497634][ T8316]  ? trace_lock_acquire+0x14e/0x1f0
[   79.497653][ T8316]  ? __input_unregister_device+0x24/0x450
[   79.497662][ T8316]  ? lock_acquire+0x2f/0xb0
[   79.497672][ T8316]  ? __input_unregister_device+0x24/0x450
[   79.500017][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.501394][ T8316]  __mutex_lock+0x19b/0xa60
[   79.501412][ T8316]  ? __input_unregister_device+0x24/0x450
[   79.501421][ T8316]  ? __input_unregister_device+0x24/0x450
[   79.501430][ T8316]  ? __pfx___might_resched+0x10/0x10
[   79.506394][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.508033][ T8316]  ? __pfx___mutex_lock+0x10/0x10
[   79.508049][ T8316]  ? synchronize_rcu_expedited+0x424/0x450
[   79.508062][ T8316]  ? __pfx_lock_release+0x10/0x10
[   79.509987][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.511375][ T8316]  ? __input_unregister_device+0x24/0x450
[   79.511389][ T8316]  __input_unregister_device+0x24/0x450
[   79.511399][ T8316]  input_unregister_device+0xb9/0x100
[   79.511408][ T8316]  steam_input_unregister+0x10c/0x2c0
[   79.513035][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.514213][ T8316]  steam_client_ll_open+0xc9/0x100
[   79.514228][ T8316]  hid_hw_open+0xe2/0x170
[   79.514239][ T8316]  hidraw_open+0x274/0x7e0
[   79.514249][ T8316]  ? __pfx_hidraw_open+0x10/0x10
[   79.516002][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.517821][ T8316]  chrdev_open+0x237/0x6a0
[   79.517837][ T8316]  ? __pfx_chrdev_open+0x10/0x10
[   79.517849][ T8316]  do_dentry_open+0xf59/0x1ea0
[   79.517859][ T8316]  ? __pfx_chrdev_open+0x10/0x10
[   79.517869][ T8316]  ? inode_permission+0xdd/0x5f0
[   79.519854][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.520999][ T8316]  vfs_open+0x82/0x3f0
[   79.521015][ T8316]  ? may_open+0x1f2/0x400
[   79.521027][ T8316]  path_openat+0x1e6a/0x2d60
[   79.521039][ T8316]  ? __pfx_path_openat+0x10/0x10
[   79.526783][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.527454][ T8316]  ? __pfx___lock_acquire+0x10/0x10
[   79.527468][ T8316]  ? lock_acquire.part.0+0x11b/0x380
[   79.527478][ T8316]  ? find_held_lock+0x2d/0x110
[   79.528921][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.530147][ T8316]  do_filp_open+0x20c/0x470
[   79.530161][ T8316]  ? __pfx_do_filp_open+0x10/0x10
[   79.530170][ T8316]  ? find_held_lock+0x2d/0x110
[   79.531868][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.534449][ T8316]  ? alloc_fd+0x41f/0x760
[   79.534466][ T8316]  do_sys_openat2+0x17a/0x1e0
[   79.534478][ T8316]  ? __pfx_do_sys_openat2+0x10/0x10
[   79.534490][ T8316]  ? do_user_addr_fault+0xe50/0x13f0
[   79.534501][ T8316]  ? __pfx_lock_release+0x10/0x10
[   79.534511][ T8316]  __x64_sys_openat+0x175/0x210
[   79.534523][ T8316]  ? __pfx___x64_sys_openat+0x10/0x10
[   79.534536][ T8316]  ? do_user_addr_fault+0x83d/0x13f0
[   79.534547][ T8316]  do_syscall_64+0xcd/0x250
[   79.534559][ T8316]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.552621][ T5978] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   79.554636][ T8316] RIP: 0033:0x7fce2c17e880
[   79.554652][ T8316] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[   79.554662][ T8316] RSP: 002b:00007fce2ced4b90 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[   79.554672][ T8316] RAX: ffffffffffffffda RBX: 0000000000000200 RCX: 00007fce2c17e880
[   79.583628][    T9] usb 5-1: USB disconnect, device number 6
[   79.584261][ T8316] RDX: 0000000000000200 RSI: 00007fce2ced4c30 RDI: 00000000ffffff9c
[   79.584272][ T8316] RBP: 00007fce2ced4c30 R08: 0000000000000000 R09: 0023776172646968
[   79.584278][ T8316] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   79.584284][ T8316] R13: 0000000000000001 R14: 00007fce2c346160 R15: 00007ffe16716928
[   79.584293][ T8316]  </TASK>
[   79.693764][    T8] usb 7-1: USB disconnect, device number 2
[   79.698018][ T5978] hid-generic 0000:0000:0000.0005: hidraw2: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   79.700783][    T8] input: Steam Controller as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:28DE:1102.0003/input/input10
[   79.735348][    T8] hid-steam 0003:28DE:1102.0003: Steam Controller 'XXXXXXXXXX' disconnected
[   79.813521][   T25] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[   80.423296][ T5942] Bluetooth: hci3: command 0x0c1a tx timeout
[   81.383981][   T70] cfg80211: failed to load regulatory.db

VM DIAGNOSIS:
23:04:45  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=000000000000003a RCX=ffffffff8179b54a RDX=ffff8880272bc880
RSI=ffffffff8179b536 RDI=0000000000000001 RBP=1ffff9200073ee7f RSP=ffffc900039f73e8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000001 R13=0000000000000200 R14=ffff88804e668000 R15=ffffc900039f74b0
RIP=ffffffff8179b538 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fce2cf16fb8 CR3=0000000023106000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000100 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe16716cb0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce2c1f4830
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce2c1f483d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce2c1f4837
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce2c1f484b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce2c1f48d1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce2c1f49af
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000004 RBX=ffff88801ce091c8 RCX=ffffffff8208abb5 RDX=ffffed10039c123a
RSI=0000000000000004 RDI=ffff88801ce091cc RBP=ffff88801ce09180 RSP=ffffc90005a2f7b8
R8 =0000000000000001 R9 =ffffed10039c1239 R10=ffff88801ce091cf R11=0000000000000000
R12=0000000000000000 R13=0000000000000001 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff8208abbf RFL=00000217 [----APC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fe08c277d60 CR3=000000000df7e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe08b7106a3 00007fe08b7106a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffff2842ba0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555643c9874 00005555643c9870
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555643c44a0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fe08b710d00
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000033323935 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 797301ffffffffff fffffdff080b8803 0008000b80030004 0004080013800401
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000307a
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0115800418838388 8208000100000808 0606010bec03ffff ffff0415d0030010
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000054fa4 RBX=0000000000000002 RCX=ffffffff8b29c759 RDX=ffffed100d506fee
RSI=ffffffff8bd1b3e0 RDI=ffffffff817086b9 RBP=ffffed1003ad4000 RSP=ffffc90000197e08
R8 =0000000000000000 R9 =ffffed100d506fed R10=ffff88806a837f6b R11=0000000000000000
R12=0000000000000002 R13=ffff88801d6a0000 R14=ffffffff905f0410 R15=0000000000000000
RIP=ffffffff8b29db3f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fce2c163ce0 CR3=0000000040620000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000f800ffff Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce2cef3f90 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce2c1f4830
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce2c1f483d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce2c1f4837
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce2c1f484b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce2c1f48d1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fce2c1f49af
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7865000a64657275 6769666e6f63203a 7463656e6e6f635f 6273755f7a797300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5d40000a41405750 424c434b4a46051f 5146404b4b4a465f 4756505f5f5c5600
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=000000000000001f RCX=ffffffff8179b54a RDX=ffff88804e668000
RSI=ffffffff8179b536 RDI=0000000000000001 RBP=1ffff9200076ee1e RSP=ffffc90003b770e0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=722d302e33312e36
R12=0000000000000001 R13=0000000000000000 R14=ffff8880272bc880 R15=ffffc90003b771c8
RIP=ffffffff8179b538 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fce2ced56c0 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fce2ced4fb8 CR3=0000000040620000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffb276f8f6558904 61bf5f1a56caeb5d
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff5391f4830
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff5391f483d
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff5391f4837
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff5391f484b
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff5391f48d1
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff5391f49af
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff539e7d100 00007ff539310440 00007ff539310004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff539310498 00007ff539310490 00007ff539310488 00007ff539310480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000