last executing test programs:

1m13.12653241s ago: executing program 2 (id=169):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
open(0x0, 0x181242, 0x1df2a23c5997fa5f)
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x106, 0x9}}, 0x20)

1m13.121798302s ago: executing program 2 (id=171):
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141121)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0xc0, 0x61)
r3 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
r4 = socket(0x2, 0x2, 0x0)
r5 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
ioctl$NBD_SET_SOCK(r3, 0xab00, r4)
ioctl$NBD_DO_IT(r5, 0xab03)
ioctl$NBD_SET_SIZE_BLOCKS(r3, 0xab07, 0x200000a)
mount(&(0x7f0000000500)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000040)='udf\x00', 0x8007, 0x0) (fail_nth: 17)

1m12.729046852s ago: executing program 2 (id=180):
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000600)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x12, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000680)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00U\x00=\t\x00\x00\x00\x00\x00\x00\x00\x00\a\x00\x00\x00', @ANYRES32=r3, @ANYBLOB="20000280", @ANYRES32=r1, @ANYBLOB="0000000000000000000000000a000000000000000000001420000100", @ANYRES32=r3], 0x58}}, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r5 = dup3(r4, r0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, 0xffffffffffffffff, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0xfffffeb3, 0x0, &(0x7f0000000580)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x49, 0xa, 0x0, &(0x7f0000000100)={0x30, 0x30, 0x30}}, 0x400}], 0x0, 0x0, 0x0})

1m12.659630846s ago: executing program 2 (id=181):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
r0 = epoll_create1(0x0)
r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff)
r2 = fanotify_init(0x20, 0x0)
fanotify_mark(r2, 0x445, 0x1003, r1, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
mount$cgroup2(0x27000000, &(0x7f0000000100)='./file0\x00', 0x0, 0x2941010, 0x0)

1m12.60908653s ago: executing program 2 (id=182):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000006c0), r0)
syz_clone(0x40b04000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_BT_POWER(r2, 0x112, 0x9, &(0x7f0000001740)=0x64, 0x1)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000080)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010300bd7002ffdbdf252500000005002a0000000000000007ff7770616e310000000500290000000000"], 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
r4 = syz_open_dev$vim2m(&(0x7f0000000140), 0x200000001003, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_STREAMON(r4, 0x40045612, &(0x7f0000000080)=0x2)
ioctl$vim2m_VIDIOC_DQBUF(r4, 0xc0585611, &(0x7f00000003c0)=@multiplanar_mmap={0x9, 0x2, 0x4, 0x2, 0x9, {}, {0xb289d58468e4db09, 0x0, 0x1, 0xff, 0x9, 0x3, "80322142"}, 0x6, 0x1, {0x0}, 0x7})
ioctl$vim2m_VIDIOC_QBUF(r4, 0xc058560f, &(0x7f00000002c0)=@multiplanar_mmap={0x0, 0x2, 0x4, 0x0, 0x0, {}, {0x5, 0x0, 0x0, 0x0, 0x20, 0x29, "fafc00"}, 0x0, 0x1, {0x0}})
sendmsg$RDMA_NLDEV_CMD_SET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, 0x1402, 0x1, 0x70bd28, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_NAME={0x9, 0x2, 'syz0\x00'}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000801}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000180)={0x0, 0x1e000000, &(0x7f0000000780)={&(0x7f0000000f00)=ANY=[@ANYBLOB="300000001800dd8d0000000000000000020000000000000900000000060015000a0000000c00168008000100bc"], 0x30}}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x1c, 0x2, 0x1, 0x301, 0x0, 0x0, {0x2, 0x0, 0x7}, [@CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x4)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000040)={'team_slave_0\x00', &(0x7f0000000000)=@ethtool_dump={0x3e, 0x708, 0x1, 0xe, "a9ca00a75f6ca897ebab56b4c433"}})

1m12.488784636s ago: executing program 2 (id=184):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
r2 = socket$kcm(0x29, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r4 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r4, &(0x7f0000000fc0)={&(0x7f0000000180)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000040)={r4, r3})
sendmmsg(r2, &(0x7f0000007240)=[{{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000600)="1c58e6", 0x3}], 0x1}}], 0x1, 0x4000004)
getsockopt$llc_int(r1, 0x10c, 0x9, &(0x7f0000000340), &(0x7f0000000200)=0x4)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000680)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010028bd7000fddbdf250700000008000300", @ANYRES32=r6, @ANYBLOB="0c009900ff070000700000001400040073797a6b616c6c6572300000000000000800050004000000050053000100000038185cd594d4d23aa90328fbccef59406f4cda8490994423d7eb73ebecf34b4d2e9b5c21db953f7870dff101cebb624bbb6b"], 0x4c}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)

1m12.442545766s ago: executing program 32 (id=184):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
r2 = socket$kcm(0x29, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r4 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r4, &(0x7f0000000fc0)={&(0x7f0000000180)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000040)={r4, r3})
sendmmsg(r2, &(0x7f0000007240)=[{{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000600)="1c58e6", 0x3}], 0x1}}], 0x1, 0x4000004)
getsockopt$llc_int(r1, 0x10c, 0x9, &(0x7f0000000340), &(0x7f0000000200)=0x4)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000680)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010028bd7000fddbdf250700000008000300", @ANYRES32=r6, @ANYBLOB="0c009900ff070000700000001400040073797a6b616c6c6572300000000000000800050004000000050053000100000038185cd594d4d23aa90328fbccef59406f4cda8490994423d7eb73ebecf34b4d2e9b5c21db953f7870dff101cebb624bbb6b"], 0x4c}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)

1m11.930184944s ago: executing program 0 (id=194):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000040))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x8aba, 0x4, 0x1004, 0x804, 0x4, 0xc, 0x120000, 0xff, 0xffffffffffffffff, 0x9, 0xffff, 0x4, 0x0, 0x105, 0x400000000000006, 0x9], 0x8000000, 0x141200})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000100)=@x86={0x40, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x8, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x80, '\x00', 0x0, 0x5})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x59, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000200)="ba610066b80078000066ef6766c7442400ea5acbca6766c7442402000001006766c744240600000000670f0114240f01d60f23eb2667660f3881420ebaf80c66b876125d8c66efbafc0cb80000efb8ba008ed80f01f1baf80c66b8a279098c66efbafc0ced3e640f01cb", 0x6a}], 0x1, 0x59, &(0x7f0000000380), 0x0)

1m11.729302106s ago: executing program 0 (id=195):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="38000000101401002cbd7000fedbdf25080003000100000008004a0001000f00080001000000000f08004c000100000f08004b0013"], 0x38}, 0x1, 0x0, 0x0, 0x24044833}, 0x2000c094)

1m11.729121445s ago: executing program 0 (id=196):
landlock_create_ruleset(&(0x7f0000000040), 0x10, 0x0)
r0 = landlock_create_ruleset(&(0x7f0000000140)={0x0, 0x3}, 0x10, 0x0)
landlock_restrict_self(r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
move_mount(r1, 0x0, r1, &(0x7f0000000100)='./mnt\x00', 0x137)

1m11.679967353s ago: executing program 0 (id=197):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="319fb978232e62180432f60ae0ffc9a7dbcc7d8bf345ad0e88147694c13f660a1dbba9aa256e656b3fbab50a6a16caf394e28d74555fdf5bc633fb547fe2cc2d2d98b611c6e90351bf14226bda7a0e828213af2a0ca21386e437068235abae2f307448e19808a1d70045691874479cac6d0ad0466102d4f762bf2214b326869b8c7b3a419fb5c665ecb8cac0b5f9e6fddd9b905ed621a1c8f957e816be9006705497385b18d101d0ad48", @ANYRES16=r1, @ANYBLOB="01060000000000000000260000000e0001006e657464657673696d0000000f0002006e657464657673696d300000"], 0x8d}}, 0x4040)
prctl$PR_SET_SECUREBITS(0x1c, 0x2c)
setuid(0xee00)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f00000019c0)=@raw={'raw\x00', 0x4001, 0x3, 0xa38, 0x0, 0xb, 0x148, 0x0, 0x148, 0x9a0, 0x240, 0x240, 0x9a0, 0x215, 0x3, 0x0, {[{{@ip={@local, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth0\x00', {}, {}, 0x11}, 0x2e8, 0x880, 0x8e8, 0x0, {0xff0f000000000000}, [@common=@inet=@udp={{0x30}}, @common=@unspec=@u32={{0x7e0}, {[], 0x1}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}, {{@ip={@broadcast, @broadcast, 0x0, 0x0, 'team0\x00', 'netpci0\x00'}, 0xec010000, 0x98, 0xb8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0xa98)
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x5, 0x0)
r7 = syz_open_dev$cec(&(0x7f0000000180), 0x0, 0xa8f02)
ioctl$CEC_S_MODE(r7, 0x40046109, &(0x7f00000000c0)=0x32)
fremovexattr(r2, &(0x7f0000000140)=@known='security.selinux\x00')
ioctl$CEC_S_MODE(r7, 0x40046109, &(0x7f0000000040)=0x1)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
accept(r6, &(0x7f00000001c0)=@l2tp6={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000280)=0x80)
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r8, {0x4, 0xa}, {}, {0x7, 0xc}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x4}]}}, @TCA_BPF_CLASSID={0x8, 0x3, {0x2, 0xf}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)

1m11.509281025s ago: executing program 0 (id=200):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
close(0x3)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000002c0)={'pimreg0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setreuid(0x0, r5)
statx(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x80, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, r3, {<r7=>0xee00}}, './file1\x00'})
lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
setreuid(0x0, r8)
read$FUSE(0xffffffffffffffff, &(0x7f0000006080)={0x2020, 0x0, 0x0, 0x0, <r9=>0x0}, 0x2020)
getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000600)={{{@in6=@initdev, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0}}, {{}, 0x0, @in6}}, &(0x7f00000001c0)=0xe8)
r11 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read$FUSE(r11, &(0x7f0000009780)={0x2020, 0x0, 0x0, 0x0, <r12=>0x0}, 0x2020)
write$FUSE_DIRENTPLUS(r11, &(0x7f0000000400)={0xb0, 0xfffffffffffffff5, 0x3, [{{0x5, 0x1, 0x5, 0x5, 0x2, 0xdf7, {0x3, 0x6, 0x28, 0x0, 0x2b26f94500000000, 0xca, 0x8, 0xff, 0x7, 0x1000, 0x3, 0x0, r12, 0xe5, 0x6}}, {0x0, 0xd70b, 0x1, 0x1, '-'}}]}, 0xb0)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000b00)=ANY=[@ANYBLOB="d8030000daffffff", @ANYRES64=0x0, @ANYBLOB="020000000000000003000000000000000000000000000080000200000000000007000000c0000000030000000000000053c500000000000000000000000000000500000000000000050000000000000009000000000000008600000002000000ab0f000000a0000001000000", @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB="040000000100008000000000000000000000000004000000000000000d000000000000002f6465762f6e65742f74756e000000000500000000000000030000000000000000100000000000000800000000000000e7000000130b0000010000000000000009000000000000000000000001000000158da05000000000f2b50000000000000200000000000000fc00000065060000020000000080000004000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fdffffff05000000000000000600000000000000010000000000008002000000070000007d270000000000000500000000000000010000000000000007000000000000000500000000000000090000000100000000000000000000000200000000000000e7b00000000000000600000000000000d0040000000000000100000000000000200000003b000000070000000080000006000000", @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="ff07000003000000000000000100000000000000018000000000000007000000f70000006d756c7469710000050000000000000001000000000000000104000000000000f9ffffffffffffff0900000001010000000000000000000009000000000000000900000000000000e800000000000000050000000000000002000000000000000004000005000000070000000010000000040000", @ANYRES32=r7, @ANYRES32, @ANYBLOB="0800000004000000000000000100000000000000040000000000000004000000fbffffff26271c5c0000000006000000000000000100000000000000ffffff7f000000005a220000000000000300000007000000030000000000000021ab83750000000000000000008039000001000000000000ff0300000000000000000000000000000900000003000000a55a00000080000000000000", @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="000000401000000000000000060000000000000009000000000000000700000005000000706f6c6963790000030000000000000000000000000000000200000000000000ff03000000000000ff0f000050b6234206000000000000000300000000000000fffbffffffffffffff7f00000000000049070000000000007c000000000000009e00000005000000fbffffff00c0000002000000", @ANYRES32=r10, @ANYRES32=r12, @ANYBLOB="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"/305], 0x3d8)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x70, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r4, {0xc, 0x4}, {}, {0x5, 0xfff3}}, [@filter_kind_options=@f_flow={{0x9}, {0x40, 0x2, [@TCA_FLOW_EMATCHES={0x3c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffb}}, @TCA_EMATCH_TREE_LIST={0x30, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0x2c, 0x1, 0x0, 0x0, {{0x7, 0x9, 0xe1b2}, [@TCA_EM_IPT_HOOK={0x8, 0x1, 0x2}, @TCA_EM_IPT_MATCH_DATA={0x4}, @TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0xa}]}}]}]}]}}]}, 0x70}}, 0x20008050)
r13 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r13, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=@delnexthop={0x20, 0x69, 0x503, 0x0, 0x0, {}, [{0x8, 0x1, 0x2}]}, 0x20}}, 0x0)

1m11.300438118s ago: executing program 0 (id=203):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x20002000, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x2})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
syz_emit_ethernet(0xfdef, &(0x7f0000000140)={@empty, @local, @val={@val={0x88a8, 0x1, 0x0, 0x1}, {0x8864, 0x6, 0x0, 0x1}}, {@llc={0x8864, {@llc={0xf4, 0x80, "1a"}}}}}, 0x0)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$llc_int(r2, 0x10c, 0x1, &(0x7f00000007c0)=0x9, 0x4)
r3 = dup3(r1, r0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x10, 0x0, &(0x7f0000000040)=[@request_death={0x400c6313}], 0x0, 0x1000000, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000140)="d2"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x400c6314}], 0x0, 0x0, 0x0})

56.156960237s ago: executing program 33 (id=203):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x20002000, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x2})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
syz_emit_ethernet(0xfdef, &(0x7f0000000140)={@empty, @local, @val={@val={0x88a8, 0x1, 0x0, 0x1}, {0x8864, 0x6, 0x0, 0x1}}, {@llc={0x8864, {@llc={0xf4, 0x80, "1a"}}}}}, 0x0)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$llc_int(r2, 0x10c, 0x1, &(0x7f00000007c0)=0x9, 0x4)
r3 = dup3(r1, r0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x10, 0x0, &(0x7f0000000040)=[@request_death={0x400c6313}], 0x0, 0x1000000, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000140)="d2"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x400c6314}], 0x0, 0x0, 0x0})

37.14964186s ago: executing program 4 (id=524):
r0 = socket(0x10, 0x3, 0x0) (async, rerun: 32)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) (rerun: 32)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
r2 = socket(0x400000000010, 0x3, 0x0) (async)
r3 = socket$unix(0x1, 0x1, 0x0) (async, rerun: 32)
r4 = socket$alg(0x26, 0x5, 0x0) (rerun: 32)
bind$alg(r4, &(0x7f0000000080)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128\x00'}, 0x58) (async)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000040)="60a66b51eaca012b", 0x8) (async, rerun: 32)
r5 = accept(r4, 0x0, 0x0) (rerun: 32)
socket$l2tp6(0xa, 0x2, 0x73) (async, rerun: 32)
sendmmsg$alg(r5, &(0x7f0000000740)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000001c0)="564004c6852da7a299e4c397614090d1a6e12edf1767f157", 0x18}], 0x1, &(0x7f0000001300)=[@op={0x18, 0x117, 0x3, 0x1}, @iv={0x1018, 0x117, 0x2, 0x1000, "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"}], 0x1030}], 0x1, 0x0) (async, rerun: 32)
recvmsg$can_j1939(r5, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000004c0)=""/222, 0xde}, {&(0x7f00000005c0)=""/240, 0xf0}], 0x2}, 0x2100) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0) (async)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r6, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x8, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x4}]}, @TCA_FLOWER_CLASSID={0x8, 0x1, {0xa, 0xffff}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x800) (async)
r7 = openat$mice(0xffffffffffffff9c, &(0x7f0000000140), 0x101280)
r8 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2) (async)
r9 = getpgrp(0x0)
prctl$PR_SET_PTRACER(0x59616d61, r9) (async)
prctl$PR_SET_PTRACER(0x59616d61, 0x0) (async, rerun: 32)
r10 = socket$alg(0x26, 0x5, 0x0) (rerun: 32)
bind$alg(r10, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'crc32c-generic\x00'}, 0x58)
r11 = accept4(r10, 0x0, 0x0, 0x0)
sendto$inet6(r11, &(0x7f0000000740)="d6", 0x1, 0x884, 0x0, 0x0) (async)
ioctl$VIDIOC_G_FREQUENCY(r8, 0xc02c5638, &(0x7f0000000080)={0x0, 0x3, 0x1}) (async)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000280), &(0x7f0000000300)=0xc)
r12 = getuid()
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r7, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, r1, {r12, 0xee01}}, './file0\x00'})
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x1c, 0x52, 0x1, 0x0, 0x0, {0xa}, [@typed={0x8, 0x1, 0x0, 0x0, @binary="feffffff"}]}, 0x1c}}, 0x0)

37.032678351s ago: executing program 4 (id=530):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000070000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async, rerun: 32)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async, rerun: 32)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000000)=0x10000) (async, rerun: 32)
mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0) (async, rerun: 32)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000100)={@local})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='writeback_bdi_register\x00', r3}, 0x10) (async, rerun: 64)
pipe2$9p(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0) (rerun: 64)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}}) (async)
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r1, 0x7b2, &(0x7f0000000280)={&(0x7f00000012c0)=[0xfffffffb, 0x9, 0x0, 0x10, 0x7, 0x1, 0x40, 0x2, 0x1, 0x4, 0x3, 0x0, 0x3, 0x5, 0xa3, 0xfffffff5, 0x6, 0xffff258f, 0x9, 0x50cf, 0x10001, 0x3, 0x940, 0x4, 0x1, 0x0, 0x2, 0x3, 0x7, 0x4, 0x80000001, 0x3, 0x2, 0x6, 0xbd, 0x8, 0xffff, 0x1, 0x3, 0x44a, 0x9, 0x7, 0xfffffff6, 0x80000001, 0x603a, 0x3, 0x6, 0x4732, 0x9, 0xc, 0x1800000, 0x10000, 0x4, 0x4, 0x8000, 0x7, 0x6, 0x9, 0x3, 0x6a7, 0x8, 0x0, 0x6, 0x9, 0x6, 0x5, 0xb412, 0x93d, 0x5, 0xfffffffc, 0x3, 0x8, 0x8, 0x4, 0xfff, 0x8000000, 0x7, 0xebe8, 0x1, 0x6, 0x0, 0x800, 0x62, 0x89c4, 0xe1, 0x5, 0x3, 0x5, 0x80, 0x29d, 0xa0, 0x8, 0x1, 0x1, 0xf, 0xfffffffa, 0xd45, 0x9, 0x2, 0x6, 0x6, 0x0, 0x9, 0x5, 0x3, 0x5, 0x80000000, 0x29, 0x80, 0x10000, 0x5, 0x6, 0x7, 0x7, 0xb, 0xfa45, 0x8, 0xa714, 0x0, 0x3, 0x8000, 0x1, 0x7fffffff, 0x7, 0x10, 0x9, 0xc, 0x4, 0x2, 0x7, 0x2, 0x3, 0xfffffffb, 0x6, 0x9, 0xad9, 0x4a2ab86f, 0xa, 0x4, 0x3, 0x0, 0xd6ad, 0x2, 0x7, 0x7, 0x0, 0xfff, 0x4, 0x20000000, 0x3, 0xb, 0x7, 0x9, 0x2, 0x57, 0x6, 0x765, 0x8, 0x2, 0x9d, 0x401, 0x6, 0x8, 0x0, 0x2, 0x1, 0x0, 0x2, 0x3, 0x4, 0x81, 0x7, 0x4, 0x3ff, 0x4, 0x7, 0x9, 0x7, 0x5, 0x7, 0x1, 0x1, 0x63, 0x1ff, 0x0, 0xfffffffe, 0xda, 0x4, 0x6, 0x8000, 0x53, 0x1, 0x4c, 0xadb, 0x2, 0x6, 0x3, 0x80000000, 0x7, 0x9, 0x6, 0x8, 0x7f, 0x5, 0x3, 0x7, 0x2, 0x3, 0xfffffff7, 0x4, 0x400, 0xffffffff, 0x16, 0x8, 0xfffffff9, 0x1, 0x5, 0x80000000, 0x5, 0x52ac15a1, 0xffffff74, 0x91, 0x3, 0x6, 0x401, 0x4, 0x7, 0xffff, 0x6, 0x10000, 0x75ee, 0x0, 0x4, 0x10000, 0x2, 0x4, 0x7fffffff, 0x9, 0x7, 0xff, 0x8, 0x8, 0x2, 0x7, 0x200, 0x9, 0x5, 0x29a800, 0xfffffff9, 0x8, 0x34000000, 0xb34, 0xfffffff9, 0x80000000, 0x9, 0xc, 0x5, 0x2, 0x0, 0x2, 0xd4e, 0x45, 0x10001, 0x4, 0xff, 0x1000, 0x5, 0x200, 0xb, 0x8, 0x3, 0x1, 0xfffffffd, 0x7, 0x9, 0x1, 0x5, 0x2, 0xfffffff8, 0x9, 0x4, 0xb64, 0x1, 0xffffffff, 0x1, 0x3, 0x96, 0x3, 0xda6, 0x6, 0x1, 0x0, 0x9, 0x5, 0xeb9, 0x100, 0x8, 0x5, 0x7, 0x4, 0xa2, 0x6, 0x37, 0x81, 0x5, 0xfff, 0x3, 0x9, 0x7fffffff, 0x0, 0x7, 0x7fff, 0x3, 0x6, 0x1, 0xfffffffc, 0x10, 0x6, 0x1, 0x5, 0x81, 0xfffffffc, 0x1, 0x7, 0x8, 0x40008000, 0x4, 0x5, 0xfffffff0, 0xffff, 0x6, 0xd, 0x4, 0x5, 0x8, 0x4, 0x5, 0x0, 0x7fffffff, 0x40, 0x40, 0x5, 0x7d99, 0x85, 0x401, 0x6, 0x1, 0x2, 0x5, 0x7e97, 0x1ff, 0x2, 0x1, 0x2c, 0x8, 0x4, 0xe, 0x6, 0x2, 0xd, 0x4000000, 0x5, 0xfffffeb9, 0x10001, 0x2, 0x6, 0x4, 0x9, 0x6, 0x5c0, 0xbc, 0xd, 0x8, 0x0, 0x9, 0x6, 0x428, 0x7, 0x2, 0x9, 0x9, 0x4, 0x1, 0x7, 0x9, 0x3, 0x40, 0xcf7, 0x28e116fe, 0xffffffff, 0x583c, 0x80000000, 0x67cc, 0xd99, 0xa15, 0x9, 0x76, 0x9, 0x9, 0xffffffff, 0x0, 0xa41, 0x7fff, 0x7fff, 0x9, 0x3, 0x5, 0x10001, 0x4, 0xfffffffa, 0x0, 0x8, 0x7, 0x8, 0xc, 0xd57, 0xffff, 0x8000, 0x6, 0x2, 0x5, 0x5, 0x8, 0x1000, 0xe, 0x800, 0x8000, 0x145, 0xfff, 0x4, 0x9, 0x1000, 0xb9b7, 0x3, 0x4, 0xda4a, 0x8, 0x9d46, 0xce, 0xffffffff, 0xfffffffc, 0x6, 0x4, 0x4, 0x8c, 0x5, 0x5, 0x0, 0xe6ef, 0x101, 0x3, 0x5, 0x1ff, 0x7fff, 0x2, 0xc, 0x2, 0xe3, 0xffffff15, 0x2, 0x101, 0x0, 0xf60f, 0x8, 0x80000001, 0x3, 0x200, 0x0, 0x8, 0x5, 0x7, 0x7fffffff, 0x7, 0x8, 0x8, 0x0, 0x6, 0x4, 0x6, 0x7fffffff, 0x2, 0x5, 0xad0a, 0x5, 0x0, 0x9, 0x4, 0x7f, 0xfffffffa, 0x9, 0x8, 0x0, 0x7f, 0xffffffff, 0x2, 0x2, 0x6, 0x3, 0x1, 0x6, 0x5, 0x367, 0x400, 0x10, 0xb, 0x1, 0x2, 0x5, 0x1, 0x7, 0x1ff, 0x6, 0x2, 0x4, 0x100, 0x1, 0x2677, 0x2ab, 0x862, 0x0, 0x7, 0x7ff, 0x2, 0x8, 0x0, 0x1d56, 0xc3c, 0x3, 0xb48, 0x80000000, 0x80000000, 0xfffffe01, 0x8, 0x3, 0x5, 0x5, 0x101, 0x1, 0x401, 0xe, 0x9b1, 0x21, 0x7ff, 0x280, 0x9, 0xffffff7f, 0x9, 0x3ff, 0x9, 0x0, 0x8, 0x1, 0x0, 0xfffffff8, 0x97, 0x1400000, 0x1000, 0x10001, 0x9, 0x6, 0x8000, 0x3, 0x3, 0x4, 0xfff, 0x1, 0x2, 0xde, 0x0, 0x8, 0xe, 0x101, 0x8, 0x7, 0x9, 0xfffffff7, 0x39, 0x41, 0x6, 0x1, 0x6f8, 0x8, 0x5b46, 0x1, 0xfffffff6, 0x4, 0x5, 0x5, 0x80000001, 0x6, 0x0, 0x6, 0xfffffffe, 0x1ab7332e, 0x7, 0xe31, 0xc000000, 0x14, 0x80000001, 0x4ab3, 0x400, 0xec9c, 0xf55, 0x619, 0x5, 0xd9e, 0x5, 0x100, 0x4, 0x7ff, 0x6fdd, 0x48000, 0x3, 0x7, 0x10, 0x3, 0x3, 0x3, 0x2, 0x40000000, 0x10000, 0x8, 0x10000, 0xa, 0x10, 0xfffffbff, 0x0, 0x4, 0x29e6, 0x87, 0x7, 0xd3, 0x7, 0x1, 0x3, 0x1000000, 0x2, 0x6, 0x0, 0x7, 0x7, 0xf, 0x4, 0x4, 0x2, 0x8001, 0x3, 0x5, 0xfffffff8, 0x3672, 0x4, 0x0, 0x8, 0x5, 0x7c42, 0x4, 0x4, 0x1, 0x7, 0x0, 0x5, 0x5, 0x8000, 0x8001, 0x4, 0x0, 0x3f100000, 0x1, 0x100, 0x200, 0x0, 0x80000001, 0x4, 0x4, 0x98, 0x7f, 0x7f2, 0x80000000, 0x0, 0x7, 0x3677, 0x169, 0x7, 0xffffffdd, 0x4, 0x400, 0x4, 0xffffad1c, 0x1, 0x3f, 0xc00, 0x8c73, 0xb6c, 0x7fffffff, 0x401, 0x5, 0x3, 0x6, 0x5, 0x2b68, 0x400, 0x0, 0x4, 0x5, 0x8, 0x2, 0x4, 0x6, 0x5, 0x3, 0x101, 0x80000001, 0xffc, 0x6, 0x401, 0x800, 0xef, 0x9, 0x10000, 0xfffffffb, 0x4, 0x81, 0x0, 0x3, 0x7, 0x4, 0x9, 0x1, 0x3, 0xff, 0x0, 0xfffffff7, 0x7, 0x7, 0xa5, 0x2, 0xe98, 0x5f, 0x1, 0xa428, 0x8, 0x7d0, 0x9, 0x2, 0x80000001, 0x7, 0x0, 0x5, 0x9, 0x9, 0xd, 0x3, 0x6, 0x1000, 0x7fffffff, 0xd843, 0x0, 0x2, 0xffffffff, 0x8, 0x2189, 0x6, 0xadb8, 0x4, 0x9, 0xd, 0x8, 0x80000001, 0xfb1, 0x87, 0x0, 0x8, 0x0, 0x7fffffff, 0x100, 0x3, 0x73b, 0xce, 0x0, 0x4149, 0x3, 0xffff, 0x4, 0x5, 0x46, 0x62b, 0x4, 0x100, 0x7, 0x784, 0x88, 0x8001, 0x10000, 0x0, 0x145c05dc, 0xff, 0x4, 0x2, 0x5, 0x8, 0x6, 0xfffffff9, 0x9890, 0xa, 0xfff, 0x4, 0x2, 0x6, 0x9, 0x8000, 0x2, 0x6, 0xff, 0x1b, 0x2, 0x3, 0x0, 0x6, 0x4, 0x4, 0x9, 0x6, 0x1, 0x7, 0x8, 0x10000, 0xb, 0x7, 0x17, 0x6, 0x3, 0x9, 0x1, 0x6, 0x1, 0xef0, 0xb, 0x1, 0x2, 0x7ff, 0x5, 0x10, 0x80000000, 0x3ff, 0x4, 0x200, 0xffff, 0xcf74, 0xfffffffc, 0x9, 0x200, 0x0, 0x4f93, 0x10, 0xcc, 0x8, 0x4, 0xfffffffb, 0xe1e, 0x7f, 0x9, 0x0, 0x3, 0x7f, 0xfffffff8, 0xfff, 0x2, 0x1, 0xbc9, 0xf, 0xfffffff7, 0x10000, 0x571, 0x1, 0x7, 0x3, 0x1, 0x0, 0x2, 0x4, 0xb, 0x8, 0x7, 0x2, 0x8, 0x2, 0x7, 0x8000, 0x338, 0x7fff, 0x0, 0x4, 0x3, 0x7, 0x100, 0xe67, 0x0, 0x3, 0x7ff, 0x6, 0xffffffff, 0x9, 0x6, 0x3, 0x6, 0x7, 0xfffffff7, 0x0, 0x5, 0x6, 0xffff8000, 0x5e6, 0x9, 0x80000001, 0x3ff, 0x4, 0x89, 0x2, 0xfffff000, 0x3, 0x7fffffff, 0x2, 0x8, 0x5, 0x7fffffff, 0x2, 0x4, 0x6, 0x8, 0x4, 0x6, 0x4, 0x1, 0x658d, 0x7, 0x0, 0x8, 0x401, 0x4, 0x4, 0x7c117d50, 0x87, 0x9, 0x1ff, 0x2, 0xfffffffb, 0x3ff, 0x3, 0x6, 0x89, 0x6, 0x3, 0x4, 0x6, 0x2, 0xc, 0x800, 0x3, 0x7, 0xd82b, 0x1, 0x80000000, 0x4f, 0x20a, 0x7fff, 0x5, 0xb67, 0x2, 0xd1, 0x2, 0xfffffffd, 0xfffffeff, 0xe, 0x10, 0x10000, 0x5, 0xfffffffa, 0x16, 0xe2c, 0x8, 0x81, 0x3, 0x40, 0x10001, 0xf72, 0xca3d, 0x80000000, 0xffffffc0, 0x0, 0xc0000000, 0x0, 0x200, 0x6, 0xfffffff7, 0x10000, 0x6, 0x9, 0x2, 0xc9, 0x9, 0x8, 0x6cf, 0x9, 0x4, 0x1000, 0x1000, 0x0, 0x4, 0x7, 0x81, 0xfffffff6, 0x30000000, 0xb, 0x6, 0x80000000, 0x2, 0x1a49, 0x7, 0x5, 0xffffffff, 0x8001, 0x8, 0x7f, 0xe], 0x2, 0x400, 0x1ff}) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='mm_lru_insertion\x00', r0}, 0x10) (async, rerun: 64)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) (async, rerun: 64)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r6, &(0x7f0000000180), 0x40010)

37.032579356s ago: executing program 4 (id=531):
syz_emit_ethernet(0x7e, &(0x7f0000000080)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd602e5cea00483c0020010000000000000000000000000002ff0200000000000000000000000000010004000000000000c9"], 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000e00)={@in6={{0xa, 0x40, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}}, 0x0, 0x0, 0x44, 0x0, "e541bd3d3aa6a2bf75e9671e8abcb31c134f3a9db8f52e7300fe6e079f35ac63186c7244fc3b3801e79f15ced9fd7e55d0345bce05c13ed90158fbdeb70322ea3188f81890e3db00"}, 0xd8)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
getsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000040)={@private0, <r1=>0x0}, &(0x7f0000000080)=0x14)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0xac, 0x0, 0x100, 0x70bd2d, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_ADDR_REMOTE={0x2c, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}]}, @MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}, @MPTCP_PM_ATTR_ADDR={0x60, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r1}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast1}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @initdev={0xac, 0x1e, 0x1, 0x0}}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast2}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @local}]}]}, 0xac}, 0x1, 0x0, 0x0, 0x40000}, 0x4000014)
syz_emit_ethernet(0x4b, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff08004500003d000000000006907800000000ffffffff00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="a01100059078000013129352d9700000000007810000000000000000b0"], 0x0)

36.959995594s ago: executing program 4 (id=532):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
r0 = epoll_create1(0x0)
r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff)
r2 = fanotify_init(0x20, 0x0)
fanotify_mark(r2, 0x445, 0x1003, r1, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
mount$cgroup2(0xf6ffffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x2941010, 0x0)

36.959796276s ago: executing program 4 (id=533):
socket$nl_route(0x10, 0x3, 0x0) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000980)=@ipv4_newroute={0x24, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x10, 0x0, 0x0, 0x0, 0xfd, 0x9}, [@RTA_SPORT={0x6, 0x1c, 0x4e24}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x2006c000)

36.66997479s ago: executing program 4 (id=537):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa}]}], {0x14}}, 0x64}}, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0xa00, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)

36.62624588s ago: executing program 34 (id=537):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa}]}], {0x14}}, 0x64}}, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0xa00, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)

10.401144161s ago: executing program 6 (id=860):
syz_io_uring_setup(0x10024f8, 0x0, 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000000102010100000000000000000500000562e4aa172efe77ca743f53b81059f8ea1c6ad39417703fe4f58f8a7c1c5b6fb040aacd7f7a430944d7c590502602072a3d54fc6c2fb833d8bf25175468be4e2d99e57144ab8444741dfad8d2c446f3a6433c5b9d2dc5850311d45ca2daae597a0b60729e52559bde5723d126582618504f0a95bdf35de99484aa90f25d7719a2b156ece2de713bc86986fd88ba4db014915bdfd03f1809d02128a2448c40b7f16fddf4bcfe87cb25"], 0x14}, 0x1, 0x0, 0x0, 0x4811}, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000280)={0x0, 0xfffffffe, 0x0, 'queue0\x00', 0x2})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000340), r1)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)={0x24, r2, 0x400, 0x70bd25, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @multicast2}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @broadcast}]}, 0x24}}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000180)={0x13, @time={0x65757100, 0x4}, 0x0, {}, 0xfe})

10.329364444s ago: executing program 6 (id=863):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58)
r4 = accept$alg(r3, 0x0, 0x0)
r5 = dup(r4)
write$FUSE_INIT(r5, &(0x7f0000000080)={0x4f, 0x0, 0x0, {0x7, 0x2b, 0x500}}, 0xfffffdef)
r6 = inotify_init1(0x0)
inotify_add_watch(r6, &(0x7f0000000040)='.\x00', 0x24000420)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r7 = dup(r2)
ioctl$KVM_SET_CPUID2(r7, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000000000030100000000000000000000000000000000000000760f00000000000000000000000000000000000007"])

9.37939211s ago: executing program 6 (id=876):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000200)={0x10, 0x0, &(0x7f0000000140)=[@request_death={0x400c630e, 0x1}], 0x0, 0x0, 0x0})
sendmsg$can_bcm(r1, &(0x7f0000000340)={&(0x7f0000000000), 0x10, &(0x7f0000000300)={&(0x7f0000000280)={0x2, 0x288, 0x7, {0x77359400}, {}, {0x4, 0x0, 0x1, 0x1}, 0x1, @can={{0x3, 0x1, 0x1, 0x1}, 0x2, 0x2, 0x0, 0x0, "379ab928920b678f"}}, 0x48}, 0x1, 0x0, 0x0, 0x1}, 0x6008800)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000180)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd28, 0x8020, {0x0, 0x0, 0x0, r3, {0x5, 0x8}, {}, {0xa, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_CT_LABELS={0x14, 0x61, "783f07b32f486024e57df49e402235da"}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x200c0e9}, 0x20000004)

9.378797209s ago: executing program 6 (id=878):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
r0 = epoll_create1(0x0)
r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff)
r2 = fanotify_init(0x20, 0x0)
fanotify_mark(r2, 0x445, 0x1003, r1, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
mount$cgroup2(0xfffff000, &(0x7f0000000100)='./file0\x00', 0x0, 0x2941010, 0x0)

9.329191788s ago: executing program 6 (id=880):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSETMODE(r0, 0x4b45, 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x0)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000180), 0x789100)
write$qrtrtun(r1, &(0x7f0000001640)="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", 0x1000) (async)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}}) (async)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2c, &(0x7f00000001c0)=0x800, 0x4)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000}) (async)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r4, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3}}) (async)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r2, 0x40505412, &(0x7f00000000c0)={0x2, 0x0, 0x40, 0x0, 0x8}) (async)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="6e725f690000000000000025c1144d36bade4be0747f9855b5b0dcbda5924e9c3b2f88b6027f871d94070000000000000014019d60f13aa24e14debeb9b4a3164c9ec0d6599b201d0c9909702f9a6ede5cf5aa585deb4a515e31598fb33b15ca3af666600f81221fdcd0de9b4ce3bcd28e9612beea2a403e77d4bdbde688688841bd2b0bd4ba71383f5accf999eea265a4eafde63f2efc"])
r5 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r5, &(0x7f0000001600)='./file1\x00', 0x0, 0x0) (async)
ioctl$KDGKBENT(r0, 0x4b46, &(0x7f0000000000)={0x83, 0xc, 0x4})

9.038742625s ago: executing program 6 (id=887):
socket$netlink(0x10, 0x3, 0x0)
socket(0x2a, 0x2, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000300)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
socket$packet(0x11, 0x2, 0x300)
syz_emit_ethernet(0x46, &(0x7f0000000180)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @remote, @val={@val={0x88a8, 0x0, 0x0, 0x1}}, {@ipv6={0x86dd, @icmpv6={0x3, 0x6, '\x00', 0x8, 0x3a, 0xff, @empty, @local, {[], @echo_request={0x80, 0x0, 0x0, 0x7ff, 0x7}}}}}}, 0x0)

8.951125767s ago: executing program 35 (id=887):
socket$netlink(0x10, 0x3, 0x0)
socket(0x2a, 0x2, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000300)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
socket$packet(0x11, 0x2, 0x300)
syz_emit_ethernet(0x46, &(0x7f0000000180)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @remote, @val={@val={0x88a8, 0x0, 0x0, 0x1}}, {@ipv6={0x86dd, @icmpv6={0x3, 0x6, '\x00', 0x8, 0x3a, 0xff, @empty, @local, {[], @echo_request={0x80, 0x0, 0x0, 0x7ff, 0x7}}}}}}, 0x0)

1.80899988s ago: executing program 5 (id=957):
open(&(0x7f0000000040)='./bus\x00', 0x14957e, 0x0)
mount(0x0, &(0x7f0000000280)='./bus\x00', &(0x7f0000000000)='ocfs2\x00', 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x13, 0x0, 0x310)
sendmsg(r0, &(0x7f0000000200)={&(0x7f0000000000)=@rc={0x1f, @none, 0xd8}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000280)="4ae012d0dd9ada6a6c436922f21a2ca01795a1ea9b93b40eaf091d5b7e25354ec298063e4690518f9b63e79de9dcec84001c47c459e5dcb921830b042d057627613585c26e4d629860c779ca06db28fab2128b1b78ea3162ca384836988692ea578f2a9f77458d1e1fe10e127bb912ea11d432496e419718cfd6a22cd582452e2e0a83ff2c098e2b06a4f71b8f8969babf284d1c91908614a69ac1d5faf5c55745b33daac8fc2d3ccd4a89db1b81835411bd12555545dc8e6af01b908c1dd4a74cde7daee2f1ef3721065e0be34a4f6f13baa89918864bc2a4a899c44e6eaa63c329d300afe14c47b52587eca6b87fe98c895e0c260798429c01e22bffdf5d49a522546914c6726c32661586ac84899286a4da9b1b8c533f5caab6847237e571f53180a7ae6b789fd80ea57cc047be86213dbf1a859a49f80bf293ce2a739756d44ee04acea7983eeb8d41729856a6e6d2edc4915fe820a91c5714f205468fbc6bb2e762fc4f106ef3f054700818d0d83d37d48ebac9bb448eb1cb36494ad589478cb7e52c675c2b77c000e9ca53e4f2b203a334586b96e590698212c4b00557fb9eefbf5d39de687b8f69", 0x1ab}, {&(0x7f0000000240)="a5af8c61cdc238103063d7ebf0a91beb6662c3", 0x13}], 0x2, &(0x7f00000001c0)=[{0x20, 0x10a, 0x7, "a4559f9d15e40b66655a65e4"}], 0x20}, 0x1)

1.808492976s ago: executing program 5 (id=959):
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x6c0985, 0x0)
fchdir(r0)
syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/net\x00')
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f00000001c0)={0x2, <r1=>0x0}, 0x8)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000280)=r1, 0x4)
mount(&(0x7f0000000000), &(0x7f0000000040)='./cgroup\x00', 0x0, 0x1001, 0x0)
r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$FUSE_NOTIFY_STORE(r2, &(0x7f0000000240)={0x28, 0x4, 0x0, {0x2, 0x1}}, 0x28)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r4=>0x0})
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x28, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@TCA_STAB={0x4}]}, 0x28}}, 0x4)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@bridge_newvlan={0x18, 0x70, 0x239, 0x70bd2a, 0x25dfdbfb, {0x7, 0x0, 0x0, r4}}, 0x18}, 0x1, 0x0, 0x0, 0x4004840}, 0x0)
r8 = creat(&(0x7f0000000140)='./cgroup/file0\x00', 0x4)
dup3(r3, r8, 0x0)
r9 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=@ipv4_delroute={0x24, 0x19, 0x901, 0x0, 0x0, {0x2, 0x18, 0x20, 0x0, 0x0, 0x0, 0xfd, 0x1}, [@RTA_DST={0x8, 0x1, @multicast1}]}, 0x24}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000180)={'macvlan0\x00'})
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x1, 0x0)
read$FUSE(r9, &(0x7f0000002140)={0x2020}, 0x2020)

1.319466315s ago: executing program 3 (id=966):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x24}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r3=>0xffffffffffffffff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r4, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000000)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="cf0400000000000000001300000008000300", @ANYRES32=r6, @ANYBLOB="0500130092848b000a00060008021100000100000600100080050000060012"], 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

1.179697266s ago: executing program 3 (id=968):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={0x28, 0x3e, 0x107, 0xfffffffe, 0x0, {0x4, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x4, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x5e1a1d7e9ee501a7}, 0xc000) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) (async)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="6d706f6c3d70995ba42adc802444ab72656665723d7374617469633a", @ANYRESDEC]) (async)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000000206010100000000000000000000000005000100070000000900020073797a30000000001400078005001500f0ffffff080012400000000011000300686173683a69702c6d61726b000000000500050002000000050004"], 0x60}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

1.179452933s ago: executing program 3 (id=969):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="5c00000014006b03000000d86e6c1d0002847ea622fb564500004e23e3f58e76110165f450e71b0075e3002500028d459e37000f0000000000bf9367b47e51f60a64c9f4d49380", 0x47}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000001000)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x280020}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000100)="90", 0x1}], 0x1}}], 0x1, 0x20008050)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000140)=[@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in={0x2, 0x4e22, @remote}], 0x20)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYRES16], 0x1000f)

1.105448074s ago: executing program 3 (id=971):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_WOL_GET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100b164756d6d793000"/23], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1ee7308c8f10aaa66f733469af0b173f9729f4b6d88adf472a12d94e656927c5f986e1bd2fcf248c8fe8b39b91ae6779a67bdb3ef181fb23fde350d606025a34d8880feabd25babac9389d0e0e48c102310bc7", @ANYRES16=r3, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000500070005000000"], 0x34}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000280)={'gre0\x00', &(0x7f0000000180)={'syztnl2\x00', 0x0, 0x7800, 0x20, 0x4, 0xf4de, {{0x2d, 0x4, 0x2, 0x2a, 0xb4, 0x67, 0x0, 0x5, 0x29, 0x0, @local, @multicast2, {[@cipso={0x86, 0x4e, 0x1, [{0x6, 0x11, "95cae74748ba48c8294ad3478823a1"}, {0x5, 0xd, "865ad4069a83edfac8096f"}, {0x2, 0xd, "50546139789a66ea2300ca"}, {0x5, 0x12, "1d7a52b09539bb286cf7ca7b1d28d29d"}, {0x2, 0xb, "8d353c0a43ac72d57b"}]}, @noop, @lsrr={0x83, 0x1b, 0x52, [@broadcast, @broadcast, @rand_addr=0x64010100, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote]}, @timestamp={0x44, 0x18, 0x3f, 0x0, 0x0, [0xb67, 0x0, 0x7, 0x0, 0x1]}, @timestamp={0x44, 0x8, 0x5b, 0x0, 0xf, [0x8]}, @generic={0x83, 0x12, "d7b746c32149b13fa5f5b1ae7bb491ca"}, @noop]}}}}})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000002c0))
getpeername$packet(0xffffffffffffffff, &(0x7f0000000300), &(0x7f0000000340)=0x14)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000100)={'vcan0\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="3000000010000304000000000000000000000400", @ANYRES32=r6, @ANYBLOB="0000000000000000050021"], 0x30}}, 0x0)
r7 = socket(0x2, 0xa, 0xfff)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x9)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYRES32=r8, @ANYBLOB="020000000000800080001200080001007674693674000200"], 0xa0}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000400)={'batadv_slave_1\x00'})
getsockname$packet(0xffffffffffffffff, &(0x7f0000000440), &(0x7f0000000480)=0x14)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000003b40))
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r9, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r10=>0x0})
r11 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r11, 0x65, 0x1, &(0x7f00000000c0)=[{{0x0, 0x1, 0x1, 0x1}, {0x0, 0x0, 0x0, 0x1}}, {{0x1, 0x1}, {0x1ffffffb, 0x1, 0x0, 0x1}}, {{0x4, 0x1, 0x1, 0x1}, {0x3, 0x0, 0x1}}, {{0x0, 0x1}, {0x2, 0x0, 0x1}}], 0x20)
sendmsg$nl_route_sched(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {0x0, 0x3}}}, 0x24}}, 0x40044)

969.608308ms ago: executing program 3 (id=975):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000040), 0xd22, 0x1a1802)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r0, 0xc01864b0, &(0x7f0000000180)={0x0, 0x0, 0x6, 0xbf8b, 0x4f6})
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000013000100"/20, @ANYRES32=0x0, @ANYBLOB="00010000000000001400030064756d6d793000000000000000000000050021"], 0x3c}}, 0x0)
r2 = open(&(0x7f0000000580)='./file0\x00', 0x181242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r2, &(0x7f00000002c0)={0xa0, 0x0, 0x0, {{0x80000000, 0x3, 0x5, 0xffffffffffffff80, 0x3, 0x1, {0x1, 0x180, 0x20ff, 0x8, 0x8b, 0x800000000000d615, 0x3fb, 0x7ffffffb, 0x6, 0x1000, 0x8, 0x0, 0x0, 0x3ff, 0x100}}, {0x0, 0x12}}}, 0xa0)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
ppoll(&(0x7f0000000140)=[{r1}], 0x1, &(0x7f0000000180), 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f00000003c0)={<r4=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000240)={r4, 0x1, r3, 0x5})
r5 = syz_io_uring_setup(0x7444, &(0x7f00000004c0)={0x0, 0xa6e9, 0x10100, 0x2, 0xfffffffb}, &(0x7f0000000140)=<r6=>0x0, &(0x7f0000000280)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_MKDIRAT={0x25, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r5, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
sendfile(r2, r2, &(0x7f0000000080), 0x7f04)
r8 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_WANTLQI(r8, 0x0, 0x3, &(0x7f0000001380)=0x1, 0x66)
r9 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="0100000004000000040000000700000000000000", @ANYRES32, @ANYBLOB="000000000000409674f4d893e3484b97cd000000", @ANYRES32=0x0, @ANYRES32=r9, @ANYBLOB="020000000100"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0), &(0x7f0000000240), 0xfff, r10}, 0x38)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000240)={r10, &(0x7f00000000c0), &(0x7f0000000100)=""/237}, 0x20)
syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), r8)

901.623446ms ago: executing program 5 (id=977):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000005e000100"/20, @ANYRES32=r5], 0x1c}}, 0x0)
writev(r2, &(0x7f0000000f40)=[{&(0x7f0000000400)="2e9b3d93dfb6c575963f88640000000000", 0x11}, {&(0x7f0000000180)="64c0", 0x2}, {&(0x7f0000000340)="7cbf2f00ea5797806224fa67fe6b81c398528470ec8e5d67eec255f1c5f1200f6422ad3a0a1cdce76d953ba05060d9fb9b08aaf6ebc74fd014c3e7c3da5bfbba9fc62ec59fcf961c6a38e9178a344775d392a12bd6e58dd1cfcb6f4508005be46e23fb", 0x63}], 0x3)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x40480d4)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="14000000100001000000001d000000000000000a40000000060a0b060000000000000000020000001400048010000180090001006d617371000000000900010073797a30000000000900020073797a320000000014000000110001"], 0x68}}, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r7)
r8 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r7, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r8, 0x0)
r9 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r9, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
tee(0xffffffffffffffff, 0xffffffffffffffff, 0x60000000000, 0x1000000000000000)
ioctl$VIDIOC_TRY_FMT(0xffffffffffffffff, 0xc0d05640, &(0x7f0000000500)={0xa, @raw_data="3aee44a9c226a51c91d96d057945493d62731d82b7b243ac2b8c09e616fac25ae19d22dde9f23f852c3c3ccc3a9bd805898c9b2332eefd90a8a3ec23a13d253cf99691b813d8bfe75bfd83c66b56546b67a6d49ef1aa41cd5fb1faa24fd3f04c0551ed1ce90da7f3c55d1722a954283520a13b98bbbda5d490614b0b944b44d09086680a995a0ef055c7b45c50f7096e53c69a5af5d8af27a799d80635b87bb98d78c265cc91f11d80f3215cb8e27902ded8695717e1bc25acbcb5f28d2e5cddcd7b000000009cae"})
socket$nl_netfilter(0x10, 0x3, 0xc)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a50000000060a0b040000000000000000010000012400048020000180070001006374000014000280080002400000000e0800fabb0000000d0950631f92797a30000000000900020073797a3200000000140000001100010000000000000000000000000a"], 0x78}}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
r11 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)
dup(r12)

737.560763ms ago: executing program 7 (id=983):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_WOL_GET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100b164756d6d793000"/23], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1ee7308c8f10aaa66f733469af0b173f9729f4b6d88adf472a12d94e656927c5f986e1bd2fcf248c8fe8b39b91ae6779a67bdb3ef181fb23fde350d606025a34d8880feabd25babac9389d0e0e48c102310bc7", @ANYRES16=r3, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000500070005000000"], 0x34}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000280)={'gre0\x00', &(0x7f0000000180)={'syztnl2\x00', 0x0, 0x7800, 0x20, 0x4, 0xf4de, {{0x2d, 0x4, 0x2, 0x2a, 0xb4, 0x67, 0x0, 0x5, 0x29, 0x0, @local, @multicast2, {[@cipso={0x86, 0x4e, 0x1, [{0x6, 0x11, "95cae74748ba48c8294ad3478823a1"}, {0x5, 0xd, "865ad4069a83edfac8096f"}, {0x2, 0xd, "50546139789a66ea2300ca"}, {0x5, 0x12, "1d7a52b09539bb286cf7ca7b1d28d29d"}, {0x2, 0xb, "8d353c0a43ac72d57b"}]}, @noop, @lsrr={0x83, 0x1b, 0x52, [@broadcast, @broadcast, @rand_addr=0x64010100, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote]}, @timestamp={0x44, 0x18, 0x3f, 0x0, 0x0, [0xb67, 0x0, 0x7, 0x0, 0x1]}, @timestamp={0x44, 0x8, 0x5b, 0x0, 0xf, [0x8]}, @generic={0x83, 0x12, "d7b746c32149b13fa5f5b1ae7bb491ca"}, @noop]}}}}})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000002c0))
getpeername$packet(0xffffffffffffffff, &(0x7f0000000300), &(0x7f0000000340)=0x14)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000100)={'vcan0\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="3000000010000304000000000000000000000400", @ANYRES32=r6, @ANYBLOB="0000000000000000050021"], 0x30}}, 0x0)
r7 = socket(0x2, 0xa, 0xfff)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x9)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYRES32=r8, @ANYBLOB="020000000000800080001200080001007674693674000200"], 0xa0}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000400)={'batadv_slave_1\x00'})
getsockname$packet(0xffffffffffffffff, &(0x7f0000000440), &(0x7f0000000480)=0x14)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000003b40))
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r9, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r10=>0x0})
r11 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r11, 0x65, 0x1, &(0x7f00000000c0)=[{{0x0, 0x1, 0x1, 0x1}, {0x0, 0x0, 0x0, 0x1}}, {{0x1, 0x1}, {0x1ffffffb, 0x1, 0x0, 0x1}}, {{0x4, 0x1, 0x1, 0x1}, {0x3, 0x0, 0x1}}, {{0x0, 0x1}, {0x2, 0x0, 0x1}}], 0x20)
sendmsg$nl_route_sched(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {0x0, 0x3}}}, 0x24}}, 0x40044)

737.189333ms ago: executing program 5 (id=984):
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x34, 0x0, 0x1, 0x70bd2b, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_USE_CQE_MODE_RX={0x5, 0x19, 0x1}]}, 0x34}}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x2c, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0x5}, {0xffff, 0xffff}, {0xfff3, 0x10}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x7}]}, 0x2c}}, 0x44080)
r1 = fsopen(&(0x7f0000000000)='sockfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
fsmount(r1, 0x0, 0x8a)
setreuid(0xee01, 0xee01)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000020000103feffffff0000000002000000000000000400010008000a000008000005001e"], 0x50}}, 0x4000850)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600))
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
syz_usb_connect$printer(0x0, 0x2d, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900"], 0x1f4}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="20010000", @ANYRES16=r3, @ANYBLOB="050000000000000000000f00000008000300", @ANYRES32=r5, @ANYBLOB="47000e00800000000802110000000802110000015050505050500000000000000000000064000000000602020202020204060000000000000602000025030034003c040106b80400080026006c09000008000c006400000008000d0000000000a2000f00329c"], 0x120}, 0x1, 0x0, 0x0, 0x90}, 0x0)
pipe2$9p(&(0x7f0000000280)={<r6=>0xffffffffffffffff}, 0x84080)
getresuid(&(0x7f00000002c0), &(0x7f0000000300), &(0x7f0000000340)=<r7=>0x0)
r8 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_STATUS(r8, 0x84, 0x84, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, {0x0, @in={{0x2, 0x0, @empty}}}}, &(0x7f0000000280)=0xb0)
lstat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000240), 0x2000000, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@dfltuid={'dfltuid', 0x3d, r7}}, {@mmap}, {@access_uid={'access', 0x3d, r9}}, {@fscache}, {@nodevmap}, {@cache_loose}, {@noxattr}, {@noextend}], [{@smackfshat={'smackfshat', 0x3d, '*{%'}}, {@subj_type={'subj_type', 0x3d, '\a'}}]}})

662.427047ms ago: executing program 7 (id=988):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET(r0, &(0x7f0000000100)={0x0, 0xf00, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x1401, 0x7fc32be5eb343aa7}, 0x5c}}, 0xf000000)

598.530746ms ago: executing program 7 (id=989):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000000)=0x2, 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
recvmmsg(r0, &(0x7f0000002840)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000001240)=""/213, 0xd5}, {&(0x7f0000000000)=""/110, 0x6e}, {&(0x7f0000001340)=""/150, 0x96}, {&(0x7f0000001400)=""/158, 0x9e}], 0x5, &(0x7f00000014c0)=""/104, 0x68}, 0xfffffff2}, {{&(0x7f0000001540)=@isdn, 0x80, &(0x7f0000002740)=[{&(0x7f00000015c0)=""/201, 0xc9}, {&(0x7f00000016c0)=""/105, 0x69}, {&(0x7f0000001740)=""/4096, 0x1000}], 0x3, &(0x7f0000002780)=""/153, 0x99}, 0x5}], 0x2, 0x83, &(0x7f00000028c0)={0x77359400})
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x7, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="85000000bf000000720a00ff000000007900580e00000000950000000000000018100000", @ANYRES32, @ANYBLOB="00000000000000c5cf000000000000009500000800000000"], &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2d)
syz_io_uring_setup(0x5c2, &(0x7f0000000640)={0x0, 0x0, 0x800, 0x3, 0x3d9}, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$inet_int(r3, 0x0, 0xf, 0x0, &(0x7f0000000000))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x51, 0x0, 0x80, 0x2, 0x0, 0x127})
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000001, 0x110, 0xffffffffffffffff, 0x10000000)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendto$inet6(r6, &(0x7f0000000080)="7800000018002507b9409b14ffff00000204be04020506050e020409430009003f000c00100006000d0085a168d0bf46d32345653600648d0a00120002000a0000005ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160005000a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000002940)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000002900)='./file0\x00', 0x0, 0x40, 0x23456, {0x0, r5}})

598.198146ms ago: executing program 7 (id=990):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000100), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000001ec0)={0x0, 0x0, &(0x7f0000001e80)={&(0x7f0000000000)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000001000000080001000700000008000200020000002c0004800500030002"], 0x50}}, 0x0)

529.760067ms ago: executing program 7 (id=991):
ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, &(0x7f0000000140)=@multiplanar_mmap={0x7fffffff, 0x2, 0x4, 0x100000, 0x5, {}, {0x5, 0x8, 0x7, 0x6, 0xb5, 0x9, "9c0152e5"}, 0x3ff, 0x1, {&(0x7f00000000c0)=[{0x0, 0x8000, {0x1}, 0x6}, {0x7, 0x0, {0x10000}, 0xfffffff8}]}, 0x8})
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet(r1, &(0x7f0000001a40)=[{{&(0x7f0000000200)={0x2, 0x4e21, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000001a80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @local}}}, @ip_retopts={{0x10}}], 0x30}}], 0x1, 0x0)
ioctl$PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x4e}]})
ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000040))
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000000)=ANY=[], 0x6)

529.276177ms ago: executing program 1 (id=992):
syz_emit_ethernet(0xbe, &(0x7f00000000c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x9c, 0x0, @wg}}}}}, 0x0)
syz_emit_ethernet(0x9e, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x90, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x7c, 0x0, @wg=@data={0x4, 0x0, 0x0, '\x00'/100}}}}}}, 0x0)
syz_emit_ethernet(0x16, &(0x7f00000000c0)={@multicast, @broadcast, @void, {@llc={0x4, {@snap={0x0, 0x0, "af", "c56e86", 0x86dd}}}}}, 0x0)

529.034071ms ago: executing program 7 (id=993):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000105509147200ed0000000109022400010000000009040000030300000009210000000122050009058103"], 0x0)
syz_usb_control_io(r2, 0x0, 0x0)
syz_usb_control_io(r2, &(0x7f0000000100)={0x2c, &(0x7f0000000280)=ANY=[@ANYBLOB="200617"], 0x0, 0x0, 0x0, 0x0}, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x3f, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'macsec0\x00', <r4=>0x0})
syz_emit_ethernet(0xde, &(0x7f0000000200)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0xa8, 0x6, 0x0, @local, @dev={0xfe, 0x80, '\x00', 0x19}, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x2a, 0xc2, 0x0, 0x0, 0x1, {[@mptcp=@remove_addr={0x1e, 0x91, 0x2, 0x0, "5922ef63dde1079a8da9d0150b14b8903280907e74a583beee77af67d1bbd7396988f9aa1d636de6ef3c0a0731115163553914933c232d7bd9ea1fa32f04683bb525f5a9b5c2dc75ebef37e7d9e2a196e9cd7c58d613d62084a69fae248c0e98de4c0cd48e0468ba9cfe6a12ada31bbc5fa5fc0da8cb427f8f5c3072a18dceb95cc28e26808ef7844b42303676ae"}]}}}}}}}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000680)='sched_switch\x00', r5}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000a00)=ANY=[@ANYBLOB="54000000100003052bbd7000249d020000000000", @ANYRES32=0x0, @ANYBLOB="1544010001800000240012800b0001006d616373656300001400028005000c0001000000080005000400000008000500", @ANYRES32=r4], 0x54}, 0x1, 0x0, 0x0, 0x2040}, 0x800)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000b40)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r7, @ANYBLOB="10007d"], 0x2c}}, 0x0)

528.808884ms ago: executing program 1 (id=994):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r0 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_aout(r0, &(0x7f0000000500)={{0xcc, 0x0, 0xb, 0x212, 0x1b7, 0x3, 0x381, 0x7}, "fe07ec448244009811a0a6e9056cc4511020abe36d7f2fef7121f0d386d94368e75b01c04a4bdd361dd0b3d23fa880bedff16076f2731a5d2c109d6653910c731daf76bfa623b1215b1123a0bb2f649afc927493d7e7f8587a1df3ddb18c81aeab0d1b053afdbb44aaf6025822bfc7224ca5e25cdd50c34314a14fb9e7405f39325f44d63da97162c44849bb4dc7c8e8e7b4", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xab2)
r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000b60000/0x4000)=nil, 0x4000, 0x8, 0x100010, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22})
r4 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x1, @mcast1, 0x2}, 0x1c)
r5 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r5, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e210e227f000001925aa80020007b00090080007f000006e809000000ff0000f03ac7102d000000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f00000002c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x4, 0x0, @fd_index=0x6, 0x1, 0x0, 0xfffffe00, 0x1, 0x1, {0x0, r6}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1, 0x34}], {0x95, 0x0, 0x700}}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004882, 0x0)
io_setup(0x1, &(0x7f00000004c0)=<r8=>0x0)
io_getevents(r8, 0x10000000004, 0x9, &(0x7f0000000180)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000080)={0x0, 0x989680})
r9 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r10=>0x0})
bind$packet(r9, &(0x7f0000000180)={0x11, 0xf6, r10, 0x1, 0x0, 0x6, @multicast}, 0x14)
getsockname$packet(r9, 0x0, &(0x7f0000000200))
io_submit(r8, 0xca, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a0012fb, 0x2759, 0x7, 0x0, 0x1008, r7, &(0x7f0000000000)="98", 0x3e8000072a, 0x7000000, 0x0, 0x10}])

269.577485ms ago: executing program 1 (id=995):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x2, 0x0, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000}, 0x44080)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=@newqdisc={0x40, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffe0, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_CE_THRESHOLD={0x8, 0xc, 0x7}, @TCA_FQ_FLOW_MAX_RATE={0x8, 0x7, 0x8}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x55}, 0x4000)
r3 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r3, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x7, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0xb, 0x9, 0x0, 0x1, 0x3010000}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

268.56408ms ago: executing program 1 (id=996):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/card0/oss_mixer\x00', 0x101100, 0x0)
read$proc_mixer(r0, &(0x7f00000002c0)=""/254, 0xfe)
r1 = open(&(0x7f0000000580)='./file0\x00', 0x181242, 0x1df2a23c5997fa5f)
r2 = getuid()
mount$9p_rdma(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x10100c1, &(0x7f0000000680)={'trans=rdma,', {'port', 0x3d, 0x4e20}, 0x2c, {[{@rq={'rq', 0x3d, 0xac4f}}, {@timeout={'timeout', 0x3d, 0xfffffffffffffffb}}, {@sq={'sq', 0x3d, 0x6}}, {@rq={'rq', 0x3d, 0x800}}, {@common=@ignoreqv}], [{@euid_lt={'euid<', r2}}, {@pcr={'pcr', 0x3d, 0x2a}}, {@smackfsfloor}]}})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, 0x1, 0x2, 0x401, 0x0, 0x0, {0x3, 0x0, 0x8}, [@CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x2}]}, 0x1c}}, 0x20004010)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup/syz1\x00', 0x1ff)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000440)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r6, @ANYBLOB="25003300d0000000080211000001080211000000505050505050d00003"], 0x44}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
munlock(&(0x7f0000bfd000/0x400000)=nil, 0x400000)
write$FUSE_CREATE_OPEN(r1, &(0x7f00000002c0)={0xa0, 0x0, 0x0, {{0x80000000, 0x3, 0x5, 0xffffffffffffff80, 0xffffffff, 0x1, {0x1, 0x180, 0x20ff, 0x8, 0x2, 0x800000000000d615, 0x3fb, 0x7ffffffb, 0x7, 0x1000, 0x8, 0x0, 0x0, 0x3ff, 0x100}}, {0x0, 0x12}}}, 0xa0)
sendfile(r1, r1, &(0x7f0000000080), 0x7f04)
ioctl$IOCTL_VMCI_CTX_GET_CPT_STATE(r1, 0x7b1, &(0x7f0000000240)={&(0x7f0000000c40)=[0x2a, 0x6, 0x6, 0x5, 0x800, 0x7, 0x4, 0x7, 0x9, 0x9c3, 0x39c8, 0x1, 0x9, 0xd, 0x6, 0x800, 0x1, 0x8, 0x5, 0x7f, 0x7, 0x5, 0x0, 0xbdb7, 0x62e, 0x5, 0x4, 0x8, 0x7, 0x9, 0x4, 0x2, 0x9, 0x0, 0x1301, 0x1, 0x0, 0xd, 0xffffffff, 0x7fe2, 0xd666, 0x6, 0x8001, 0x0, 0x7, 0x8, 0x0, 0xf683, 0xf, 0x7, 0x734, 0x7, 0x6, 0x814, 0x3, 0x5, 0x1, 0x2, 0x7fffffff, 0x0, 0x4, 0x2, 0x7, 0x8, 0x0, 0xfffffff7, 0x1, 0xef, 0x9, 0x4, 0x8001, 0xffff7a5b, 0x200, 0x3935, 0x1, 0xf, 0x1, 0xd96d, 0x5, 0x6, 0x7f, 0x3, 0x7, 0x7, 0x9, 0x89, 0x81, 0x4, 0x2d, 0x7, 0x2, 0x5, 0x2, 0xd7, 0x619e, 0xffff, 0x1, 0x9, 0x6, 0x7, 0x100, 0x54, 0xc, 0x4, 0x578a290b, 0x7, 0x6, 0x10001, 0x5, 0x81, 0x3, 0xfffffff8, 0x3, 0x7fffffff, 0x5e18, 0x6, 0x200, 0x3, 0xdd12, 0x6, 0x8, 0x7fff, 0x10001, 0x9, 0x7, 0x8, 0x9, 0x2f7cb2f3, 0x100, 0x4, 0xf, 0x8000, 0x102, 0x5, 0xfff, 0xffffa89a, 0x2, 0x9, 0x8, 0x2, 0x5, 0xd4da, 0x6, 0x262d, 0x1, 0x80000001, 0x1, 0x9, 0x5, 0x424, 0x9, 0x7fff, 0x3, 0x7, 0x3, 0xf84, 0x0, 0x9, 0x4, 0x4, 0x9ad, 0xe50000, 0x6, 0x6, 0x81, 0x2, 0x3, 0x6, 0xa, 0x6, 0xffffffff, 0x7, 0xd, 0x7fffffff, 0x7, 0x1ff, 0x2, 0x8, 0x1, 0x1, 0x4, 0x8, 0x9, 0x2, 0xffffffff, 0xc2b2, 0x0, 0x7, 0x1ff, 0x9, 0x2, 0x3ff, 0x2, 0x6290, 0x170a, 0x1, 0x8, 0x2, 0x271, 0x3, 0x80000001, 0x5, 0x4, 0x3a, 0x8001, 0x1, 0x703, 0x0, 0x9970, 0x80000001, 0x1, 0x1, 0x0, 0x3, 0x4, 0x7, 0x0, 0xfffffffa, 0x9, 0x8, 0x139, 0x8, 0x1, 0x0, 0x8, 0x8, 0x3, 0xbe, 0x7, 0xfad, 0x7, 0xc, 0xffffffff, 0x4, 0xffffffff, 0x8, 0xffff125d, 0x0, 0x6, 0x2, 0xfffffffa, 0xff, 0x0, 0xa, 0x8, 0xa9, 0x5, 0xfffffff5, 0x4, 0x7, 0x8, 0x6, 0x2, 0x9, 0xc, 0xfacb, 0x80000000, 0xfffffffb, 0x41, 0xf, 0xc1, 0xb, 0x9, 0x5, 0x1f5, 0x9, 0x8, 0x6, 0x426cfcc6, 0x8, 0x200, 0x6, 0x3, 0x200, 0x6, 0x1, 0x9, 0x2, 0x0, 0x1000, 0x0, 0x2, 0x1, 0x4, 0x9, 0x0, 0x4, 0xfff, 0xfffffff9, 0x8, 0x0, 0x8000, 0xd, 0x2, 0x8000, 0xd5c, 0x10, 0xaaa, 0x9, 0x4, 0x7ff, 0x8, 0x1, 0x3, 0x101, 0x100, 0x7, 0xfff, 0x2, 0x3ff, 0x3, 0x100, 0x1, 0x40, 0x8000, 0xf553, 0x4, 0x6, 0x8, 0x6, 0x4, 0x1, 0x9, 0x81, 0x0, 0xfffffff9, 0x1, 0x1, 0x345, 0xd65, 0xfffff266, 0x6, 0x1, 0x2, 0x26, 0x5, 0xfffffffc, 0x9994, 0x7, 0x3, 0x4, 0x7, 0xd2, 0x8, 0x34887bee, 0x10001, 0xf0b3, 0xd8, 0xef, 0x40, 0x0, 0x6, 0x2, 0x8, 0xffff30d1, 0xb26, 0xa5b, 0x3, 0x5ea, 0xffff, 0xa, 0xff, 0x4ce, 0xa53, 0xb967, 0xc8, 0x80, 0x9, 0x1, 0xb, 0xa7ed, 0x8, 0xffffff03, 0xc2a7, 0x7, 0x943d, 0x1, 0x5, 0x10000, 0x7, 0x9, 0x1, 0x7fff, 0x345fe1ac, 0x3, 0x8, 0xb1, 0x7, 0x58, 0x9, 0x4, 0xfffffff8, 0x3, 0x0, 0x0, 0x9, 0xd8, 0x3, 0xf, 0x9, 0xfc, 0x1, 0xe, 0x8, 0x81, 0xfffffff9, 0x5dfe, 0x0, 0x9, 0x0, 0x5, 0x4, 0x81, 0x8, 0x2, 0x67081e8d, 0x3, 0xef3, 0x646, 0x8, 0xf77, 0x1, 0xfffffffa, 0x2, 0x6, 0x7, 0x0, 0x1, 0xfffffff6, 0xd7, 0x6, 0x1, 0x4, 0x0, 0x38, 0xa000, 0x7, 0x9, 0x8, 0x4, 0x4, 0x5, 0x40, 0x7, 0x30000000, 0x4, 0x1, 0x10000000, 0x305, 0x1, 0x5, 0x0, 0x0, 0x6, 0x505, 0xbd, 0x5, 0x1, 0x6, 0x6, 0x5, 0x3, 0x9, 0x4, 0x1, 0x79b4, 0x0, 0x2, 0x1, 0x1, 0x1, 0x2, 0x3, 0x1ec5, 0x3ff, 0x4, 0x29c, 0x7f, 0x95, 0x5, 0x5, 0x8, 0x0, 0x1, 0x8, 0x120000, 0x3, 0x6, 0x8001, 0xffffffff, 0x8, 0x6, 0x8000, 0x4, 0x9, 0x4, 0xf094, 0x7f, 0x1, 0x80, 0x2, 0x7, 0x760, 0x4224, 0xfffffe00, 0xfffffff1, 0x9, 0x8b, 0x6, 0x0, 0xbcf, 0x5, 0x81, 0x81, 0x7, 0x1, 0x9, 0x4, 0x4, 0x19d7, 0x7, 0x82, 0x101, 0x5, 0x3ff, 0x1, 0xc0, 0x3, 0x2, 0x2, 0xffffff74, 0x1ff, 0x3, 0x40, 0x6efe80af, 0x4, 0x6, 0x846, 0x2, 0xa, 0x4, 0x8001, 0x100, 0x10, 0x4, 0x8, 0x10001, 0x81, 0x5, 0x2, 0x7, 0xc9cd, 0x2, 0x1166, 0x80000001, 0x8, 0x10, 0xfffffe00, 0x8, 0x2cdc, 0x6, 0x79ff4369, 0x5, 0xcf0, 0x6, 0x1, 0xfffff801, 0x6, 0x0, 0x8, 0x8, 0x6, 0x80000000, 0x7243, 0xf0, 0x8, 0x5, 0x200, 0x4761a998, 0xa67, 0x7, 0x8, 0x5, 0x5, 0x4, 0x5, 0x7fff, 0x2, 0xff, 0x9, 0x4, 0x6, 0x5, 0x7, 0x2, 0x9, 0x8, 0x6, 0xc, 0x8, 0x7, 0x4, 0x81, 0x6, 0x7ff, 0x4, 0xffff, 0x4, 0x0, 0x7, 0xc, 0x7, 0x5, 0xddd, 0xed27, 0x80000000, 0xa9, 0x7, 0x3, 0x7, 0x400, 0x1580, 0x7, 0x4, 0xa, 0x0, 0x8, 0x6, 0x3, 0x0, 0x8001, 0x3, 0xb, 0x9, 0x400000, 0x3, 0x7ff, 0x8, 0x38f5, 0xc71c7a97, 0x4e112f11, 0x3, 0x0, 0x84cf, 0x2, 0x0, 0x80, 0x2, 0x7, 0x816a9300, 0x7f, 0x101, 0x0, 0x7, 0x3, 0xfc, 0x5, 0x7, 0xf, 0xe0000000, 0x8001, 0xa, 0x9, 0x3, 0x0, 0x1, 0x0, 0x200002, 0x0, 0xe, 0x8, 0x9, 0x3, 0x0, 0xffffffff, 0xffffffff, 0x9, 0x7, 0x6, 0x3, 0x80000001, 0x853, 0x4, 0xa, 0x635, 0x848, 0xffff, 0x4, 0x4, 0x1ff, 0x8, 0x9, 0x5, 0x2, 0x0, 0x1, 0x1000, 0x5, 0xc145, 0x8, 0x400, 0x100, 0x0, 0x7fffffff, 0xffffffc3, 0x4, 0x3, 0x70, 0xe, 0xc, 0x5, 0x1f4, 0x1000, 0x7, 0x4000, 0x8, 0x80, 0x7faf, 0x7, 0x400, 0xffffffff, 0xa875, 0x6, 0x135, 0x80000001, 0x6, 0x800, 0x6, 0xfffffc00, 0x100, 0x6, 0x7fffffff, 0x13, 0x9, 0x8000, 0x0, 0x7, 0x5, 0x1ab2ad95, 0xffffffff, 0xbf, 0x5, 0x400, 0x80000001, 0x5d0, 0x3, 0x9, 0x9, 0x1000, 0x7, 0x2, 0x3, 0x5, 0x9, 0x2f, 0x4, 0x9, 0xffff25dd, 0x8, 0x3, 0x35e2, 0x9, 0x0, 0x1, 0xfffff7ad, 0x4, 0x6, 0x7, 0x6, 0xb6, 0x1, 0x8, 0x81, 0x7fffffff, 0x4, 0x4, 0xca, 0x1, 0xa, 0x9, 0x6, 0x17, 0x1, 0xa2c7, 0xc000000, 0x2, 0x3, 0xff, 0xc, 0x7f, 0x5, 0x2, 0xd85, 0x7, 0xc, 0xdcf6, 0x2, 0x9, 0x2, 0x8, 0x5, 0x3, 0x3, 0x8, 0x6c64, 0x6, 0x8, 0x200, 0x3, 0xfff, 0x9, 0x2, 0x9, 0x1, 0x5, 0x6918, 0x1, 0x8001, 0x400000, 0x193f, 0x80, 0xc366, 0x3, 0x2, 0xc, 0x1, 0x6, 0x0, 0x10000, 0x4, 0x9, 0x5, 0x2, 0x8, 0x0, 0x4, 0x288, 0x5, 0x5, 0x0, 0x945, 0x4, 0x6e, 0x0, 0x8, 0x100, 0xf, 0x800, 0x1, 0x2, 0x6, 0x6, 0x7, 0x81, 0xffff7fff, 0x4, 0x9, 0xfffffff9, 0x101, 0x37, 0x5, 0x8000, 0x4, 0x7, 0x8, 0x9, 0xc, 0x2, 0xda, 0xfffffffc, 0x6, 0x7f, 0x1, 0x0, 0x6, 0xb, 0x7fffffff, 0xff, 0x4, 0x6, 0x10000, 0x8, 0x0, 0xa, 0x8ae3, 0x8, 0xfe69, 0xffff, 0x4, 0x0, 0xffffffff, 0x7ff, 0x1, 0x7, 0x4, 0x4, 0x81, 0x84a8, 0x2, 0x8, 0xfffff215, 0x7, 0x3, 0x10000000, 0x2, 0x800, 0x50, 0xd, 0x7fffffff, 0x1ff, 0x1, 0xe62, 0x9, 0x8, 0x8, 0x2, 0x1000, 0x7f, 0x2, 0x400, 0x6, 0x0, 0x1, 0x1, 0x0, 0x10001, 0x400, 0x8b4, 0x2755, 0x1, 0xa, 0xdfcf, 0x1599, 0x1, 0x2, 0x4, 0x6, 0xfffffffc, 0x8, 0x80000001, 0x8000, 0x2, 0xe7b, 0x2, 0x1ff, 0x7, 0x4, 0x401, 0x1, 0x7, 0x71692d4b, 0x5, 0x2, 0x3, 0x80000, 0x8, 0x5, 0x994b, 0x7fffffff, 0x47ac, 0xf704, 0xd, 0x3, 0x81, 0xe4, 0x401, 0x8, 0x5, 0x4, 0x8001, 0x8, 0x80000000, 0x3, 0x5, 0xfff, 0xe, 0x7, 0x68, 0x7fff, 0x3, 0x6, 0x48, 0x8, 0x7, 0x8, 0x5, 0x8, 0x3, 0xf, 0x6, 0x7, 0x2, 0x0, 0xfff, 0x9, 0xfff, 0x5, 0x800, 0x7fff, 0xffff22c1, 0x2, 0x7, 0xffffffde, 0x8, 0x4, 0xd, 0x4a1, 0x4, 0x6, 0x7, 0x8, 0x2, 0x2, 0x100, 0xfffffffa, 0x80, 0x1, 0xffffffff, 0x40, 0x80000001, 0x3, 0x1, 0x9, 0xf932], 0x4, 0x400, 0x4a4c})
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)

179.321537ms ago: executing program 1 (id=997):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_WOL_GET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100b164756d6d793000"/23], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1ee7308c8f10aaa66f733469af0b173f9729f4b6d88adf472a12d94e656927c5f986e1bd2fcf248c8fe8b39b91ae6779a67bdb3ef181fb23fde350d606025a34d8880feabd25babac9389d0e0e48c102310bc7", @ANYRES16=r3, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000500070005000000"], 0x34}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000280)={'gre0\x00', &(0x7f0000000180)={'syztnl2\x00', 0x0, 0x7800, 0x20, 0x4, 0xf4de, {{0x2d, 0x4, 0x2, 0x2a, 0xb4, 0x67, 0x0, 0x5, 0x29, 0x0, @local, @multicast2, {[@cipso={0x86, 0x4e, 0x1, [{0x6, 0x11, "95cae74748ba48c8294ad3478823a1"}, {0x5, 0xd, "865ad4069a83edfac8096f"}, {0x2, 0xd, "50546139789a66ea2300ca"}, {0x5, 0x12, "1d7a52b09539bb286cf7ca7b1d28d29d"}, {0x2, 0xb, "8d353c0a43ac72d57b"}]}, @noop, @lsrr={0x83, 0x1b, 0x52, [@broadcast, @broadcast, @rand_addr=0x64010100, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote]}, @timestamp={0x44, 0x18, 0x3f, 0x0, 0x0, [0xb67, 0x0, 0x7, 0x0, 0x1]}, @timestamp={0x44, 0x8, 0x5b, 0x0, 0xf, [0x8]}, @generic={0x83, 0x12, "d7b746c32149b13fa5f5b1ae7bb491ca"}, @noop]}}}}})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000002c0))
getpeername$packet(0xffffffffffffffff, &(0x7f0000000300), &(0x7f0000000340)=0x14)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000100)={'vcan0\x00'})
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="3000000010000304000000000000000000000400", @ANYRES32=r6, @ANYBLOB="0000000000000000050021"], 0x30}}, 0x0)
r7 = socket(0x2, 0xa, 0xfff)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x9)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYRES32=r8, @ANYBLOB="020000000000800080001200080001007674693674000200"], 0xa0}}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000400)={'batadv_slave_1\x00'})
getsockname$packet(0xffffffffffffffff, &(0x7f0000000440), &(0x7f0000000480)=0x14)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000003b40))
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r9, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r10=>0x0})
r11 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r11, 0x65, 0x1, &(0x7f00000000c0)=[{{0x0, 0x1, 0x1, 0x1}, {0x0, 0x0, 0x0, 0x1}}, {{0x1, 0x1}, {0x1ffffffb, 0x1, 0x0, 0x1}}, {{0x4, 0x1, 0x1, 0x1}, {0x3, 0x0, 0x1}}, {{0x0, 0x1}, {0x2, 0x0, 0x1}}], 0x20)
sendmsg$nl_route_sched(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {0x0, 0x3}}}, 0x24}}, 0x40044)

96.102316ms ago: executing program 3 (id=998):
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000000)={0x0, 0x0, 0x80000})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x7, &(0x7f0000001d80)=0x7, 0x4)
pwrite64(0xffffffffffffffff, &(0x7f0000000140)="3a3f316745f02c61122926c7d38fb267cad6992c1b4288c264299dbbc6f3756d1b2faffdbd4857358d69729f5992bcb08089c67df9cc6f342c840f2ce2465d7fa2bb339da4913fa7d18b073ad065cf8c8a50db546317176436d9884ba75027c4b6ba9ca7fb1077850590d882cad55b5c4c92394fe3e4672583a5e1fe68f09ca86fc2ee63c0bb6a9288f0befc09672935e13aede2b2506ffc877ce1713c9ccab98203011722aaad35ef1c677648320d5c09296b415258cafeb11317637ee2a89995fda67a36", 0xc5, 0x1a0703e7)
r1 = gettid()
r2 = epoll_create(0x400)
r3 = eventfd(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000000))
kcmp$KCMP_EPOLL_TFD(r1, r1, 0x7, r3, &(0x7f0000000080)={r2, r3, 0x154b})
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000080)={0x1f, 0x2}, 0x6)
write$binfmt_misc(r4, &(0x7f0000000340)="1a56c699c5760fa231314e051fc41722568a5cd13d31d8b1d02e9c36dfe46e9bcc4672c6d48c5be7372837e52e769016e81c4c9e57c8aedaab82da5fc7d83ef0443fdf36d4d5c93120d47f386b371e05a84ec0879d09658e4f7f31b6b5d1aa7d1d4c1cef76e44dd85d2a783cc4af80d4bb5989c5ac1233273c4c59f5bc433731aa05b818aba1efa192a36e29f423916e7410c0e7f6642f5cc3fa7e2c38746bce497f9f411e6950bc8fcdd5afa69e0ac2ebb7b7df9309d0b5d8176c00003714", 0xbf)
mkdir(&(0x7f0000000100)='./file0\x00', 0x1bd)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x109942, 0x0)
ioctl$PPPIOCNEWUNIT(r6, 0xc004743e, &(0x7f0000000580))
ioctl$PPPIOCSPASS(r6, 0x40107447, &(0x7f00000001c0)={0x1, &(0x7f0000000100)=[{0x6, 0x4, 0xe, 0x7}]})
close(r6)
r7 = syz_usb_connect$cdc_ncm(0x1, 0x6e, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000090000082502000000000000000109025c00020100f92a0904000001020900000524060001053408fa6e0d240f0100000000000d000a0006471a010000190581ef"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r7)
syz_usb_connect$hid(0x1, 0x36, &(0x7f0000000000)=ANY=[], 0x0)
pipe2$9p(&(0x7f0000000240)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
r10 = dup(r9)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r8, @ANYBLOB=',wfdno=', @ANYRESHEX=r10, @ANYBLOB=',privport,access=', @ANYRESDEC])
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
fanotify_init(0x0, 0x400)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r8, 0x6628)

95.751185ms ago: executing program 5 (id=999):
r0 = request_key(&(0x7f0000000000)='id_resolver\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000100)='\x00', 0xfffffffffffffff8)
r1 = add_key$user(&(0x7f0000000240), &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000200)="1d", 0x1, r0) (async)
r2 = add_key$user(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x0}, &(0x7f0000000740)="69bf05d40ff7e03db3ddca537c6c5612321b25d32064e9ed643d462211406432e87c4d40383939ab8276bfc0294ba021d1ccf9b6b32d1b6c9e8c9737ca2d08305301693ef20a414ca24bed3736d182271d197fc2146a9f55070f3f31155b9081ecbd0fcc0296c88eac143394a776955e8a075194717757c9e085976cac66fd4c5bc83183df2db8205863d7f803e302420e7fc5315861803024f921932a49a4283f6a7d8ab2cbd629e984582467fd6ca63598d554677517903644dc2ef01f8dec", 0xc0, 0xffffffffffffffff)
keyctl$dh_compute(0x17, &(0x7f0000000280)={r1, r2, r2}, &(0x7f00000002c0)=""/46, 0x2e, &(0x7f0000000380)={&(0x7f0000000300)={'sha1-avx\x00'}}) (async, rerun: 32)
r3 = openat$binderfs(0xffffff9c, &(0x7f0000000080)='./binderfs/binder1\x00', 0x806, 0x0) (async, rerun: 32)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r5=>0x0}) (async, rerun: 32)
bind$can_raw(r4, &(0x7f00000005c0), 0x10) (async, rerun: 32)
setsockopt$SO_TIMESTAMP(r4, 0x1, 0x3f, &(0x7f0000001880)=0xd1, 0x4) (async)
read(r4, &(0x7f00000027c0)=""/4073, 0xfe9)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r4, 0x65, 0x4, &(0x7f0000000580)=0x1, 0x4) (async)
sendmsg$can_raw(r4, &(0x7f0000000240)={&(0x7f0000000780)={0x1d, r5}, 0x10, &(0x7f0000000200)={&(0x7f00000007c0)=@can={{0x2, 0x0, 0x1, 0x1}, 0x1, 0x2, 0x0, 0x0, "f97003b8750e5566"}, 0x10}}, 0x0)
ioctl$BINDER_GET_NODE_INFO_FOR_REF(r3, 0xc018620c, &(0x7f00000000c0)={0x1, 0x1000000})

95.389613ms ago: executing program 1 (id=1000):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = open(&(0x7f0000000580)='./file0\x00', 0x181242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r0, &(0x7f00000002c0)={0xa0, 0x0, 0x0, {{0x80000000, 0x3, 0x5, 0xffffffffffffff80, 0x3, 0x1, {0x1, 0x180, 0x20ff, 0x8, 0x8b, 0x800000000000d615, 0x3fb, 0x7ffffffb, 0x6, 0x1000, 0x8, 0x0, 0x0, 0x3ff, 0x100}}, {0x0, 0x12}}}, 0xa0)
sendfile(r0, r0, &(0x7f0000000080), 0x7f04) (fail_nth: 19)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)

0s ago: executing program 5 (id=1001):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = dup(0xffffffffffffffff)
ioctl$KVM_SET_CPUID2(r1, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="02000000000000030100000000000000000000000000000000000000760f00000000000000000000000000000000000007"])

kernel console output (not intermixed with test programs):

310
[  112.546555][ T7739]  ? __pfx___x64_sys_mount+0x10/0x10
[  112.546572][ T7739]  do_syscall_64+0xcd/0x260
[  112.546589][ T7739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.546600][ T7739] RIP: 0033:0x7f3faf98e969
[  112.546610][ T7739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.546620][ T7739] RSP: 002b:00007f3fad7d5038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  112.546631][ T7739] RAX: ffffffffffffffda RBX: 00007f3fafbb6160 RCX: 00007f3faf98e969
[  112.546638][ T7739] RDX: 0000200000000040 RSI: 0000200000004a00 RDI: 0000200000000500
[  112.546645][ T7739] RBP: 00007f3fad7d5090 R08: 0000000000000000 R09: 0000000000000000
[  112.546656][ T7739] R10: 0000000000008007 R11: 0000000000000246 R12: 0000000000000002
[  112.546662][ T7739] R13: 0000000000000001 R14: 00007f3fafbb6160 R15: 00007ffcad884458
[  112.546676][ T7739]  </TASK>
[  112.623919][ T6949] block nbd1: Request send failed, requeueing
[  112.627554][ T5938] block nbd1: Receive control failed (result -32)
[  112.629149][ T3545] block nbd1: Dead connection, failed to find a fallback
[  112.634641][ T3545] block nbd1: shutting down sockets
[  112.636793][ T3545] blk_print_req_error: 24 callbacks suppressed
[  112.636802][ T3545] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  112.641700][ T3545] buffer_io_error: 23 callbacks suppressed
[  112.641708][ T3545] Buffer I/O error on dev nbd1, logical block 0, async page read
[  112.648995][ T6949] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  112.652770][ T6949] Buffer I/O error on dev nbd1, logical block 0, async page read
[  112.655347][ T6949] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  112.660197][ T6949] Buffer I/O error on dev nbd1, logical block 0, async page read
[  112.663547][ T6949] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  112.669083][ T6949] Buffer I/O error on dev nbd1, logical block 0, async page read
[  112.671599][ T6949] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  112.675073][ T6949] Buffer I/O error on dev nbd1, logical block 0, async page read
[  112.678202][ T6949] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  112.681200][ T6949] Buffer I/O error on dev nbd1, logical block 0, async page read
[  112.684535][ T6949] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  112.687702][ T6949] Buffer I/O error on dev nbd1, logical block 0, async page read
[  112.691493][ T6949] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  112.694642][ T6949] Buffer I/O error on dev nbd1, logical block 0, async page read
[  112.697959][ T6949] ldm_validate_partition_table(): Disk read failed.
[  112.700043][ T6949] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  112.702984][ T6949] Buffer I/O error on dev nbd1, logical block 0, async page read
[  112.705738][ T6949] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  112.709954][ T6949] Buffer I/O error on dev nbd1, logical block 0, async page read
[  112.712502][ T6949] Dev nbd1: unable to read RDB block 0
[  112.714582][ T6949]  nbd1: unable to read partition table
[  112.720497][ T6949] ldm_validate_partition_table(): Disk read failed.
[  112.722840][ T6949] Dev nbd1: unable to read RDB block 0
[  112.727216][ T6949]  nbd1: unable to read partition table
[  112.760355][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.878263][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.884627][ T7747] netlink: 4 bytes leftover after parsing attributes in process `syz.1.540'.
[  112.936723][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.962565][ T5947] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  112.966898][ T5947] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  112.969686][ T5947] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  112.972972][ T5947] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  112.978408][ T5947] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  112.995265][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.049068][ T7764] binder: 7762:7764 ioctl 4018620d 0 returned -22
[  113.051899][ T7764] binder: 7762:7764 ioctl c0306201 200000000640 returned -22
[  113.061909][ T7760] netlink: 8 bytes leftover after parsing attributes in process `syz.1.544'.
[  113.116435][ T7760] netlink: 4 bytes leftover after parsing attributes in process `syz.1.544'.
[  113.159147][ T7752] chnl_net:caif_netlink_parms(): no params data found
[  113.298884][ T7786] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5123 sclass=netlink_route_socket pid=7786 comm=syz.1.549
[  113.362179][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  113.366332][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  113.369846][   T12] bond0 (unregistering): Released all slaves
[  113.377318][   T12] bond1 (unregistering): Released all slaves
[  113.383769][   T12] bond2 (unregistering): Released all slaves
[  113.473597][ T7752] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.476004][ T7752] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.478885][ T7752] bridge_slave_0: entered allmulticast mode
[  113.489378][ T7752] bridge_slave_0: entered promiscuous mode
[  113.508737][ T7752] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.511006][ T7752] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.513300][ T7752] bridge_slave_1: entered allmulticast mode
[  113.516180][ T7752] bridge_slave_1: entered promiscuous mode
[  113.566243][ T7752] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  113.590991][ T7752] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  113.636862][ T7752] team0: Port device team_slave_0 added
[  113.640829][ T7752] team0: Port device team_slave_1 added
[  113.682279][   T12] hsr_slave_0: left promiscuous mode
[  113.685334][   T12] hsr_slave_1: left promiscuous mode
[  113.687712][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  113.690120][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  113.693207][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  113.695567][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  113.712571][   T12] veth1_macvtap: left promiscuous mode
[  113.714593][   T12] veth0_macvtap: left promiscuous mode
[  113.718309][   T12] veth1_vlan: left promiscuous mode
[  113.720335][   T12] veth0_vlan: left promiscuous mode
[  114.015900][   T68] block nbd5: Receive control failed (result -32)
[  114.017973][ T7696] block nbd5: shutting down sockets
[  114.248489][ T7798] fuse: Bad value for 'group_id'
[  114.250117][ T7798] fuse: Bad value for 'group_id'
[  114.309857][   T12] team0 (unregistering): Port device team_slave_1 removed
[  114.367443][   T12] team0 (unregistering): Port device team_slave_0 removed
[  114.797945][ T7752] batman_adv: batadv0: Adding interface: batadv_slave_0
[  114.800459][ T7752] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  114.808685][ T7752] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  114.835781][ T7752] batman_adv: batadv0: Adding interface: batadv_slave_1
[  114.840690][ T7752] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  114.851339][ T7752] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  114.907569][ T7752] hsr_slave_0: entered promiscuous mode
[  114.909812][ T7752] hsr_slave_1: entered promiscuous mode
[  114.911874][ T7752] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  114.914233][ T7752] Cannot create hsr debugfs directory
[  114.938182][ T7809] netlink: 8 bytes leftover after parsing attributes in process `syz.1.557'.
[  114.949923][ T7809] netlink: 4 bytes leftover after parsing attributes in process `syz.1.557'.
[  115.046190][   T68] Bluetooth: hci0: command tx timeout
[  115.058863][ T7752] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  115.070820][ T7752] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  115.077505][ T7752] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  115.082231][ T7752] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  115.122701][ T7752] 8021q: adding VLAN 0 to HW filter on device bond0
[  115.140839][ T7752] 8021q: adding VLAN 0 to HW filter on device team0
[  115.149281][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.151550][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[  115.167969][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.170487][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state
[  115.278333][ T5947] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  115.281142][ T7752] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.281894][ T5947] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  115.289169][ T5947] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  115.293674][ T5947] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  115.296571][ T5947] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  115.318307][   T12] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.425183][   T12] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.440408][ T7833] vlan2: entered promiscuous mode
[  115.442100][ T7833] veth1_virt_wifi: entered promiscuous mode
[  115.491167][   T12] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.510327][ T7752] veth0_vlan: entered promiscuous mode
[  115.516118][ T7752] veth1_vlan: entered promiscuous mode
[  115.537821][ T7752] veth0_macvtap: entered promiscuous mode
[  115.540764][ T7824] chnl_net:caif_netlink_parms(): no params data found
[  115.546660][ T7752] veth1_macvtap: entered promiscuous mode
[  115.607036][   T12] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.619699][ T7752] batman_adv: batadv0: Interface activated: batadv_slave_0
[  115.629019][ T7752] batman_adv: batadv0: Interface activated: batadv_slave_1
[  115.655316][ T7844] FAULT_INJECTION: forcing a failure.
[  115.655316][ T7844] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  115.659064][ T7752] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.659957][ T7844] CPU: 1 UID: 0 PID: 7844 Comm: syz.1.563 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  115.659973][ T7844] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  115.659980][ T7844] Call Trace:
[  115.659984][ T7844]  <TASK>
[  115.659988][ T7844]  dump_stack_lvl+0x16c/0x1f0
[  115.660009][ T7844]  should_fail_ex+0x512/0x640
[  115.660027][ T7844]  should_fail_alloc_page+0xe7/0x130
[  115.660040][ T7844]  prepare_alloc_pages+0x3c2/0x610
[  115.660056][ T7844]  ? __lock_acquire+0x5ca/0x1ba0
[  115.660075][ T7844]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  115.660092][ T7844]  ? find_held_lock+0x2b/0x80
[  115.660106][ T7844]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  115.660117][ T7844]  ? bpf_ksym_find+0x127/0x1c0
[  115.660132][ T7844]  ? __lock_acquire+0x5ca/0x1ba0
[  115.660151][ T7844]  ? __lock_acquire+0x5ca/0x1ba0
[  115.660169][ T7844]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  115.660182][ T7844]  ? policy_nodemask+0xea/0x4e0
[  115.660195][ T7844]  alloc_pages_mpol+0x1fb/0x550
[  115.660208][ T7844]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  115.660219][ T7844]  ? is_bpf_text_address+0x8a/0x1a0
[  115.660231][ T7844]  ? bpf_ksym_find+0x127/0x1c0
[  115.660246][ T7844]  folio_alloc_mpol_noprof+0x36/0x2f0
[  115.660261][ T7844]  shmem_alloc_folio+0x135/0x160
[  115.660279][ T7844]  shmem_alloc_and_add_folio+0x499/0xc20
[  115.660293][ T7844]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  115.660311][ T7844]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  115.660333][ T7844]  shmem_get_folio_gfp+0x687/0x1530
[  115.660352][ T7844]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  115.660364][ T7844]  ? find_held_lock+0x2b/0x80
[  115.660379][ T7844]  shmem_fault+0x1fe/0xa30
[  115.660391][ T7844]  ? __pfx_shmem_fault+0x10/0x10
[  115.660410][ T7844]  ? __pfx_filemap_map_pages+0x10/0x10
[  115.660422][ T7844]  __do_fault+0x10d/0x490
[  115.660435][ T7844]  ? __pfx_filemap_map_pages+0x10/0x10
[  115.660446][ T7844]  do_pte_missing+0x1a6/0x3fb0
[  115.660465][ T7844]  ? __handle_mm_fault+0x1010/0x2a40
[  115.660483][ T7844]  __handle_mm_fault+0x103d/0x2a40
[  115.660504][ T7844]  ? __pfx___handle_mm_fault+0x10/0x10
[  115.660520][ T7844]  ? __pte_offset_map_lock+0x155/0x2f0
[  115.660534][ T7844]  ? find_held_lock+0x2b/0x80
[  115.660546][ T7844]  ? find_held_lock+0x2b/0x80
[  115.660569][ T7844]  handle_mm_fault+0x3fe/0xad0
[  115.660588][ T7844]  __get_user_pages+0x771/0x36f0
[  115.660608][ T7844]  ? __pfx___get_user_pages+0x10/0x10
[  115.660624][ T7844]  ? __pfx_down_read_killable+0x10/0x10
[  115.660645][ T7844]  get_user_pages_unlocked+0x1c1/0x780
[  115.660663][ T7844]  ? __pfx_get_user_pages_unlocked+0x10/0x10
[  115.660678][ T7844]  ? get_user_pages_fast_only+0xae/0xf0
[  115.660695][ T7844]  ? __pfx_get_user_pages_fast_only+0x10/0x10
[  115.660711][ T7844]  ? __pfx___might_resched+0x10/0x10
[  115.660727][ T7844]  ? rcu_is_watching+0x12/0xc0
[  115.660750][ T7844]  hva_to_pfn+0x886/0xe40
[  115.660769][ T7844]  ? __pfx_hva_to_pfn+0x10/0x10
[  115.660784][ T7844]  ? __lock_acquire+0xaa4/0x1ba0
[  115.660807][ T7844]  kvm_follow_pfn+0x29f/0x3f0
[  115.660820][ T7844]  __kvm_faultin_pfn+0x11c/0x1a0
[  115.660833][ T7844]  ? __pfx___kvm_faultin_pfn+0x10/0x10
[  115.660847][ T7844]  ? __pfx___mod_timer+0x10/0x10
[  115.660868][ T7844]  vmx_set_apic_access_page_addr+0x52f/0x900
[  115.660883][ T7844]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  115.660898][ T7844]  ? __pfx_vmx_set_apic_access_page_addr+0x10/0x10
[  115.660912][ T7844]  ? vmx_flush_tlb_all+0x153/0x2f0
[  115.660931][ T7844]  ? record_steal_time+0x78/0xbd0
[  115.660943][ T7844]  vcpu_run+0x4085/0x5390
[  115.660957][ T7844]  ? kvm_mmu_post_init_vm+0x269/0x370
[  115.660976][ T7844]  ? __lock_acquire+0xaa4/0x1ba0
[  115.660996][ T7844]  ? __pfx_vcpu_run+0x10/0x10
[  115.661014][ T7844]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  115.661029][ T7844]  ? __local_bh_enable_ip+0xa4/0x120
[  115.661046][ T7844]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  115.661062][ T7844]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  115.661082][ T7844]  kvm_vcpu_ioctl+0x5e9/0x1680
[  115.661100][ T7844]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  115.661120][ T7844]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  115.661142][ T7844]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  115.661173][ T7844]  ? hook_file_ioctl_common+0x145/0x410
[  115.661189][ T7844]  ? selinux_file_ioctl+0x180/0x270
[  115.661206][ T7844]  ? selinux_file_ioctl+0xb4/0x270
[  115.661224][ T7844]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  115.661241][ T7844]  __x64_sys_ioctl+0x190/0x200
[  115.661258][ T7844]  do_syscall_64+0xcd/0x260
[  115.661275][ T7844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.661287][ T7844] RIP: 0033:0x7f3faf98e969
[  115.661296][ T7844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.661307][ T7844] RSP: 002b:00007f3fb0712038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  115.661318][ T7844] RAX: ffffffffffffffda RBX: 00007f3fafbb5fa0 RCX: 00007f3faf98e969
[  115.661325][ T7844] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  115.661331][ T7844] RBP: 00007f3fb0712090 R08: 0000000000000000 R09: 0000000000000000
[  115.661337][ T7844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  115.661343][ T7844] R13: 0000000000000000 R14: 00007f3fafbb5fa0 R15: 00007ffcad884458
[  115.661357][ T7844]  </TASK>
[  115.778106][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  115.778118][   T40] audit: type=1326 audit(1748163214.272:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7841 comm="syz.3.564" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f62fd98e969 code=0x7fc00000
[  115.779646][ T7851] program syz.3.564 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  115.779645][ T7752] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.779750][ T7752] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.779818][ T7752] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  115.851505][ T7850] hub 2-0:1.0: USB hub found
[  115.859060][ T7850] hub 2-0:1.0: 6 ports detected
[  115.860366][ T7824] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.862894][ T7824] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.865210][ T7824] bridge_slave_0: entered allmulticast mode
[  115.868754][ T7824] bridge_slave_0: entered promiscuous mode
[  115.871942][ T7824] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.874161][ T7824] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.876787][ T7824] bridge_slave_1: entered allmulticast mode
[  115.879559][ T7824] bridge_slave_1: entered promiscuous mode
[  115.934579][ T7824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  115.943470][ T7824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  115.950464][ T7854] netlink: 8 bytes leftover after parsing attributes in process `syz.1.565'.
[  115.977906][ T7824] team0: Port device team_slave_0 added
[  115.982134][ T7824] team0: Port device team_slave_1 added
[  116.024552][ T7824] batman_adv: batadv0: Adding interface: batadv_slave_0
[  116.026844][ T5941] usb 2-1: new high-speed USB device number 3 using ehci-pci
[  116.029440][ T7824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.037525][ T7824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  116.041883][ T7824] batman_adv: batadv0: Adding interface: batadv_slave_1
[  116.044020][ T7824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.053174][ T7824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  116.103543][ T1188] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.108735][ T1188] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.169008][   T12] bridge0: port 3(batadv0) entered disabled state
[  116.177453][   T12] bridge_slave_1: left allmulticast mode
[  116.179861][   T12] bridge_slave_1: left promiscuous mode
[  116.182977][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.189760][   T12] bridge_slave_0: left allmulticast mode
[  116.191567][   T12] bridge_slave_0: left promiscuous mode
[  116.193388][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.220343][ T5941] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  116.224226][ T5941] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  116.228234][ T5941] usb 2-1: Product: QEMU USB Tablet
[  116.230524][ T5941] usb 2-1: Manufacturer: QEMU
[  116.232543][ T5941] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[  116.291781][ T5941] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0004/input/input7
[  116.305389][   T40] audit: type=1400 audit(1748163214.792:448): avc:  denied  { read } for  pid=5332 comm="acpid" name="mouse1" dev="devtmpfs" ino=2881 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  116.312364][   T40] audit: type=1400 audit(1748163214.792:449): avc:  denied  { open } for  pid=5332 comm="acpid" path="/dev/input/mouse1" dev="devtmpfs" ino=2881 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  116.366328][   T40] audit: type=1400 audit(1748163214.862:450): avc:  denied  { ioctl } for  pid=5332 comm="acpid" path="/dev/input/mouse1" dev="devtmpfs" ino=2881 ioctlcmd=0x4520 scontext=system_u:system_r:acpid_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  116.374736][ T5941] hid-generic 0003:0627:0001.0004: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  116.400712][   T40] audit: type=1326 audit(1748163214.892:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7841 comm="syz.3.564" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f62fd98e969 code=0x7fc00000
[  116.557188][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.560423][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.560986][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  116.563180][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.570979][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.574377][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.574835][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  116.577592][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577616][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577635][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577654][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577673][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577693][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577713][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577732][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577750][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577771][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577790][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577810][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577829][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577848][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577873][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.577892][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.600135][   T40] audit: type=1400 audit(1748163215.092:452): avc:  denied  { ioctl } for  pid=7862 comm="syz.3.568" path="/dev/uhid" dev="devtmpfs" ino=1296 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  116.601034][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.602905][   T12] bond0 (unregistering): Released all slaves
[  116.642029][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.644489][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.646976][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.649378][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.650131][ T7824] hsr_slave_0: entered promiscuous mode
[  116.652352][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.654759][ T7824] hsr_slave_1: entered promiscuous mode
[  116.656611][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.656626][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.656652][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.661708][ T7824] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  116.663842][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.663869][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.663884][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.663896][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.669075][ T7824] Cannot create hsr debugfs directory
[  116.669556][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.684133][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.686605][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.689005][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.691662][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.694041][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.697419][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.697666][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.700245][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.702268][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.702283][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0
[  116.710155][ T5996] hid-generic 0000:007F:FFFFFFFE.0005: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  116.747650][ T7869] fido_id[7869]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  116.789235][   T40] audit: type=1400 audit(1748163215.282:453): avc:  denied  { mounton } for  pid=7752 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  116.850685][ T7871] IPv6: sit1: Disabled Multicast RS
[  116.921432][ T7878] 9pnet_virtio: no channels available for device syz
[  117.009065][   T12] hsr_slave_0: left promiscuous mode
[  117.011148][   T12] hsr_slave_1: left promiscuous mode
[  117.013142][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  117.015392][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  117.018414][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  117.020725][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  117.034886][   T12] veth1_macvtap: left promiscuous mode
[  117.037206][   T12] veth0_macvtap: left promiscuous mode
[  117.039005][   T12] veth1_vlan: left promiscuous mode
[  117.040719][   T12] veth0_vlan: left promiscuous mode
[  117.117873][ T5947] Bluetooth: hci0: command tx timeout
[  117.209857][ T5975] usb 11-1: new high-speed USB device number 2 using dummy_hcd
[  117.366740][ T5947] Bluetooth: hci1: command tx timeout
[  117.397472][ T5975] usb 11-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  117.401227][ T5975] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  117.404704][ T5975] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  117.408017][ T5975] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  117.412904][ T5975] usb 11-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  117.416012][ T5975] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.423936][ T5975] usb 11-1: config 0 descriptor??
[  117.637478][   T12] team0 (unregistering): Port device team_slave_1 removed
[  117.706703][   T12] team0 (unregistering): Port device team_slave_0 removed
[  117.754676][ T7882] FAULT_INJECTION: forcing a failure.
[  117.754676][ T7882] name failslab, interval 1, probability 0, space 0, times 0
[  117.759534][ T7882] CPU: 0 UID: 0 PID: 7882 Comm: syz.3.572 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  117.759566][ T7882] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  117.759573][ T7882] Call Trace:
[  117.759577][ T7882]  <TASK>
[  117.759581][ T7882]  dump_stack_lvl+0x16c/0x1f0
[  117.759618][ T7882]  should_fail_ex+0x512/0x640
[  117.759638][ T7882]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  117.759652][ T7882]  should_failslab+0xc2/0x120
[  117.759664][ T7882]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  117.759674][ T7882]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  117.759685][ T7882]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  117.759702][ T7882]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  117.759715][ T7882]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  117.759731][ T7882]  mmu_topup_memory_caches+0x25/0x170
[  117.759750][ T7882]  kvm_mmu_load+0xd9/0x22a0
[  117.759766][ T7882]  ? kvm_apic_has_interrupt+0xb5/0x190
[  117.759780][ T7882]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  117.759794][ T7882]  ? kvm_deliver_exception_payload+0x47/0x200
[  117.759810][ T7882]  ? __pfx_kvm_mmu_load+0x10/0x10
[  117.759826][ T7882]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  117.759838][ T7882]  ? kvm_check_and_inject_events+0x71c/0x1310
[  117.759857][ T7882]  vcpu_run+0x3446/0x5390
[  117.759871][ T7882]  ? kvm_mmu_post_init_vm+0x269/0x370
[  117.759889][ T7882]  ? __lock_acquire+0xaa4/0x1ba0
[  117.759911][ T7882]  ? __pfx_vcpu_run+0x10/0x10
[  117.759929][ T7882]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  117.759944][ T7882]  ? __local_bh_enable_ip+0xa4/0x120
[  117.759961][ T7882]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  117.759977][ T7882]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  117.759997][ T7882]  kvm_vcpu_ioctl+0x5e9/0x1680
[  117.760015][ T7882]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  117.760035][ T7882]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  117.760056][ T7882]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  117.760079][ T7882]  ? hook_file_ioctl_common+0x145/0x410
[  117.760094][ T7882]  ? selinux_file_ioctl+0x180/0x270
[  117.760111][ T7882]  ? selinux_file_ioctl+0xb4/0x270
[  117.760129][ T7882]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  117.760146][ T7882]  __x64_sys_ioctl+0x190/0x200
[  117.760162][ T7882]  do_syscall_64+0xcd/0x260
[  117.760179][ T7882]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.760190][ T7882] RIP: 0033:0x7f62fd98e969
[  117.760200][ T7882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.760210][ T7882] RSP: 002b:00007f62fe78f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  117.760221][ T7882] RAX: ffffffffffffffda RBX: 00007f62fdbb5fa0 RCX: 00007f62fd98e969
[  117.760228][ T7882] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  117.760234][ T7882] RBP: 00007f62fe78f090 R08: 0000000000000000 R09: 0000000000000000
[  117.760241][ T7882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  117.760247][ T7882] R13: 0000000000000000 R14: 00007f62fdbb5fa0 R15: 00007fff640e3bf8
[  117.760261][ T7882]  </TASK>
[  117.867143][ T5975] plantronics 0003:047F:FFFF.0006: ignoring exceeding usage max
[  117.870776][ T5975] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  117.883542][ T5975] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  117.974974][ T7886] __nla_validate_parse: 1 callbacks suppressed
[  117.974986][ T7886] netlink: 8 bytes leftover after parsing attributes in process `syz.1.573'.
[  118.086547][ T7892] netlink: 4 bytes leftover after parsing attributes in process `syz.1.573'.
[  118.130046][   T40] audit: type=1400 audit(1748163216.622:454): avc:  denied  { bind } for  pid=7895 comm="syz.3.576" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  118.315447][ T7896] netlink: 4 bytes leftover after parsing attributes in process `syz.3.576'.
[  118.374352][ T7902] netlink: 'syz.1.577': attribute type 1 has an invalid length.
[  118.377621][ T7902] netlink: 224 bytes leftover after parsing attributes in process `syz.1.577'.
[  118.382069][ T7903] 9pnet_fd: Insufficient options for proto=fd
[  118.688199][   T12] IPVS: stop unused estimator thread 0...
[  118.688338][ T7824] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  118.694286][ T7824] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  118.698475][ T7824] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  118.702647][ T7824] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  118.737663][ T7824] 8021q: adding VLAN 0 to HW filter on device bond0
[  118.747649][ T7824] 8021q: adding VLAN 0 to HW filter on device team0
[  118.752776][ T6374] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.754956][ T6374] bridge0: port 1(bridge_slave_0) entered forwarding state
[  118.761875][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.764021][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state
[  118.765969][   T63] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  118.921322][ T7824] 8021q: adding VLAN 0 to HW filter on device batadv0
[  118.925137][   T63] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  118.928794][   T63] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  118.931783][   T63] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  118.934572][   T63] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.943857][ T7909] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  118.949785][   T63] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  119.056438][ T7824] veth0_vlan: entered promiscuous mode
[  119.062031][ T7824] veth1_vlan: entered promiscuous mode
[  119.069439][   T24] usb 11-1: USB disconnect, device number 2
[  119.077279][ T7824] veth0_macvtap: entered promiscuous mode
[  119.081968][ T7824] veth1_macvtap: entered promiscuous mode
[  119.090709][ T7824] batman_adv: batadv0: Interface activated: batadv_slave_0
[  119.098067][ T7824] batman_adv: batadv0: Interface activated: batadv_slave_1
[  119.102689][ T7824] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  119.105718][ T7824] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  119.110117][ T7824] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  119.113217][ T7824] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  119.150994][ T7026] usb 6-1: USB disconnect, device number 6
[  119.153416][ T1188] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.156872][ T1188] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.180198][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.183225][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.196082][ T5947] Bluetooth: hci0: command tx timeout
[  119.225444][ T7924] 9pnet_virtio: no channels available for device syz
[  119.228389][   T40] audit: type=1400 audit(1748163217.722:455): avc:  denied  { lock } for  pid=7923 comm="syz.5.560" path="socket:[22098]" dev="sockfs" ino=22098 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  119.370323][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  119.374231][    T0] NOHZ tick-stop error: local softirq work is pending, handler #01!!!
[  119.628049][ T7940] IPVS: sync thread started: state = BACKUP, mcast_ifn = ip6gre0, syncid = 0, id = 0
[  119.656078][ T7944] netlink: 8 bytes leftover after parsing attributes in process `syz.6.585'.
[  119.666284][ T7945] xt_hashlimit: size too large, truncated to 1048576
[  119.718048][ T7930] program syz.3.583 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  119.721364][   T40] audit: type=1400 audit(1748163218.212:456): avc:  denied  { getopt } for  pid=7929 comm="syz.3.583" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  119.902150][ T7955] syzkaller0: entered promiscuous mode
[  119.903987][ T7955] syzkaller0: entered allmulticast mode
[  120.954289][ T7963] dummy0: entered promiscuous mode
[  121.244400][ T7973] netlink: 8 bytes leftover after parsing attributes in process `syz.3.594'.
[  121.280019][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  121.280037][   T40] audit: type=1400 audit(1748163219.772:458): avc:  denied  { read write } for  pid=7976 comm="syz.3.595" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  121.294463][   T40] audit: type=1400 audit(1748163219.772:459): avc:  denied  { open } for  pid=7976 comm="syz.3.595" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  121.298335][ T7979] usb 2-1: USB disconnect, device number 3
[  121.304024][   T40] audit: type=1400 audit(1748163219.782:460): avc:  denied  { map } for  pid=7976 comm="syz.3.595" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  121.312274][ T7977] process 'syz.3.595' launched '/dev/fd/5' with NULL argv: empty string added
[  121.316431][   T40] audit: type=1400 audit(1748163219.782:461): avc:  denied  { execute } for  pid=7976 comm="syz.3.595" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  121.321052][ T7977] QAT: failed to copy from user cfg_data.
[  121.327287][   T40] audit: type=1400 audit(1748163219.802:462): avc:  denied  { ioctl } for  pid=7976 comm="syz.3.595" path="/dev/nullb0" dev="devtmpfs" ino=707 ioctlcmd=0xf515 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  121.339206][   T40] audit: type=1400 audit(1748163219.812:463): avc:  denied  { execute_no_trans } for  pid=7976 comm="syz.3.595" path=2F6D656D66643AA39F6EB4645204693502ACCEE1889D5B4038D7CE1F2039497F151D933DB5E75C274CE6D28EBC294A7454447181CF81BAE531F520C8103EC95C85174CBFCF91DF4DF3025E542A202864656C6574656429 dev="hugetlbfs" ino=22145 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  121.391307][ T7985] FAULT_INJECTION: forcing a failure.
[  121.391307][ T7985] name failslab, interval 1, probability 0, space 0, times 0
[  121.398464][ T7985] CPU: 0 UID: 0 PID: 7985 Comm: syz.5.599 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  121.398491][ T7985] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  121.398502][ T7985] Call Trace:
[  121.398508][ T7985]  <TASK>
[  121.398514][ T7985]  dump_stack_lvl+0x16c/0x1f0
[  121.398544][ T7985]  should_fail_ex+0x512/0x640
[  121.398567][ T7985]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  121.398589][ T7985]  should_failslab+0xc2/0x120
[  121.398608][ T7985]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  121.398627][ T7985]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  121.398670][ T7985]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  121.398698][ T7985]  idr_get_free+0x528/0xa30
[  121.398731][ T7985]  idr_alloc_u32+0x190/0x2f0
[  121.398757][ T7985]  ? __pfx_idr_alloc_u32+0x10/0x10
[  121.398789][ T7985]  ? tcf_exts_init_ex+0x1bc/0x610
[  121.398814][ T7985]  cls_bpf_change+0x507/0x1f50
[  121.398843][ T7985]  ? find_held_lock+0x2b/0x80
[  121.398866][ T7985]  ? __pfx_cls_bpf_change+0x10/0x10
[  121.398888][ T7985]  ? tc_new_tfilter+0x1e00/0x2340
[  121.398915][ T7985]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  121.398957][ T7985]  ? __pfx_cls_bpf_change+0x10/0x10
[  121.398980][ T7985]  tc_new_tfilter+0xa32/0x2340
[  121.399020][ T7985]  ? __pfx_tc_new_tfilter+0x10/0x10
[  121.399053][ T7985]  ? __lock_acquire+0x5ca/0x1ba0
[  121.399093][ T7985]  ? find_held_lock+0x2b/0x80
[  121.399115][ T7985]  ? __pfx_tc_new_tfilter+0x10/0x10
[  121.399135][ T7985]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  121.399159][ T7985]  ? __pfx_tc_new_tfilter+0x10/0x10
[  121.399184][ T7985]  rtnetlink_rcv_msg+0x95b/0xe90
[  121.399207][ T7985]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  121.399241][ T7985]  netlink_rcv_skb+0x16a/0x440
[  121.399264][ T7985]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  121.399301][ T7985]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  121.399359][ T7985]  ? netlink_deliver_tap+0x1ae/0xd30
[  121.399386][ T7985]  netlink_unicast+0x53d/0x7f0
[  121.399412][ T7985]  ? __pfx_netlink_unicast+0x10/0x10
[  121.399442][ T7985]  netlink_sendmsg+0x8d1/0xdd0
[  121.399469][ T7985]  ? __pfx_netlink_sendmsg+0x10/0x10
[  121.399503][ T7985]  ____sys_sendmsg+0xa95/0xc70
[  121.399529][ T7985]  ? copy_msghdr_from_user+0x10a/0x160
[  121.399549][ T7985]  ? __pfx_____sys_sendmsg+0x10/0x10
[  121.399585][ T7985]  ___sys_sendmsg+0x134/0x1d0
[  121.399608][ T7985]  ? __pfx____sys_sendmsg+0x10/0x10
[  121.399660][ T7985]  __sys_sendmsg+0x16d/0x220
[  121.399681][ T7985]  ? __pfx___sys_sendmsg+0x10/0x10
[  121.399709][ T7985]  ? rcu_is_watching+0x12/0xc0
[  121.399737][ T7985]  do_syscall_64+0xcd/0x260
[  121.399769][ T7985]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.399789][ T7985] RIP: 0033:0x7fef8ff8e969
[  121.399803][ T7985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.399820][ T7985] RSP: 002b:00007fef90e3a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.399838][ T7985] RAX: ffffffffffffffda RBX: 00007fef901b5fa0 RCX: 00007fef8ff8e969
[  121.399850][ T7985] RDX: 000000002008c014 RSI: 0000200000000580 RDI: 0000000000000004
[  121.399860][ T7985] RBP: 00007fef90e3a090 R08: 0000000000000000 R09: 0000000000000000
[  121.399870][ T7985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  121.399880][ T7985] R13: 0000000000000000 R14: 00007fef901b5fa0 R15: 00007ffef8d5c908
[  121.399905][ T7985]  </TASK>
[  121.654724][   T40] audit: type=1400 audit(1748163220.142:464): avc:  denied  { read } for  pid=7991 comm="syz.5.602" path="socket:[22902]" dev="sockfs" ino=22902 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  121.678686][ T7992] syzkaller0: entered promiscuous mode
[  121.680776][ T7992] syzkaller0: entered allmulticast mode
[  121.689517][ T7992] ip6_vti0: entered promiscuous mode
[  121.692944][ T7992] netlink: 8 bytes leftover after parsing attributes in process `syz.5.602'.
[  121.846704][ T8001] netlink: 8 bytes leftover after parsing attributes in process `syz.3.604'.
[  122.793834][ T8019] binder: 8018:8019 ioctl 4018620d 0 returned -22
[  122.854646][   T10] IPVS: starting estimator thread 0...
[  122.900104][   T40] audit: type=1400 audit(1748163221.392:465): avc:  denied  { open } for  pid=8021 comm="syz.6.612" path="/dev/ptyr0" dev="devtmpfs" ino=143 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  122.913663][ T8027] binder: BINDER_SET_CONTEXT_MGR already set
[  122.915614][ T8027] binder: 8021:8027 ioctl 4018620d 200000000040 returned -16
[  122.917143][   T40] audit: type=1400 audit(1748163221.402:466): avc:  denied  { ioctl } for  pid=8021 comm="syz.6.612" path="/dev/ptyr0" dev="devtmpfs" ino=143 ioctlcmd=0x5414 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bsdpty_device_t tclass=chr_file permissive=1
[  122.925901][   T40] audit: type=1400 audit(1748163221.402:467): avc:  denied  { setopt } for  pid=8021 comm="syz.6.612" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  122.958306][ T8025] IPVS: using max 45 ests per chain, 108000 per kthread
[  122.962584][ T8034] 9pnet_virtio: no channels available for device syz
[  122.964201][ T8034] FAULT_INJECTION: forcing a failure.
[  122.964201][ T8034] name failslab, interval 1, probability 0, space 0, times 0
[  122.975611][ T8034] CPU: 1 UID: 0 PID: 8034 Comm: syz.1.614 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  122.975639][ T8034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  122.975651][ T8034] Call Trace:
[  122.975658][ T8034]  <TASK>
[  122.975666][ T8034]  dump_stack_lvl+0x16c/0x1f0
[  122.975695][ T8034]  should_fail_ex+0x512/0x640
[  122.975720][ T8034]  ? __kmalloc_noprof+0xbf/0x510
[  122.975741][ T8034]  ? iter_file_splice_write+0x1cc/0x1150
[  122.975767][ T8034]  should_failslab+0xc2/0x120
[  122.975786][ T8034]  __kmalloc_noprof+0xd2/0x510
[  122.975803][ T8034]  ? ns_to_timespec64+0x59/0xc0
[  122.975847][ T8034]  iter_file_splice_write+0x1cc/0x1150
[  122.975877][ T8034]  ? current_time+0x11d/0x1a0
[  122.975897][ T8034]  ? __pfx_current_time+0x10/0x10
[  122.975914][ T8034]  ? __pfx_make_vfsgid+0x10/0x10
[  122.975943][ T8034]  ? atime_needs_update+0x8b/0x710
[  122.975970][ T8034]  ? __pfx_iter_file_splice_write+0x10/0x10
[  122.976000][ T8034]  ? __lock_acquire+0xaa4/0x1ba0
[  122.976050][ T8034]  ? __pfx_iter_file_splice_write+0x10/0x10
[  122.976080][ T8034]  direct_splice_actor+0x192/0x6c0
[  122.976112][ T8034]  splice_direct_to_actor+0x345/0xa30
[  122.976141][ T8034]  ? __pfx_direct_splice_actor+0x10/0x10
[  122.976172][ T8034]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  122.976202][ T8034]  ? __pfx___might_resched+0x10/0x10
[  122.976231][ T8034]  do_splice_direct+0x174/0x240
[  122.976259][ T8034]  ? __pfx_do_splice_direct+0x10/0x10
[  122.976283][ T8034]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  122.976314][ T8034]  ? rw_verify_area+0xcf/0x680
[  122.976341][ T8034]  do_sendfile+0xafd/0xe50
[  122.976382][ T8034]  ? __pfx_do_sendfile+0x10/0x10
[  122.976417][ T8034]  __x64_sys_sendfile64+0x154/0x220
[  122.976438][ T8034]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  122.976457][ T8034]  ? rcu_is_watching+0x12/0xc0
[  122.976484][ T8034]  do_syscall_64+0xcd/0x260
[  122.976515][ T8034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.976536][ T8034] RIP: 0033:0x7f3faf98e969
[  122.976551][ T8034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.976569][ T8034] RSP: 002b:00007f3fb0712038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  122.976589][ T8034] RAX: ffffffffffffffda RBX: 00007f3fafbb5fa0 RCX: 00007f3faf98e969
[  122.976602][ T8034] RDX: 0000200000000080 RSI: 0000000000000003 RDI: 0000000000000003
[  122.976614][ T8034] RBP: 00007f3fb0712090 R08: 0000000000000000 R09: 0000000000000000
[  122.976626][ T8034] R10: 0000000000007f04 R11: 0000000000000246 R12: 0000000000000002
[  122.976637][ T8034] R13: 0000000000000000 R14: 00007f3fafbb5fa0 R15: 00007ffcad884458
[  122.976664][ T8034]  </TASK>
[  123.043931][ T8038] netlink: 28 bytes leftover after parsing attributes in process `syz.1.616'.
[  123.073716][ T8038] xt_CT: You must specify a L4 protocol and not use inversions on it
[  123.108593][ T8041] netlink: 8 bytes leftover after parsing attributes in process `syz.5.617'.
[  123.112562][ T8041] netlink: 4 bytes leftover after parsing attributes in process `syz.5.617'.
[  123.239251][ T8046] binder: 8045:8046 ioctl 4018620d 0 returned -22
[  123.303061][ T8051] 9pnet_virtio: no channels available for device syz
[  123.309935][ T8051] netdevsim netdevsim5 ÙNѹ: renamed from netdevsim0 (while UP)
[  123.447978][ T5947] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  123.450712][ T5947] Bluetooth: hci1: Injecting HCI hardware error event
[  123.453379][ T5947] Bluetooth: hci1: hardware error 0x00
[  123.737451][ T8058] FAULT_INJECTION: forcing a failure.
[  123.737451][ T8058] name failslab, interval 1, probability 0, space 0, times 0
[  123.742198][ T8058] CPU: 1 UID: 0 PID: 8058 Comm: syz.3.623 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  123.742223][ T8058] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.742234][ T8058] Call Trace:
[  123.742239][ T8058]  <TASK>
[  123.742245][ T8058]  dump_stack_lvl+0x16c/0x1f0
[  123.742276][ T8058]  should_fail_ex+0x512/0x640
[  123.742298][ T8058]  ? fs_reclaim_acquire+0xae/0x150
[  123.742322][ T8058]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  123.742347][ T8058]  should_failslab+0xc2/0x120
[  123.742366][ T8058]  __kmalloc_noprof+0xd2/0x510
[  123.742388][ T8058]  tomoyo_realpath_from_path+0xc2/0x6e0
[  123.742422][ T8058]  tomoyo_check_open_permission+0x2ab/0x3c0
[  123.742444][ T8058]  ? security_file_alloc+0x34/0x2b0
[  123.742462][ T8058]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  123.742476][ T8058]  ? fanotify_read+0x5e4/0x27d0
[  123.742490][ T8058]  ? do_syscall_64+0xcd/0x260
[  123.742505][ T8058]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.742536][ T8058]  ? do_raw_spin_lock+0x12c/0x2b0
[  123.742554][ T8058]  tomoyo_file_open+0x6b/0x90
[  123.742566][ T8058]  security_file_open+0x84/0x1e0
[  123.742585][ T8058]  do_dentry_open+0x596/0x1c10
[  123.742604][ T8058]  ? lockdep_init_map_type+0x5c/0x280
[  123.742617][ T8058]  vfs_open+0x82/0x3f0
[  123.742632][ T8058]  dentry_open_nonotify+0x7b/0xd0
[  123.742646][ T8058]  fanotify_read+0x5e4/0x27d0
[  123.742667][ T8058]  ? __lock_acquire+0x5ca/0x1ba0
[  123.742686][ T8058]  ? __pfx_fanotify_read+0x10/0x10
[  123.742700][ T8058]  ? inode_has_perm+0x183/0x1d0
[  123.742714][ T8058]  ? file_has_perm+0x27d/0x350
[  123.742729][ T8058]  ? __pfx_file_has_perm+0x10/0x10
[  123.742748][ T8058]  ? selinux_file_permission+0x11f/0x580
[  123.742766][ T8058]  ? __pfx_woken_wake_function+0x10/0x10
[  123.742783][ T8058]  ? bpf_lsm_file_permission+0x9/0x10
[  123.742799][ T8058]  ? security_file_permission+0x71/0x210
[  123.742817][ T8058]  ? rw_verify_area+0xcf/0x680
[  123.742832][ T8058]  ? __pfx_fanotify_read+0x10/0x10
[  123.742848][ T8058]  vfs_read+0x1e1/0xc70
[  123.742868][ T8058]  ? __pfx_vfs_read+0x10/0x10
[  123.742884][ T8058]  ? find_held_lock+0x2b/0x80
[  123.742898][ T8058]  ? __fget_files+0x204/0x3c0
[  123.742911][ T8058]  ? __fget_files+0x20e/0x3c0
[  123.742926][ T8058]  ksys_read+0x12a/0x240
[  123.742943][ T8058]  ? __pfx_ksys_read+0x10/0x10
[  123.742959][ T8058]  ? rcu_is_watching+0x12/0xc0
[  123.742978][ T8058]  do_syscall_64+0xcd/0x260
[  123.742996][ T8058]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.743007][ T8058] RIP: 0033:0x7f62fd98e969
[  123.743017][ T8058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.743029][ T8058] RSP: 002b:00007f62fe78f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  123.743040][ T8058] RAX: ffffffffffffffda RBX: 00007f62fdbb5fa0 RCX: 00007f62fd98e969
[  123.743048][ T8058] RDX: 0000000000002020 RSI: 00002000000057c0 RDI: 0000000000000004
[  123.743055][ T8058] RBP: 00007f62fe78f090 R08: 0000000000000000 R09: 0000000000000000
[  123.743061][ T8058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.743068][ T8058] R13: 0000000000000000 R14: 00007f62fdbb5fa0 R15: 00007fff640e3bf8
[  123.743082][ T8058]  </TASK>
[  123.743088][ T8058] ERROR: Out of memory at tomoyo_realpath_from_path.
[  124.011405][ T8074] netlink: 8 bytes leftover after parsing attributes in process `syz.1.626'.
[  124.032646][ T8077] binder: 8075:8077 ioctl 4018620d 0 returned -22
[  124.077711][ T8081] netlink: 4 bytes leftover after parsing attributes in process `syz.3.630'.
[  124.077762][ T8067] netlink: 4 bytes leftover after parsing attributes in process `syz.1.626'.
[  124.356757][ T8096] netlink: 'syz.6.634': attribute type 1 has an invalid length.
[  124.471107][ T8106] binder: 8105:8106 ioctl c0306201 0 returned -14
[  124.512535][ T8108] netlink: 8 bytes leftover after parsing attributes in process `syz.5.639'.
[  124.568411][ T8108] netlink: 4 bytes leftover after parsing attributes in process `syz.5.639'.
[  124.629788][ T8117] 9pnet_virtio: no channels available for device syz
[  124.632547][ T8119] netlink: 'syz.5.642': attribute type 10 has an invalid length.
[  124.634909][ T8119] netlink: 40 bytes leftover after parsing attributes in process `syz.5.642'.
[  124.639528][ T8119] batadv0: entered promiscuous mode
[  124.641642][ T8119] batadv0: entered allmulticast mode
[  124.643670][ T8119] bridge0: port 3(batadv0) entered blocking state
[  124.645649][ T8119] bridge0: port 3(batadv0) entered disabled state
[  124.649629][ T8119] bridge0: port 3(batadv0) entered blocking state
[  124.651618][ T8119] bridge0: port 3(batadv0) entered forwarding state
[  124.742055][ T8125] CIFS mount error: No usable UNC path provided in device string!
[  124.742055][ T8125] 
[  124.745164][ T8125] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  124.766860][ T1144] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  124.769597][ T1144] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  124.780732][ T8130] binder: 8129:8130 ioctl c0306201 0 returned -14
[  124.810173][ T8132] netlink: 32 bytes leftover after parsing attributes in process `syz.5.648'.
[  125.076524][ T8146] net_ratelimit: 2580 callbacks suppressed
[  125.076536][ T8146] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  125.082340][ T8146] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  125.084455][ T8146] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  125.086556][ T8146] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  125.088590][ T8146] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  125.090599][ T8146] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  125.092692][ T8146] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  125.094726][ T8146] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  125.096808][ T8146] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  125.098835][ T8146] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  125.441190][ T8155] binder: 8154:8155 ioctl c0306201 0 returned -14
[  125.526393][ T5947] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  125.813326][ T8177] netlink: 'syz.5.665': attribute type 10 has an invalid length.
[  125.900306][ T8183] 9pnet_virtio: no channels available for device syz
[  126.103850][ T8188] Bluetooth: MGMT ver 1.23
[  126.105427][ T8188] Bluetooth: hci0: service_discovery: too big uuid_count value 65062
[  126.257613][ T8194] 9pnet_virtio: no channels available for device syz
[  126.261104][ T8194] FAULT_INJECTION: forcing a failure.
[  126.261104][ T8194] name failslab, interval 1, probability 0, space 0, times 0
[  126.265612][ T8194] CPU: 0 UID: 0 PID: 8194 Comm: syz.3.673 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  126.265635][ T8194] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.265647][ T8194] Call Trace:
[  126.265653][ T8194]  <TASK>
[  126.265661][ T8194]  dump_stack_lvl+0x16c/0x1f0
[  126.265690][ T8194]  should_fail_ex+0x512/0x640
[  126.265713][ T8194]  ? __kmalloc_noprof+0xbf/0x510
[  126.265732][ T8194]  ? iter_file_splice_write+0x1cc/0x1150
[  126.265763][ T8194]  should_failslab+0xc2/0x120
[  126.265783][ T8194]  __kmalloc_noprof+0xd2/0x510
[  126.265798][ T8194]  ? ns_to_timespec64+0x59/0xc0
[  126.265845][ T8194]  iter_file_splice_write+0x1cc/0x1150
[  126.265872][ T8194]  ? current_time+0x11d/0x1a0
[  126.265890][ T8194]  ? __pfx_current_time+0x10/0x10
[  126.265906][ T8194]  ? __pfx_make_vfsgid+0x10/0x10
[  126.265934][ T8194]  ? atime_needs_update+0x8b/0x710
[  126.265960][ T8194]  ? __pfx_iter_file_splice_write+0x10/0x10
[  126.265986][ T8194]  ? __lock_acquire+0xaa4/0x1ba0
[  126.266034][ T8194]  ? __pfx_iter_file_splice_write+0x10/0x10
[  126.266062][ T8194]  direct_splice_actor+0x192/0x6c0
[  126.266091][ T8194]  splice_direct_to_actor+0x345/0xa30
[  126.266119][ T8194]  ? __pfx_direct_splice_actor+0x10/0x10
[  126.266149][ T8194]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  126.266178][ T8194]  ? __pfx___might_resched+0x10/0x10
[  126.266205][ T8194]  do_splice_direct+0x174/0x240
[  126.266232][ T8194]  ? __pfx_do_splice_direct+0x10/0x10
[  126.266258][ T8194]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  126.266289][ T8194]  ? rw_verify_area+0xcf/0x680
[  126.266315][ T8194]  do_sendfile+0xafd/0xe50
[  126.266344][ T8194]  ? __pfx_do_sendfile+0x10/0x10
[  126.266378][ T8194]  __x64_sys_sendfile64+0x154/0x220
[  126.266398][ T8194]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  126.266425][ T8194]  do_syscall_64+0xcd/0x260
[  126.266452][ T8194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.266471][ T8194] RIP: 0033:0x7f62fd98e969
[  126.266486][ T8194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.266503][ T8194] RSP: 002b:00007f62fe78f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  126.266521][ T8194] RAX: ffffffffffffffda RBX: 00007f62fdbb5fa0 RCX: 00007f62fd98e969
[  126.266534][ T8194] RDX: 0000200000000080 RSI: 0000000000000003 RDI: 0000000000000003
[  126.266545][ T8194] RBP: 00007f62fe78f090 R08: 0000000000000000 R09: 0000000000000000
[  126.266556][ T8194] R10: 0000000000007f04 R11: 0000000000000246 R12: 0000000000000002
[  126.266567][ T8194] R13: 0000000000000000 R14: 00007f62fdbb5fa0 R15: 00007fff640e3bf8
[  126.266592][ T8194]  </TASK>
[  126.386055][ T8192] block nbd0: server does not support multiple connections per device.
[  126.388754][ T8192] block nbd0: shutting down sockets
[  126.407833][   T40] kauditd_printk_skb: 42 callbacks suppressed
[  126.407844][   T40] audit: type=1400 audit(1748163224.902:510): avc:  denied  { read } for  pid=8196 comm="syz.3.674" name="nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  126.416954][   T40] audit: type=1400 audit(1748163224.902:511): avc:  denied  { open } for  pid=8196 comm="syz.3.674" path="/dev/nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  126.430528][   T40] audit: type=1400 audit(1748163224.902:512): avc:  denied  { ioctl } for  pid=8196 comm="syz.3.674" path="/dev/nvram" dev="devtmpfs" ino=631 ioctlcmd=0x530a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  126.547646][   T40] audit: type=1400 audit(1748163225.042:513): avc:  denied  { bind } for  pid=8208 comm="syz.3.679" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  126.855963][   T63] usb 10-1: new full-speed USB device number 4 using dummy_hcd
[  126.916636][   T40] audit: type=1400 audit(1748163225.412:514): avc:  denied  { create } for  pid=8225 comm="syz.6.683" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  127.012740][   T63] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  127.016153][   T63] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 2
[  127.021108][   T63] usb 10-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  127.024094][   T63] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.030672][   T63] usb 10-1: config 0 descriptor??
[  127.051236][   T63] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  127.054282][   T63] dvb-usb: bulk message failed: -22 (3/0)
[  127.070180][   T63] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  127.075676][   T63] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  127.078469][   T63] usb 10-1: media controller created
[  127.083046][   T63] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  127.094705][   T63] dvb-usb: bulk message failed: -22 (6/0)
[  127.098798][   T63] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  127.099909][ T8241] netlink: 'syz.6.689': attribute type 10 has an invalid length.
[  127.106896][   T63] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.5/usb10/10-1/input/input8
[  127.116826][   T63] dvb-usb: schedule remote query interval to 150 msecs.
[  127.118957][   T63] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  127.120260][ T8241] 8021q: adding VLAN 0 to HW filter on device team0
[  127.124949][ T8241] bond0: (slave team0): Enslaving as an active interface with an up link
[  127.143890][   T40] audit: type=1400 audit(1748163225.632:515): avc:  denied  { read } for  pid=8240 comm="syz.6.689" path="socket:[23391]" dev="sockfs" ino=23391 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  127.248499][ T8217] bridge0: port 3(batadv0) entered disabled state
[  127.253202][ T8217] bridge_slave_1: left allmulticast mode
[  127.255012][ T8217] bridge_slave_1: left promiscuous mode
[  127.257962][ T8217] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.267539][ T8217] bridge_slave_0: left allmulticast mode
[  127.269844][ T8217] bridge_slave_0: left promiscuous mode
[  127.272267][ T8217] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.278237][   T29] dvb-usb: bulk message failed: -22 (1/0)
[  127.280639][   T29] dvb-usb: error while querying for an remote control event.
[  127.437309][   T63] dvb-usb: bulk message failed: -22 (1/0)
[  127.439146][   T63] dvb-usb: error while querying for an remote control event.
[  127.443466][ T8260] 9pnet_virtio: no channels available for device syz
[  127.449720][  T836] usb 10-1: USB disconnect, device number 4
[  127.508527][  T836] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  127.639042][   T40] audit: type=1400 audit(1748163226.132:516): avc:  denied  { write } for  pid=8268 comm="syz.6.698" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  127.644916][   T40] audit: type=1400 audit(1748163226.132:517): avc:  denied  { kexec_image_load } for  pid=8268 comm="syz.6.698" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  127.712372][   T40] audit: type=1400 audit(1748163226.202:518): avc:  denied  { setopt } for  pid=8272 comm="syz.6.699" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  127.774868][ T8277] kvm: MWAIT instruction emulated as NOP!
[  127.804742][ T8280] block nbd0: not configured, cannot reconfigure
[  127.807883][ T8280] autofs: Unknown parameter '8'
[  127.874217][   T40] audit: type=1400 audit(1748163226.362:519): avc:  denied  { create } for  pid=8288 comm="syz.3.703" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  128.052196][ T8296] __nla_validate_parse: 21 callbacks suppressed
[  128.052217][ T8296] netlink: 4 bytes leftover after parsing attributes in process `syz.5.706'.
[  128.112905][ T8301] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(14)
[  128.115646][ T8301] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  128.119110][ T8301] vhci_hcd vhci_hcd.0: Device attached
[  128.122160][ T8302] vhci_hcd: cannot find a urb of seqnum 1 max seqnum 0
[  128.125003][ T1144] vhci_hcd: stop threads
[  128.126978][ T1144] vhci_hcd: release socket
[  128.128431][ T1144] vhci_hcd: disconnect device
[  128.484062][ T8315] loop2: detected capacity change from 0 to 7
[  128.491583][ T6949] Dev loop2: unable to read RDB block 7
[  128.493614][ T6949]  loop2: AHDI p1 p2 p3 p4
[  128.494986][ T6949] loop2: partition table partially beyond EOD, truncated
[  128.499353][ T6949] loop2: p1 start 1601398130 is beyond EOD, truncated
[  128.502107][ T6949] loop2: p2 start 1702059890 is beyond EOD, truncated
[  128.504846][ T6949] loop2: p3 size 150995200 extends beyond EOD, truncated
[  128.516514][ T8315] Dev loop2: unable to read RDB block 7
[  128.518862][ T8315]  loop2: AHDI p1 p2 p3 p4
[  128.520963][ T8315] loop2: partition table partially beyond EOD, truncated
[  128.524255][ T8315] loop2: p1 start 1601398130 is beyond EOD, truncated
[  128.527459][ T8315] loop2: p2 start 1702059890 is beyond EOD, truncated
[  128.530224][ T8315] loop2: p3 size 150995200 extends beyond EOD, truncated
[  128.567533][ T6949] udevd[6949]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  128.590453][ T6949] udevd[6949]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  128.710608][ T8322] netlink: 8 bytes leftover after parsing attributes in process `syz.5.715'.
[  128.764504][ T8322] netlink: 4 bytes leftover after parsing attributes in process `syz.5.715'.
[  128.842184][ T8330] 9pnet_virtio: no channels available for device syz
[  128.923689][ T8335] binder: BINDER_SET_CONTEXT_MGR already set
[  128.928257][ T8335] binder: 8334:8335 ioctl 4018620d 200000000040 returned -16
[  128.967677][ T8328] netlink: 28 bytes leftover after parsing attributes in process `syz.5.718'.
[  129.081556][ T8341] veth0_macvtap: left promiscuous mode
[  129.084375][ T8341] macvtap0: entered promiscuous mode
[  129.136708][ T8343] netlink: 8 bytes leftover after parsing attributes in process `syz.5.724'.
[  129.190911][ T8343] netlink: 4 bytes leftover after parsing attributes in process `syz.5.724'.
[  129.268827][ T8356] FAULT_INJECTION: forcing a failure.
[  129.268827][ T8356] name failslab, interval 1, probability 0, space 0, times 0
[  129.272906][ T8356] CPU: 3 UID: 0 PID: 8356 Comm: syz.5.727 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  129.272922][ T8356] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  129.272929][ T8356] Call Trace:
[  129.272933][ T8356]  <TASK>
[  129.272938][ T8356]  dump_stack_lvl+0x16c/0x1f0
[  129.272958][ T8356]  should_fail_ex+0x512/0x640
[  129.272975][ T8356]  ? __kmalloc_node_noprof+0xc5/0x500
[  129.272988][ T8356]  should_failslab+0xc2/0x120
[  129.273000][ T8356]  __kmalloc_node_noprof+0xd8/0x500
[  129.273011][ T8356]  ? obj_cgroup_charge+0x365/0x640
[  129.273024][ T8356]  ? alloc_slab_obj_exts+0x41/0xa0
[  129.273041][ T8356]  alloc_slab_obj_exts+0x41/0xa0
[  129.273057][ T8356]  __memcg_slab_post_alloc_hook+0x27b/0x940
[  129.273074][ T8356]  __kvmalloc_node_noprof+0x4ec/0x600
[  129.273093][ T8356]  ? __nf_hook_entries_try_shrink+0x15f/0x400
[  129.273108][ T8356]  ? __nf_hook_entries_try_shrink+0x15f/0x400
[  129.273119][ T8356]  __nf_hook_entries_try_shrink+0x15f/0x400
[  129.273134][ T8356]  __nf_unregister_net_hook+0x2e5/0x680
[  129.273148][ T8356]  nf_unregister_net_hooks+0x11b/0x160
[  129.273162][ T8356]  ip_vs_unregister_hooks+0xd8/0x140
[  129.273176][ T8356]  ip_vs_unlink_service+0x9a4/0xbf0
[  129.273195][ T8356]  ip_vs_flush+0x1c0/0x230
[  129.273211][ T8356]  do_ip_vs_set_ctl+0xe9a/0x11d0
[  129.273226][ T8356]  ? __lock_acquire+0xaa4/0x1ba0
[  129.273245][ T8356]  ? __mutex_trylock_common+0xd0/0x250
[  129.273263][ T8356]  ? __pfx_do_ip_vs_set_ctl+0x10/0x10
[  129.273279][ T8356]  ? __pfx___mutex_trylock_common+0x10/0x10
[  129.273297][ T8356]  ? __pfx___might_resched+0x10/0x10
[  129.273316][ T8356]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  129.273330][ T8356]  ? find_held_lock+0x2b/0x80
[  129.273345][ T8356]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  129.273373][ T8356]  ? nf_setsockopt+0x8d/0xf0
[  129.273385][ T8356]  nf_setsockopt+0x8d/0xf0
[  129.273400][ T8356]  ip_setsockopt+0xcb/0xf0
[  129.273418][ T8356]  sctp_setsockopt+0x16c/0xb870
[  129.273431][ T8356]  ? __pfx_selinux_netlbl_socket_setsockopt+0x10/0x10
[  129.273448][ T8356]  ? proc_fail_nth_write+0x9f/0x250
[  129.273467][ T8356]  ? __pfx_sctp_setsockopt+0x10/0x10
[  129.273478][ T8356]  ? __lock_acquire+0x5ca/0x1ba0
[  129.273498][ T8356]  ? selinux_socket_setsockopt+0x6a/0x80
[  129.273512][ T8356]  ? sock_common_setsockopt+0x2e/0xf0
[  129.273528][ T8356]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  129.273543][ T8356]  do_sock_setsockopt+0x221/0x470
[  129.273558][ T8356]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  129.273581][ T8356]  __sys_setsockopt+0x1a0/0x230
[  129.273595][ T8356]  __x64_sys_setsockopt+0xbd/0x160
[  129.273606][ T8356]  ? do_syscall_64+0x91/0x260
[  129.273622][ T8356]  ? lockdep_hardirqs_on+0x7c/0x110
[  129.273637][ T8356]  do_syscall_64+0xcd/0x260
[  129.273654][ T8356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.273666][ T8356] RIP: 0033:0x7fef8ff8e969
[  129.273675][ T8356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.273686][ T8356] RSP: 002b:00007fef90e3a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  129.273696][ T8356] RAX: ffffffffffffffda RBX: 00007fef901b5fa0 RCX: 00007fef8ff8e969
[  129.273703][ T8356] RDX: 0000000000000485 RSI: 0000000000000000 RDI: 0000000000000003
[  129.273714][ T8356] RBP: 00007fef90e3a090 R08: 0000000000000000 R09: 0000000000000000
[  129.273720][ T8356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.273726][ T8356] R13: 0000000000000000 R14: 00007fef901b5fa0 R15: 00007ffef8d5c908
[  129.273740][ T8356]  </TASK>
[  129.329371][ T8359] binder: 8358:8359 ioctl c0306201 0 returned -14
[  129.330223][    C3] vkms_vblank_simulate: vblank timer overrun
[  129.398594][    C3] vkms_vblank_simulate: vblank timer overrun
[  129.400428][    C3] hrtimer: interrupt took 124602068 ns
[  129.500488][    C3] vkms_vblank_simulate: vblank timer overrun
[  129.721020][ T8374] netlink: 'syz.5.733': attribute type 8 has an invalid length.
[  129.724074][ T8374] netlink: 16 bytes leftover after parsing attributes in process `syz.5.733'.
[  129.775002][ T5975] IPVS: starting estimator thread 0...
[  129.824275][ T8380] netlink: 8 bytes leftover after parsing attributes in process `syz.6.735'.
[  129.865988][ T8378] IPVS: using max 28 ests per chain, 67200 per kthread
[  129.881397][ T8383] netlink: 4 bytes leftover after parsing attributes in process `syz.6.735'.
[  129.906519][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  129.914526][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  130.294235][ T8391] binder: 8390:8391 ioctl c0306201 0 returned -14
[  130.340698][ T8393] 9pnet_virtio: no channels available for device syz
[  130.354924][ T8393] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  130.442257][ T8397] input: syz0 as /devices/virtual/input/input9
[  130.636200][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  130.677383][ T8405] netlink: 8 bytes leftover after parsing attributes in process `syz.3.744'.
[  130.742290][ T8418] binder: 8417:8418 ioctl c018620c 200000000380 returned -22
[  130.837550][ T8424] binder: 8422:8424 ioctl c0306201 0 returned -14
[  130.991762][ T8431] Cache volume key already in use (9p,syz,)
[  131.000173][ T8431] dummy0: entered promiscuous mode
[  131.094549][ T8393] syz.6.739 (8393): drop_caches: 2
[  131.282006][ T8453] xt_cluster: node mask cannot exceed total number of nodes
[  131.550363][ T8473] net_ratelimit: 3330 callbacks suppressed
[  131.550380][ T8473] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 808
[  131.704140][ T8427] overlayfs: statfs failed on './file0'
[  131.797229][ T8486] overlay: Unknown parameter 'func'
[  131.804592][ T8486] geneve2: entered promiscuous mode
[  131.807142][ T8486] geneve2: entered allmulticast mode
[  131.853155][ T8491] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  131.857867][ T8491] Error validating options; rc = [-22]
[  132.080702][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  132.080718][   T40] audit: type=1400 audit(1748163230.572:529): avc:  denied  { create } for  pid=8503 comm="syz.5.776" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  132.090777][   T40] audit: type=1400 audit(1748163230.572:530): avc:  denied  { ioctl } for  pid=8503 comm="syz.5.776" path="socket:[26906]" dev="sockfs" ino=26906 ioctlcmd=0x89e3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  132.108865][ T8512] syz.5.777 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  132.390852][   T40] audit: type=1400 audit(1748163230.882:531): avc:  denied  { connect } for  pid=8536 comm="syz.5.783" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  132.537335][ T8479] orangefs_mount: mount request failed with -4
[  132.572075][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[  133.130348][   T40] audit: type=1400 audit(1748163231.622:532): avc:  denied  { getopt } for  pid=8573 comm="syz.5.797" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  133.190216][ T8574] "syz.5.797" (8574) uses obsolete ecb(arc4) skcipher
[  133.263494][ T8579] __nla_validate_parse: 13 callbacks suppressed
[  133.263511][ T8579] netlink: 8 bytes leftover after parsing attributes in process `syz.6.798'.
[  133.269747][ T8579] netlink: 4 bytes leftover after parsing attributes in process `syz.6.798'.
[  133.278748][ T8579] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  133.281453][ T8591] netlink: 8 bytes leftover after parsing attributes in process `syz.5.800'.
[  133.281597][ T8579] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  133.288003][ T8579] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  133.290740][ T8579] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  133.299054][ T8579] netlink: 8 bytes leftover after parsing attributes in process `syz.6.798'.
[  133.302503][ T8579] netlink: 4 bytes leftover after parsing attributes in process `syz.6.798'.
[  133.359901][ T8597] netlink: 4 bytes leftover after parsing attributes in process `syz.5.800'.
[  133.756963][ T8627] overlay: filesystem on ./file1 not supported
[  133.762309][ T8623] netlink: 8 bytes leftover after parsing attributes in process `syz.1.811'.
[  133.820103][ T8623] netlink: 4 bytes leftover after parsing attributes in process `syz.1.811'.
[  133.974319][ T8639] overlayfs: conflicting lowerdir path
[  134.194016][ T8648] FAULT_INJECTION: forcing a failure.
[  134.194016][ T8648] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  134.202102][ T8648] CPU: 3 UID: 0 PID: 8648 Comm: syz.1.820 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  134.202126][ T8648] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.202136][ T8648] Call Trace:
[  134.202142][ T8648]  <TASK>
[  134.202148][ T8648]  dump_stack_lvl+0x16c/0x1f0
[  134.202175][ T8648]  should_fail_ex+0x512/0x640
[  134.202201][ T8648]  should_fail_alloc_page+0xe7/0x130
[  134.202221][ T8648]  prepare_alloc_pages+0x3c2/0x610
[  134.202247][ T8648]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  134.202270][ T8648]  ? find_held_lock+0x2b/0x80
[  134.202288][ T8648]  ? is_bpf_text_address+0x8a/0x1a0
[  134.202306][ T8648]  ? bpf_ksym_find+0x127/0x1c0
[  134.202326][ T8648]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  134.202342][ T8648]  ? is_bpf_text_address+0x94/0x1a0
[  134.202359][ T8648]  ? kernel_text_address+0x8d/0x100
[  134.202379][ T8648]  ? __kernel_text_address+0xd/0x40
[  134.202397][ T8648]  ? unwind_get_return_address+0x59/0xa0
[  134.202428][ T8648]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  134.202447][ T8648]  ? policy_nodemask+0xea/0x4e0
[  134.202467][ T8648]  alloc_pages_mpol+0x1fb/0x550
[  134.202486][ T8648]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  134.202500][ T8648]  ? __lock_acquire+0x5ca/0x1ba0
[  134.202529][ T8648]  folio_alloc_mpol_noprof+0x36/0x2f0
[  134.202551][ T8648]  vma_alloc_folio_noprof+0xed/0x1e0
[  134.202578][ T8648]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  134.202602][ T8648]  do_pte_missing+0x223d/0x3fb0
[  134.202638][ T8648]  __handle_mm_fault+0x103d/0x2a40
[  134.202670][ T8648]  ? __pfx___handle_mm_fault+0x10/0x10
[  134.202689][ T8648]  ? lock_vma_under_rcu+0x47d/0x970
[  134.202710][ T8648]  ? lock_vma_under_rcu+0x47d/0x970
[  134.202748][ T8648]  handle_mm_fault+0x3fe/0xad0
[  134.202776][ T8648]  do_user_addr_fault+0x60c/0x1370
[  134.202802][ T8648]  exc_page_fault+0x5c/0xc0
[  134.202824][ T8648]  asm_exc_page_fault+0x26/0x30
[  134.202842][ T8648] RIP: 0033:0x7f3faf856a8a
[  134.202860][ T8648] Code: e8 4b ad ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 41 57 41 bf 00 00 c0 fe 41 56 41 55 41 54 45 31 e4 55 53 48 81 ec 08 1b 00 00 <48> 89 7c 24 78 48 8d 9c 24 f0 06 00 00 48 89 74 24 70 48 89 54 24
[  134.202875][ T8648] RSP: 002b:00007f3fb07104f0 EFLAGS: 00010206
[  134.202889][ T8648] RAX: 00007f3faf856a70 RBX: 00007f3fafbb5fa0 RCX: 00002000000000c0
[  134.202899][ T8648] RDX: 0000200000fe7000 RSI: 0000000000000005 RDI: ffffffffffffffff
[  134.202910][ T8648] RBP: 00007f3fb0712090 R08: 0000000000000001 R09: 0000000000000059
[  134.202920][ T8648] R10: ffffffffffffffff R11: 0000200000fe7000 R12: 0000000000000000
[  134.202930][ T8648] R13: 0000000000000000 R14: 00007f3fafbb5fa0 R15: 00000000fec00000
[  134.202955][ T8648]  </TASK>
[  134.203156][ T8648] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  134.247851][ T8651] netlink: 8 bytes leftover after parsing attributes in process `syz.6.821'.
[  134.362180][ T8651] netlink: 4 bytes leftover after parsing attributes in process `syz.6.821'.
[  134.403479][ T8659] bond0: option use_carrier: invalid value (32)
[  134.494916][   T40] audit: type=1400 audit(1748163232.982:533): avc:  denied  { create } for  pid=8667 comm="syz.1.826" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  134.502569][   T40] audit: type=1400 audit(1748163232.982:534): avc:  denied  { setopt } for  pid=8667 comm="syz.1.826" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[  134.843119][   T40] audit: type=1400 audit(1748163233.332:535): avc:  denied  { ioctl } for  pid=8685 comm="syz.6.833" path="socket:[27175]" dev="sockfs" ino=27175 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  135.294517][   T40] audit: type=1400 audit(1748163233.782:536): avc:  denied  { write } for  pid=8697 comm="syz.1.835" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  135.302653][   T40] audit: type=1400 audit(1748163233.782:537): avc:  denied  { nlmsg_write } for  pid=8697 comm="syz.1.835" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  135.724968][ T8710] binder: 8709:8710 ioctl c0306201 200000000640 returned -22
[  135.893288][ T8724] overlay: filesystem on ./file1 not supported
[  135.895619][ T8724] FAULT_INJECTION: forcing a failure.
[  135.895619][ T8724] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  135.900455][ T8724] CPU: 2 UID: 0 PID: 8724 Comm: syz.6.844 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  135.900474][ T8724] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  135.900481][ T8724] Call Trace:
[  135.900485][ T8724]  <TASK>
[  135.900490][ T8724]  dump_stack_lvl+0x16c/0x1f0
[  135.900523][ T8724]  should_fail_ex+0x512/0x640
[  135.900541][ T8724]  _copy_to_user+0x32/0xd0
[  135.900559][ T8724]  simple_read_from_buffer+0xcb/0x170
[  135.900577][ T8724]  proc_fail_nth_read+0x197/0x270
[  135.900596][ T8724]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  135.900614][ T8724]  ? rw_verify_area+0xcf/0x680
[  135.900628][ T8724]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  135.900645][ T8724]  vfs_read+0x1e1/0xc70
[  135.900663][ T8724]  ? __pfx___mutex_lock+0x10/0x10
[  135.900679][ T8724]  ? __pfx_vfs_read+0x10/0x10
[  135.900699][ T8724]  ? __fget_files+0x20e/0x3c0
[  135.900717][ T8724]  ksys_read+0x12a/0x240
[  135.900733][ T8724]  ? __pfx_ksys_read+0x10/0x10
[  135.900749][ T8724]  ? rcu_is_watching+0x12/0xc0
[  135.900766][ T8724]  do_syscall_64+0xcd/0x260
[  135.900784][ T8724]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.900795][ T8724] RIP: 0033:0x7f3470b8d37c
[  135.900805][ T8724] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  135.900816][ T8724] RSP: 002b:00007f3471955030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  135.900827][ T8724] RAX: ffffffffffffffda RBX: 00007f3470db5fa0 RCX: 00007f3470b8d37c
[  135.900834][ T8724] RDX: 000000000000000f RSI: 00007f34719550a0 RDI: 0000000000000003
[  135.900840][ T8724] RBP: 00007f3471955090 R08: 0000000000000000 R09: 0000000000000000
[  135.900846][ T8724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  135.900853][ T8724] R13: 0000000000000000 R14: 00007f3470db5fa0 R15: 00007ffc17009178
[  135.900873][ T8724]  </TASK>
[  135.997710][ T8726] nfs4: Bad value for 'source'
[  135.997888][   T40] audit: type=1400 audit(1748163234.492:538): avc:  denied  { mounton } for  pid=8725 comm="syz.6.845" path="/file0" dev="ramfs" ino=27284 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=file permissive=1
[  136.456380][   T29] e1000 0000:00:06.0 eth0: Reset adapter
[  136.557512][ T8744] overlayfs: conflicting options: metacopy=off,verity=on
[  136.573396][   T29] e1000 0000:00:06.0 eth0: Reset adapter
[  136.751863][ T8758] No buffer was provided with the request
[  136.760170][ T8761] 9pnet_virtio: no channels available for device syz
[  138.717132][  T836] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  139.056818][ T8774] binder: 8771:8774 ioctl c0306201 200000000640 returned -22
[  139.246283][ T8773] mmap: syz.3.861 (8773) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  139.278089][ T8793] __nla_validate_parse: 4 callbacks suppressed
[  139.278101][ T8793] netlink: 8 bytes leftover after parsing attributes in process `syz.1.865'.
[  139.322715][ T8793] netlink: 4 bytes leftover after parsing attributes in process `syz.1.865'.
[  139.358921][ T8802] 9pnet_virtio: no channels available for device syz
[  139.413850][ T8806] 9pnet_virtio: no channels available for device syz
[  139.490195][ T8810] FAULT_INJECTION: forcing a failure.
[  139.490195][ T8810] name failslab, interval 1, probability 0, space 0, times 0
[  139.494641][ T8810] CPU: 3 UID: 0 PID: 8810 Comm: syz.3.871 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  139.494664][ T8810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  139.494689][ T8810] Call Trace:
[  139.494696][ T8810]  <TASK>
[  139.494701][ T8810]  dump_stack_lvl+0x16c/0x1f0
[  139.494728][ T8810]  should_fail_ex+0x512/0x640
[  139.494750][ T8810]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  139.494769][ T8810]  should_failslab+0xc2/0x120
[  139.494786][ T8810]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  139.494801][ T8810]  ? percpu_counter_add_batch+0xb8/0x1f0
[  139.494814][ T8810]  ? vm_area_dup+0x23/0x700
[  139.494830][ T8810]  vm_area_dup+0x23/0x700
[  139.494845][ T8810]  copy_process+0x7f59/0x91b0
[  139.494870][ T8810]  ? __pfx_copy_process+0x10/0x10
[  139.494890][ T8810]  ? find_held_lock+0x2b/0x80
[  139.494911][ T8810]  kernel_clone+0xfc/0x960
[  139.494928][ T8810]  ? __pfx_kernel_clone+0x10/0x10
[  139.494949][ T8810]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  139.494968][ T8810]  __do_sys_clone+0xce/0x120
[  139.494983][ T8810]  ? __pfx___do_sys_clone+0x10/0x10
[  139.495004][ T8810]  ? ksys_write+0x1b9/0x240
[  139.495021][ T8810]  ? __pfx_ksys_write+0x10/0x10
[  139.495037][ T8810]  ? rcu_is_watching+0x12/0xc0
[  139.495055][ T8810]  do_syscall_64+0xcd/0x260
[  139.495072][ T8810]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.495083][ T8810] RIP: 0033:0x7f62fd98e969
[  139.495092][ T8810] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.495103][ T8810] RSP: 002b:00007f62fe78efe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  139.495114][ T8810] RAX: ffffffffffffffda RBX: 00007f62fdbb5fa0 RCX: 00007f62fd98e969
[  139.495121][ T8810] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000001000
[  139.495127][ T8810] RBP: 00007f62fe78f090 R08: 0000000000000000 R09: 0000000000000000
[  139.495133][ T8810] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[  139.495140][ T8810] R13: 0000000000000000 R14: 00007f62fdbb5fa0 R15: 00007fff640e3bf8
[  139.495176][ T8810]  </TASK>
[  139.765275][ T8815] overlayfs: conflicting lowerdir path
[  140.143507][ T8824] netlink: 8 bytes leftover after parsing attributes in process `syz.3.877'.
[  140.147747][ T8834] netlink: 'syz.5.879': attribute type 1 has an invalid length.
[  140.150823][ T8834] netlink: 4 bytes leftover after parsing attributes in process `syz.5.879'.
[  140.197868][ T8824] netlink: 4 bytes leftover after parsing attributes in process `syz.3.877'.
[  140.338390][ T8837] nbd5: detected capacity change from 0 to 67108884
[  140.340421][ T8852] FAULT_INJECTION: forcing a failure.
[  140.340421][ T8852] name failslab, interval 1, probability 0, space 0, times 0
[  140.347125][ T6949] block nbd5: Send control failed (result -89)
[  140.349450][ T6949] block nbd5: Request send failed, requeueing
[  140.351609][ T8852] CPU: 3 UID: 0 PID: 8852 Comm: syz.5.881 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  140.351626][ T8852] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  140.351632][ T8852] Call Trace:
[  140.351637][ T8852]  <TASK>
[  140.351642][ T8852]  dump_stack_lvl+0x16c/0x1f0
[  140.351663][ T8852]  should_fail_ex+0x512/0x640
[  140.351679][ T8852]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  140.351697][ T8852]  should_failslab+0xc2/0x120
[  140.351710][ T8852]  __kmalloc_cache_noprof+0x6a/0x3e0
[  140.351727][ T8852]  ? shrinker_alloc+0xf5/0xbf0
[  140.351741][ T8852]  shrinker_alloc+0xf5/0xbf0
[  140.351759][ T8852]  ? mark_held_locks+0x49/0x80
[  140.351782][ T8852]  ? pcpu_memcg_post_alloc_hook+0x1e/0x740
[  140.351804][ T8852]  ? __pfx_shrinker_alloc+0x10/0x10
[  140.351830][ T8852]  ? lockdep_init_map_type+0x5c/0x280
[  140.351846][ T8852]  ? __raw_spin_lock_init+0x3a/0x110
[  140.351865][ T8852]  ? __init_rwsem+0x12d/0x1b0
[  140.351885][ T8852]  alloc_super+0x7c8/0xbd0
[  140.351916][ T8852]  ? __pfx_super_s_dev_test+0x10/0x10
[  140.351932][ T8852]  sget_fc+0x116/0xc20
[  140.351949][ T8852]  ? __pfx_super_s_dev_set+0x10/0x10
[  140.351964][ T8852]  get_tree_bdev_flags+0x1ba/0x620
[  140.351980][ T8852]  ? __pfx_udf_fill_super+0x10/0x10
[  140.351993][ T8852]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  140.352012][ T8852]  ? bpf_lsm_capable+0x9/0x10
[  140.352022][ T8852]  ? security_capable+0x7e/0x260
[  140.352037][ T8852]  vfs_get_tree+0x8b/0x340
[  140.352051][ T8852]  path_mount+0x14d4/0x1f20
[  140.352064][ T8852]  ? kmem_cache_free+0x2d4/0x4d0
[  140.352082][ T8852]  ? __pfx_path_mount+0x10/0x10
[  140.352096][ T8852]  ? putname+0x154/0x1a0
[  140.352111][ T8852]  __x64_sys_mount+0x28d/0x310
[  140.352125][ T8852]  ? __pfx___x64_sys_mount+0x10/0x10
[  140.352142][ T8852]  do_syscall_64+0xcd/0x260
[  140.352159][ T8852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.352171][ T8852] RIP: 0033:0x7fef8ff8e969
[  140.352180][ T8852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.352191][ T8852] RSP: 002b:00007fef90df8038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  140.352201][ T8852] RAX: ffffffffffffffda RBX: 00007fef901b6160 RCX: 00007fef8ff8e969
[  140.352208][ T8852] RDX: 0000200000000040 RSI: 0000200000004a00 RDI: 0000200000000500
[  140.352215][ T8852] RBP: 00007fef90df8090 R08: 0000000000000000 R09: 0000000000000000
[  140.352221][ T8852] R10: 0000000000008007 R11: 0000000000000246 R12: 0000000000000002
[  140.352228][ T8852] R13: 0000000000000001 R14: 00007fef901b6160 R15: 00007ffef8d5c908
[  140.352241][ T8852]  </TASK>
[  140.352671][   T72] block nbd5: Dead connection, failed to find a fallback
[  140.356062][ T5947] block nbd5: Receive control failed (result -32)
[  140.356524][   T72] block nbd5: shutting down sockets
[  140.451700][   T72] blk_print_req_error: 24 callbacks suppressed
[  140.451764][   T72] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.457925][   T72] buffer_io_error: 23 callbacks suppressed
[  140.457938][   T72] Buffer I/O error on dev nbd5, logical block 0, async page read
[  140.464161][ T6949] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.467130][ T6949] Buffer I/O error on dev nbd5, logical block 0, async page read
[  140.470547][ T6949] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.473369][ T6949] Buffer I/O error on dev nbd5, logical block 0, async page read
[  140.475963][ T6949] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.478764][ T6949] Buffer I/O error on dev nbd5, logical block 0, async page read
[  140.481281][ T6949] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.484084][ T6949] Buffer I/O error on dev nbd5, logical block 0, async page read
[  140.486707][ T6949] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.489492][ T6949] Buffer I/O error on dev nbd5, logical block 0, async page read
[  140.491995][ T6949] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.494329][ T1188] netdevsim netdevsim6 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  140.494758][ T6949] Buffer I/O error on dev nbd5, logical block 0, async page read
[  140.498654][ T1188] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.500946][ T6949] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.506956][ T6949] Buffer I/O error on dev nbd5, logical block 0, async page read
[  140.509494][ T6949] ldm_validate_partition_table(): Disk read failed.
[  140.511606][ T6949] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.514368][ T6949] Buffer I/O error on dev nbd5, logical block 0, async page read
[  140.516936][ T6949] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.519727][ T6949] Buffer I/O error on dev nbd5, logical block 0, async page read
[  140.522274][ T6949] Dev nbd5: unable to read RDB block 0
[  140.524355][ T6949]  nbd5: unable to read partition table
[  140.556264][ T6949] ldm_validate_partition_table(): Disk read failed.
[  140.558872][ T6949] Dev nbd5: unable to read RDB block 0
[  140.560930][ T6949]  nbd5: unable to read partition table
[  140.561191][ T8858] netlink: 8 bytes leftover after parsing attributes in process `syz.5.891'.
[  140.603054][ T1188] netdevsim netdevsim6 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  140.608509][ T1188] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.622508][ T8858] netlink: 4 bytes leftover after parsing attributes in process `syz.5.891'.
[  140.627915][ T8864] No control pipe specified
[  140.648564][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  140.648576][   T40] audit: type=1800 audit(1748163239.142:541): pid=8864 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.1.892" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  140.663087][ T8869] netlink: 'syz.5.893': attribute type 1 has an invalid length.
[  140.663389][   T68] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  140.665715][ T8869] netlink: 'syz.5.893': attribute type 2 has an invalid length.
[  140.673910][   T68] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  140.677805][   T68] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  140.684341][ T1188] netdevsim netdevsim6 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  140.688330][   T68] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  140.691226][   T68] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  140.695116][ T1188] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.708413][ T8871] openvswitch: netlink: EtherType 0 is less than min 600
[  140.715003][   T40] audit: type=1400 audit(1748163239.202:542): avc:  denied  { read } for  pid=8872 comm="syz.1.895" name="autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  140.726640][   T40] audit: type=1400 audit(1748163239.202:543): avc:  denied  { open } for  pid=8872 comm="syz.1.895" path="/dev/autofs" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  140.739397][   T40] audit: type=1400 audit(1748163239.212:544): avc:  denied  { ioctl } for  pid=8872 comm="syz.1.895" path="/dev/autofs" dev="devtmpfs" ino=104 ioctlcmd=0x9379 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1
[  140.760761][ T8875] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=7679 sclass=netlink_route_socket pid=8875 comm=syz.5.896
[  140.765180][   T40] audit: type=1400 audit(1748163239.252:545): avc:  denied  { write } for  pid=8874 comm="syz.5.896" name="mice" dev="devtmpfs" ino=939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=chr_file permissive=1
[  140.775200][ T1188] netdevsim netdevsim6 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  140.779478][ T1188] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.832453][   T40] audit: type=1400 audit(1748163239.322:546): avc:  denied  { bind } for  pid=8879 comm="syz.5.898" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[  140.915583][ T8866] chnl_net:caif_netlink_parms(): no params data found
[  140.955018][ T1188] bridge_slave_1: left allmulticast mode
[  140.957017][ T1188] bridge_slave_1: left promiscuous mode
[  140.958895][ T1188] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.962851][ T1188] bridge_slave_0: left allmulticast mode
[  140.964640][ T1188] bridge_slave_0: left promiscuous mode
[  140.968216][ T1188] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.130959][ T8896] FAULT_INJECTION: forcing a failure.
[  141.130959][ T8896] name failslab, interval 1, probability 0, space 0, times 0
[  141.135646][ T8896] CPU: 2 UID: 0 PID: 8896 Comm: syz.5.902 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  141.135665][ T8896] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  141.135672][ T8896] Call Trace:
[  141.135677][ T8896]  <TASK>
[  141.135681][ T8896]  dump_stack_lvl+0x16c/0x1f0
[  141.135700][ T8896]  should_fail_ex+0x512/0x640
[  141.135727][ T8896]  ? __kvmalloc_node_noprof+0x122/0x600
[  141.135749][ T8896]  should_failslab+0xc2/0x120
[  141.135762][ T8896]  __kvmalloc_node_noprof+0x135/0x600
[  141.135780][ T8896]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  141.135795][ T8896]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  141.135817][ T8896]  __kvm_mmu_topup_memory_cache+0x450/0x600
[  141.135832][ T8896]  ? _raw_spin_unlock+0x28/0x50
[  141.135847][ T8896]  mmu_topup_memory_caches+0x25/0x170
[  141.135865][ T8896]  kvm_mmu_load+0xd9/0x22a0
[  141.135882][ T8896]  ? kvm_apic_has_interrupt+0xb5/0x190
[  141.135896][ T8896]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  141.135909][ T8896]  ? vmx_get_rflags+0x100/0x420
[  141.135924][ T8896]  ? kvm_apic_accept_pic_intr+0xe8/0x1a0
[  141.135941][ T8896]  ? __pfx_kvm_mmu_load+0x10/0x10
[  141.135957][ T8896]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  141.135969][ T8896]  ? kvm_check_and_inject_events+0x71c/0x1310
[  141.135989][ T8896]  vcpu_run+0x3446/0x5390
[  141.136003][ T8896]  ? kvm_mmu_post_init_vm+0x269/0x370
[  141.136022][ T8896]  ? __lock_acquire+0xaa4/0x1ba0
[  141.136043][ T8896]  ? __pfx_vcpu_run+0x10/0x10
[  141.136060][ T8896]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  141.136076][ T8896]  ? __local_bh_enable_ip+0xa4/0x120
[  141.136094][ T8896]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  141.136109][ T8896]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  141.136129][ T8896]  kvm_vcpu_ioctl+0x5e9/0x1680
[  141.136147][ T8896]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  141.136168][ T8896]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  141.136202][ T8896]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  141.136225][ T8896]  ? hook_file_ioctl_common+0x145/0x410
[  141.136241][ T8896]  ? selinux_file_ioctl+0x180/0x270
[  141.136257][ T8896]  ? selinux_file_ioctl+0xb4/0x270
[  141.136275][ T8896]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  141.136292][ T8896]  __x64_sys_ioctl+0x190/0x200
[  141.136309][ T8896]  do_syscall_64+0xcd/0x260
[  141.136326][ T8896]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.136337][ T8896] RIP: 0033:0x7fef8ff8e969
[  141.136346][ T8896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.136357][ T8896] RSP: 002b:00007fef90e3a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  141.136368][ T8896] RAX: ffffffffffffffda RBX: 00007fef901b5fa0 RCX: 00007fef8ff8e969
[  141.136374][ T8896] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  141.136381][ T8896] RBP: 00007fef90e3a090 R08: 0000000000000000 R09: 0000000000000000
[  141.136387][ T8896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  141.136393][ T8896] R13: 0000000000000000 R14: 00007fef901b5fa0 R15: 00007ffef8d5c908
[  141.136407][ T8896]  </TASK>
[  141.201102][ T8890] netlink: 4 bytes leftover after parsing attributes in process `syz.1.901'.
[  141.334446][ T1188] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  141.341611][ T1188] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  141.357367][ T1188] bond0 (unregistering): (slave team0): Releasing backup interface
[  141.362754][ T1188] bond0 (unregistering): Released all slaves
[  141.457375][ T8913] netlink: 24 bytes leftover after parsing attributes in process `syz.3.906'.
[  141.460209][ T8913] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  141.463774][ T8913] binder: BC_ATTEMPT_ACQUIRE not supported
[  141.465631][ T8913] binder: 8912:8913 ioctl c0306201 200000000640 returned -22
[  141.467373][ T8914] netlink: 'syz.5.904': attribute type 39 has an invalid length.
[  141.468190][ T8913] binder: 8912:8913 ioctl 4142 0 returned -22
[  141.472820][ T8913] binder: 8912:8913 ioctl ae80 0 returned -22
[  141.484084][ T1188] IPVS: stopping backup sync thread 7940 ...
[  141.498017][ T8866] bridge0: port 1(bridge_slave_0) entered blocking state
[  141.500957][ T8866] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.503393][ T8866] bridge_slave_0: entered allmulticast mode
[  141.506743][ T8866] bridge_slave_0: entered promiscuous mode
[  141.509095][ T8918] FAULT_INJECTION: forcing a failure.
[  141.509095][ T8918] name failslab, interval 1, probability 0, space 0, times 0
[  141.509845][ T8866] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.513507][ T8918] CPU: 2 UID: 0 PID: 8918 Comm: syz.3.908 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  141.513528][ T8918] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  141.513539][ T8918] Call Trace:
[  141.513546][ T8918]  <TASK>
[  141.513553][ T8918]  dump_stack_lvl+0x16c/0x1f0
[  141.513581][ T8918]  should_fail_ex+0x512/0x640
[  141.513602][ T8918]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  141.513620][ T8918]  should_failslab+0xc2/0x120
[  141.513638][ T8918]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  141.513653][ T8918]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  141.513670][ T8918]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  141.513694][ T8918]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  141.513714][ T8918]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  141.513739][ T8918]  mmu_topup_memory_caches+0x25/0x170
[  141.513764][ T8918]  kvm_mmu_load+0xd9/0x22a0
[  141.513789][ T8918]  ? kvm_apic_has_interrupt+0xb5/0x190
[  141.513809][ T8918]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  141.513830][ T8918]  ? kvm_deliver_exception_payload+0x47/0x200
[  141.513853][ T8918]  ? __pfx_kvm_mmu_load+0x10/0x10
[  141.513875][ T8918]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  141.513893][ T8918]  ? kvm_check_and_inject_events+0x71c/0x1310
[  141.513916][ T8918]  vcpu_run+0x3446/0x5390
[  141.513936][ T8918]  ? kvm_mmu_post_init_vm+0x269/0x370
[  141.513963][ T8918]  ? __lock_acquire+0xaa4/0x1ba0
[  141.513996][ T8918]  ? __pfx_vcpu_run+0x10/0x10
[  141.514022][ T8918]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  141.514043][ T8918]  ? __local_bh_enable_ip+0xa4/0x120
[  141.514068][ T8918]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  141.514090][ T8918]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  141.514120][ T8918]  kvm_vcpu_ioctl+0x5e9/0x1680
[  141.514146][ T8918]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  141.514176][ T8918]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  141.514205][ T8918]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  141.514238][ T8918]  ? hook_file_ioctl_common+0x145/0x410
[  141.514262][ T8918]  ? selinux_file_ioctl+0x180/0x270
[  141.514286][ T8918]  ? selinux_file_ioctl+0xb4/0x270
[  141.514312][ T8918]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  141.514337][ T8918]  __x64_sys_ioctl+0x190/0x200
[  141.514366][ T8918]  do_syscall_64+0xcd/0x260
[  141.514392][ T8918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.514408][ T8918] RIP: 0033:0x7f62fd98e969
[  141.514422][ T8918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.514438][ T8918] RSP: 002b:00007f62fe78f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  141.514454][ T8918] RAX: ffffffffffffffda RBX: 00007f62fdbb5fa0 RCX: 00007f62fd98e969
[  141.514465][ T8918] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  141.514474][ T8918] RBP: 00007f62fe78f090 R08: 0000000000000000 R09: 0000000000000000
[  141.514484][ T8918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  141.514494][ T8918] R13: 0000000000000000 R14: 00007f62fdbb5fa0 R15: 00007fff640e3bf8
[  141.514516][ T8918]  </TASK>
[  141.552805][   T40] audit: type=1804 audit(1748163240.042:547): pid=8921 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz.1.907" name="/newroot/258/file0/file0" dev="9p" ino=37093416 res=1 errno=0
[  141.554156][ T8866] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.625024][ T8866] bridge_slave_1: entered allmulticast mode
[  141.627996][ T8866] bridge_slave_1: entered promiscuous mode
[  141.645975][ T8914] hub 2-0:1.0: USB hub found
[  141.648002][ T8914] hub 2-0:1.0: 6 ports detected
[  141.711054][ T8866] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  141.715995][ T8866] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  141.786379][ T8866] team0: Port device team_slave_0 added
[  141.810016][ T8866] team0: Port device team_slave_1 added
[  141.825999][ T7026] usb 2-1: new high-speed USB device number 4 using ehci-pci
[  141.853654][ T8866] batman_adv: batadv0: Adding interface: batadv_slave_0
[  141.856386][ T8866] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  141.865010][ T8866] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  141.872509][ T1188] hsr_slave_0: left promiscuous mode
[  141.875395][ T1188] hsr_slave_1: left promiscuous mode
[  141.879556][ T1188] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  141.881964][ T1188] batman_adv: batadv0: Removing interface: batadv_slave_0
[  141.885770][ T1188] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  141.888789][ T1188] batman_adv: batadv0: Removing interface: batadv_slave_1
[  141.907316][ T1188] veth1_macvtap: left promiscuous mode
[  141.909192][ T1188] veth0_macvtap: left promiscuous mode
[  141.911059][ T1188] veth1_vlan: left promiscuous mode
[  141.912897][ T1188] veth0_vlan: left promiscuous mode
[  142.027667][ T7026] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  142.031694][ T7026] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  142.035053][ T7026] usb 2-1: Product: QEMU USB Tablet
[  142.040427][ T7026] usb 2-1: Manufacturer: QEMU
[  142.042528][ T7026] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[  142.084167][ T7026] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0007/input/input10
[  142.158000][ T7026] hid-generic 0003:0627:0001.0007: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  142.691777][ T1188] team0 (unregistering): Port device team_slave_1 removed
[  142.698918][ T8941] netlink: 12 bytes leftover after parsing attributes in process `syz.3.914'.
[  142.703995][ T8941] netlink: 'syz.3.914': attribute type 1 has an invalid length.
[  142.778428][ T1188] team0 (unregistering): Port device team_slave_0 removed
[  142.797367][   T68] Bluetooth: hci0: command tx timeout
[  143.341477][ T8866] batman_adv: batadv0: Adding interface: batadv_slave_1
[  143.344395][ T8866] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  143.354930][ T8866] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  143.431532][ T8958] Bluetooth: MGMT ver 1.23
[  143.444502][ T8866] hsr_slave_0: entered promiscuous mode
[  143.449777][ T8866] hsr_slave_1: entered promiscuous mode
[  143.452796][ T8866] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  143.455934][ T8866] Cannot create hsr debugfs directory
[  143.479971][   T40] audit: type=1400 audit(1748163241.972:548): avc:  denied  { getopt } for  pid=8957 comm="syz.3.917" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  143.512451][ T8965] xt_hashlimit: size too large, truncated to 1048576
[  143.547852][ T8967] netlink: 'syz.1.918': attribute type 11 has an invalid length.
[  143.628320][ T8866] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  143.633348][ T8866] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  143.637870][ T8866] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  143.642888][ T8866] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  143.683267][ T8866] 8021q: adding VLAN 0 to HW filter on device bond0
[  143.693002][ T8866] 8021q: adding VLAN 0 to HW filter on device team0
[  143.704252][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  143.706560][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  143.714807][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  143.717134][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  143.723525][ T1188] IPVS: stop unused estimator thread 0...
[  143.845554][ T8866] 8021q: adding VLAN 0 to HW filter on device batadv0
[  143.999466][ T8866] veth0_vlan: entered promiscuous mode
[  144.006269][ T8866] veth1_vlan: entered promiscuous mode
[  144.031244][ T8866] veth0_macvtap: entered promiscuous mode
[  144.036304][ T8866] veth1_macvtap: entered promiscuous mode
[  144.048209][ T8866] batman_adv: batadv0: Interface activated: batadv_slave_0
[  144.055374][ T8866] batman_adv: batadv0: Interface activated: batadv_slave_1
[  144.064724][ T8866] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  144.068452][ T8866] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  144.072039][ T8866] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  144.074737][ T8866] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  144.118418][ T1188] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  144.121610][ T1188] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  144.139061][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  144.142452][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  144.196753][ T8989] dummy0: entered promiscuous mode
[  144.404255][ T8993] syzkaller0: entered promiscuous mode
[  144.406314][ T8993] syzkaller0: entered allmulticast mode
[  144.556487][ T8995] ICMPv6: Received fragmented ndisc packet. Carefully consider disabling suppress_frag_ndisc.
[  144.843085][ T9003] __nla_validate_parse: 3 callbacks suppressed
[  144.843122][ T9003] netlink: 4 bytes leftover after parsing attributes in process `syz.1.925'.
[  144.876089][   T68] Bluetooth: hci0: command tx timeout
[  145.098815][ T9007] usb 2-1: USB disconnect, device number 4
[  145.538274][   T40] audit: type=1400 audit(1748163244.032:549): avc:  denied  { map } for  pid=9027 comm="syz.3.932" path="/dev/null" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:null_device_t tclass=chr_file permissive=1
[  145.558283][   T40] audit: type=1400 audit(1748163244.052:550): avc:  denied  { connect } for  pid=9027 comm="syz.3.932" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  145.850564][   T29] IPVS: starting estimator thread 0...
[  145.861586][ T9045] syzkaller0: entered promiscuous mode
[  145.863556][ T9045] syzkaller0: entered allmulticast mode
[  145.884570][ T9045] xt_hashlimit: overflow, try lower: 0/0
[  145.888930][ T9051] 9pnet_virtio: no channels available for device syz
[  145.889095][   T40] audit: type=1400 audit(1748163244.382:551): avc:  denied  { getopt } for  pid=9050 comm="syz.7.939" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  145.917253][ T9053] 9pnet_virtio: no channels available for device syz
[  145.921064][ T9053] FAULT_INJECTION: forcing a failure.
[  145.921064][ T9053] name failslab, interval 1, probability 0, space 0, times 0
[  145.933318][ T9053] CPU: 2 UID: 0 PID: 9053 Comm: syz.5.941 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  145.933334][ T9053] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  145.933340][ T9053] Call Trace:
[  145.933344][ T9053]  <TASK>
[  145.933348][ T9053]  dump_stack_lvl+0x16c/0x1f0
[  145.933368][ T9053]  should_fail_ex+0x512/0x640
[  145.933389][ T9053]  ? __kmalloc_noprof+0xbf/0x510
[  145.933401][ T9053]  ? iter_file_splice_write+0x1cc/0x1150
[  145.933418][ T9053]  should_failslab+0xc2/0x120
[  145.933431][ T9053]  __kmalloc_noprof+0xd2/0x510
[  145.933440][ T9053]  ? ns_to_timespec64+0x59/0xc0
[  145.933459][ T9053]  iter_file_splice_write+0x1cc/0x1150
[  145.933476][ T9053]  ? current_time+0x11d/0x1a0
[  145.933488][ T9053]  ? __pfx_current_time+0x10/0x10
[  145.933498][ T9053]  ? __pfx_make_vfsgid+0x10/0x10
[  145.933529][ T9053]  ? atime_needs_update+0x8b/0x710
[  145.933544][ T9053]  ? __pfx_iter_file_splice_write+0x10/0x10
[  145.933562][ T9053]  ? __lock_acquire+0xaa4/0x1ba0
[  145.933602][ T9053]  ? __pfx_iter_file_splice_write+0x10/0x10
[  145.933630][ T9053]  direct_splice_actor+0x192/0x6c0
[  145.933660][ T9053]  splice_direct_to_actor+0x345/0xa30
[  145.933689][ T9053]  ? __pfx_direct_splice_actor+0x10/0x10
[  145.933715][ T9053]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  145.933733][ T9053]  ? __pfx___might_resched+0x10/0x10
[  145.933751][ T9053]  do_splice_direct+0x174/0x240
[  145.933768][ T9053]  ? __pfx_do_splice_direct+0x10/0x10
[  145.933785][ T9053]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  145.933804][ T9053]  ? rw_verify_area+0xcf/0x680
[  145.933820][ T9053]  do_sendfile+0xafd/0xe50
[  145.933838][ T9053]  ? __pfx_do_sendfile+0x10/0x10
[  145.933860][ T9053]  __x64_sys_sendfile64+0x154/0x220
[  145.933872][ T9053]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  145.933889][ T9053]  do_syscall_64+0xcd/0x260
[  145.933907][ T9053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.933919][ T9053] RIP: 0033:0x7fef8ff8e969
[  145.933928][ T9053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.933939][ T9053] RSP: 002b:00007fef90e3a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  145.933950][ T9053] RAX: ffffffffffffffda RBX: 00007fef901b5fa0 RCX: 00007fef8ff8e969
[  145.933957][ T9053] RDX: 0000200000000080 RSI: 0000000000000003 RDI: 0000000000000003
[  145.933963][ T9053] RBP: 00007fef90e3a090 R08: 0000000000000000 R09: 0000000000000000
[  145.933969][ T9053] R10: 0000000000007f04 R11: 0000000000000246 R12: 0000000000000002
[  145.933975][ T9053] R13: 0000000000000000 R14: 00007fef901b5fa0 R15: 00007ffef8d5c908
[  145.933989][ T9053]  </TASK>
[  145.936616][ T9049] IPVS: using max 45 ests per chain, 108000 per kthread
[  145.965721][ T9055] random: crng reseeded on system resumption
[  145.967713][   T40] audit: type=1400 audit(1748163244.452:552): avc:  denied  { append } for  pid=9054 comm="syz.7.940" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  145.976250][   T40] audit: type=1400 audit(1748163244.452:553): avc:  denied  { open } for  pid=9054 comm="syz.7.940" path="/dev/snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  146.245270][   T40] audit: type=1400 audit(1748163244.742:554): avc:  denied  { remount } for  pid=9059 comm="syz.7.943" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  146.789637][ T9063] netlink: 8 bytes leftover after parsing attributes in process `syz.3.944'.
[  146.927583][ T9071] netlink: 4 bytes leftover after parsing attributes in process `syz.3.944'.
[  146.965931][   T68] Bluetooth: hci0: command tx timeout
[  147.059309][   T40] audit: type=1400 audit(1748163245.552:555): avc:  denied  { bind } for  pid=9072 comm="syz.5.945" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  147.107491][ T9079] netlink: 156 bytes leftover after parsing attributes in process `syz.3.946'.
[  147.402623][ T9098] FAULT_INJECTION: forcing a failure.
[  147.402623][ T9098] name failslab, interval 1, probability 0, space 0, times 0
[  147.407706][ T9098] CPU: 1 UID: 0 PID: 9098 Comm: syz.1.954 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  147.407722][ T9098] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  147.407729][ T9098] Call Trace:
[  147.407733][ T9098]  <TASK>
[  147.407737][ T9098]  dump_stack_lvl+0x16c/0x1f0
[  147.407758][ T9098]  should_fail_ex+0x512/0x640
[  147.407778][ T9098]  ? fs_reclaim_acquire+0xae/0x150
[  147.407800][ T9098]  ? tomoyo_encode2+0x100/0x3e0
[  147.407823][ T9098]  should_failslab+0xc2/0x120
[  147.407844][ T9098]  __kmalloc_noprof+0xd2/0x510
[  147.407859][ T9098]  ? d_absolute_path+0x136/0x1a0
[  147.407875][ T9098]  tomoyo_encode2+0x100/0x3e0
[  147.407893][ T9098]  tomoyo_encode+0x29/0x50
[  147.407909][ T9098]  tomoyo_realpath_from_path+0x18f/0x6e0
[  147.407930][ T9098]  tomoyo_check_open_permission+0x2ab/0x3c0
[  147.407944][ T9098]  ? security_file_alloc+0x34/0x2b0
[  147.407961][ T9098]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  147.407976][ T9098]  ? fanotify_read+0x5e4/0x27d0
[  147.407989][ T9098]  ? do_syscall_64+0xcd/0x260
[  147.408005][ T9098]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.408028][ T9098]  ? do_raw_spin_lock+0x12c/0x2b0
[  147.408045][ T9098]  tomoyo_file_open+0x6b/0x90
[  147.408057][ T9098]  security_file_open+0x84/0x1e0
[  147.408075][ T9098]  do_dentry_open+0x596/0x1c10
[  147.408093][ T9098]  ? lockdep_init_map_type+0x5c/0x280
[  147.408105][ T9098]  vfs_open+0x82/0x3f0
[  147.408119][ T9098]  dentry_open_nonotify+0x7b/0xd0
[  147.408132][ T9098]  fanotify_read+0x5e4/0x27d0
[  147.408151][ T9098]  ? __lock_acquire+0x5ca/0x1ba0
[  147.408169][ T9098]  ? __pfx_fanotify_read+0x10/0x10
[  147.408182][ T9098]  ? inode_has_perm+0x183/0x1d0
[  147.408195][ T9098]  ? file_has_perm+0x27d/0x350
[  147.408208][ T9098]  ? __pfx_file_has_perm+0x10/0x10
[  147.408226][ T9098]  ? selinux_file_permission+0x11f/0x580
[  147.408244][ T9098]  ? __pfx_woken_wake_function+0x10/0x10
[  147.408258][ T9098]  ? bpf_lsm_file_permission+0x9/0x10
[  147.408273][ T9098]  ? security_file_permission+0x71/0x210
[  147.408290][ T9098]  ? rw_verify_area+0xcf/0x680
[  147.408303][ T9098]  ? __pfx_fanotify_read+0x10/0x10
[  147.408318][ T9098]  vfs_read+0x1e1/0xc70
[  147.408337][ T9098]  ? __pfx_vfs_read+0x10/0x10
[  147.408351][ T9098]  ? find_held_lock+0x2b/0x80
[  147.408365][ T9098]  ? __fget_files+0x204/0x3c0
[  147.408376][ T9098]  ? __fget_files+0x20e/0x3c0
[  147.408390][ T9098]  ksys_read+0x12a/0x240
[  147.408406][ T9098]  ? __pfx_ksys_read+0x10/0x10
[  147.408426][ T9098]  do_syscall_64+0xcd/0x260
[  147.408443][ T9098]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.408453][ T9098] RIP: 0033:0x7f3faf98e969
[  147.408462][ T9098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.408472][ T9098] RSP: 002b:00007f3fb0712038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  147.408483][ T9098] RAX: ffffffffffffffda RBX: 00007f3fafbb5fa0 RCX: 00007f3faf98e969
[  147.408490][ T9098] RDX: 0000000000002020 RSI: 00002000000057c0 RDI: 0000000000000004
[  147.408496][ T9098] RBP: 00007f3fb0712090 R08: 0000000000000000 R09: 0000000000000000
[  147.408502][ T9098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.408508][ T9098] R13: 0000000000000000 R14: 00007f3fafbb5fa0 R15: 00007ffcad884458
[  147.408522][ T9098]  </TASK>
[  147.408533][ T9098] ERROR: Out of memory at tomoyo_realpath_from_path.
[  147.432558][ T9101] netlink: 8 bytes leftover after parsing attributes in process `syz.7.955'.
[  147.488377][ T9102] netlink: 4 bytes leftover after parsing attributes in process `syz.7.955'.
[  148.046669][   T40] audit: type=1326 audit(1748163246.542:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9127 comm="syz.1.964" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3faf98e969 code=0x7ffc0000
[  148.052174][ T9130] netlink: 20 bytes leftover after parsing attributes in process `syz.7.965'.
[  148.054801][   T40] audit: type=1326 audit(1748163246.542:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9127 comm="syz.1.964" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3faf98e969 code=0x7ffc0000
[  148.067576][   T40] audit: type=1326 audit(1748163246.562:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9127 comm="syz.1.964" exe="/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f3faf98e969 code=0x7ffc0000
[  148.079458][   T40] audit: type=1326 audit(1748163246.572:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9127 comm="syz.1.964" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3faf98e969 code=0x7ffc0000
[  148.086661][   T40] audit: type=1326 audit(1748163246.572:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9127 comm="syz.1.964" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3faf98e969 code=0x7ffc0000
[  148.171607][ T9138] netlink: 'syz.7.967': attribute type 1 has an invalid length.
[  148.377830][ T9148] netlink: 8 bytes leftover after parsing attributes in process `syz.3.971'.
[  148.421603][ T9148] netlink: 4 bytes leftover after parsing attributes in process `syz.3.971'.
[  148.463470][ T9161] netlink: 20 bytes leftover after parsing attributes in process `syz.1.974'.
[  148.531323][ T9169] vti0: entered promiscuous mode
[  148.536271][ T9169] netlink: 'syz.1.976': attribute type 10 has an invalid length.
[  148.597292][ T9176] smb3: Unknown parameter 'nocaseæÿ'
[  148.602280][ T9180] openvswitch: netlink: IPv4 tun info is not correct
[  148.629598][ T9183] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  148.635910][ T9183] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  148.638177][ T9183] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  148.640343][ T9183] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  148.642507][ T9183] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  148.644641][ T9183] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  148.646758][ T9183] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  148.648873][ T9183] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  148.650964][ T9183] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  148.823086][ T9203] netlink: 'syz.7.989': attribute type 5 has an invalid length.
[  149.036148][   T68] Bluetooth: hci0: command tx timeout
[  149.142699][ T9217] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  149.157002][ T5975] usb 12-1: new high-speed USB device number 2 using dummy_hcd
[  149.194460][ T9219] 9pnet_virtio: no channels available for device syz
[  149.316181][ T5975] usb 12-1: Using ep0 maxpacket: 16
[  149.319762][ T5975] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  149.323172][ T5975] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  149.326459][ T5975] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  149.330530][ T5975] usb 12-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  149.333655][ T5975] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.338894][ T5975] usb 12-1: config 0 descriptor??
[  149.382928][ T9232] FAULT_INJECTION: forcing a failure.
[  149.382928][ T9232] name failslab, interval 1, probability 0, space 0, times 0
[  149.388203][ T9232] CPU: 3 UID: 0 PID: 9232 Comm: syz.1.1000 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  149.388219][ T9232] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.388226][ T9232] Call Trace:
[  149.388229][ T9232]  <TASK>
[  149.388234][ T9232]  dump_stack_lvl+0x16c/0x1f0
[  149.388254][ T9232]  should_fail_ex+0x512/0x640
[  149.388269][ T9232]  ? fs_reclaim_acquire+0xae/0x150
[  149.388298][ T9232]  should_failslab+0xc2/0x120
[  149.388312][ T9232]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  149.388323][ T9232]  ? p9_tag_alloc+0x9c/0x640
[  149.388341][ T9232]  p9_tag_alloc+0x9c/0x640
[  149.388358][ T9232]  ? __pfx_p9_tag_alloc+0x10/0x10
[  149.388373][ T9232]  ? stack_depot_save_flags+0x28/0xa50
[  149.388394][ T9232]  p9_client_prepare_req+0x19b/0x4d0
[  149.388411][ T9232]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  149.388433][ T9232]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[  149.388446][ T9232]  p9_client_rpc+0x1c4/0xc50
[  149.388464][ T9232]  ? __pfx_p9_client_rpc+0x10/0x10
[  149.388480][ T9232]  ? __lock_acquire+0xaa4/0x1ba0
[  149.388504][ T9232]  ? do_raw_spin_lock+0x12c/0x2b0
[  149.388515][ T9232]  ? look_up_lock_class+0x6b/0x150
[  149.388533][ T9232]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[  149.388551][ T9232]  p9_client_write+0x245/0x6f0
[  149.388566][ T9232]  ? __pfx_p9_client_write+0x10/0x10
[  149.388581][ T9232]  v9fs_issue_write+0xe3/0x1b0
[  149.388592][ T9232]  ? __pfx_v9fs_issue_write+0x10/0x10
[  149.388601][ T9232]  ? netfs_advance_write+0x81f/0xc40
[  149.388616][ T9232]  ? rcu_is_watching+0x12/0xc0
[  149.388630][ T9232]  netfs_do_issue_write+0x92/0x110
[  149.388644][ T9232]  netfs_end_issue_write+0x14c/0x200
[  149.388659][ T9232]  netfs_unbuffered_write+0x4c3/0x670
[  149.388674][ T9232]  ? __pfx_netfs_unbuffered_write+0x10/0x10
[  149.388688][ T9232]  ? trace_netfs_folioq+0x188/0x210
[  149.388699][ T9232]  ? iov_iter_folio_queue+0x3e/0x1f0
[  149.388716][ T9232]  ? rolling_buffer_init+0x8a/0xb0
[  149.388728][ T9232]  ? netfs_create_write_req+0x511/0x880
[  149.388743][ T9232]  netfs_unbuffered_write_iter_locked+0x808/0xd40
[  149.388766][ T9232]  netfs_unbuffered_write_iter+0x414/0x6d0
[  149.388786][ T9232]  v9fs_file_write_iter+0xbf/0x100
[  149.388797][ T9232]  iter_file_splice_write+0x91c/0x1150
[  149.388825][ T9232]  ? __pfx_iter_file_splice_write+0x10/0x10
[  149.388855][ T9232]  ? __pfx_iter_file_splice_write+0x10/0x10
[  149.388873][ T9232]  direct_splice_actor+0x192/0x6c0
[  149.388891][ T9232]  splice_direct_to_actor+0x345/0xa30
[  149.388909][ T9232]  ? __pfx_direct_splice_actor+0x10/0x10
[  149.388929][ T9232]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  149.388947][ T9232]  ? __pfx___might_resched+0x10/0x10
[  149.388964][ T9232]  do_splice_direct+0x174/0x240
[  149.388981][ T9232]  ? __pfx_do_splice_direct+0x10/0x10
[  149.388998][ T9232]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  149.389017][ T9232]  ? rw_verify_area+0xcf/0x680
[  149.389033][ T9232]  do_sendfile+0xafd/0xe50
[  149.389052][ T9232]  ? __pfx_do_sendfile+0x10/0x10
[  149.389073][ T9232]  __x64_sys_sendfile64+0x154/0x220
[  149.389085][ T9232]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  149.389096][ T9232]  ? rcu_is_watching+0x12/0xc0
[  149.389113][ T9232]  do_syscall_64+0xcd/0x260
[  149.389130][ T9232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.389141][ T9232] RIP: 0033:0x7f3faf98e969
[  149.389150][ T9232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.389160][ T9232] RSP: 002b:00007f3fb0712038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  149.389170][ T9232] RAX: ffffffffffffffda RBX: 00007f3fafbb5fa0 RCX: 00007f3faf98e969
[  149.389177][ T9232] RDX: 0000200000000080 RSI: 0000000000000003 RDI: 0000000000000003
[  149.389183][ T9232] RBP: 00007f3fb0712090 R08: 0000000000000000 R09: 0000000000000000
[  149.389190][ T9232] R10: 0000000000007f04 R11: 0000000000000246 R12: 0000000000000002
[  149.389196][ T9232] R13: 0000000000000000 R14: 00007f3fafbb5fa0 R15: 00007ffcad884458
[  149.389210][ T9232]  </TASK>
[  149.389431][ T9232] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] SMP KASAN NOPTI
[  149.514557][ T9232] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
[  149.517769][ T9232] CPU: 3 UID: 0 PID: 9232 Comm: syz.1.1000 Not tainted 6.15.0-rc7-syzkaller-00152-gd0c22de9995b #0 PREEMPT(full) 
[  149.522378][ T9232] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.525640][ T9232] RIP: 0010:iter_file_splice_write+0xa4e/0x1150
[  149.527562][ T9232] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 1a 05 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 ee 04 00 00 49 8b 54 24 08 4c 89 ee 4c 89 f7 83
[  149.533430][ T9232] RSP: 0018:ffffc90003c87918 EFLAGS: 00010202
[  149.535284][ T9232] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: ffffffff824343c5
[  149.537670][ T9232] RDX: 0000000000000001 RSI: ffffffff82434266 RDI: 0000000000000008
[  149.540060][ T9232] RBP: 0000000000000001 R08: 0000000000000006 R09: 0000000000000000
[  149.542469][ T9232] R10: 7fffffffffffff5f R11: 0000000000000000 R12: 0000000000000000
[  149.544917][ T9232] R13: ffff8880539a0828 R14: ffff888041230c00 R15: 7fffffffffffff5f
[  149.547420][ T9232] FS:  00007f3fb07126c0(0000) GS:ffff8880d6cda000(0000) knlGS:0000000000000000
[  149.550194][ T9232] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  149.552205][ T9232] CR2: 00007fff640e4010 CR3: 000000002abf8000 CR4: 0000000000352ef0
[  149.554663][ T9232] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  149.557021][ T9232] DR3: 00000000000032e7 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  149.559392][ T9232] Call Trace:
[  149.560448][ T9232]  <TASK>
[  149.561368][ T9232]  ? __pfx_iter_file_splice_write+0x10/0x10
[  149.563239][ T9232]  ? __pfx_iter_file_splice_write+0x10/0x10
[  149.565085][ T9232]  direct_splice_actor+0x192/0x6c0
[  149.566690][ T9232]  splice_direct_to_actor+0x345/0xa30
[  149.568374][ T9232]  ? __pfx_direct_splice_actor+0x10/0x10
[  149.570128][ T9232]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  149.571984][ T9232]  ? __pfx___might_resched+0x10/0x10
[  149.573652][ T9232]  do_splice_direct+0x174/0x240
[  149.575196][ T9232]  ? __pfx_do_splice_direct+0x10/0x10
[  149.576882][ T9232]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  149.578757][ T9232]  ? rw_verify_area+0xcf/0x680
[  149.580281][ T9232]  do_sendfile+0xafd/0xe50
[  149.581655][ T9232]  ? __pfx_do_sendfile+0x10/0x10
[  149.583163][ T9232]  __x64_sys_sendfile64+0x154/0x220
[  149.584740][ T9232]  ? __pfx___x64_sys_sendfile64+0x10/0x10
[  149.586489][ T9232]  ? rcu_is_watching+0x12/0xc0
[  149.587997][ T9232]  do_syscall_64+0xcd/0x260
[  149.589405][ T9232]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.591215][ T9232] RIP: 0033:0x7f3faf98e969
[  149.592602][ T9232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.598363][ T9232] RSP: 002b:00007f3fb0712038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  149.600875][ T9232] RAX: ffffffffffffffda RBX: 00007f3fafbb5fa0 RCX: 00007f3faf98e969
[  149.603261][ T9232] RDX: 0000200000000080 RSI: 0000000000000003 RDI: 0000000000000003
[  149.605652][ T9232] RBP: 00007f3fb0712090 R08: 0000000000000000 R09: 0000000000000000
[  149.608067][ T9232] R10: 0000000000007f04 R11: 0000000000000246 R12: 0000000000000002
[  149.610561][ T9232] R13: 0000000000000000 R14: 00007f3fafbb5fa0 R15: 00007ffcad884458
[  149.613024][ T9232]  </TASK>
[  149.614015][ T9232] Modules linked in:
[  149.615578][ T9232] ---[ end trace 0000000000000000 ]---
[  149.618678][ T9232] RIP: 0010:iter_file_splice_write+0xa4e/0x1150
[  149.626090][ T9232] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 1a 05 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 ee 04 00 00 49 8b 54 24 08 4c 89 ee 4c 89 f7 83
[  149.632392][ T9232] RSP: 0018:ffffc90003c87918 EFLAGS: 00010202
[  149.634258][ T9232] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: ffffffff824343c5
[  149.636798][ T9232] RDX: 0000000000000001 RSI: ffffffff82434266 RDI: 0000000000000008
[  149.639269][ T9232] RBP: 0000000000000001 R08: 0000000000000006 R09: 0000000000000000
[  149.641743][ T9232] R10: 7fffffffffffff5f R11: 0000000000000000 R12: 0000000000000000
[  149.644194][ T9232] R13: ffff8880539a0828 R14: ffff888041230c00 R15: 7fffffffffffff5f
[  149.646718][ T9232] FS:  00007f3fb07126c0(0000) GS:ffff8880d69da000(0000) knlGS:0000000000000000
[  149.649501][ T9232] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  149.651592][ T9232] CR2: 00007fef90e39f98 CR3: 000000002abf8000 CR4: 0000000000352ef0
[  149.654064][ T9232] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  149.656294][   T63] usb 8-1: new low-speed USB device number 5 using dummy_hcd
[  149.656688][ T9232] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  149.661915][ T9232] Kernel panic - not syncing: Fatal exception
[  149.664502][ T9232] Kernel Offset: disabled
[  149.665850][ T9232] Rebooting in 86400 seconds..

VM DIAGNOSIS:
08:54:08  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=ffff88806a73f740 RCX=ffffffff81af2e99 RDX=ffff888052a4c880
RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc90003987b30
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffffed100d4e7ee9 R13=0000000000000001 R14=dffffc0000000000 R15=ffff88806a43b040
RIP=ffffffff81bb3f81 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fef90e3a6c0 ffffffff 00c00000
GS =0000 ffff8880d69da000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fef90e39f98 CR3=000000006330b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90183488 00007fef90183480 00007fef90183478 00007fef90183450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90ced100 00007fef90183440 00007fef90183458 00007fef901834a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90183498 00007fef90183490 00007fef90183488 00007fef90183480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000000c3fec RBX=0000000000000001 RCX=ffffffff8b6d4419 RDX=ffffed100d4a65be
RSI=ffffffff8bf4a460 RDI=ffffffff8191adf1 RBP=ffffed1003ad1488 RSP=ffffc90000177df8
R8 =0000000000000000 R9 =ffffed100d4a65bd R10=ffff88806a532deb R11=0000000000000000
R12=0000000000000001 R13=ffff88801d68a440 R14=ffffffff90853110 R15=0000000000000000
RIP=ffffffff8b6d2caf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6ada000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c386f61 CR3=000000006330b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0700000000000000 0000000000000000 0000000f76000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90ced100 00007fef90183440 00007fef90180004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90183498 00007fef90183490 00007fef90183488 00007fef90183480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=00000000000be45c RBX=0000000000000002 RCX=ffffffff8b6d4419 RDX=ffffed100d4c65be
RSI=ffffffff8bf4a460 RDI=ffffffff8191adf1 RBP=ffffed1003ad1910 RSP=ffffc90000187df8
R8 =0000000000000000 R9 =ffffed100d4c65bd R10=ffff88806a632deb R11=0000000000000000
R12=0000000000000002 R13=ffff88801d68c880 R14=ffffffff90853110 R15=0000000000000000
RIP=ffffffff8b6d2caf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6bda000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fef90e18f98 CR3=0000000045407000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000000032e7 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000040000400 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffef8d5cc90 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fef90011c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000044 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854faab5 RDI=ffffffff9adfe5a0 RBP=ffffffff9adfe560 RSP=ffffc90003c87280
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552033203a555043
R12=0000000000000000 R13=0000000000000044 R14=ffffffff9adfe560 R15=ffffffff854faa50
RIP=ffffffff854faadf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f3fb07126c0 ffffffff 00c00000
GS =0000 ffff8880d6cda000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fff640e4010 CR3=000000002abf8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000000032e7 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000003 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff640e3f80 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f62fda11a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f62fda11a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f62fda11a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f62fda11aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f62fda11b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f62fda11c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000b74
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 0000000000000b74
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000