last executing test programs:

6m8.432734983s ago: executing program 1 (id=2):
mkdir(&(0x7f0000000140)='./file0\x00', 0x4)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000001000)=ANY=[@ANYBLOB='trans=virtio,noextend,access=any,cache-fscache,version=9p2000.u'])
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
syz_clone(0x840080, &(0x7f0000000200)="5dadfaff9157686e10a5486db0401becc3a30ff365dbec1ffd290361119c01c547e9565de3aabc99dd589383008ad3fbc7f50e7d3992494da37f7226ea0353378ec90833b4c77da9fecd922a242d53a97725e52903e090bc55c2447caebf6bff65217d3a72e211f94f0f6977390652bb39bdb36bd607898beabb4d4b319cd45f62384490a5a5e43becb899fa4b1f95e78e28b659d4a9d7b3c1148965b8af03de4ccba521ee4274b09797b88003b1d7b7d2ef5e007eb763236539447cda7990b5c242", 0xc2, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000500)="64a28d807f3419fadd98b863336ff2cc62871e414e7b0d4100c70a73f2437a2c4c7c6be2887761d3dcd9b01b4cab3e7d74b2787619b67e2dff2addae47b8cd103b2b37ffb8a619238b10203b489a206a8f6a83f9b2027094c6928091c1875a2c3e116ce7de1c80a36a101235d3e7b396d9ccc0e015f2f9191e93dad5d0f1fd22e552f5ac15cd8eaca0875e1afcededdf8a1c69603d22e381237c17b9f9af459cc37b82c3555fb4456c824cf005b710e261862d")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r0, 0x0, 0x0)
r1 = syz_usb_connect$cdc_ncm(0x3, 0x80, &(0x7f0000000400)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x6e, 0x2, 0x1, 0x5, 0x0, 0x5, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xb, 0x24, 0x6, 0x0, 0x1, "b7d70d9c5562"}, {0x5, 0x24, 0x0, 0x1}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x200, 0x7, 0x50}, {0x6, 0x24, 0x1a, 0x6, 0x4}, [@dmm={0x7, 0x24, 0x14, 0x3}, @call_mgmt={0x5, 0x24, 0x1, 0x2, 0x5}]}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0x8, 0x80, 0x7}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x20, 0xf2, 0x5, 0x1}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0xf8, 0x4, 0x6}}}}}}}]}}, &(0x7f0000000880)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x310, 0xe, 0xa5, 0x2, 0x40, 0x7}, 0xb4, &(0x7f00000005c0)={0x5, 0xf, 0xb4, 0x3, [@wireless={0xb, 0x10, 0x1, 0x4, 0x9c, 0x2, 0x2, 0xed}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0xa, 0x1, 0x8, 0xf}, @generic={0x9a, 0x10, 0x2, "db1cee6163b7401506b5b7c007610da822d524ed7179966a664b16f9435e4f009d9514b86f455fd7c8d024ee039676de3913336d778d8ac610a2b7d1bb912623f379f5bf299553425825cc60edc5c8262176309d22b3643c606d17e9264b352594b561b919b0292d91047ec52dc83c1e55a118211245a7e7fce6688eb7e33b80d8227728a9ed0ddfd78d09b337b716dbdca1d52d1a6848"}]}, 0x7, [{0x5d, &(0x7f0000000680)=@string={0x5d, 0x3, "e30dd1b7631464d200602a89caf7cbbee5c5732818d981120462c5594c927901d97606d45eff5495ca8b9f8bac9287464d77809a2ea39f91ebcd210da3d6ec2764c550040595b691cbd245d71da43f9113b84c5ab94a58218a7d4b"}}, {0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x418}}, {0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x80a}}, {0x4, &(0x7f0000000700)=@lang_id={0x4, 0x3, 0x340a}}, {0xf3, &(0x7f0000000740)=@string={0xf3, 0x3, "7b4d2177b95466d55a6ea4281ef5873cdb6e9885024b8af9e87ce18afd3454723efa252d5ca072b1edd0027d13a6905188fcfc9febd91b6a4ad3d8519f824ebe99f471cbf5090b022173428c3032f290a144b2489d6bae3b8847fb48890bac757589808ded7f1ab73d19f0391f25a8a8545328829d96a2bf3a58e033355a5c59f1631d2355b1c4c194398d8e45b4f4d4566a42195db291e90ec64fc486376ec1213aeb8722520022507c43cabebe15c3c20cdcc2cd9933f9ebffaf786c6847aefde0d277c6b2e9b3cc69f18d168056e2558ce4b2396bf22ebedefc3b11c9d1d67ecec01d70bf4fb40a069b1954a28271fb"}}, {0xee, &(0x7f0000000940)=@string={0xee, 0x3, "226b3888296552085747c141f3d0c96f9367289040cf5e92fc510d78250ddb906afadda393b5dbfc02e48bbc4ec9f075c9736e2532649eabb48607fbdadd20aa84151218ef0571700bf12a6afc29cc80bcea180680d864a9ececb97e8a801f44d026f964852b83a136e8aa50a9a5bff1bf40d229fac091b3f057c36eb8e7d08d8a142e70ac5e4f11e7f5cd9657e99e60d7a9d52db2e66bf946fd142badf44347482aba81becfe1d09dd9c03543300a407f28c1873079b400e7a585ab478620adb70861dc6a2c6df84fc39489f0d518e1223b4b1bfd455660694fb03cb5c30df89fd460dc7656ff6cee0e6095"}}, {0x4, &(0x7f0000000840)=@lang_id={0x4, 0x3, 0xe97c29fb9706b48a}}]})
syz_usb_control_io$cdc_ncm(r1, &(0x7f0000000b80)={0xc, &(0x7f0000000a40)={0x60, 0x3, 0xea, {0xea, 0xb, "ab55e9c1c31a6ad69dcd93bcbd5bcb6fe93f8fd854c59d8e76bf0d9a6e8f60d6e89fd8d1b2201419f47a5e2a00f004a975c959c6980e93297a63cf6d33a36c519a5db1806046ebd960b6edb05b0e3a2ae106f067069f013a74aaa6816808ae49782973c318e92fa80b7bb9294f0a85bec6086295bd94e64370003c02ff722a72f6a1387dc992f6d5787c41f4a9060385ed480596089c78e94d524a4c2ec44aff13c32d7b04e78ccd76eebab109827803bfad5c1a0e2bd574a0c76e467acca44b92a1f717e7b17273ae83e276a4fb307bb1bcc3411359d818bebd60699a69049cb361c264cad8a6a1"}}, &(0x7f0000000b40)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000e80)={0x24, &(0x7f0000000bc0)={0x0, 0x5, 0xdb, "e9fde4d5f72430cad52584b8e25d5b0ba32e8e9e2fe7edfa06f893f203e7a29592308987816026afe8e2ef4022e4653978d7f969eecc786bca72a0ba76569f733e85d8442e68309c0a594bf83b54611a50b14ce69b589699f575a8e21ff374300f5b6cc7de7ef12a6ccc263314688d147b92a46f8849141de4aa4c5db42f11e2daa4717ee9de5bb3a931734c0f5d6f9bb490c8861254f104e39a7de7cba279f25f779163954774816bad72d901832188bcbdba744cafd25947eb36fc6d7e24aaa77d8db7c1e3abc9142bf41670cbd3f6fc62ffb4f5def2d91bb533"}, &(0x7f0000000cc0)={0x0, 0xa, 0x1, 0xf2}, &(0x7f0000000d00)={0x0, 0x8, 0x1, 0x1}, &(0x7f0000000d40)={0x20, 0x80, 0x1c, {0xfffd, 0x9, 0x3, 0x3, 0x8, 0x9a, 0x7f5c, 0x7, 0x10, 0x7, 0x0, 0x4}}, &(0x7f0000000d80)={0x20, 0x85, 0x4, 0xffff}, &(0x7f0000000dc0)={0x20, 0x83, 0x2}, &(0x7f0000000e00)={0x20, 0x87, 0x2, 0x5}, &(0x7f0000000e40)={0x20, 0x89, 0x2, 0x1}})

6m6.172101024s ago: executing program 1 (id=6):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000180)=0x12)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff)
syz_io_uring_setup(0x45, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000080))
ptrace(0x10, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_opts(r1, 0x0, 0x4, 0x0, 0x0)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010100}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0xf3a, 0x0)
r6 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELSETELEM={0x2c, 0xe, 0xa, 0x301, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x74}}, 0x20050800)
r8 = syz_open_dev$dri(&(0x7f0000000140), 0x2, 0xc0401)
syz_clone3(&(0x7f0000000400)={0x80000000, 0x0, &(0x7f0000000200)=<r9=>0x0, &(0x7f0000000240), {0x12}, 0x0, 0x0, &(0x7f0000000640)=""/4096, &(0x7f0000000280)=[0x0, 0xffffffffffffffff], 0x2, {r4}}, 0x58)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={'veth1\x00', {0x2, 0x4e23, @remote}})
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r10, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r10, 0x8949, &(0x7f0000000000))
prctl$PR_SCHED_CORE(0x3e, 0x2, r9, 0x3, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f0000000040)=[<r11=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r6, 0xc06864a1, &(0x7f00000004c0)={0x0, 0x0, r11})
ioctl$DRM_IOCTL_GEM_OPEN(r8, 0xc010640b, &(0x7f0000000000))
close(r4)
write$binfmt_script(r5, 0x0, 0xd9)
write(r2, 0x0, 0x0)

6m3.124906791s ago: executing program 1 (id=14):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_rdma(0x10, 0x3, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
r3 = fsopen(&(0x7f0000000040)='hpfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000440)='cq\xad\x87\xa5\xb5\xd5#/\xa4\xe9\xb8\xa4_\x1b\x11D\xcd\x15*\xdb\x02+cy]w\xb0u\x8cx\xcc\xbb\x1eO\x9dW(%\xa2d\xda\xf8C$u;x\xcfS\xfb', &(0x7f0000000740)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00 \xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$F\xba\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\x00\x00\x00\x00\x00\x00\x00\x01\xc7\xe6\xf28\x19\xa6\xa7\xb1\xc6x\x8cy\xcf\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x81g\x90\x01n%\x7f_\xe1.\xfd\xea\xd7j\xfb\"\xab\xdb\x062e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k\xb1Co\xc07\x19\xc6\"\x9c\x8d\xdfA\xf8T\xe5\xae\xbf\x00)WNW2$B$\x84\xf7\x9b\xfd1\x91\xc0;\x9dJ\x94\x196f\x11\xcfp\xef]\x05fgw\fX\xb5\xdd\x8a\x13o\x05\xbe\x94\xbaR\x9a/dy\xe5K\xe9aiv\xa5nb\xfa5\x98\x91\x1d~b2@~j\xc3\xd44\x81\x91q\x9b\xaaLp\xe3C{OF\xd1\x9e\xa7\xb0v)T', 0x0)
syz_emit_vhci(&(0x7f0000000340)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1b}, "52ba6bbe6e36e522602706d661097c963dfecd4f25440e69218600"}, 0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0xca1, &(0x7f0000000100)={0x0, 0x8de3, 0x10310, 0xfffffffe, 0x4a}, &(0x7f00000003c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
pipe2(0x0, 0x0)
tee(r4, r7, 0x103, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="24000000200001032abd7000ffdbdf250200000000000007ff"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000280)={0x73622a85, 0xb, 0x3})
socket$nl_route(0x10, 0x3, 0x0)
r9 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x8882, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r9, 0xc0045005, &(0x7f0000000140)=0x2000)
r10 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$dsp(r10, &(0x7f0000000300)='U', 0x1)
ppoll(&(0x7f00000000c0)=[{r9, 0x9620}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000540)='afs_get_tree\x00', r0}, 0x10)

6m2.66242102s ago: executing program 32 (id=14):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_rdma(0x10, 0x3, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
r3 = fsopen(&(0x7f0000000040)='hpfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000440)='cq\xad\x87\xa5\xb5\xd5#/\xa4\xe9\xb8\xa4_\x1b\x11D\xcd\x15*\xdb\x02+cy]w\xb0u\x8cx\xcc\xbb\x1eO\x9dW(%\xa2d\xda\xf8C$u;x\xcfS\xfb', &(0x7f0000000740)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00 \xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$F\xba\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\x00\x00\x00\x00\x00\x00\x00\x01\xc7\xe6\xf28\x19\xa6\xa7\xb1\xc6x\x8cy\xcf\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x81g\x90\x01n%\x7f_\xe1.\xfd\xea\xd7j\xfb\"\xab\xdb\x062e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k\xb1Co\xc07\x19\xc6\"\x9c\x8d\xdfA\xf8T\xe5\xae\xbf\x00)WNW2$B$\x84\xf7\x9b\xfd1\x91\xc0;\x9dJ\x94\x196f\x11\xcfp\xef]\x05fgw\fX\xb5\xdd\x8a\x13o\x05\xbe\x94\xbaR\x9a/dy\xe5K\xe9aiv\xa5nb\xfa5\x98\x91\x1d~b2@~j\xc3\xd44\x81\x91q\x9b\xaaLp\xe3C{OF\xd1\x9e\xa7\xb0v)T', 0x0)
syz_emit_vhci(&(0x7f0000000340)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1b}, "52ba6bbe6e36e522602706d661097c963dfecd4f25440e69218600"}, 0x1f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0xca1, &(0x7f0000000100)={0x0, 0x8de3, 0x10310, 0xfffffffe, 0x4a}, &(0x7f00000003c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
pipe2(0x0, 0x0)
tee(r4, r7, 0x103, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="24000000200001032abd7000ffdbdf250200000000000007ff"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000280)={0x73622a85, 0xb, 0x3})
socket$nl_route(0x10, 0x3, 0x0)
r9 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x8882, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r9, 0xc0045005, &(0x7f0000000140)=0x2000)
r10 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$dsp(r10, &(0x7f0000000300)='U', 0x1)
ppoll(&(0x7f00000000c0)=[{r9, 0x9620}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000540)='afs_get_tree\x00', r0}, 0x10)

5m44.601289199s ago: executing program 0 (id=44):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000840)='./bus\x00', 0xa4)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0, 0x52, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0xc0189436, &(0x7f0000000140))

5m43.408864616s ago: executing program 0 (id=45):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
recvmmsg(r0, &(0x7f0000001500)=[{{0x0, 0x0, 0x0}, 0x40}], 0x1, 0x62, 0x0)

5m43.223698659s ago: executing program 0 (id=46):
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='debugfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000380), 0x0, &(0x7f0000000440)={[], [{@euid_gt={'euid>', 0xee01}}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@audit}, {@fowner_eq={'fowner', 0x3d, 0xee00}}, {@uid_eq}, {@subj_user={'subj_user', 0x3d, 'ip6gre0\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, 'overlay\x00'}}]})
syz_genetlink_get_family_id$nfc(&(0x7f0000001cc0), 0xffffffffffffffff)
r0 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="c14a8cf012b79241197fa55c95cb78c868dc7f4065db6a1f55fdb9b3b620905db1150adbd5a48a5968dce0ca0c3b439a84136af4f91b835cf51a0b762c624ee970f63316960a1c5a1e36e766cf0fbb9676e41671fbe2c846cae88f54cd08de9d971d8205b0f52c3dc829935ceb9b6f73bf7cacade0e52ab90b160f562cc866b026c1261b336312bd662d41d1b80d8141466b9092866d89534e4425d9f046c0f047516825d6671ed32c121c5aa880c9759fb464a544c710dec4bd5b3663332c9310983127de7a7c3e9253a76a0a63a3c692fb2c07fdbae7c2", 0xd8}, {0x0}, {&(0x7f0000000180)}], 0x3, 0x0, 0x0, 0x4024814}}], 0x1, 0x48044)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x2, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r1, 0x800442d3, &(0x7f0000000340)={0xfff, 0x2, 0x5, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, 'ip6gre0\x00'})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$lock(r5, 0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x4})
setsockopt$IP_VS_SO_SET_STARTDAEMON(r4, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'lo\x00', 0x5}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1100000004000000040000000900000044000400", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00a\x00'/28], 0x50)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r4, 0x0, 0x48c, &(0x7f00000002c0)={0x2, 'veth1_virt_wifi\x00'}, 0x18)

5m42.688467956s ago: executing program 3 (id=48):
socket$inet6_mptcp(0xa, 0x1, 0x106)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_ADD(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x268}, 0x1, 0x0, 0x0, 0x1096}, 0x0)
syz_open_dev$video4linux(&(0x7f0000000100), 0x8, 0x529480)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001a1401002abd700001dcdf250800010000000000090002"], 0x24}, 0x1, 0x0, 0x0, 0x4000801}, 0x40800)
ioperm(0x0, 0x6, 0x2da3b9f3)
r3 = openat$binder_debug(0xffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
fchown(r3, 0x0, 0xffffffffffffffff)
r4 = dup(r1)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x20, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000010001008112eaff000000009500007a00000000"], &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400, @void, @value}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write(0xffffffffffffffff, &(0x7f0000000100)="52000300010007", 0x7)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$kcm(0x2, 0x200000000000001, 0x106)
socket$pptp(0x18, 0x1, 0x2)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x10, 0x803, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r9}, 0x18)
sendmsg$nl_route_sched(r6, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=@newtfilter={0x5c, 0x2c, 0xd27, 0x70bd26, 0x8000002, {0x0, 0x0, 0x0, r8, {0x0, 0x6}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_basic={{0xa}, {0x2c, 0x2, [@TCA_BASIC_EMATCHES={0x28, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0xff, 0x1, 0xfbfe}, {0x8, 0x6a6, 0xffff, 0x5, 0x2, 0x2}}}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x24008004}, 0x0)

5m41.398861823s ago: executing program 3 (id=49):
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x5c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private}, {0x8, 0x2, @multicast2}}}]}]}, 0x5c}}, 0x0)
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000000c0)={0x77359400}, 0x0, 0x0)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000280)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_PMKSA(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd7000fedbdf253400000008000300", @ANYRES32=r3, @ANYBLOB="8a000600505050505050000014005500d4d80607f32052f5442c0bcac565243adfd9dc72f524023ced1aaaa1a177290f0685008cca6d109347b66bba08e75a1e6389de34813ce35ff32f2d1000ef67528fa615f85a6cee7084c52d0f23886d905bbd0c3ee32063101b67d1de9c5508b8cef036a2c19b"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x20000000)
msgctl$MSG_INFO(0x0, 0xc, &(0x7f0000000000)=""/112)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r5=>0x0], 0x1})
r6 = socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{}, 0x0, &(0x7f0000000200)=r6}, 0x1e)
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r5], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)})

5m41.208019214s ago: executing program 3 (id=50):
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x27)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_subtree(r2, &(0x7f0000000200), 0x2, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000040)={[{0x2b, 'cpu'}]}, 0x5)
r4 = dup(r1)
write$FUSE_BMAP(r4, &(0x7f0000000300)={0x18, 0x0, 0x0, {0xfffffffffffffffa}}, 0x18)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000002100)=ANY=[@ANYBLOB="b0000000000000001659ec0889419429aa5db97288b0f8a87ea8e66d9a8b"], 0xb0)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000000000)=ANY=[@ANYRES64=r4], 0x10)
write$FUSE_DIRENTPLUS(r4, &(0x7f0000000280)=ANY=[@ANYBLOB="a8"], 0xa8)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@posixacl}]}})

5m41.117600565s ago: executing program 0 (id=51):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'essiv(cbc(aes),sha256)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r1)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r2, &(0x7f0000000440)={0x0, 0x7, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="1800000007140100000032c83a110000050042"], 0x18}}, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0xfff3, 0x10}, {0xfff2, 0x8}}, [@qdisc_kind_options=@q_atm={0x8}]}, 0x2c}}, 0x84)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)

5m41.11699036s ago: executing program 3 (id=52):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)

5m40.440628852s ago: executing program 3 (id=55):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010029bd7000fcdbdf257700000008000300", @ANYRES32=r3], 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x8054) (fail_nth: 3)

5m40.440141279s ago: executing program 0 (id=56):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x40381)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd74)
syz_io_uring_setup(0x919, &(0x7f0000000300)={0x0, 0x400, 0x400, 0x1000001, 0xf7fffffc}, &(0x7f0000000180), 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x4, 0x4, 0x354, 0xffffffff, 0x1e4, 0x0, 0x0, 0xfeffffff, 0xffffffff, 0x2b0, 0x2b0, 0x2b0, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@private0={0xfc, 0x0, '\x00', 0x3}, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x1c}}, [0xff000000, 0x0, 0x0, 0xff], [0xff000000, 0xff000000, 0x0, 0xffffffff], 'bridge_slave_1\x00', 'team_slave_1\x00', {}, {0xbf820dc36854cbc6}, 0x6, 0x9, 0x2, 0x43}, 0x2f2, 0xc8, 0xec, 0x0, {}, [@common=@inet=@ecn={{0x24}, {0x11, 0x1, 0x6, 0x4}}]}, @REJECT={0x24}}, {{@uncond, 0x0, 0xa4, 0xd4}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x4, 0x2, 0x79496b969af2e55d}, {0x2, 0x3, 0x6}, 0x8, 0x9}}}, {{@uncond, 0x0, 0xa4, 0xcc}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x4, 0xfffd}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x3b0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000024000/0x18000)=nil, 0x0, 0x0, 0x7d, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r6, 0x6)
r7 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r7, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000640)="89000000120081ae08060cdc030ec0007f03e3f70003000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec537208120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8aa53f38054f0b56a20ff27fff", 0x8b}], 0x1}, 0x24000810)
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r9 = dup(r8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r9, 0x2000)
ioctl$KVM_PRE_FAULT_MEMORY(r5, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="14004000", @ANYRES16=0x0, @ANYBLOB="0103000000000000000005"], 0x14}}, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r10, 0x0, 0xd}, 0x18)
r11 = syz_io_uring_setup(0x1f87, &(0x7f0000000440)={0x0, 0xb210, 0x80, 0x0, 0x1d7}, &(0x7f0000000580), &(0x7f0000000600))
io_uring_enter(r11, 0x54, 0x0, 0x0, 0x0, 0x0)
r12 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSETMODE(r12, 0x4b3a, 0x1)

5m39.860104603s ago: executing program 3 (id=59):
socket$inet6_mptcp(0xa, 0x1, 0x106)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_ADD(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x268}, 0x1, 0x0, 0x0, 0x1096}, 0x0)
syz_open_dev$video4linux(&(0x7f0000000100), 0x8, 0x529480)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001a1401002abd700001dcdf250800010000000000090002"], 0x24}, 0x1, 0x0, 0x0, 0x4000801}, 0x40800)
ioperm(0x0, 0x6, 0x2da3b9f3)
r3 = openat$binder_debug(0xffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
fchown(r3, 0x0, 0xffffffffffffffff)
r4 = dup(r1)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x20, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000010001008112eaff000000009500007a00000000"], &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400, @void, @value}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write(0xffffffffffffffff, &(0x7f0000000100)="52000300010007", 0x7)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$kcm(0x2, 0x200000000000001, 0x106)
socket$pptp(0x18, 0x1, 0x2)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x10, 0x803, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r9}, 0x18)
sendmsg$nl_route_sched(r6, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=@newtfilter={0x5c, 0x2c, 0xd27, 0x70bd26, 0x8000002, {0x0, 0x0, 0x0, r8, {0x0, 0x6}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_basic={{0xa}, {0x2c, 0x2, [@TCA_BASIC_EMATCHES={0x28, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0xff, 0x1, 0xfbfe}, {0x8, 0x6a6, 0xffff, 0x5, 0x2, 0x2}}}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x24008004}, 0x0)

4m44.016057645s ago: executing program 33 (id=59):
socket$inet6_mptcp(0xa, 0x1, 0x106)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_ADD(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x268}, 0x1, 0x0, 0x0, 0x1096}, 0x0)
syz_open_dev$video4linux(&(0x7f0000000100), 0x8, 0x529480)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001a1401002abd700001dcdf250800010000000000090002"], 0x24}, 0x1, 0x0, 0x0, 0x4000801}, 0x40800)
ioperm(0x0, 0x6, 0x2da3b9f3)
r3 = openat$binder_debug(0xffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
fchown(r3, 0x0, 0xffffffffffffffff)
r4 = dup(r1)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x20, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000010001008112eaff000000009500007a00000000"], &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x400, @void, @value}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write(0xffffffffffffffff, &(0x7f0000000100)="52000300010007", 0x7)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$kcm(0x2, 0x200000000000001, 0x106)
socket$pptp(0x18, 0x1, 0x2)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket(0x10, 0x803, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r9}, 0x18)
sendmsg$nl_route_sched(r6, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=@newtfilter={0x5c, 0x2c, 0xd27, 0x70bd26, 0x8000002, {0x0, 0x0, 0x0, r8, {0x0, 0x6}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_basic={{0xa}, {0x2c, 0x2, [@TCA_BASIC_EMATCHES={0x28, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0xff, 0x1, 0xfbfe}, {0x8, 0x6a6, 0xffff, 0x5, 0x2, 0x2}}}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x24008004}, 0x0)

4m44.015754412s ago: executing program 0 (id=61):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_rdma(0x10, 0x3, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
r3 = fsopen(&(0x7f0000000040)='hpfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000440)='cq\xad\x87\xa5\xb5\xd5#/\xa4\xe9\xb8\xa4_\x1b\x11D\xcd\x15*\xdb\x02+cy]w\xb0u\x8cx\xcc\xbb\x1eO\x9dW(%\xa2d\xda\xf8C$u;x\xcfS\xfb', &(0x7f0000000740)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00 \xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$F\xba\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\x00\x00\x00\x00\x00\x00\x00\x01\xc7\xe6\xf28\x19\xa6\xa7\xb1\xc6x\x8cy\xcf\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x81g\x90\x01n%\x7f_\xe1.\xfd\xea\xd7j\xfb\"\xab\xdb\x062e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k\xb1Co\xc07\x19\xc6\"\x9c\x8d\xdfA\xf8T\xe5\xae\xbf\x00)WNW2$B$\x84\xf7\x9b\xfd1\x91\xc0;\x9dJ\x94\x196f\x11\xcfp\xef]\x05fgw\fX\xb5\xdd\x8a\x13o\x05\xbe\x94\xbaR\x9a/dy\xe5K\xe9aiv\xa5nb\xfa5\x98\x91\x1d~b2@~j\xc3\xd44\x81\x91q\x9b\xaaLp\xe3C{OF\xd1\x9e\xa7\xb0v)T', 0x0)
syz_emit_vhci(&(0x7f0000000340)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "52ba6bbe6e36e522602706d661097c963dfecd4f25440e692186000000000e0000f33182eacce8d763bc4ebc1f829b"}, 0x33)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0xca1, &(0x7f0000000100)={0x0, 0x8de3, 0x10310, 0xfffffffe, 0x4a}, &(0x7f00000003c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
pipe2(0x0, 0x0)
tee(r4, r7, 0x103, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="24000000200001032abd7000ffdbdf250200000000000007ff"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000280)={0x73622a85, 0xb, 0x3})
socket$nl_route(0x10, 0x3, 0x0)
r9 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x8882, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r9, 0xc0045005, &(0x7f0000000140)=0x2000)
r10 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$dsp(r10, &(0x7f0000000300)='U', 0x1)
ppoll(&(0x7f00000000c0)=[{r9, 0x9620}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000540)='afs_get_tree\x00', r0}, 0x10)

4m44.009505474s ago: executing program 34 (id=61):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_rdma(0x10, 0x3, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
r3 = fsopen(&(0x7f0000000040)='hpfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000440)='cq\xad\x87\xa5\xb5\xd5#/\xa4\xe9\xb8\xa4_\x1b\x11D\xcd\x15*\xdb\x02+cy]w\xb0u\x8cx\xcc\xbb\x1eO\x9dW(%\xa2d\xda\xf8C$u;x\xcfS\xfb', &(0x7f0000000740)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00 \xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$F\xba\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\x00\x00\x00\x00\x00\x00\x00\x01\xc7\xe6\xf28\x19\xa6\xa7\xb1\xc6x\x8cy\xcf\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x81g\x90\x01n%\x7f_\xe1.\xfd\xea\xd7j\xfb\"\xab\xdb\x062e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k\xb1Co\xc07\x19\xc6\"\x9c\x8d\xdfA\xf8T\xe5\xae\xbf\x00)WNW2$B$\x84\xf7\x9b\xfd1\x91\xc0;\x9dJ\x94\x196f\x11\xcfp\xef]\x05fgw\fX\xb5\xdd\x8a\x13o\x05\xbe\x94\xbaR\x9a/dy\xe5K\xe9aiv\xa5nb\xfa5\x98\x91\x1d~b2@~j\xc3\xd44\x81\x91q\x9b\xaaLp\xe3C{OF\xd1\x9e\xa7\xb0v)T', 0x0)
syz_emit_vhci(&(0x7f0000000340)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x2f}, "52ba6bbe6e36e522602706d661097c963dfecd4f25440e692186000000000e0000f33182eacce8d763bc4ebc1f829b"}, 0x33)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0xca1, &(0x7f0000000100)={0x0, 0x8de3, 0x10310, 0xfffffffe, 0x4a}, &(0x7f00000003c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
pipe2(0x0, 0x0)
tee(r4, r7, 0x103, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="24000000200001032abd7000ffdbdf250200000000000007ff"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000280)={0x73622a85, 0xb, 0x3})
socket$nl_route(0x10, 0x3, 0x0)
r9 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x8882, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r9, 0xc0045005, &(0x7f0000000140)=0x2000)
r10 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$dsp(r10, &(0x7f0000000300)='U', 0x1)
ppoll(&(0x7f00000000c0)=[{r9, 0x9620}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000540)='afs_get_tree\x00', r0}, 0x10)

3m26.21229873s ago: executing program 2 (id=274):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000001000010000003a194618d96d6d2e8553", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0) (fail_nth: 3)

3m26.041121444s ago: executing program 2 (id=275):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x3, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, [@call={0x85, 0x0, 0x0, 0x2d}]}, &(0x7f00000006c0)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x401, @void, @value}, 0x94)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
bind$inet6(r0, &(0x7f0000000200)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8}, 0x1c)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000000)=<r1=>0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000040)={{{@in=@remote, @in=@local, 0x4e20, 0x8, 0x4e21, 0x4, 0x2, 0xa0, 0x20, 0x88, 0x0, r1}, {0x10001, 0x3, 0x6, 0xfffffffffffffffd, 0x8, 0x46, 0x7, 0x7}, {0xc2e, 0x3, 0x0, 0x3ff}, 0x2, 0x6e6bbe, 0x1, 0x1}, {{@in6=@remote, 0x4d5, 0x3c}, 0xa, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x2, 0x1, 0xfd, 0x9df3, 0x400, 0x1}}, 0xe4)

3m25.952359963s ago: executing program 2 (id=276):
inotify_init1(0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0xba98575a95aeb70d)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x3}, 0x8, 0x10, &(0x7f00000000c0)={0x0, 0x400}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYRES16=r0, @ANYRES64=r1, @ANYBLOB="0000000000020000200012800c0001006d6163766c616e001000028004000580080007000002000008000500", @ANYRES32=r4, @ANYBLOB="3c000e90148d9f93d52c71cdd31cc88d78e50955aa450566f3ca418e20bc0ce441ba955120f0b32b6125ed10"], 0x48}, 0x1, 0x0, 0x0, 0x4001}, 0x1)
close(r1)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r5, 0x0, 0x4, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$usbfs(&(0x7f0000000100), 0x45e, 0x101701)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x47}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
mkdir(0x0, 0x47)

3m23.205378586s ago: executing program 2 (id=280):
mkdir(&(0x7f0000000140)='./file0\x00', 0x4)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000001000)=ANY=[@ANYBLOB='trans=virtio,noextend,access=any,cache-fscache,version=9p2000.u'])
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
syz_clone(0x840080, &(0x7f0000000200)="5dadfaff9157686e10a5486db0401becc3a30ff365dbec1ffd290361119c01c547e9565de3aabc99dd589383008ad3fbc7f50e7d3992494da37f7226ea0353378ec90833b4c77da9fecd922a242d53a97725e52903e090bc55c2447caebf6bff65217d3a72e211f94f0f6977390652bb39bdb36bd607898beabb4d4b319cd45f62384490a5a5e43becb899fa4b1f95e78e28b659d4a9d7b3c1148965b8af03de4ccba521ee4274b09797b88003b1d7b7d2ef5e007eb763236539447cda7990b5c242", 0xc2, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000500)="64a28d807f3419fadd98b863336ff2cc62871e414e7b0d4100c70a73f2437a2c4c7c6be2887761d3dcd9b01b4cab3e7d74b2787619b67e2dff2addae47b8cd103b2b37ffb8a619238b10203b489a206a8f6a83f9b2027094c6928091c1875a2c3e116ce7de1c80a36a101235d3e7b396d9ccc0e015f2f9191e93dad5d0f1fd22e552f5ac15cd8eaca0875e1afcededdf8a1c69603d22e381237c17b9f9af459cc37b82c3555fb4456c824cf005b710e261862d")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r0, 0x0, 0x0)

3m22.569137732s ago: executing program 2 (id=283):
syz_open_dev$vim2m(&(0x7f0000000080), 0x8, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002400)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='ncpfs\x00', 0x1000410, &(0x7f0000000300)='usrquota')
socket$inet6_sctp(0xa, 0x4, 0x84)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f00000000c0)={0x0, 0x2}, &(0x7f0000000100)=0x8)
socket$nl_generic(0x10, 0x3, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x14d801, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x2, 0x0, &(0x7f0000000080))
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
syz_open_dev$usbmon(&(0x7f0000000180), 0x5c, 0x3a540)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000340), 0x1c9243, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
listen(r2, 0x7fff)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x3)
dup(r3)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000040)={0x0, 0x0, 0x3, 0x8001, 0x0, 0x0, 0x4, 0x47}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0x1, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, 0x0, 0x0)

3m21.555989508s ago: executing program 2 (id=288):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_rdma(0x10, 0x3, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
r3 = fsopen(&(0x7f0000000040)='hpfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000440)='cq\xad\x87\xa5\xb5\xd5#/\xa4\xe9\xb8\xa4_\x1b\x11D\xcd\x15*\xdb\x02+cy]w\xb0u\x8cx\xcc\xbb\x1eO\x9dW(%\xa2d\xda\xf8C$u;x\xcfS\xfb', &(0x7f0000000740)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00 \xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$F\xba\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\x00\x00\x00\x00\x00\x00\x00\x01\xc7\xe6\xf28\x19\xa6\xa7\xb1\xc6x\x8cy\xcf\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x81g\x90\x01n%\x7f_\xe1.\xfd\xea\xd7j\xfb\"\xab\xdb\x062e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k\xb1Co\xc07\x19\xc6\"\x9c\x8d\xdfA\xf8T\xe5\xae\xbf\x00)WNW2$B$\x84\xf7\x9b\xfd1\x91\xc0;\x9dJ\x94\x196f\x11\xcfp\xef]\x05fgw\fX\xb5\xdd\x8a\x13o\x05\xbe\x94\xbaR\x9a/dy\xe5K\xe9aiv\xa5nb\xfa5\x98\x91\x1d~b2@~j\xc3\xd44\x81\x91q\x9b\xaaLp\xe3C{OF\xd1\x9e\xa7\xb0v)T', 0x0)
syz_emit_vhci(&(0x7f0000000340)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x35}, "52ba6bbe6e36e522602706d661097c963dfecd4f25440e692186000000000e0000f33182eacce8d763bc4ebc1f829b5e8700000000"}, 0x39)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0xca1, &(0x7f0000000100)={0x0, 0x8de3, 0x10310, 0xfffffffe, 0x4a}, &(0x7f00000003c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
pipe2(0x0, 0x0)
tee(r4, r7, 0x103, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="24000000200001032abd7000ffdbdf250200000000000007ff"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000280)={0x73622a85, 0xb, 0x3})
socket$nl_route(0x10, 0x3, 0x0)
r9 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x8882, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r9, 0xc0045005, &(0x7f0000000140)=0x2000)
r10 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$dsp(r10, &(0x7f0000000300)='U', 0x1)
ppoll(&(0x7f00000000c0)=[{r9, 0x9620}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000540)='afs_get_tree\x00', r0}, 0x10)

3m20.977844057s ago: executing program 35 (id=288):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_rdma(0x10, 0x3, 0x14)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
r3 = fsopen(&(0x7f0000000040)='hpfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000440)='cq\xad\x87\xa5\xb5\xd5#/\xa4\xe9\xb8\xa4_\x1b\x11D\xcd\x15*\xdb\x02+cy]w\xb0u\x8cx\xcc\xbb\x1eO\x9dW(%\xa2d\xda\xf8C$u;x\xcfS\xfb', &(0x7f0000000740)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00 \xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$F\xba\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\x00\x00\x00\x00\x00\x00\x00\x01\xc7\xe6\xf28\x19\xa6\xa7\xb1\xc6x\x8cy\xcf\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x81g\x90\x01n%\x7f_\xe1.\xfd\xea\xd7j\xfb\"\xab\xdb\x062e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k\xb1Co\xc07\x19\xc6\"\x9c\x8d\xdfA\xf8T\xe5\xae\xbf\x00)WNW2$B$\x84\xf7\x9b\xfd1\x91\xc0;\x9dJ\x94\x196f\x11\xcfp\xef]\x05fgw\fX\xb5\xdd\x8a\x13o\x05\xbe\x94\xbaR\x9a/dy\xe5K\xe9aiv\xa5nb\xfa5\x98\x91\x1d~b2@~j\xc3\xd44\x81\x91q\x9b\xaaLp\xe3C{OF\xd1\x9e\xa7\xb0v)T', 0x0)
syz_emit_vhci(&(0x7f0000000340)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x35}, "52ba6bbe6e36e522602706d661097c963dfecd4f25440e692186000000000e0000f33182eacce8d763bc4ebc1f829b5e8700000000"}, 0x39)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0xca1, &(0x7f0000000100)={0x0, 0x8de3, 0x10310, 0xfffffffe, 0x4a}, &(0x7f00000003c0)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
pipe2(0x0, 0x0)
tee(r4, r7, 0x103, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="24000000200001032abd7000ffdbdf250200000000000007ff"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000280)={0x73622a85, 0xb, 0x3})
socket$nl_route(0x10, 0x3, 0x0)
r9 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x8882, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r9, 0xc0045005, &(0x7f0000000140)=0x2000)
r10 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$dsp(r10, &(0x7f0000000300)='U', 0x1)
ppoll(&(0x7f00000000c0)=[{r9, 0x9620}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000540)='afs_get_tree\x00', r0}, 0x10)

3.837651033s ago: executing program 5 (id=859):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0xfff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, 0x0, 0x40000)
socket$igmp6(0xa, 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r5 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
creat(0x0, 0xecf86c37d53049ec)
lsetxattr$security_ima(&(0x7f0000000480)='./file0\x00', &(0x7f0000000100), &(0x7f0000000380)=@v2={0x3, 0x2, 0xfe, 0xe79f, 0x2, 'JE'}, 0xb, 0x1)
ioctl$FBIOPUT_VSCREENINFO(r5, 0x4601, &(0x7f0000000380)={0x3c0, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x8, 0x3, 0x1ff, 0x3d, 0x5, 0x3, 0x53, 0x202, 0x1, 0xc})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r7, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)

3.788837764s ago: executing program 4 (id=860):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$sock_linger(r3, 0x1, 0xd, &(0x7f00000000c0)={0x0, 0xe39}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000001a40)=[@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x12}}, @in={0x2, 0x0, @local}], 0x20)
r5 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001f40), 0x0, 0x42, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000000600000000000000000000000000000a40000000060a0b040000000000000000020000001400048010000180090001006d617371000000000900010073797a3000000000090002006c797a3200000000140000001100010000000000000000000000000a"], 0x68}}, 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x2f9, 0x543, &(0x7f0000000040)="b90103600040f000009e0ff008001fffffe100004000632177fb7f0200017f020001be3e7d2a182fff", 0x0, 0x104, 0x6000000000000000, 0x0, 0xfeb9, &(0x7f0000000400)="9209558f0c5fb25cd57f98113135c3171b8b331fbc04f0e6955a796ff8e3aae3cac46cec3030dfc999058aea01f0e6dcf2f9d480d328655aca003927bd50ed49d4843c8a0a2a4b26ceb747947200bd644c85e7a8a7d7cfce840c02a7d69c9e0bca410f64d43290abbbf3131e1fa8bd8c3e5f19d5a491d3d4c1a0fe47de9eebaf073ac3da6256bdb681d18fbd607c9b0d710442bcf78bc36fd3c035812bde582a262bff0e4d6181c818fccf542868c6e602d97bea23a101955dc76bcc984142ab305387aa348566d688edd291a3e9d08952adbdf60462bb7f7faebcdfccf17115708b0d73d0f3a469ce7d8374219b3f92c92bcec4958d474bb281c26691949d054b784a5866f081e53eb9cfd7"}, 0x28)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)

2.999811846s ago: executing program 7 (id=867):
r0 = memfd_secret(0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000200)={0x1c, r1, 0x1, 0x71bd25, 0x3, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000200)={&(0x7f0000000180), 0xc, &(0x7f00000001c0)={&(0x7f0000000400)={0xc4, r1, 0x200, 0x70bd27, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_SCHED_SCAN_MATCH={0xa8, 0x84, 0x0, 0x1, [{0x40, 0x0, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0x1c, 0x6, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x8, 0x0, 0x1}, @NL80211_BAND_LC={0x8, 0x5, 0x4}, @NL80211_BAND_LC={0x8, 0x5, 0xd}]}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0x11, 0x1, @random="635a5d13dc282e36c74a958616"}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @random="b7cf9160e222"}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI={0xc, 0x6, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x8, 0x2, 0xfffffffc}]}]}, {0x54, 0x0, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8}, @NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0x7}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @random="329fbdedc049"}, @NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0xa47}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @from_mac=@broadcast}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xa, 0x1, @default_ibss_ssid}, @NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0x6}, @NL80211_SCHED_SCAN_MATCH_ATTR_SSID={0xc, 0x1, @random="7bac517610c10d24"}]}]}, @NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x4, 0x9}}]}, 0xc4}, 0x1, 0x0, 0x0, 0x40000}, 0x44000)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r4, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
sendmmsg(0xffffffffffffffff, &(0x7f0000003740)=[{{&(0x7f00000002c0)=@ax25={{0x3, @bcast, 0x7}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null]}, 0x80, 0x0}}], 0x1, 0x4004010)
r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r5)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000140)={@cgroup=r5, 0x8, 0x0, 0xffffffff, &(0x7f0000000000)=[0x0, 0x0], 0x2, 0x0, &(0x7f0000000040)=[0x0, 0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
connect$inet6(r4, &(0x7f00000003c0)={0xa, 0xfffe, 0x3000000, @mcast2, 0x5}, 0x1c)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETCHAIN(r6, &(0x7f0000000640)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB="c4000000040a010300000000000000000200e838766d911f101d014000000000000000040c00014000000000000000060c00024000000000000000020c0002400000000000000001640008800c00014000000000000000090c00014000000000000000030c00014000000000000000020c00014000000000000000030c00024000000000000000060c00024080000000000000000c00024000000000000005990c0001400000000000000002100008800c000140000000000000000508000b4000000001"], 0xc4}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000700)={'team0\x00', <r7=>0x0})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f00000008c0)={'gretap0\x00', &(0x7f0000000740)={'syztnl0\x00', <r8=>0x0, 0x1, 0x40, 0x400, 0x4, {{0x55, 0x4, 0x0, 0x36, 0x154, 0x67, 0x0, 0x3, 0x4, 0x0, @multicast2, @remote, {[@lsrr={0x83, 0xf, 0x15, [@loopback, @multicast1, @empty]}, @rr={0x7, 0x23, 0x7d, [@loopback, @remote, @rand_addr=0x64010101, @empty, @private=0xa010100, @broadcast, @empty, @dev={0xac, 0x14, 0x14, 0x2e}]}, @ssrr={0x89, 0x13, 0xae, [@local, @multicast2, @rand_addr=0x64010102, @remote]}, @timestamp_prespec={0x44, 0x24, 0xd1, 0x3, 0x3, [{@private=0xa010102}, {@dev={0xac, 0x14, 0x14, 0x15}, 0x8}, {@broadcast, 0x8000}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0xa6e}]}, @timestamp_prespec={0x44, 0x44, 0x67, 0x3, 0x2, [{@remote, 0x2}, {@remote, 0x401}, {@empty, 0x4}, {@private=0xa010101, 0x1}, {@empty, 0x4}, {@broadcast, 0x7}, {@empty, 0xfffffffa}, {@broadcast, 0x1}]}, @timestamp={0x44, 0x28, 0x15, 0x0, 0xd, [0x8, 0x5, 0x1, 0x1, 0xfffffdae, 0x6, 0x5, 0x17, 0xc]}, @timestamp_prespec={0x44, 0x2c, 0x3a, 0x3, 0x7, [{@loopback, 0x5}, {@multicast1, 0xfffffff9}, {@private=0xa010100, 0x1}, {@remote, 0xffff}, {@remote, 0xff}]}, @lsrr={0x83, 0x1b, 0x34, [@dev={0xac, 0x14, 0x14, 0x40}, @empty, @local, @multicast1, @rand_addr=0x64010102, @loopback]}, @lsrr={0x83, 0x23, 0xe4, [@private=0xa010100, @remote, @remote, @broadcast, @private=0xa010100, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty]}]}}}}})
r9 = socket(0x400000000010, 0x3, 0x0)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r11, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000009c0)=@newtfilter={0x44, 0x2c, 0xd27, 0x30b529, 0x25dfdc00, {0x0, 0x0, 0x0, r11, {0x0, 0xb}, {}, {0xfff2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x10, 0x2, [@TCA_MATCHALL_ACT={0x4}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x4}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r12 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000240)={'syz_tun\x00', <r13=>0x0})
bind$packet(r12, &(0x7f0000000300)={0x11, 0x0, r13, 0x1, 0x0, 0x6, @remote}, 0x14)
bind$packet(r12, &(0x7f0000000000)={0x11, 0x0, r13, 0x1, 0x10, 0x6, @random="30e02d50be38"}, 0x14)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000900)={'vxcan1\x00', <r14=>0x0})
sendmsg$TEAM_CMD_PORT_LIST_GET(r5, &(0x7f0000000980)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000940)={&(0x7f0000000f00)=ANY=[@ANYBLOB="c4020000", @ANYRES16=0x0, @ANYBLOB="000126bd7000ffdbdf250300000008000100", @ANYRES32=r7, @ANYBLOB="bc00028040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r8, @ANYBLOB="080007000000000038000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000050003000300000008000400fa0c000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=r11, @ANYBLOB="080007000000000008000100", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r13, @ANYBLOB="40000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000010000008000600", @ANYRES32=r14, @ANYBLOB], 0x2c4}, 0x1, 0x0, 0x0, 0x4000000}, 0x1)
write(r4, &(0x7f00000000c0)="8f2a0a65bd8c3a2b0304000e0580a7b6070d63e286a5cefe", 0x5ac)

2.795899142s ago: executing program 7 (id=868):
prlimit64(0x0, 0xe, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a31000000000500050002"], 0x4c}}, 0x2)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x2}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x48, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x15}, @NFTA_SET_DESC={0xc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0xfffffffb}]}]}], {0x14, 0x10}}, 0x90}}, 0x0)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, 0x0, 0x80)

2.795330043s ago: executing program 7 (id=869):
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount$tmpfs(0x0, &(0x7f0000000180)='./file0/file0/file0/file0/file0\x00', 0x0, 0x1110000, 0x0)
lstat(&(0x7f0000000200)='./file0/file0/file0/file0/file0\x00', 0x0)
read$FUSE(r0, &(0x7f0000004280)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000066c0)="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", 0x2000, &(0x7f0000008b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x90, 0x0, 0x0, {0x100000000404, 0x0, 0xc, 0x0, 0x8000000, 0x0, {0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xa000, 0x0, 0x0, r2}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000280)={0x50, 0xfffffffffffffff5, 0x0, {0x7, 0x24, 0x0, 0x180c021, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x1}}, 0x50)

2.594887179s ago: executing program 5 (id=870):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x1}, 0x8)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
ioctl$MEDIA_IOC_G_TOPOLOGY(r1, 0xc0487c04, 0x0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000440)={0xffffffffffffffff}, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000006c0)={r2, 0x0, 0xdf2, 0xfa, &(0x7f0000000940)="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", &(0x7f0000000480)=""/250, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x2}, 0x4c)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe}}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0xc2d41, 0x0)
ioctl$SNAPSHOT_CREATE_IMAGE(r5, 0x40043311, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[], 0x7c}}, 0x0)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYRESDEC=0x0], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x14, 0x8, 0x4, 0x0, 0x0, 0x1, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_test', 0x8a00, 0x0)
r8 = syz_open_dev$loop(&(0x7f0000000300), 0x200000, 0x900)
ioctl$BLKTRACESTART(r8, 0x1274, 0x0)
sendfile(r7, r7, 0x0, 0x4)
ioctl$UFFDIO_UNREGISTER(r7, 0x8010aa01, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f0000000300)={{{@in6=@mcast2, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e20, 0x0, 0x4e22, 0x6, 0x2, 0xa0, 0x0, 0x1, 0x0, 0xee00}, {0x40, 0x2, 0x4, 0x0, 0x800000edd, 0x20c43145, 0xa, 0x1}, {0x1, 0xffffffffffffffff, 0x7, 0x4}, 0x84fd, 0x6e6bb4, 0x0, 0x7d1c6d00effece54, 0x3, 0x1}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x5, 0x0}, 0x4d3, 0x2b}, 0x2, @in=@multicast1, 0x3506, 0x2, 0x0, 0x8d, 0x6, 0x7fff, 0x4}}, 0xe4)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r9, 0x84, 0x6f, &(0x7f00000000c0)={<r10=>0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}]}, &(0x7f0000000100)=0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c000000100005ff00000000000000000000004a", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32], 0x3c}}, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r9, 0x84, 0x9, &(0x7f0000000840)={r10, @in6={{0xa, 0x4e31, 0x3ae, @empty, 0x129}}, 0x2, 0x2, 0x614, 0x1, 0xd, 0x7, 0x4}, 0x9c)

2.466578201s ago: executing program 4 (id=871):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x1}, 0x8)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
ioctl$MEDIA_IOC_G_TOPOLOGY(r1, 0xc0487c04, 0x0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000440)={0xffffffffffffffff}, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000006c0)={r2, 0x0, 0xdf2, 0xfa, &(0x7f0000000940)="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", &(0x7f0000000480)=""/250, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x2}, 0x4c)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe}}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0xc2d41, 0x0)
ioctl$SNAPSHOT_CREATE_IMAGE(r5, 0x40043311, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[], 0x7c}}, 0x0)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYRESDEC=0x0], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x14, 0x8, 0x4, 0x0, 0x0, 0x1, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_test', 0x8a00, 0x0)
r8 = syz_open_dev$loop(&(0x7f0000000300), 0x200000, 0x900)
ioctl$BLKTRACESTART(r8, 0x1274, 0x0)
sendfile(r7, r7, 0x0, 0x4)
ioctl$UFFDIO_UNREGISTER(r7, 0x8010aa01, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f0000000300)={{{@in6=@mcast2, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e20, 0x0, 0x4e22, 0x6, 0x2, 0xa0, 0x0, 0x1, 0x0, 0xee00}, {0x40, 0x2, 0x4, 0x0, 0x800000edd, 0x20c43145, 0xa, 0x1}, {0x1, 0xffffffffffffffff, 0x7, 0x4}, 0x84fd, 0x6e6bb4, 0x0, 0x7d1c6d00effece54, 0x3, 0x1}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x5, 0x0}, 0x4d3, 0x2b}, 0x2, @in=@multicast1, 0x3506, 0x2, 0x0, 0x8d, 0x6, 0x7fff, 0x4}}, 0xe4)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r9 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r9, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r9, 0x84, 0x6f, &(0x7f00000000c0)={<r10=>0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}]}, &(0x7f0000000100)=0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c000000100005ff00000000000000000000004a", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32], 0x3c}}, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r9, 0x84, 0x9, &(0x7f0000000840)={r10, @in6={{0xa, 0x4e31, 0x3ae, @empty, 0x129}}, 0x2, 0x2, 0x614, 0x1, 0xd, 0x7, 0x4}, 0x9c)

2.407083056s ago: executing program 6 (id=873):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="380000005500e501000000000000000007000000", @ANYRES32=r2, @ANYBLOB="20000100", @ANYRES32=r4, @ANYBLOB="01000400ff"], 0x38}}, 0x20044050)

2.327144099s ago: executing program 6 (id=874):
r0 = socket(0x2, 0x80805, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0x27}, 0x4e25, 0x20003, 'none\x00', 0x1, 0x2, 0x6e}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f0000000300)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'lc\x00', 0xc, 0x9, 0x64}, {@rand_addr=0x64010102, 0x4e23, 0x2000, 0x100000cd, 0x12d5f, 0x3}}, 0x44)

2.267010795s ago: executing program 6 (id=875):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c00000010000104000002000000000000000000", @ANYRES32=0x0, @ANYBLOB="03800000000000001c0012800b0001006970766c616e00000c00028006000100020000000800", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r1], 0x4c}, 0x1, 0x0, 0x0, 0x20004885}, 0x4054)

2.266575636s ago: executing program 6 (id=876):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$sock_linger(r3, 0x1, 0xd, &(0x7f00000000c0)={0x0, 0xe39}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000001a40)=[@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x12}}, @in={0x2, 0x0, @local}], 0x20)
r5 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001f40), 0x0, 0x42, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000000600000000000000000000000000000a40000000060a0b040000000000000000020000001400048010000180090001006d617371000000000900010073797a3000000000090002006c797a3200000000140000001100010000000000000000000000000a"], 0x68}}, 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x2f9, 0x543, &(0x7f0000000040)="b90103600040f000009e0ff008001fffffe100004000632177fb7f0200017f020001be3e7d2a182fff", 0x0, 0x104, 0x6000000000000000, 0x0, 0xfeb9, &(0x7f0000000400)="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"}, 0x28)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)

1.887022303s ago: executing program 7 (id=877):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$sock_linger(r3, 0x1, 0xd, &(0x7f00000000c0)={0x0, 0xe39}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000001a40)=[@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x12}}, @in={0x2, 0x0, @local}], 0x20)
r5 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r6 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001f40), 0x0, 0x42, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000000600000000000000000000000000000a40000000060a0b040000000000000000020000001400048010000180090001006d617371000000000900010073797a3000000000090002006c797a3200000000140000001100010000000000000000000000000a"], 0x68}}, 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x2f9, 0x543, &(0x7f0000000040)="b90103600040f000009e0ff008001fffffe100004000632177fb7f0200017f020001be3e7d2a182fff", 0x0, 0x104, 0x6000000000000000, 0x0, 0xfeb9, &(0x7f0000000400)="9209558f0c5fb25cd57f98113135c3171b8b331fbc04f0e6955a796ff8e3aae3cac46cec3030dfc999058aea01f0e6dcf2f9d480d328655aca003927bd50ed49d4843c8a0a2a4b26ceb747947200bd644c85e7a8a7d7cfce840c02a7d69c9e0bca410f64d43290abbbf3131e1fa8bd8c3e5f19d5a491d3d4c1a0fe47de9eebaf073ac3da6256bdb681d18fbd607c9b0d710442bcf78bc36fd3c035812bde582a262bff0e4d6181c818fccf542868c6e602d97bea23a101955dc76bcc984142ab305387aa348566d688edd291a3e9d08952adbdf60462bb7f7faebcdfccf17115708b0d73d0f3a469ce7d8374219b3f92c92bcec4958d474bb281c26691949d054b784a5866f081e53eb9cfd7"}, 0x28)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)

1.72270187s ago: executing program 5 (id=878):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x1}, 0x8)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
ioctl$MEDIA_IOC_G_TOPOLOGY(r1, 0xc0487c04, 0x0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000440)={0xffffffffffffffff}, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000006c0)={r2, 0x0, 0xdf2, 0xfa, &(0x7f0000000940)="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", &(0x7f0000000480)=""/250, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x2}, 0x4c)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe}}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0xc2d41, 0x0)
r4 = syz_open_dev$loop(&(0x7f0000000300), 0x200000, 0x900)
ioctl$BLKTRACESTART(r4, 0x1274, 0x0)

1.568093329s ago: executing program 4 (id=879):
syz_open_dev$vim2m(&(0x7f0000000080), 0x8, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002400)={0x18, 0xb, 0x0, &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='ncpfs\x00', 0x1000410, &(0x7f0000000300)='usrquota')
socket$inet6_sctp(0xa, 0x4, 0x84)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f00000000c0)={0x0, 0x2}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$video4linux(&(0x7f0000000240), 0x6000000, 0x10401)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x14d801, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x2, 0x0, &(0x7f0000000080))
sched_setscheduler(0x0, 0x1, 0x0)
syz_open_dev$usbmon(&(0x7f0000000180), 0x5c, 0x3a540)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000340), 0x1c9243, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
listen(r1, 0x7fff)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x3)
dup(r2)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000040)={0x0, 0x0, 0x3, 0x8001, 0x0, 0x0, 0x4, 0x47}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0x1, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, 0x0, 0x0)

1.460980629s ago: executing program 5 (id=880):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x400, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x209d, 0x11e41e7a, 0x20000000, 0xfffffffd, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x4}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x844}, 0x400c0b4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000440))
ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f0000000080)=0x200000000)
r5 = dup2(r4, r4)
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000000)=0x5)
read$FUSE(r5, &(0x7f0000004d80)={0x2020}, 0x2020)
write$vhost_msg_v2(r5, &(0x7f0000000280)={0x2, 0x0, {&(0x7f0000000140)=""/128, 0x80, 0x0, 0x0, 0x2}}, 0x48)
syz_emit_ethernet(0x66, &(0x7f00000009c0)={@link_local, @dev, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x8, 0x58, 0x67, 0x0, 0x5, 0x2f, 0x0, @local, @multicast1}, {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}, {0x1, 0x0, 0x0, 0x1}, {0x8, 0x88be, 0x0, {{0x5, 0x1, 0xb, 0x3, 0x0, 0x0, 0x6, 0xb}, 0x1, {0x38}}}, {0x8, 0x22eb, 0x4, {{0x3, 0x2, 0x6, 0x1, 0x0, 0x1, 0x3, 0x6}, 0x2, {0x7, 0x4, 0x0, 0x5, 0x1, 0x1, 0x2}}}}}}}}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYRESOCT], 0x34}, 0x1, 0x0, 0x0, 0x24018100}, 0x4000000)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
modify_ldt$read(0x0, &(0x7f0000000400)=""/238, 0xee)
r6 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TCFLSH(r6, 0x40045436, 0x3)
r7 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r7, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r7, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1})

1.136531045s ago: executing program 6 (id=881):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x400, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000440))
ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f0000000080)=0x200000000)
r5 = dup2(r4, r4)
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000000)=0x5)
read$FUSE(r5, &(0x7f0000004d80)={0x2020, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}, 0x2020)
write$vhost_msg_v2(r5, &(0x7f0000000280)={0x2, 0x0, {&(0x7f0000000140)=""/128, 0x80, 0x0, 0x0, 0x2}}, 0x48) (fail_nth: 2)
syz_emit_ethernet(0x66, &(0x7f00000009c0)={@link_local, @dev, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x8, 0x58, 0x67, 0x0, 0x5, 0x2f, 0x0, @local, @multicast1}, {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}, {0x1, 0x0, 0x0, 0x1}, {0x8, 0x88be, 0x0, {{0x5, 0x1, 0xb, 0x3, 0x0, 0x0, 0x6, 0xb}, 0x1, {0x38}}}, {0x8, 0x22eb, 0x4, {{0x3, 0x2, 0x6, 0x1, 0x0, 0x1, 0x3, 0x6}, 0x2, {0x7, 0x4, 0x0, 0x5, 0x1, 0x1, 0x2}}}}}}}}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYRES64=r6], 0x34}, 0x1, 0x0, 0x0, 0x24018100}, 0x4000000)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
modify_ldt$read(0x0, &(0x7f0000000400)=""/238, 0xee)
r7 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TCFLSH(r7, 0x40045436, 0x3)
getpid()

617.204381ms ago: executing program 4 (id=882):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0)
preadv2(r4, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0x100000}], 0xc4, 0x0, 0x0, 0x9)
syz_io_uring_setup(0x10c, &(0x7f00000000c0)={0x0, 0x8006d89, 0x400, 0x1001, 0x2a2}, &(0x7f0000000400), &(0x7f0000000040))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r5 = syz_init_net_socket$llc(0x1a, 0x802, 0x0)
bind$llc(r5, &(0x7f0000000040)={0x1a, 0x0, 0x1, 0xec, 0x3, 0x4a, @broadcast}, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r6=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="380000005500e501000000000000000007000000", @ANYRES32=r2, @ANYBLOB="20000100", @ANYRES32=r6, @ANYRES64=r3], 0x38}}, 0x20044050)

507.193267ms ago: executing program 4 (id=883):
openat$hwrng(0xffffff9c, 0x0, 0x80800, 0x0)
unshare(0x6a040000)
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000e3a000/0x2000)=nil, 0x2000, 0x17)
madvise(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x8)
writev(r1, &(0x7f00000002c0)=[{&(0x7f0000000280)='2', 0x1}], 0x1)
bind$netlink(r0, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SYNC_IOC_MERGE(0xffffffffffffffff, 0xc0303e03, &(0x7f0000000180)={"000000149c0286e08ffad43c40fc0a000000ab65a29e23546aad0281b3aff5eb", 0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SYNC_IOC_FILE_INFO(r3, 0xc0383e04, &(0x7f0000000000)={""/32, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0106000000000000000009000000240004801300010062726f6164636173742d6c696e6b00000c0007"], 0x38}}, 0x0)
r6 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r6, 0x4610, &(0x7f0000000000)={0x9})
write$uinput_user_dev(r2, &(0x7f0000000500)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x55f8, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x200000]}, 0x45c)

440.006253ms ago: executing program 7 (id=884):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
mount$9p_virtio(&(0x7f0000001a80), &(0x7f0000001ac0)='.\x00', &(0x7f0000001b00), 0x10000, &(0x7f0000000180)=ANY=[@ANYBLOB="7472616e733d76697274696f2c63616368653d72652c00000000000000002b2436418ef60787ac108fd36cfac7d8677397d5d0d6deeb3bfbba58de1cd0b8693701941b0e066a3ae4c32584293858f514a9a46d6495c062d70388e77d1c70b2780820530fed72139345d1ef95165f6b3f271885630d0e8a645990d2aa4e8a88a48018fcfc05d8aa83448e736dd4507e0b733334f0e9dfd3062a6579b1bd8d28c3f967d08e83ac42cb3fa01756f0f207eac9b772a1011e"])
r1 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_TIOCINQ(r1, 0x541b, &(0x7f0000002440))
r2 = eventfd(0x4)
listen(0xffffffffffffffff, 0x5)
ioctl$sock_inet_tcp_SIOCATMARK(0xffffffffffffffff, 0x8905, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000140)=ANY=[@ANYBLOB="ffffffffffff00000000000008004d"], 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0})
io_uring_enter(0xffffffffffffffff, 0x7a98, 0x0, 0x0, 0x0, 0x0)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r2})
r3 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0)
mknod(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
lsetxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@known='user.incfs.id\x00', 0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000000)=0x639)
r4 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000040)={0x2})
r5 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r5, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x1, 0x40, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r5, 0xc4c85513, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x3, 0x6c4ba42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0xcd, 0x0, 0x0, 0x0, 0x80000, 0x5, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x3, 0x4000000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdf09, 0x0, 0x0, 0x1, 0x0, 0xa, 0x0, 0xfffffffffffffffb, 0x0, 0x2, 0x0, 0x4, 0x9, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x80003, 0x0, 0x0, 0x0, 0x200, 0xc88, 0x40000000000, 0x801, 0x7, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x7, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x2, 0x0, 0x8000, 0xfffffffc, 0x3, 0x0, 0x40000001]})
r6 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r6, 0xc4c85513, &(0x7f0000000540)={{0x1, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0xfffffffffffffe00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3]})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x30}, 0x1, 0x0, 0x0, 0xc0041}, 0x0)
syz_io_uring_setup(0x497, &(0x7f0000000480)={0x0, 0x727a, 0x0, 0x1, 0x18e}, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})

255.516335ms ago: executing program 4 (id=885):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
setsockopt$MRT6_ADD_MFC(r1, 0x29, 0xcc, &(0x7f0000000200)={{0xa, 0x4e20, 0x400, @private2, 0x9}, {0xa, 0x4e20, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}}, 0x1, {[0x2, 0x9, 0x8, 0x9, 0x9, 0x2, 0x3, 0x8]}}, 0x5c)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r2, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r3, 0x800448f0, &(0x7f0000000040)={0xffffffffffffffff, 0x2, "ecb3e0", 0xff, 0x80})
connect$inet(r2, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)
syz_io_uring_setup(0x17b3, &(0x7f0000000500)={0x0, 0x18f9, 0x13290, 0x0, 0x1e1}, &(0x7f0000000300), &(0x7f0000000340))
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
mount(&(0x7f0000000080)=@nullb, &(0x7f0000000180)='./cgroup\x00', &(0x7f00000001c0)='btrfs\x00', 0xa00001, 0x0)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000280)={r1}, 0xfffffffffffffd96)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='workqueue_activate_work\x00'}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@bloom_filter={0x1e, 0x3ff, 0x8, 0x7, 0x82214, r5, 0x630, '\x00', 0x0, r1, 0x3, 0x3, 0x1, 0x8, @void, @value, @void, @value}, 0x50)
write$vga_arbiter(r1, &(0x7f0000000100)=@other={'unlock', ' ', 'none'}, 0xc)
bind$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x3, @none, 0x0, 0x2}, 0xe)
getsockopt$bt_BT_RCVMTU(r4, 0x112, 0xd, &(0x7f0000000080)=0x4, &(0x7f00000000c0)=0x2)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
sendmmsg$inet(r2, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0}}], 0x68000, 0xe000)

251.605866ms ago: executing program 7 (id=886):
r0 = syz_usb_connect$printer(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000000030020f003176c400000000001090224725100000000090400001207010300090501020000000000090582020002"], 0x0)
syz_usb_disconnect(r0)
r1 = syz_usb_connect(0x0, 0x4a, &(0x7f0000000080)=ANY=[], 0x0)
syz_usb_ep_write$ath9k_ep1(r1, 0x82, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x80000000)
read$char_usb(r2, 0x0, 0x0)

183.962071ms ago: executing program 5 (id=887):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xd)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x91}, 0x0)
r2 = socket(0x10, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000340)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYRES32=r3, @ANYBLOB="02000000000080008000120008000100767469"], 0xa0}}, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r5 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x7ab9, 0x100, 0x22, 0x352}, &(0x7f0000000080)=<r6=>0x0, &(0x7f0000000100)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000000)=0x103, 0x0, 0x4)
write$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000140)={'some', 0x20, 0x3, 0x20, 0x4}, 0x2f)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000002800), 0x20000, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_DELCHAIN={0xb4, 0x5, 0xa, 0x3, 0x0, 0x0, {0x5, 0x0, 0x4}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_COUNTERS={0x58, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x2}, @NFTA_COUNTER_PACKETS={0xc}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x6}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xffffffff}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x7}, @NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x7}]}, @NFTA_CHAIN_USERDATA={0x32, 0xc, "6335d277fc8087dbeacda7cfff8bca7ad17f170c2d28efd150d4370d7214c29d95ed663ca993c1ebb45a515249a4"}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xffffffffffffffff}]}, @NFT_MSG_DELRULE={0x34, 0x8, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x2}, [@NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x33}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x16}]}]}, @NFT_MSG_DELOBJ={0x2c, 0x14, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_DELCHAIN={0xb0, 0x5, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x7}, [@NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x7}, @NFTA_CHAIN_COUNTERS={0x7c, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x8}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x6076}, @NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xfffffffffffffff3}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x5}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x8000000000000000}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x1}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x8}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x7}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x2}]}, @NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xffffffffffffffff}, @NFTA_CHAIN_USERDATA={0x6, 0xc, "19f6"}]}, @NFT_MSG_DELTABLE={0x8c, 0x2, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x5}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_USERDATA={0x33, 0x6, "dd54bca6ea4f9a3c883f305395b7bfccdf3fd88c71526fa7cf5cb7bb6d90fb1135542ef1319e5866ea318f04715dd8"}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x2fc, 0x18, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_HOOK={0x11c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'ip_vti0\x00'}, {0x14, 0x1, 'erspan0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0xcc, 0x3, 0x0, 0x1, [{0x14, 0x1, 'syzkaller0\x00'}, {0x14, 0x1, 'virt_wifi0\x00'}, {0x14, 0x1, 'ipvlan0\x00'}, {0x14, 0x1, 'veth0_to_team\x00'}, {0x14, 0x1, 'veth1_to_batadv\x00'}, {0x14}, {0x14, 0x1, 'bridge_slave_0\x00'}, {0x14, 0x1, 'vxcan1\x00'}, {0x14, 0x1, 'veth1_to_batadv\x00'}, {0x14, 0x1, 'tunl0\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x3fac}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x1}]}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x160, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'dummy0\x00'}]}, @NFTA_FLOWTABLE_HOOK_DEVS={0xa4, 0x3, 0x0, 0x1, [{0x14, 0x1, 'team_slave_0\x00'}, {0x14, 0x1, 'dummy0\x00'}, {0x14, 0x1, 'pim6reg1\x00'}, {0x14, 0x1, 'veth0\x00'}, {0x14, 0x1, 'dvmrp0\x00'}, {0x14, 0x1, 'veth0_to_bond\x00'}, {0x14, 0x1, 'bond_slave_1\x00'}, {0x14, 0x1, 'wg0\x00'}]}, @NFTA_FLOWTABLE_HOOK_DEVS={0x90, 0x3, 0x0, 0x1, [{0x14, 0x1, 'batadv_slave_1\x00'}, {0x14, 0x1, 'bridge_slave_1\x00'}, {0x14, 0x1, 'macvlan0\x00'}, {0x14, 0x1, 'geneve0\x00'}, {0x14, 0x1, 'netdevsim0\x00'}, {0x14, 0x1, 'veth1_vlan\x00'}, {0x14, 0x1, 'gre0\x00'}]}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_HOOK={0x4c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0xfffffff8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0xfff}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xb}}}, 0x574}, 0x1, 0x0, 0x0, 0x2004c805}, 0x8000)
r8 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r9 = fcntl$dupfd(r8, 0x0, r8)
write$sndseq(r9, &(0x7f0000000640)=[{0x0, 0x0, 0x0, 0x0, @tick, {0x0, 0x6}, {0x8}, @ext={0x0, 0x0}}, {0x0, 0x80, 0x0, 0x0, @tick, {}, {}, @connect}], 0x38)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r9, 0x5760, 0x0)
r10 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$UI_DEV_SETUP(r10, 0x405c5503, &(0x7f0000000280)={{0x0, 0x4, 0x0, 0x9}, 'syz1\x00', 0x3f})
ioctl$UI_SET_FFBIT(r10, 0x4004556b, 0x51)
ioctl$UI_DEV_CREATE(r10, 0x5501)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r5, 0x47ba, 0x0, 0x0, 0x0, 0x0)

378.052µs ago: executing program 6 (id=888):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x1}, 0x8)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
ioctl$MEDIA_IOC_G_TOPOLOGY(r1, 0xc0487c04, 0x0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000440)={0xffffffffffffffff}, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000006c0)={r2, 0x0, 0xdf2, 0xfa, &(0x7f0000000940)="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", &(0x7f0000000480)=""/250, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x2}, 0x4c)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xe}}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
r4 = syz_open_dev$loop(&(0x7f0000000300), 0x200000, 0x900)
ioctl$BLKTRACESTART(r4, 0x1274, 0x0)

0s ago: executing program 5 (id=889):
syz_emit_ethernet(0x24c, &(0x7f0000000340)={@empty, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "0200", 0x216, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x1, 0x15, 0xd, 0x1000000, 0x0, [{0x23, 0x1, "f93883c674a22544"}, {0x5, 0x8, "c31d1a520856d84b13a0768e53788ac95305e0e6533fa6ce3126e55b1b31e7db33b747fed00d516aebf7b8a6dc5b69bcd7ad39203040675c5c279f2f75593b4d342b"}, {0xe, 0x4, "035a1decd7ffa1b61feb137d26b719c107c219abb7242e05fb1d1fd5da9627"}, {0x19, 0x1d, "64185dafbd0dd1c568b615bf7066f07f49c64d4294f6a0691d1bc4ac78f402dc5a030d037fad736281874a6051ea8019c1460b012cacbb44481c89549c65c55175ef22189c5f8d166fc0bd63fd8d5c75dfc3a206751a8d57d20a4a6a474cf88871f15b7c5115372a7f5fcd75afff19c2a9e28b2526bed6db4f1df1bae604c1820042ee1111a46fd09c8c8a2e66436ee8ea475f988bae616c109a0bb5cdf724a785e09e3c7e8aa451f282af76ea9e9a9e113260e827985507d4f64faf340536febb2eb87b393f495216c694b2741e41afca4c57217f58feedda3ec256f4fe4b7785e62f092a6e"}, {0x19, 0x15, "be2280d9c742cdf83f2dfbf2600eec5f031e92c188e93f67bfab2b434429408a80e5c610d6066af87c7e187200f811c25c9218fb3ffbe4526521e4c6adff5af5628a2ef3db98ad808fd1be484a4f58694da3dbcd55126f1a91bc15b63f7ae59841d6db3ce4df9ab41554f3a0b215888855d4739b2a851ce419a385c241da1db228675ff449ae389b4022f09ef1925aba2431254d05d16ac3edff09441a514169d5d640327f6d2f92ab1e1fe6f3"}]}}}}}}, 0x0)
r0 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x82002)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$BLKPG(r1, 0x1269, &(0x7f0000000000)={0x1, 0x0, 0x98, &(0x7f0000000180)={0x0, 0x800, 0x1000000f}})
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000080)=0xd0) (async)
ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000180)=0xf0) (async)
r2 = socket(0x1d, 0x2, 0x6) (async)
r3 = add_key$keyring(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
add_key$fscrypt_v1(&(0x7f00000000c0), &(0x7f0000000100)={'fscrypt:', @desc1}, &(0x7f0000000180)={0x0, "7815d1c51161c48e0b6e699218923cbfbcabefa1529accc10aa13b8f5aad9d22b10abfb21e04228ded2544e23e30b61139f1fe3daa738c5111d4e8ced01fed52", 0x40}, 0x48, r3) (async)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6a, 0x1f, 0x0, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r6 = syz_open_dev$sndctrl(&(0x7f0000000000), 0xa1, 0x2c0080)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r6, 0x40045542, &(0x7f0000000080)=0x3) (async)
ioctl$IOCTL_STOP_ACCEL_DEV(r5, 0x541b, 0x0) (async)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@ipv6_getaddrlabel={0x30, 0x4a, 0x400, 0x70bd2d, 0x25dfdbff, {0xa, 0x0, 0x3f, 0x0, 0x0, 0x9}, [@IFAL_ADDRESS={0x14, 0x1, @mcast1}]}, 0x30}}, 0x200400c4)

0s ago: executing program 5 (id=890):
r0 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='ip6_vti0\x00', 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0}}], 0x68000, 0xe000)

kernel console output (not intermixed with test programs):

ase socket
[  388.493026][ T1141] vhci_hcd: disconnect device
[  388.502269][ T8886] vhci_hcd: connection closed
[  388.503317][ T8884] vhci_hcd: connection closed
[  388.503484][ T8885] vhci_hcd: sendmsg failed!, ret=-32 for 48
[  388.559013][ T8889] vhci_hcd: connection closed
[  388.559374][ T1141] vhci_hcd: stop threads
[  388.563452][ T1141] vhci_hcd: release socket
[  388.582828][ T1141] vhci_hcd: disconnect device
[  388.608663][ T1141] vhci_hcd: stop threads
[  388.610386][ T1141] vhci_hcd: release socket
[  388.612175][ T1141] vhci_hcd: disconnect device
[  388.614315][ T1141] vhci_hcd: stop threads
[  388.616149][ T1141] vhci_hcd: release socket
[  388.619823][ T1141] vhci_hcd: disconnect device
[  388.636434][ T1141] vhci_hcd: stop threads
[  388.638254][ T1141] vhci_hcd: release socket
[  388.640683][ T1141] vhci_hcd: disconnect device
[  388.799237][ T8898] lo speed is unknown, defaulting to 1000
[  388.803950][ T8898] lo speed is unknown, defaulting to 1000
[  389.073575][    C2] vkms_vblank_simulate: vblank timer overrun
[  389.139476][   T24] usb 11-1: new high-speed USB device number 11 using dummy_hcd
[  389.292461][   T24] usb 11-1: Using ep0 maxpacket: 16
[  389.296713][   T24] usb 11-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  389.301193][   T24] usb 11-1: config 0 interface 0 has no altsetting 0
[  389.304950][   T24] usb 11-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  389.308295][   T24] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  389.316336][   T24] usb 11-1: config 0 descriptor??
[  389.541933][    C2] vkms_vblank_simulate: vblank timer overrun
[  389.730668][    C2] vkms_vblank_simulate: vblank timer overrun
[  389.894946][    C2] vkms_vblank_simulate: vblank timer overrun
[  389.956278][   T24] usbhid 11-1:0.0: can't add hid device: -71
[  389.959312][   T24] usbhid 11-1:0.0: probe with driver usbhid failed with error -71
[  389.973091][   T24] usb 11-1: USB disconnect, device number 11
[  390.038688][    C2] vkms_vblank_simulate: vblank timer overrun
[  390.223178][    C2] vkms_vblank_simulate: vblank timer overrun
[  390.322753][    C2] vkms_vblank_simulate: vblank timer overrun
[  390.374727][    C2] vkms_vblank_simulate: vblank timer overrun
[  390.958676][    C2] vkms_vblank_simulate: vblank timer overrun
[  391.110671][    C2] vkms_vblank_simulate: vblank timer overrun
[  391.326833][   T53] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  391.534968][   T53] usb 9-1: Using ep0 maxpacket: 8
[  391.543043][   T53] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  391.546893][   T53] usb 9-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  391.572220][   T53] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  391.577302][   T53] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  391.790669][    C2] vkms_vblank_simulate: vblank timer overrun
[  391.822688][    C2] vkms_vblank_simulate: vblank timer overrun
[  392.118665][    C2] vkms_vblank_simulate: vblank timer overrun
[  392.214824][    C2] vkms_vblank_simulate: vblank timer overrun
[  392.312167][    C2] vkms_vblank_simulate: vblank timer overrun
[  392.467293][ T8937] FAULT_INJECTION: forcing a failure.
[  392.467293][ T8937] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  392.475847][ T8937] CPU: 0 UID: 0 PID: 8937 Comm: syz.5.522 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  392.475870][ T8937] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  392.475881][ T8937] Call Trace:
[  392.475887][ T8937]  <TASK>
[  392.475894][ T8937]  dump_stack_lvl+0x16c/0x1f0
[  392.475925][ T8937]  should_fail_ex+0x512/0x640
[  392.475953][ T8937]  _copy_from_user+0x2e/0xd0
[  392.475979][ T8937]  vhost_vsock_dev_ioctl+0x222/0xb30
[  392.476007][ T8937]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  392.476035][ T8937]  ? hook_file_ioctl_common+0x145/0x410
[  392.476056][ T8937]  ? __fget_files+0x20e/0x3c0
[  392.476097][ T8937]  ? fput+0x60/0xf0
[  392.476113][ T8937]  ? __pfx_vhost_vsock_dev_ioctl+0x10/0x10
[  392.476133][ T8937]  compat_ptr_ioctl+0x6b/0xa0
[  392.476147][ T8937]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  392.476161][ T8937]  __ia32_compat_sys_ioctl+0x242/0x370
[  392.476179][ T8937]  __do_fast_syscall_32+0x7c/0x3a0
[  392.476194][ T8937]  do_fast_syscall_32+0x32/0x80
[  392.476207][ T8937]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  392.476224][ T8937] RIP: 0023:0xf7fa8579
[  392.476236][ T8937] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  392.476249][ T8937] RSP: 002b:00000000f50a555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  392.476262][ T8937] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000004004af61
[  392.476271][ T8937] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  392.476280][ T8937] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  392.476288][ T8937] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  392.476296][ T8937] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  392.476314][ T8937]  </TASK>
[  392.522646][    C2] vkms_vblank_simulate: vblank timer overrun
[  392.684445][    C2] vkms_vblank_simulate: vblank timer overrun
[  392.891206][    C2] vkms_vblank_simulate: vblank timer overrun
[  393.102634][    C2] vkms_vblank_simulate: vblank timer overrun
[  393.122899][    C2] vkms_vblank_simulate: vblank timer overrun
[  393.238630][    C2] vkms_vblank_simulate: vblank timer overrun
[  393.586573][ T5636] vhci_hcd: vhci_device speed not set
[  394.057665][    C2] vkms_vblank_simulate: vblank timer overrun
[  394.078295][  T813] usb 9-1: USB disconnect, device number 5
[  394.528733][ T8959] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.5.524: iget: checksum invalid
[  394.555404][ T8959] platform regulatory.0: loading /lib/firmware/updates/6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e/regulatory.db failed with error -74
[  394.578537][ T8959] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.5.524: iget: checksum invalid
[  394.585289][ T8959] platform regulatory.0: loading /lib/firmware/updates/regulatory.db failed with error -74
[  394.588450][  T813] usb 9-1: new low-speed USB device number 6 using dummy_hcd
[  394.590666][ T8959] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.5.524: iget: checksum invalid
[  394.599727][ T8959] platform regulatory.0: loading /lib/firmware/6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e/regulatory.db failed with error -74
[  394.627038][ T8959] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.5.524: iget: checksum invalid
[  394.650038][ T8959] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -74
[  394.691279][ T8959] platform regulatory.0: Direct firmware load for regulatory.db failed with error -74
[  394.709597][ T8959] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  394.783744][  T813] usb 9-1: config 0 has an invalid interface number: 1 but max is 0
[  394.787451][  T813] usb 9-1: config 0 has no interface number 0
[  394.790647][  T813] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  394.829958][  T813] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  394.843039][  T813] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  394.921458][  T813] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  394.958704][    C2] vkms_vblank_simulate: vblank timer overrun
[  394.964963][  T813] usb 9-1: config 0 descriptor??
[  394.993028][    C2] vkms_vblank_simulate: vblank timer overrun
[  395.012014][  T813] iowarrior 9-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  395.051133][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  395.210693][    C2] vkms_vblank_simulate: vblank timer overrun
[  395.234722][ T5636] usb 9-1: USB disconnect, device number 6
[  395.910314][  T813] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  402.972534][ T9034] : entered promiscuous mode
[  403.024510][ T9034] netlink: 28 bytes leftover after parsing attributes in process `syz.4.535'.
[  403.900765][ T9071] overlayfs: failed to resolve './file1': -2
[  403.911285][   T10] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  404.080712][   T10] usb 9-1: Using ep0 maxpacket: 8
[  404.089315][   T10] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  404.115274][   T10] usb 9-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  404.124921][   T10] usb 9-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  404.132755][   T10] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  404.136416][   T10] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  404.152839][   T10] usbtmc 9-1:16.0: bulk endpoints not found
[  405.419996][ T6016] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  406.686077][ T6016] usb 9-1: USB disconnect, device number 7
[  413.557404][ T9096] netlink: 12 bytes leftover after parsing attributes in process `syz.5.550'.
[  413.561393][ T9094] program syz.6.547 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  413.986669][ T5968] Bluetooth: hci3: Received unexpected HCI Event 0x00
[  414.704670][ T9111] kvm: pic: non byte read
[  414.707887][ T9111] kvm: pic: non byte read
[  414.711139][ T9111] kvm: pic: non byte read
[  414.714119][ T9111] kvm: pic: non byte read
[  414.716990][ T9111] kvm: pic: non byte read
[  414.730085][ T9111] kvm: pic: level sensitive irq not supported
[  414.730345][ T9111] kvm: pic: non byte read
[  414.734863][ T9111] kvm: pic: non byte read
[  414.737480][ T9111] kvm: pic: non byte read
[  414.750366][ T9111] kvm: pic: non byte read
[  414.757995][ T9111] kvm: pic: non byte read
[  414.908564][ T9127] raw_sendmsg: syz.7.556 forgot to set AF_INET. Fix it!
[  415.020902][ T9129] program syz.4.555 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  415.730106][ T6060] usb 11-1: new high-speed USB device number 12 using dummy_hcd
[  415.978873][ T6060] usb 11-1: Using ep0 maxpacket: 8
[  415.979965][ T9165] program syz.4.561 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  415.982745][ T6060] usb 11-1: config index 0 descriptor too short (expected 301, got 45)
[  415.987305][ T6060] usb 11-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  416.001488][ T6060] usb 11-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  416.006566][ T6060] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  416.028890][ T6060] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  416.178416][ T6060] usbtmc 11-1:16.0: bulk endpoints not found
[  417.349886][ T8407] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  418.474430][  T841] usb 11-1: USB disconnect, device number 12
[  424.592650][ T8547] hid-generic 0000:0004:0000.0004: unknown main item tag 0x0
[  424.595038][ T8547] hid-generic 0000:0004:0000.0004: unknown main item tag 0x0
[  424.610035][ T8547] hid-generic 0000:0004:0000.0004: unknown main item tag 0x0
[  424.615697][ T9203] MTD: Couldn't look up './file0': -15
[  424.675354][ T8547] hid-generic 0000:0004:0000.0004: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  424.809150][   T24] e1000 0000:00:06.0 eth0: Reset adapter
[  424.825733][ T9219] FAULT_INJECTION: forcing a failure.
[  424.825733][ T9219] name failslab, interval 1, probability 0, space 0, times 0
[  424.832107][ T9219] CPU: 1 UID: 0 PID: 9219 Comm: syz.7.571 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  424.832123][ T9219] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  424.832129][ T9219] Call Trace:
[  424.832133][ T9219]  <TASK>
[  424.832137][ T9219]  dump_stack_lvl+0x16c/0x1f0
[  424.832158][ T9219]  should_fail_ex+0x512/0x640
[  424.832174][ T9219]  ? fs_reclaim_acquire+0xae/0x150
[  424.832187][ T9219]  ? tomoyo_encode2+0x100/0x3e0
[  424.832200][ T9219]  should_failslab+0xc2/0x120
[  424.832210][ T9219]  __kmalloc_noprof+0xd2/0x510
[  424.832225][ T9219]  ? d_absolute_path+0x136/0x1a0
[  424.832238][ T9219]  tomoyo_encode2+0x100/0x3e0
[  424.832254][ T9219]  tomoyo_encode+0x29/0x50
[  424.832266][ T9219]  tomoyo_realpath_from_path+0x18f/0x6e0
[  424.832284][ T9219]  tomoyo_path_number_perm+0x245/0x580
[  424.832296][ T9219]  ? tomoyo_path_number_perm+0x237/0x580
[  424.832309][ T9219]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  424.832335][ T9219]  ? find_held_lock+0x2b/0x80
[  424.832345][ T9219]  ? hook_file_ioctl_common+0x145/0x410
[  424.832359][ T9219]  ? __fget_files+0x20e/0x3c0
[  424.832372][ T9219]  ? fput+0x60/0xf0
[  424.832383][ T9219]  security_file_ioctl_compat+0x9b/0x240
[  424.832398][ T9219]  __ia32_compat_sys_ioctl+0xc3/0x370
[  424.832412][ T9219]  __do_fast_syscall_32+0x7c/0x3a0
[  424.832423][ T9219]  do_fast_syscall_32+0x32/0x80
[  424.832432][ T9219]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  424.832449][ T9219] RIP: 0023:0xf705e579
[  424.832457][ T9219] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  424.832467][ T9219] RSP: 002b:00000000f504e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  424.832477][ T9219] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0189436
[  424.832483][ T9219] RDX: 0000000080000140 RSI: 0000000000000000 RDI: 0000000000000000
[  424.832489][ T9219] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  424.832494][ T9219] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  424.832500][ T9219] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  424.832513][ T9219]  </TASK>
[  424.832523][ T9219] ERROR: Out of memory at tomoyo_realpath_from_path.
[  424.841186][ T9222] misc userio: Invalid payload size
[  425.349090][ T6029] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  425.549565][ T6029] usb 10-1: Using ep0 maxpacket: 8
[  425.553137][ T6029] usb 10-1: config index 0 descriptor too short (expected 301, got 45)
[  425.555894][ T6029] usb 10-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  425.559762][ T6029] usb 10-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  425.564112][ T6029] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  425.568007][ T6029] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  425.686827][ T6029] usbtmc 10-1:16.0: bulk endpoints not found
[  425.796977][ T9256] FAULT_INJECTION: forcing a failure.
[  425.796977][ T9256] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  425.808849][ T9256] CPU: 1 UID: 0 PID: 9256 Comm: syz.7.578 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  425.808865][ T9256] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  425.808872][ T9256] Call Trace:
[  425.808876][ T9256]  <TASK>
[  425.808881][ T9256]  dump_stack_lvl+0x16c/0x1f0
[  425.808914][ T9256]  should_fail_ex+0x512/0x640
[  425.808932][ T9256]  _copy_to_user+0x32/0xd0
[  425.808950][ T9256]  simple_read_from_buffer+0xcb/0x170
[  425.808965][ T9256]  proc_fail_nth_read+0x197/0x270
[  425.808977][ T9256]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  425.808990][ T9256]  ? rw_verify_area+0xcf/0x680
[  425.809003][ T9256]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  425.809014][ T9256]  vfs_read+0x1e1/0xc60
[  425.809028][ T9256]  ? fdget_pos+0x2a2/0x370
[  425.809044][ T9256]  ? __pfx_vfs_read+0x10/0x10
[  425.809057][ T9256]  ? find_held_lock+0x2b/0x80
[  425.809071][ T9256]  ? __fget_files+0x20e/0x3c0
[  425.809088][ T9256]  ksys_read+0x12a/0x250
[  425.809101][ T9256]  ? __pfx_ksys_read+0x10/0x10
[  425.809116][ T9256]  ? rcu_is_watching+0x12/0xc0
[  425.809129][ T9256]  __do_fast_syscall_32+0x7c/0x3a0
[  425.809140][ T9256]  do_fast_syscall_32+0x32/0x80
[  425.809149][ T9256]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  425.809163][ T9256] RIP: 0023:0xf705e579
[  425.809171][ T9256] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  425.809181][ T9256] RSP: 002b:00000000f500c590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  425.809190][ T9256] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f500c620
[  425.809197][ T9256] RDX: 000000000000000f RSI: 00000000f73c2ff4 RDI: 0000000000000000
[  425.809202][ T9256] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  425.809208][ T9256] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  425.809214][ T9256] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  425.809226][ T9256]  </TASK>
[  425.880184][    C1] vkms_vblank_simulate: vblank timer overrun
[  426.942538][ T6053] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  428.098341][ T6029] usb 10-1: USB disconnect, device number 3
[  433.572967][ T9277] netlink: 44 bytes leftover after parsing attributes in process `syz.5.582'.
[  433.617756][ T9280] program syz.4.580 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  433.848987][   T54] usb 12-1: new high-speed USB device number 3 using dummy_hcd
[  434.015000][   T54] usb 12-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  434.018838][   T54] usb 12-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  434.022053][   T54] usb 12-1: config 1 has 1 interface, different from the descriptor's value: 66
[  434.025256][   T54] usb 12-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  434.037881][   T54] usb 12-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  434.052188][   T54] usb 12-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  434.055999][   T54] usb 12-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  434.060617][   T54] usb 12-1: Product: syz
[  434.062073][   T54] usb 12-1: Manufacturer: syz
[  434.066950][   T54] cdc_wdm 12-1:1.0: skipping garbage
[  434.073277][   T54] cdc_wdm 12-1:1.0: skipping garbage
[  434.076892][   T54] cdc_wdm 12-1:1.0: cdc-wdm0: USB WDM device
[  434.080937][   T54] cdc_wdm 12-1:1.0: Unknown control protocol
[  434.998929][   T54] usb 11-1: new high-speed USB device number 13 using dummy_hcd
[  435.158899][   T54] usb 11-1: Using ep0 maxpacket: 8
[  435.162203][   T54] usb 11-1: config index 0 descriptor too short (expected 301, got 45)
[  435.164914][   T54] usb 11-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  435.168173][   T54] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  435.171535][   T54] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  435.174634][   T54] usb 11-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  435.178752][   T54] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  435.181979][   T54] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  435.188914][ T5636] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  435.191841][   T54] usbtmc 11-1:16.0: bulk endpoints not found
[  435.370333][ T5636] usb 10-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  435.373192][ T5636] usb 10-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  435.376483][ T5636] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 66
[  435.379428][ T5636] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  435.382938][ T5636] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  435.387944][ T5636] usb 10-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  435.391052][ T5636] usb 10-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  435.393634][ T5636] usb 10-1: Product: syz
[  435.395048][ T5636] usb 10-1: Manufacturer: syz
[  435.401027][ T5636] cdc_wdm 10-1:1.0: skipping garbage
[  435.403048][ T5636] cdc_wdm 10-1:1.0: skipping garbage
[  435.601079][ T9326] FAULT_INJECTION: forcing a failure.
[  435.601079][ T9326] name failslab, interval 1, probability 0, space 0, times 0
[  435.608977][ T9326] CPU: 0 UID: 0 PID: 9326 Comm: syz.5.588 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  435.608995][ T9326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  435.609001][ T9326] Call Trace:
[  435.609005][ T9326]  <TASK>
[  435.609010][ T9326]  dump_stack_lvl+0x16c/0x1f0
[  435.609031][ T9326]  should_fail_ex+0x512/0x640
[  435.609047][ T9326]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  435.609063][ T9326]  should_failslab+0xc2/0x120
[  435.609074][ T9326]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  435.609089][ T9326]  ? alloc_empty_file+0x55/0x1e0
[  435.609103][ T9326]  alloc_empty_file+0x55/0x1e0
[  435.609113][ T9326]  path_openat+0xda/0x2cb0
[  435.609126][ T9326]  ? do_fast_syscall_32+0x32/0x80
[  435.609135][ T9326]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  435.609153][ T9326]  ? __pfx_path_openat+0x10/0x10
[  435.609171][ T9326]  do_filp_open+0x20b/0x470
[  435.609185][ T9326]  ? __pfx_do_filp_open+0x10/0x10
[  435.609209][ T9326]  ? _raw_spin_unlock+0x28/0x50
[  435.609224][ T9326]  ? alloc_fd+0x471/0x7d0
[  435.609241][ T9326]  do_sys_openat2+0x11b/0x1d0
[  435.609252][ T9326]  ? __pfx_do_sys_openat2+0x10/0x10
[  435.609266][ T9326]  ? __fget_files+0x20e/0x3c0
[  435.609282][ T9326]  __ia32_compat_sys_openat+0x16d/0x210
[  435.609308][ T9326]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  435.609323][ T9326]  ? ksys_write+0x1ac/0x250
[  435.609340][ T9326]  ? rcu_is_watching+0x12/0xc0
[  435.609352][ T9326]  __do_fast_syscall_32+0x7c/0x3a0
[  435.609363][ T9326]  do_fast_syscall_32+0x32/0x80
[  435.609373][ T9326]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  435.609385][ T9326] RIP: 0023:0xf7fa8579
[  435.609394][ T9326] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  435.609404][ T9326] RSP: 002b:00000000f50c6100 EFLAGS: 00000293 ORIG_RAX: 0000000000000127
[  435.609414][ T9326] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000f50c6150
[  435.609420][ T9326] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 00000000f7432ff4
[  435.609426][ T9326] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  435.609432][ T9326] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  435.609438][ T9326] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  435.609450][ T9326]  </TASK>
[  435.909812][ T8407] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[  436.239044][  T813] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  436.390674][  T813] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  436.393411][  T813] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  436.396530][  T813] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  436.399942][  T813] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  436.403326][  T813] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  436.408560][  T813] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  436.411483][  T813] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  436.413967][  T813] usb 9-1: Product: syz
[  436.415729][  T813] usb 9-1: Manufacturer: syz
[  436.420270][  T813] cdc_wdm 9-1:1.0: skipping garbage
[  436.422203][  T813] cdc_wdm 9-1:1.0: skipping garbage
[  436.579776][ T5636] cdc_wdm 10-1:1.0: cdc-wdm1: USB WDM device
[  436.582105][ T5636] cdc_wdm 10-1:1.0: Unknown control protocol
[  436.582974][  T813] cdc_wdm 9-1:1.0: cdc-wdm2: USB WDM device
[  436.588230][  T813] cdc_wdm 9-1:1.0: Unknown control protocol
[  436.593473][    C3] cdc_wdm 12-1:1.0: nonzero urb status received: -71
[  436.593986][   T10] usb 12-1: USB disconnect, device number 3
[  436.595665][    C3] cdc_wdm 12-1:1.0: wdm_int_callback - 0 bytes
[  436.599627][    C3] cdc_wdm 12-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  436.605737][ T8547] usb 10-1: USB disconnect, device number 4
[  436.630465][ T8407] usb 9-1: USB disconnect, device number 8
[  437.773816][ T8407] usb 11-1: USB disconnect, device number 13
[  441.706806][ T9375] netlink: 8 bytes leftover after parsing attributes in process `syz.4.593'.
[  441.716075][ T9375] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  441.969595][ T6029] libceph: connect (1)[c::]:6789 error -101
[  441.990926][ T6029] libceph: mon0 (1)[c::]:6789 connect error
[  442.283890][ T6029] libceph: connect (1)[c::]:6789 error -101
[  442.287077][ T6029] libceph: mon0 (1)[c::]:6789 connect error
[  442.421357][ T9384] ceph: No mds server is up or the cluster is laggy
[  442.498934][ T8547] usb 12-1: new high-speed USB device number 4 using dummy_hcd
[  442.748989][ T6029] usb 11-1: new high-speed USB device number 14 using dummy_hcd
[  442.749280][ T8547] usb 12-1: Using ep0 maxpacket: 8
[  442.755107][ T8547] usb 12-1: config index 0 descriptor too short (expected 301, got 45)
[  442.758027][ T8547] usb 12-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  442.761308][ T8547] usb 12-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  442.764525][ T8547] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  442.767768][ T8547] usb 12-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  442.772162][ T8547] usb 12-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  442.775328][ T8547] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  442.780708][ T8547] usbtmc 12-1:16.0: bulk endpoints not found
[  442.900761][ T6029] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  442.904729][ T6029] usb 11-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  442.908164][ T6029] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  442.912167][ T6029] usb 11-1: config 0 descriptor??
[  443.126198][ T6029] usbhid 11-1:0.0: can't add hid device: -71
[  443.129426][ T6029] usbhid 11-1:0.0: probe with driver usbhid failed with error -71
[  443.138136][ T6029] usb 11-1: USB disconnect, device number 14
[  443.418955][ T8547] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  443.568927][ T6029] usb 11-1: new high-speed USB device number 15 using dummy_hcd
[  443.570479][ T8547] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  443.575044][ T8547] usb 9-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  443.577926][ T8547] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  443.581902][ T8547] usb 9-1: config 0 descriptor??
[  443.718938][ T6029] usb 11-1: Using ep0 maxpacket: 32
[  443.723045][ T6029] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  443.726554][ T6029] usb 11-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[  443.729471][ T6029] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  443.733905][ T6029] usb 11-1: config 0 descriptor??
[  443.737439][ T6029] ldusb 11-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  443.742762][ T6029] ldusb 11-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  443.788744][ T8547] usbhid 9-1:0.0: can't add hid device: -71
[  443.792425][ T8547] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  443.797496][ T8547] usb 9-1: USB disconnect, device number 9
[  444.024911][ T8547] usb 11-1: USB disconnect, device number 15
[  444.029978][ T8547] ldusb 11-1:0.0: LD USB Device #0 now disconnected
[  444.162311][ T9417] @: renamed from vlan0 (while UP)
[  444.284678][ T9422] netfs: Couldn't get user pages (rc=-14)
[  444.698920][ T5968] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  444.745559][ T9427] program syz.5.609 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  445.372643][ T8547] usb 12-1: USB disconnect, device number 4
[  445.423950][ T9438] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(10)
[  445.426078][ T9438] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  445.430418][ T9438] vhci_hcd vhci_hcd.0: Device attached
[  445.434742][ T9438] vhci_hcd vhci_hcd.0: pdev(7) rhport(1) sockfd(12)
[  445.436884][ T9438] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  445.444633][ T9438] vhci_hcd vhci_hcd.0: Device attached
[  445.448460][ T9438] vhci_hcd vhci_hcd.0: pdev(7) rhport(2) sockfd(15)
[  445.451280][ T9438] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  445.458231][ T9438] vhci_hcd vhci_hcd.0: Device attached
[  445.461838][ T9438] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  445.465868][ T9438] vhci_hcd vhci_hcd.0: pdev(7) rhport(4) sockfd(20)
[  445.468136][ T9438] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  445.471529][ T9438] vhci_hcd vhci_hcd.0: Device attached
[  445.474809][ T9438] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(22)
[  445.476960][ T9438] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  445.480878][ T9438] vhci_hcd vhci_hcd.0: Device attached
[  445.483344][ T9438] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  445.486444][ T9438] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  445.489868][ T9438] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  445.501209][ T9447] vhci_hcd: connection closed
[  445.501324][ T9445] vhci_hcd: connection closed
[  445.501376][   T46] vhci_hcd: stop threads
[  445.507004][ T9443] vhci_hcd: connection closed
[  445.507231][ T9439] vhci_hcd: connection closed
[  445.507697][   T46] vhci_hcd: release socket
[  445.511898][   T46] vhci_hcd: disconnect device
[  445.513499][ T9441] vhci_hcd: connection closed
[  445.513606][   T46] vhci_hcd: stop threads
[  445.516528][   T46] vhci_hcd: release socket
[  445.518160][   T46] vhci_hcd: disconnect device
[  445.521791][   T46] vhci_hcd: stop threads
[  445.523176][   T46] vhci_hcd: release socket
[  445.524620][   T46] vhci_hcd: disconnect device
[  445.526291][   T46] vhci_hcd: stop threads
[  445.527682][   T46] vhci_hcd: release socket
[  445.531452][   T46] vhci_hcd: disconnect device
[  445.533138][   T46] vhci_hcd: stop threads
[  445.534592][   T46] vhci_hcd: release socket
[  445.537180][   T46] vhci_hcd: disconnect device
[  446.037795][ T9458] program syz.4.614 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  447.081604][ T9482] bridge1: entered promiscuous mode
[  447.397428][ T9493] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  447.399576][ T9493] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  447.402596][ T9493] vhci_hcd vhci_hcd.0: Device attached
[  447.407254][ T9493] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(12)
[  447.409833][ T9493] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  447.415278][ T9493] vhci_hcd vhci_hcd.0: Device attached
[  447.419541][ T9493] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(15)
[  447.422200][ T9493] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  447.427561][ T9493] vhci_hcd vhci_hcd.0: Device attached
[  447.438408][ T9493] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  447.493926][ T9502] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(23)
[  447.495807][ T9501] netlink: 20 bytes leftover after parsing attributes in process `syz.7.621'.
[  447.496039][ T9502] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  447.496378][ T9502] vhci_hcd vhci_hcd.0: Device attached
[  447.507647][ T9502] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  447.515651][ T9502] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  447.521792][ T9502] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  447.559303][ T9493] vhci_hcd vhci_hcd.0: pdev(4) rhport(4) sockfd(20)
[  447.562149][ T9493] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  447.571544][ T9493] vhci_hcd vhci_hcd.0: Device attached
[  447.576443][ T9503] vhci_hcd: connection closed
[  447.577216][ T9496] vhci_hcd: connection closed
[  447.581623][ T9498] vhci_hcd: connection closed
[  447.583960][ T1146] vhci_hcd: stop threads
[  447.587798][ T1146] vhci_hcd: release socket
[  447.591545][ T9494] vhci_hcd: connection closed
[  447.592173][ T1146] vhci_hcd: disconnect device
[  447.597852][ T1146] vhci_hcd: stop threads
[  447.602139][ T1146] vhci_hcd: release socket
[  447.604016][ T1146] vhci_hcd: disconnect device
[  447.606241][ T1146] vhci_hcd: stop threads
[  447.608050][ T1146] vhci_hcd: release socket
[  447.610805][ T1146] vhci_hcd: disconnect device
[  447.613538][ T1146] vhci_hcd: stop threads
[  447.615400][ T1146] vhci_hcd: release socket
[  447.617314][ T1146] vhci_hcd: disconnect device
[  447.650254][ T9500] vhci_hcd: connection closed
[  447.651828][ T1146] vhci_hcd: stop threads
[  447.655912][ T1146] vhci_hcd: release socket
[  447.657805][ T1146] vhci_hcd: disconnect device
[  448.245648][ T9517] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  448.247994][ T9517] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  448.251876][ T9517] vhci_hcd vhci_hcd.0: Device attached
[  448.257471][ T9517] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(12)
[  448.260313][ T9517] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  448.264110][ T9517] vhci_hcd vhci_hcd.0: Device attached
[  448.269520][ T9517] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(15)
[  448.271749][ T9517] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  448.274448][ T9517] vhci_hcd vhci_hcd.0: Device attached
[  448.277611][ T9517] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  448.282135][ T9517] vhci_hcd vhci_hcd.0: pdev(4) rhport(4) sockfd(20)
[  448.284758][ T9517] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  448.287668][ T9517] vhci_hcd vhci_hcd.0: Device attached
[  448.291645][ T9517] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(22)
[  448.294054][ T9517] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  448.297180][ T9517] vhci_hcd vhci_hcd.0: Device attached
[  448.301199][ T9517] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  448.305534][ T9517] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  448.310651][ T9517] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  448.337509][ T9527] vhci_hcd: connection closed
[  448.337601][ T9525] vhci_hcd: connection closed
[  448.337761][ T9523] vhci_hcd: connection closed
[  448.341480][ T9521] vhci_hcd: connection closed
[  448.341607][ T9518] vhci_hcd: connection closed
[  448.363293][ T9530] FAULT_INJECTION: forcing a failure.
[  448.363293][ T9530] name failslab, interval 1, probability 0, space 0, times 0
[  448.369143][ T9530] CPU: 1 UID: 0 PID: 9530 Comm: syz.5.625 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  448.369169][ T9530] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  448.369175][ T9530] Call Trace:
[  448.369179][ T9530]  <TASK>
[  448.369184][ T9530]  dump_stack_lvl+0x16c/0x1f0
[  448.369208][ T9530]  should_fail_ex+0x512/0x640
[  448.369224][ T9530]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  448.369240][ T9530]  should_failslab+0xc2/0x120
[  448.369250][ T9530]  __kmalloc_cache_noprof+0x6a/0x3e0
[  448.369263][ T9530]  ? keyctl_watch_key+0x151/0x500
[  448.369276][ T9530]  keyctl_watch_key+0x151/0x500
[  448.369288][ T9530]  __ia32_compat_sys_keyctl+0x1f1/0x540
[  448.369304][ T9530]  __do_fast_syscall_32+0x7c/0x3a0
[  448.369315][ T9530]  do_fast_syscall_32+0x32/0x80
[  448.369324][ T9530]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  448.369337][ T9530] RIP: 0023:0xf7fa8579
[  448.369345][ T9530] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  448.369355][ T9530] RSP: 002b:00000000f508455c EFLAGS: 00000296 ORIG_RAX: 0000000000000120
[  448.369365][ T9530] RAX: ffffffffffffffda RBX: 0000000000000020 RCX: 00000000361c5e8f
[  448.369371][ T9530] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000000
[  448.369377][ T9530] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  448.369383][ T9530] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  448.369389][ T9530] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  448.369401][ T9530]  </TASK>
[  448.447698][ T1140] vhci_hcd: stop threads
[  448.450761][ T1140] vhci_hcd: release socket
[  448.453595][ T1140] vhci_hcd: disconnect device
[  448.455928][ T1140] vhci_hcd: stop threads
[  448.457752][ T1140] vhci_hcd: release socket
[  448.459843][ T1140] vhci_hcd: disconnect device
[  448.462007][ T1140] vhci_hcd: stop threads
[  448.463821][ T1140] vhci_hcd: release socket
[  448.465443][ T1140] vhci_hcd: disconnect device
[  448.467115][ T1140] vhci_hcd: stop threads
[  448.468470][ T1140] vhci_hcd: release socket
[  448.471495][ T1140] vhci_hcd: disconnect device
[  448.473432][ T1140] vhci_hcd: stop threads
[  448.475232][ T1140] vhci_hcd: release socket
[  448.477193][ T1140] vhci_hcd: disconnect device
[  448.640400][ T5636] usb 11-1: new high-speed USB device number 16 using dummy_hcd
[  448.788928][ T5636] usb 11-1: Using ep0 maxpacket: 8
[  448.791986][ T5636] usb 11-1: config index 0 descriptor too short (expected 301, got 45)
[  448.794523][ T5636] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  448.797620][ T5636] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  448.800672][ T5636] usb 11-1: config 16 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  448.803439][ T5636] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  448.807148][ T5636] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  448.810193][ T5636] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  448.815985][ T5636] usbtmc 11-1:16.0: bulk endpoints not found
[  448.882240][ T9535] netlink: 28 bytes leftover after parsing attributes in process `syz.4.630'.
[  448.913291][ T9537] netlink: 12 bytes leftover after parsing attributes in process `syz.4.631'.
[  449.895105][ T9549] netlink: 4 bytes leftover after parsing attributes in process `syz.4.634'.
[  450.248858][   T52] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  450.458876][   T52] usb 10-1: Using ep0 maxpacket: 16
[  450.462368][   T52] usb 10-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  450.466831][   T52] usb 10-1: config 0 interface 0 has no altsetting 0
[  450.470309][   T52] usb 10-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  450.474311][   T52] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  450.480616][   T52] usb 10-1: config 0 descriptor??
[  450.613727][ T6029] lo speed is unknown, defaulting to 1000
[  450.699866][   T52] usbhid 10-1:0.0: can't add hid device: -71
[  450.702428][   T52] usbhid 10-1:0.0: probe with driver usbhid failed with error -71
[  450.719144][   T52] usb 10-1: USB disconnect, device number 5
[  451.010866][ T1140] Bluetooth: Error in BCSP hdr checksum
[  451.501428][  T141] usb 11-1: USB disconnect, device number 16
[  451.547258][ T9591] program syz.6.649 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  452.199243][ T9600] loop8: detected capacity change from 0 to 8
[  452.208316][ T9600] Dev loop8: unable to read RDB block 8
[  452.213257][ T9600]  loop8: unable to read partition table
[  452.215835][ T9600] loop8: partition table beyond EOD, truncated
[  452.218991][ T9600] loop_reread_partitions: partition scan of loop8 (þ被xü^>à– �) failed (rc=-5)
[  452.778904][ T5963] Bluetooth: hci4: command 0x1003 tx timeout
[  452.781006][ T5968] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  453.089338][ T8407] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  453.193544][ T9628] capability: warning: `syz.6.658' uses deprecated v2 capabilities in a way that may be insecure
[  453.244847][ T9630] program syz.4.659 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  453.259318][ T8407] usb 10-1: Using ep0 maxpacket: 32
[  453.267210][ T8407] usb 10-1: config index 0 descriptor too short (expected 29220, got 36)
[  453.271277][ T8407] usb 10-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  453.274849][ T8407] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 81
[  453.278630][ T8407] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  453.282814][ T8407] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  453.286870][ T8407] usb 10-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  453.292408][ T8407] usb 10-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  453.296165][ T8407] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  453.304133][ T8407] usb 10-1: config 0 descriptor??
[  453.358914][ T6016] usb 12-1: new high-speed USB device number 5 using dummy_hcd
[  453.509992][ T6016] usb 12-1: Using ep0 maxpacket: 8
[  453.516445][ T8407] usblp 10-1:0.0: usblp0: USB Bidirectional printer dev 6 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  453.524664][ T6016] usb 12-1: config index 0 descriptor too short (expected 301, got 45)
[  453.527167][ T6016] usb 12-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  453.534540][ T8407] usb 10-1: USB disconnect, device number 6
[  453.537115][ T6016] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  453.540384][ T6016] usb 12-1: config 16 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  453.546324][ T8407] usblp0: removed
[  453.548501][ T6016] usb 12-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  453.552712][ T6016] usb 12-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  453.555566][ T6016] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  453.561627][ T6016] usbtmc 12-1:16.0: bulk endpoints not found
[  453.653385][ T9634] netlink: 4 bytes leftover after parsing attributes in process `syz.4.660'.
[  453.656845][ T9634] netlink: 12 bytes leftover after parsing attributes in process `syz.4.660'.
[  454.008867][ T8407] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  454.158895][ T8407] usb 10-1: Using ep0 maxpacket: 32
[  454.162490][ T8407] usb 10-1: config index 0 descriptor too short (expected 29220, got 36)
[  454.165181][ T8407] usb 10-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  454.167944][ T8407] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 81
[  454.170876][ T8407] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  454.173934][ T8407] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  454.177012][ T8407] usb 10-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  454.182135][ T8407] usb 10-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  454.185498][ T8407] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  454.189487][ T8407] usb 10-1: config 0 descriptor??
[  454.378933][   T10] usb 11-1: new high-speed USB device number 17 using dummy_hcd
[  454.535737][   T10] usb 11-1: New USB device found, idVendor=0fe9, idProduct=db55, bcdDevice=69.fb
[  454.539546][   T10] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=201
[  454.542858][   T10] usb 11-1: Product: syz
[  454.544698][   T10] usb 11-1: Manufacturer: syz
[  454.546724][   T10] usb 11-1: SerialNumber: syz
[  454.551121][   T10] usb 11-1: config 0 descriptor??
[  454.556179][   T10] dvb-usb: found a 'DigitalNow DVB-T Dual USB' in warm state.
[  454.560434][   T10] dvb-usb: bulk message failed: -22 (2/0)
[  454.566456][   T10] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  454.570832][   T10] dvbdev: DVB: registering new adapter (DigitalNow DVB-T Dual USB)
[  454.574280][   T10] usb 11-1: media controller created
[  454.592086][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  454.745045][ T8407] usblp 10-1:0.0: usblp0: USB Bidirectional printer dev 7 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  454.761951][ T9648] dvb-usb: bulk message failed: -22 (5/0)
[  454.901013][   T10] cxusb: set interface failed
[  454.902568][   T10] dvb-usb: bulk message failed: -22 (1/0)
[  454.933916][   T10] DVB: Unable to find symbol mt352_attach()
[  454.939022][   T10] dvb-usb: bulk message failed: -22 (5/0)
[  454.941978][   T10] zl10353_read_register: readreg error (reg=127, ret==-121)
[  454.946004][   T10] dvb-usb: no frontend was attached by 'DigitalNow DVB-T Dual USB'
[  454.955857][  T141] usb 10-1: USB disconnect, device number 7
[  455.037336][ T9660] FAULT_INJECTION: forcing a failure.
[  455.037336][ T9660] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  455.041786][ T9660] CPU: 3 UID: 0 PID: 9660 Comm: syz.5.654 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  455.041801][ T9660] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  455.041808][ T9660] Call Trace:
[  455.041812][ T9660]  <TASK>
[  455.041817][ T9660]  dump_stack_lvl+0x16c/0x1f0
[  455.041837][ T9660]  should_fail_ex+0x512/0x640
[  455.041855][ T9660]  _copy_to_user+0x32/0xd0
[  455.041872][ T9660]  simple_read_from_buffer+0xcb/0x170
[  455.041887][ T9660]  proc_fail_nth_read+0x197/0x270
[  455.041900][ T9660]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  455.041913][ T9660]  ? rw_verify_area+0xcf/0x680
[  455.041926][ T9660]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  455.041937][ T9660]  vfs_read+0x1e1/0xc60
[  455.041972][ T9660]  ? fdget_pos+0x2a2/0x370
[  455.041996][ T9660]  ? __pfx_vfs_read+0x10/0x10
[  455.042008][ T9660]  ? find_held_lock+0x2b/0x80
[  455.042022][ T9660]  ? __fget_files+0x20e/0x3c0
[  455.042035][ T9660]  ? handle_mm_fault+0x230/0xd10
[  455.042051][ T9660]  ksys_read+0x12a/0x250
[  455.042066][ T9660]  ? __pfx_ksys_read+0x10/0x10
[  455.042080][ T9660]  ? rcu_is_watching+0x12/0xc0
[  455.042093][ T9660]  __do_fast_syscall_32+0x7c/0x3a0
[  455.042104][ T9660]  do_fast_syscall_32+0x32/0x80
[  455.042113][ T9660]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  455.042126][ T9660] RIP: 0023:0xf7fa8579
[  455.042139][ T9660] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  455.042150][ T9660] RSP: 002b:00000000f5084590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  455.042160][ T9660] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5084620
[  455.042166][ T9660] RDX: 000000000000000f RSI: 00000000f7432ff4 RDI: 0000000000000000
[  455.042172][ T9660] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  455.042177][ T9660] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  455.042183][ T9660] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  455.042196][ T9660]  </TASK>
[  455.116733][ T9652] usblp0: removed
[  455.155114][   T10] rc_core: IR keymap rc-dvico-mce not found
[  455.157346][   T10] Registered IR keymap rc-empty
[  455.191539][   T10] rc rc0: DigitalNow DVB-T Dual USB as /devices/platform/dummy_hcd.6/usb11/11-1/rc/rc0
[  455.209324][   T10] input: DigitalNow DVB-T Dual USB as /devices/platform/dummy_hcd.6/usb11/11-1/rc/rc0/input9
[  455.223649][   T10] dvb-usb: schedule remote query interval to 100 msecs.
[  455.226243][   T10] dvb-usb: DigitalNow DVB-T Dual USB successfully initialized and connected.
[  455.230968][   T10] usb 11-1: USB disconnect, device number 17
[  455.244651][ T9664] FAULT_INJECTION: forcing a failure.
[  455.244651][ T9664] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  455.250111][ T9664] CPU: 2 UID: 0 PID: 9664 Comm: syz.5.667 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  455.250127][ T9664] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  455.250133][ T9664] Call Trace:
[  455.250138][ T9664]  <TASK>
[  455.250142][ T9664]  dump_stack_lvl+0x16c/0x1f0
[  455.250162][ T9664]  should_fail_ex+0x512/0x640
[  455.250180][ T9664]  _copy_to_user+0x32/0xd0
[  455.250197][ T9664]  simple_read_from_buffer+0xcb/0x170
[  455.250216][ T9664]  proc_fail_nth_read+0x197/0x270
[  455.250229][ T9664]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  455.250241][ T9664]  ? rw_verify_area+0xcf/0x680
[  455.250254][ T9664]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  455.250266][ T9664]  vfs_read+0x1e1/0xc60
[  455.250280][ T9664]  ? fdget_pos+0x2a2/0x370
[  455.250295][ T9664]  ? __pfx_vfs_read+0x10/0x10
[  455.250308][ T9664]  ? find_held_lock+0x2b/0x80
[  455.250322][ T9664]  ? __fget_files+0x20e/0x3c0
[  455.250340][ T9664]  ksys_read+0x12a/0x250
[  455.250353][ T9664]  ? __pfx_ksys_read+0x10/0x10
[  455.250368][ T9664]  ? rcu_is_watching+0x12/0xc0
[  455.250390][ T9664]  __do_fast_syscall_32+0x7c/0x3a0
[  455.250404][ T9664]  do_fast_syscall_32+0x32/0x80
[  455.250414][ T9664]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  455.250427][ T9664] RIP: 0023:0xf7fa8579
[  455.250435][ T9664] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  455.250445][ T9664] RSP: 002b:00000000f50c6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  455.250455][ T9664] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50c6620
[  455.250462][ T9664] RDX: 000000000000000f RSI: 00000000f7432ff4 RDI: 0000000000000000
[  455.250468][ T9664] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  455.250474][ T9664] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  455.250479][ T9664] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  455.250492][ T9664]  </TASK>
[  455.320278][    C2] vkms_vblank_simulate: vblank timer overrun
[  455.345212][   T10] dvb-usb: DigitalNow DVB-T Dual USB successfully deinitialized and disconnected.
[  455.452837][ T9666] program syz.6.668 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  455.684442][ T9670] mac80211_hwsim hwsim11 wlan1: entered allmulticast mode
[  455.760569][ T9673] bridge_slave_0: left allmulticast mode
[  455.762504][ T9673] bridge_slave_0: left promiscuous mode
[  455.764544][ T9673] bridge0: port 1(bridge_slave_0) entered disabled state
[  455.773372][ T9673] bridge_slave_1: left allmulticast mode
[  455.775223][ T9673] bridge_slave_1: left promiscuous mode
[  455.780504][ T9673] bridge0: port 2(bridge_slave_1) entered disabled state
[  455.811069][ T9673] bond0: (slave bond_slave_0): Releasing backup interface
[  455.811146][ T9669] netlink: 'syz.4.669': attribute type 10 has an invalid length.
[  455.830392][ T9673] bond0: (slave bond_slave_1): Releasing backup interface
[  455.841766][ T9673] team0: Port device team_slave_0 removed
[  455.848470][ T9673] team0: Port device team_slave_1 removed
[  455.851154][ T9673] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  455.853511][ T9673] batman_adv: batadv0: Removing interface: batadv_slave_0
[  455.856713][ T9673] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  455.859684][ T9673] batman_adv: batadv0: Removing interface: batadv_slave_1
[  455.865795][ T9669] mac80211_hwsim hwsim11 wlan1: left allmulticast mode
[  455.870912][ T9669] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  456.140851][ T5636] usb 12-1: USB disconnect, device number 5
[  456.461119][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  456.629356][ T9686] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  456.666230][ T9689] overlayfs: failed to resolve './file1': -2
[  456.780482][ T9693] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  457.044887][ T9702] program syz.7.678 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  457.637291][ T8407] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  457.809032][ T8407] usb 9-1: Using ep0 maxpacket: 8
[  457.812687][ T8407] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  457.815919][ T8407] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  457.820009][ T8407] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  457.823780][ T8407] usb 9-1: config 16 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  457.827938][ T8407] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  457.833519][ T8407] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  457.836991][ T8407] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  457.848891][ T8407] usbtmc 9-1:16.0: bulk endpoints not found
[  458.399587][ T9718] netlink: 28 bytes leftover after parsing attributes in process `syz.7.682'.
[  458.402519][ T9718] netlink: 8 bytes leftover after parsing attributes in process `syz.7.682'.
[  458.813385][ T9728] FAULT_INJECTION: forcing a failure.
[  458.813385][ T9728] name failslab, interval 1, probability 0, space 0, times 0
[  458.818050][ T9728] CPU: 3 UID: 0 PID: 9728 Comm: syz.7.685 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  458.818065][ T9728] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  458.818071][ T9728] Call Trace:
[  458.818075][ T9728]  <TASK>
[  458.818080][ T9728]  dump_stack_lvl+0x16c/0x1f0
[  458.818100][ T9728]  should_fail_ex+0x512/0x640
[  458.818115][ T9728]  ? fs_reclaim_acquire+0xae/0x150
[  458.818128][ T9728]  ? tomoyo_encode2+0x100/0x3e0
[  458.818142][ T9728]  should_failslab+0xc2/0x120
[  458.818152][ T9728]  __kmalloc_noprof+0xd2/0x510
[  458.818169][ T9728]  tomoyo_encode2+0x100/0x3e0
[  458.818185][ T9728]  tomoyo_encode+0x29/0x50
[  458.818198][ T9728]  tomoyo_realpath_from_path+0x18f/0x6e0
[  458.818213][ T9728]  ? tomoyo_profile+0x47/0x60
[  458.818230][ T9728]  tomoyo_path_number_perm+0x245/0x580
[  458.818241][ T9728]  ? tomoyo_path_number_perm+0x237/0x580
[  458.818254][ T9728]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  458.818279][ T9728]  ? find_held_lock+0x2b/0x80
[  458.818289][ T9728]  ? hook_file_ioctl_common+0x145/0x410
[  458.818303][ T9728]  ? __fget_files+0x20e/0x3c0
[  458.818316][ T9728]  ? fput+0x60/0xf0
[  458.818328][ T9728]  security_file_ioctl_compat+0x9b/0x240
[  458.818342][ T9728]  __ia32_compat_sys_ioctl+0xc3/0x370
[  458.818356][ T9728]  __do_fast_syscall_32+0x7c/0x3a0
[  458.818367][ T9728]  do_fast_syscall_32+0x32/0x80
[  458.818377][ T9728]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  458.818390][ T9728] RIP: 0023:0xf705e579
[  458.818401][ T9728] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  458.818411][ T9728] RSP: 002b:00000000f504e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  458.818421][ T9728] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c080aebe
[  458.818428][ T9728] RDX: 0000000080001600 RSI: 0000000000000000 RDI: 0000000000000000
[  458.818434][ T9728] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  458.818439][ T9728] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  458.818445][ T9728] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  458.818458][ T9728]  </TASK>
[  458.818467][ T9728] ERROR: Out of memory at tomoyo_realpath_from_path.
[  459.248919][ T6053] usb 12-1: new high-speed USB device number 6 using dummy_hcd
[  459.398912][ T6053] usb 12-1: Using ep0 maxpacket: 32
[  459.402691][ T6053] usb 12-1: config index 0 descriptor too short (expected 156, got 27)
[  459.405260][ T6053] usb 12-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  459.408644][ T6053] usb 12-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  459.412286][ T6053] usb 12-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  459.416307][ T6053] usb 12-1: config 0 interface 0 has no altsetting 0
[  459.423407][ T6053] usb 12-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  459.426330][ T6053] usb 12-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  459.429206][ T6053] usb 12-1: Product: syz
[  459.430583][ T6053] usb 12-1: Manufacturer: syz
[  459.432076][ T6053] usb 12-1: SerialNumber: syz
[  459.434907][ T6053] usb 12-1: config 0 descriptor??
[  459.438435][ T6053] ldusb 12-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  459.444465][ T6053] ldusb 12-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  459.642563][    C3] ldusb 12-1:0.0: usb_submit_urb failed (-19)
[  459.644661][ T6053] usb 12-1: USB disconnect, device number 6
[  459.647682][ T6053] ldusb 12-1:0.0: LD USB Device #0 now disconnected
[  460.346252][   T62] usb 9-1: USB disconnect, device number 10
[  460.393208][ T9746] program syz.4.689 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  460.415420][ T9748] overlayfs: failed to resolve './file1': -2
[  460.446948][ T9750] netlink: 'syz.7.691': attribute type 16 has an invalid length.
[  460.453168][ T9750] netlink: 48 bytes leftover after parsing attributes in process `syz.7.691'.
[  460.457183][ T9750] bridge0: port 1(bridge_slave_0) entered disabled state
[  460.722678][ T9756] FAULT_INJECTION: forcing a failure.
[  460.722678][ T9756] name failslab, interval 1, probability 0, space 0, times 0
[  460.727185][ T9756] CPU: 0 UID: 0 PID: 9756 Comm: syz.4.692 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  460.727200][ T9756] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  460.727207][ T9756] Call Trace:
[  460.727212][ T9756]  <TASK>
[  460.727217][ T9756]  dump_stack_lvl+0x16c/0x1f0
[  460.727237][ T9756]  should_fail_ex+0x512/0x640
[  460.727253][ T9756]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  460.727270][ T9756]  should_failslab+0xc2/0x120
[  460.727281][ T9756]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  460.727295][ T9756]  ? find_held_lock+0x2b/0x80
[  460.727306][ T9756]  ? __d_alloc+0x31/0xaa0
[  460.727323][ T9756]  __d_alloc+0x31/0xaa0
[  460.727337][ T9756]  ? __d_lookup+0x266/0x4a0
[  460.727349][ T9756]  d_alloc+0x4a/0x1e0
[  460.727365][ T9756]  lookup_one_qstr_excl_raw.part.0+0x96/0x160
[  460.727376][ T9756]  ? lookup_dcache+0x66/0x170
[  460.727387][ T9756]  lookup_one_qstr_excl+0x3e/0x120
[  460.727404][ T9756]  do_rmdir+0x245/0x3c0
[  460.727422][ T9756]  ? __pfx_do_rmdir+0x10/0x10
[  460.727449][ T9756]  ? getname_flags.part.0+0x1c5/0x550
[  460.727469][ T9756]  __ia32_sys_rmdir+0xc4/0x110
[  460.727493][ T9756]  __do_fast_syscall_32+0x7c/0x3a0
[  460.727510][ T9756]  do_fast_syscall_32+0x32/0x80
[  460.727521][ T9756]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  460.727534][ T9756] RIP: 0023:0xf707e579
[  460.727543][ T9756] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  460.727553][ T9756] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000028
[  460.727563][ T9756] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000000000000
[  460.727569][ T9756] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  460.727575][ T9756] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  460.727581][ T9756] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  460.727587][ T9756] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  460.727599][ T9756]  </TASK>
[  461.060022][ T9761] netlink: 104 bytes leftover after parsing attributes in process `syz.6.693'.
[  461.348924][  T141] usb 11-1: new high-speed USB device number 18 using dummy_hcd
[  461.378730][ T9767] trusted_key: encrypted_key: insufficient parameters specified
[  461.396526][ T9767] trusted_key: encrypted_key: insufficient parameters specified
[  461.508863][  T141] usb 11-1: Using ep0 maxpacket: 32
[  461.513181][  T141] usb 11-1: config 0 has an invalid interface number: 1 but max is 0
[  461.516459][  T141] usb 11-1: config 0 has no interface number 0
[  461.520791][  T141] usb 11-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  461.524533][  T141] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  461.527718][  T141] usb 11-1: Product: syz
[  461.529585][  T141] usb 11-1: Manufacturer: syz
[  461.531434][  T141] usb 11-1: SerialNumber: syz
[  461.534555][  T141] usb 11-1: config 0 descriptor??
[  461.542271][  T141] usb 11-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  461.545699][  T141] usb 11-1: selecting invalid altsetting 1
[  461.548117][  T141] usb 11-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  461.553664][  T141] usb 11-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  461.557781][  T141] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  461.561878][  T141] usb 11-1: media controller created
[  461.572579][  T141] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  461.623092][   T40] audit: type=1326 audit(1749739573.037:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9771 comm="syz.7.697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  461.630327][   T40] audit: type=1326 audit(1749739573.037:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9771 comm="syz.7.697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  461.636806][   T40] audit: type=1326 audit(1749739573.047:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9771 comm="syz.7.697" exe="/syz-executor" sig=0 arch=40000003 syscall=164 compat=1 ip=0xf705e579 code=0x7ffc0000
[  461.646113][   T40] audit: type=1326 audit(1749739573.047:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9771 comm="syz.7.697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  461.652764][   T40] audit: type=1326 audit(1749739573.057:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9771 comm="syz.7.697" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf705e579 code=0x7ffc0000
[  461.660958][   T40] audit: type=1326 audit(1749739573.057:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9771 comm="syz.7.697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  461.668260][   T40] audit: type=1326 audit(1749739573.057:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9771 comm="syz.7.697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  461.675184][   T40] audit: type=1326 audit(1749739573.067:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9771 comm="syz.7.697" exe="/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf705e579 code=0x7ffc0000
[  461.683245][   T40] audit: type=1326 audit(1749739573.067:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9771 comm="syz.7.697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  461.690699][   T40] audit: type=1326 audit(1749739573.067:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9771 comm="syz.7.697" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x7ffc0000
[  461.800357][ T9764] ptrace attach of "/syz-executor exec"[6411] was attempted by ""[9764]
[  461.800883][ T9774] ptrace attach of "/syz-executor exec"[6411] was attempted by ""[9774]
[  462.619152][  T141] usb 11-1: dvb_usb_ce6230: usb_control_msg() failed=-110
[  462.630796][  T141] zl10353_read_register: readreg error (reg=127, ret==-110)
[  462.636972][  T141] usb 11-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  462.691281][  T141] usb 11-1: USB disconnect, device number 18
[  462.703037][ T9788] netfs: Couldn't get user pages (rc=-14)
[  463.194388][ T9800] overlayfs: failed to resolve './file0': -2
[  463.267296][ T9802] netlink: 8 bytes leftover after parsing attributes in process `syz.7.700'.
[  463.353137][ T9806] netlink: 276 bytes leftover after parsing attributes in process `syz.7.702'.
[  464.010898][ T9824] Bluetooth: MGMT ver 1.23
[  464.248623][ T9834] overlayfs: failed to resolve './file0': -2
[  465.090188][   T62] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[  465.193949][ T9862] netlink: 24 bytes leftover after parsing attributes in process `syz.7.715'.
[  465.257116][ T9868] FAULT_INJECTION: forcing a failure.
[  465.257116][ T9868] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  465.261372][ T9868] CPU: 2 UID: 0 PID: 9868 Comm: syz.6.718 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  465.261387][ T9868] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  465.261394][ T9868] Call Trace:
[  465.261398][ T9868]  <TASK>
[  465.261402][ T9868]  dump_stack_lvl+0x16c/0x1f0
[  465.261421][ T9868]  should_fail_ex+0x512/0x640
[  465.261439][ T9868]  _copy_from_user+0x2e/0xd0
[  465.261455][ T9868]  video_usercopy+0x723/0x1440
[  465.261472][ T9868]  ? __pfx___video_do_ioctl+0x10/0x10
[  465.261487][ T9868]  ? __pfx_video_usercopy+0x10/0x10
[  465.261507][ T9868]  ? hook_file_ioctl_common+0x145/0x410
[  465.261522][ T9868]  v4l2_ioctl+0x1ba/0x250
[  465.261535][ T9868]  ? fput+0x61/0xf0
[  465.261546][ T9868]  v4l2_compat_ioctl32+0x214/0x2c0
[  465.261559][ T9868]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  465.261572][ T9868]  __ia32_compat_sys_ioctl+0x242/0x370
[  465.261586][ T9868]  __do_fast_syscall_32+0x7c/0x3a0
[  465.261597][ T9868]  do_fast_syscall_32+0x32/0x80
[  465.261607][ T9868]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  465.261620][ T9868] RIP: 0023:0xf703e579
[  465.261628][ T9868] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  465.261638][ T9868] RSP: 002b:00000000f502e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  465.261649][ T9868] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c040565e
[  465.261655][ T9868] RDX: 00000000800003c0 RSI: 0000000000000000 RDI: 0000000000000000
[  465.261661][ T9868] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  465.261666][ T9868] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  465.261672][ T9868] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  465.261684][ T9868]  </TASK>
[  465.264088][   T62] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  465.298708][ T9870] overlayfs: failed to resolve './file0': -2
[  465.300015][   T62] usb 10-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  465.333729][   T62] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  465.339152][   T62] usb 10-1: config 0 descriptor??
[  465.506999][ T9878] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  465.509088][ T9878] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  465.513887][ T9878] vhci_hcd vhci_hcd.0: Device attached
[  465.517940][ T9878] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(12)
[  465.520030][ T9878] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  465.522799][ T9878] vhci_hcd vhci_hcd.0: Device attached
[  465.528940][ T9878] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(15)
[  465.531078][ T9878] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  465.533607][ T9878] vhci_hcd vhci_hcd.0: Device attached
[  465.536248][ T9878] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  465.542642][ T9878] vhci_hcd vhci_hcd.0: pdev(4) rhport(4) sockfd(20)
[  465.544749][ T9878] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  465.547254][ T9878] vhci_hcd vhci_hcd.0: Device attached
[  465.551060][ T9878] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(22)
[  465.553156][ T9878] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  465.555818][ T9878] vhci_hcd vhci_hcd.0: Device attached
[  465.558679][ T9878] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  465.562422][ T9878] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  465.565722][ T9878] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  465.568867][   T62] usbhid 10-1:0.0: can't add hid device: -71
[  465.570844][   T62] usbhid 10-1:0.0: probe with driver usbhid failed with error -71
[  465.578335][   T62] usb 10-1: USB disconnect, device number 8
[  465.586579][ T9886] vhci_hcd: connection closed
[  465.587572][ T9888] vhci_hcd: connection closed
[  465.590647][ T9882] vhci_hcd: connection closed
[  465.590699][ T9884] vhci_hcd: connection closed
[  465.597897][ T1141] vhci_hcd: stop threads
[  465.598980][ T9879] vhci_hcd: connection closed
[  465.602074][ T1141] vhci_hcd: release socket
[  465.605634][ T1141] vhci_hcd: disconnect device
[  465.619627][ T1141] vhci_hcd: stop threads
[  465.621212][ T1141] vhci_hcd: release socket
[  465.623090][ T1141] vhci_hcd: disconnect device
[  465.625492][ T1141] vhci_hcd: stop threads
[  465.627140][ T1141] vhci_hcd: release socket
[  465.628677][ T1141] vhci_hcd: disconnect device
[  465.630677][ T1141] vhci_hcd: stop threads
[  465.632126][ T1141] vhci_hcd: release socket
[  465.634082][ T1141] vhci_hcd: disconnect device
[  465.636003][ T1141] vhci_hcd: stop threads
[  465.637365][ T1141] vhci_hcd: release socket
[  465.639738][ T1141] vhci_hcd: disconnect device
[  465.689289][   T10] vhci_hcd: vhci_device speed not set
[  465.716477][ T9891] 9pnet_fd: Insufficient options for proto=fd
[  466.028941][  T141] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[  466.114064][ T9897] netlink: 24 bytes leftover after parsing attributes in process `syz.7.726'.
[  466.120033][ T9899] sg_write: data in/out 124/12 bytes for SCSI command 0xc-- guessing data in;
[  466.120033][ T9899]    program syz.4.727 not setting count and/or reply_len properly
[  466.146824][ T9901] FAULT_INJECTION: forcing a failure.
[  466.146824][ T9901] name failslab, interval 1, probability 0, space 0, times 0
[  466.153704][ T9901] CPU: 3 UID: 0 PID: 9901 Comm: syz.7.728 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  466.153730][ T9901] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  466.153741][ T9901] Call Trace:
[  466.153748][ T9901]  <TASK>
[  466.153755][ T9901]  dump_stack_lvl+0x16c/0x1f0
[  466.153787][ T9901]  should_fail_ex+0x512/0x640
[  466.153813][ T9901]  ? __kvmalloc_node_noprof+0x124/0x620
[  466.153841][ T9901]  should_failslab+0xc2/0x120
[  466.153885][ T9901]  __kvmalloc_node_noprof+0x137/0x620
[  466.153912][ T9901]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  466.153946][ T9901]  ? file_tty_write.constprop.0+0x6ef/0x9b0
[  466.153972][ T9901]  file_tty_write.constprop.0+0x6ef/0x9b0
[  466.154002][ T9901]  ? rw_verify_area+0xcf/0x680
[  466.154026][ T9901]  vfs_write+0x6c4/0x1150
[  466.154050][ T9901]  ? __pfx_tty_write+0x10/0x10
[  466.154078][ T9901]  ? __pfx_vfs_write+0x10/0x10
[  466.154100][ T9901]  ? find_held_lock+0x2b/0x80
[  466.154133][ T9901]  ksys_write+0x12a/0x250
[  466.154156][ T9901]  ? __pfx_ksys_write+0x10/0x10
[  466.154179][ T9901]  ? rcu_is_watching+0x12/0xc0
[  466.154198][ T9901]  __do_fast_syscall_32+0x7c/0x3a0
[  466.154218][ T9901]  do_fast_syscall_32+0x32/0x80
[  466.154234][ T9901]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  466.154254][ T9901] RIP: 0023:0xf705e579
[  466.154268][ T9901] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  466.154282][ T9901] RSP: 002b:00000000f504e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  466.154298][ T9901] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000ac0
[  466.154313][ T9901] RDX: 0000000000001006 RSI: 0000000000000000 RDI: 0000000000000000
[  466.154323][ T9901] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  466.154332][ T9901] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  466.154342][ T9901] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  466.154366][ T9901]  </TASK>
[  466.198950][  T141] usb 10-1: Using ep0 maxpacket: 32
[  466.231236][ T9905] overlayfs: failed to resolve './file0': -2
[  466.249064][  T141] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  466.259127][  T141] usb 10-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[  466.268928][  T141] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  466.299127][  T141] usb 10-1: config 0 descriptor??
[  466.303119][  T141] ldusb 10-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  466.329145][  T141] ldusb 10-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  466.421551][ T9912] vivid-000: =================  START STATUS  =================
[  466.424604][ T9912] vivid-000: Test Pattern: 75% Colorbar
[  466.426645][ T9912] vivid-000: Fill Percentage of Frame: 100
[  466.428770][ T9912] vivid-000: Horizontal Movement: No Movement
[  466.431888][ T9912] vivid-000: Vertical Movement: No Movement
[  466.434073][ T9912] vivid-000: OSD Text Mode: All
[  466.436106][ T9912] vivid-000: Show Border: false
[  466.438188][ T9912] vivid-000: Show Square: false
[  466.450974][ T9912] vivid-000: Sensor Flipped Horizontally: false
[  466.453366][ T9912] vivid-000: Sensor Flipped Vertically: false
[  466.455284][ T9912] vivid-000: Insert SAV Code in Image: false
[  466.457136][ T9912] vivid-000: Insert EAV Code in Image: false
[  466.460638][ T9912] vivid-000: Insert Video Guard Band: false
[  466.462552][ T9912] vivid-000: Reduced Framerate: false
[  466.464186][ T9912] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  466.466635][ T9912] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  466.469571][ T9912] vivid-000: Enable Capture Cropping: true
[  466.471427][ T9912] vivid-000: Enable Capture Composing: true
[  466.473976][ T9912] vivid-000: Enable Capture Scaler: true
[  466.475783][ T9912] vivid-000: Timestamp Source: End of Frame
[  466.477754][ T9912] vivid-000: Colorspace: sRGB
[  466.479629][ T9912] vivid-000: Transfer Function: Default
[  466.481512][ T9912] vivid-000: Y'CbCr Encoding: Default
[  466.483269][ T9912] vivid-000: HSV Encoding: Hue 0-179
[  466.485000][ T9912] vivid-000: Quantization: Default
[  466.486641][ T9912] vivid-000: Apply Alpha To Red Only: false
[  466.488553][ T9912] vivid-000: Standard Aspect Ratio: 4x3
[  466.490448][ T9912] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  466.492938][ T9912] vivid-000: DV Timings: 640x480p59 inactive
[  466.494890][ T9912] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  466.497175][ T9912] vivid-000: Maximum EDID Blocks: 2
[  466.499016][ T9912] vivid-000: Limited RGB Range (16-235): false
[  466.501031][ T9912] vivid-000: Rx RGB Quantization Range: Automatic
[  466.503667][ T9912] vivid-000: Power Present: 0x00000001
[  466.505467][ T9912] tpg source WxH: 320x180 (R'G'B)
[  466.507131][ T9912] tpg field: 1
[  466.508263][ T9912] tpg crop: (0,0)/320x180
[  466.509760][ T9912] tpg compose: (0,0)/320x180
[  466.511358][ T9912] tpg colorspace: 8
[  466.512683][ T9912] tpg transfer function: 0/0
[  466.514241][ T9912] tpg quantization: 0/0
[  466.515612][ T9912] tpg RGB range: 0/2
[  466.516918][ T9912] vivid-000: ==================  END STATUS  ==================
[  466.824673][ T9926] FAULT_INJECTION: forcing a failure.
[  466.824673][ T9926] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  466.829600][ T9926] CPU: 0 UID: 0 PID: 9926 Comm: syz.7.738 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  466.829616][ T9926] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  466.829623][ T9926] Call Trace:
[  466.829626][ T9926]  <TASK>
[  466.829631][ T9926]  dump_stack_lvl+0x16c/0x1f0
[  466.829651][ T9926]  should_fail_ex+0x512/0x640
[  466.829668][ T9926]  _copy_from_user+0x2e/0xd0
[  466.829685][ T9926]  arp_ioctl+0x185/0xcf0
[  466.829702][ T9926]  ? __pfx_arp_ioctl+0x10/0x10
[  466.829726][ T9926]  inet_ioctl+0x362/0x3f0
[  466.829740][ T9926]  ? __pfx_inet_ioctl+0x10/0x10
[  466.829762][ T9926]  ? tomoyo_path_number_perm+0x18d/0x580
[  466.829776][ T9926]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  466.829789][ T9926]  sock_do_ioctl+0x118/0x280
[  466.829801][ T9926]  ? do_vfs_ioctl+0x523/0x1a60
[  466.829813][ T9926]  ? __pfx_sock_do_ioctl+0x10/0x10
[  466.829823][ T9926]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  466.829842][ T9926]  compat_sock_ioctl+0x301/0x730
[  466.829876][ T9926]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  466.829888][ T9926]  ? hook_file_ioctl_common+0x145/0x410
[  466.829903][ T9926]  ? __fget_files+0x20e/0x3c0
[  466.829915][ T9926]  ? fput+0x60/0xf0
[  466.829927][ T9926]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  466.829940][ T9926]  __ia32_compat_sys_ioctl+0x242/0x370
[  466.829953][ T9926]  __do_fast_syscall_32+0x7c/0x3a0
[  466.829964][ T9926]  do_fast_syscall_32+0x32/0x80
[  466.829974][ T9926]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  466.829987][ T9926] RIP: 0023:0xf705e579
[  466.829995][ T9926] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  466.830006][ T9926] RSP: 002b:00000000f504e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  466.830015][ T9926] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008955
[  466.830022][ T9926] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[  466.830028][ T9926] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  466.830033][ T9926] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  466.830039][ T9926] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  466.830052][ T9926]  </TASK>
[  466.927352][ T9928] FAULT_INJECTION: forcing a failure.
[  466.927352][ T9928] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  466.931666][ T9928] CPU: 0 UID: 0 PID: 9928 Comm: syz.7.739 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  466.931681][ T9928] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  466.931688][ T9928] Call Trace:
[  466.931693][ T9928]  <TASK>
[  466.931698][ T9928]  dump_stack_lvl+0x16c/0x1f0
[  466.931718][ T9928]  should_fail_ex+0x512/0x640
[  466.931736][ T9928]  strncpy_from_user+0x3b/0x2e0
[  466.931752][ T9928]  getname_flags.part.0+0x8f/0x550
[  466.931766][ T9928]  getname_flags+0x93/0xf0
[  466.931780][ T9928]  user_path_at+0x24/0x60
[  466.931794][ T9928]  __ia32_sys_chdir+0xbe/0x270
[  466.931802][ T9928]  ? ksys_write+0x1ac/0x250
[  466.931816][ T9928]  ? __pfx___ia32_sys_chdir+0x10/0x10
[  466.931833][ T9928]  ? rcu_is_watching+0x12/0xc0
[  466.931846][ T9928]  __do_fast_syscall_32+0x7c/0x3a0
[  466.931857][ T9928]  do_fast_syscall_32+0x32/0x80
[  466.931867][ T9928]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  466.931880][ T9928] RIP: 0023:0xf705e579
[  466.931888][ T9928] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  466.931899][ T9928] RSP: 002b:00000000f504e55c EFLAGS: 00000296 ORIG_RAX: 000000000000000c
[  466.931909][ T9928] RAX: ffffffffffffffda RBX: 0000000080000080 RCX: 0000000000000000
[  466.931915][ T9928] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  466.931920][ T9928] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  466.931926][ T9928] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  466.931932][ T9928] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  466.931944][ T9928]  </TASK>
[  467.035767][ T9932] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  467.037889][ T9932] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  467.040925][ T9932] vhci_hcd vhci_hcd.0: Device attached
[  467.044850][ T9932] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(12)
[  467.046938][ T9932] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  467.049814][ T9932] vhci_hcd vhci_hcd.0: Device attached
[  467.053427][ T9932] vhci_hcd vhci_hcd.0: pdev(4) rhport(2) sockfd(15)
[  467.055576][ T9932] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  467.058134][ T9932] vhci_hcd vhci_hcd.0: Device attached
[  467.061511][ T9932] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  467.066590][ T9932] vhci_hcd vhci_hcd.0: pdev(4) rhport(4) sockfd(20)
[  467.068693][ T9932] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  467.072003][ T9932] vhci_hcd vhci_hcd.0: Device attached
[  467.075399][ T9932] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(22)
[  467.077501][ T9932] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  467.080380][ T9932] vhci_hcd vhci_hcd.0: Device attached
[  467.082891][ T9932] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  467.086119][ T9932] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  467.090143][ T9932] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  467.097651][ T9941] vhci_hcd: connection closed
[  467.097991][ T9939] vhci_hcd: connection closed
[  467.100266][ T9937] vhci_hcd: connection closed
[  467.102035][ T9933] vhci_hcd: connection closed
[  467.102715][ T9935] vhci_hcd: connection closed
[  467.103762][ T1146] vhci_hcd: stop threads
[  467.108563][ T1146] vhci_hcd: release socket
[  467.111944][ T1146] vhci_hcd: disconnect device
[  467.113735][ T1146] vhci_hcd: stop threads
[  467.115138][ T1146] vhci_hcd: release socket
[  467.116624][ T1146] vhci_hcd: disconnect device
[  467.118339][ T1146] vhci_hcd: stop threads
[  467.120782][ T1146] vhci_hcd: release socket
[  467.123020][ T1146] vhci_hcd: disconnect device
[  467.124733][ T1146] vhci_hcd: stop threads
[  467.126200][ T1146] vhci_hcd: release socket
[  467.127861][ T1146] vhci_hcd: disconnect device
[  467.129656][ T1146] vhci_hcd: stop threads
[  467.131110][ T1146] vhci_hcd: release socket
[  467.132654][ T1146] vhci_hcd: disconnect device
[  467.480060][ T9949] FAULT_INJECTION: forcing a failure.
[  467.480060][ T9949] name failslab, interval 1, probability 0, space 0, times 0
[  467.484151][ T9949] CPU: 1 UID: 0 PID: 9949 Comm: syz.6.741 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  467.484166][ T9949] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  467.484173][ T9949] Call Trace:
[  467.484177][ T9949]  <TASK>
[  467.484182][ T9949]  dump_stack_lvl+0x16c/0x1f0
[  467.484213][ T9949]  should_fail_ex+0x512/0x640
[  467.484230][ T9949]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  467.484247][ T9949]  should_failslab+0xc2/0x120
[  467.484257][ T9949]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  467.484272][ T9949]  ? __d_alloc+0x31/0xaa0
[  467.484290][ T9949]  __d_alloc+0x31/0xaa0
[  467.484304][ T9949]  ? trace_kmem_cache_alloc+0x28/0xc0
[  467.484314][ T9949]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  467.484329][ T9949]  d_alloc_pseudo+0x1c/0xc0
[  467.484340][ T9949]  alloc_file_pseudo+0xcf/0x230
[  467.484357][ T9949]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  467.484371][ T9949]  sock_alloc_file+0x50/0x210
[  467.484384][ T9949]  do_accept+0x240/0x530
[  467.484397][ T9949]  ? do_raw_spin_lock+0x12c/0x2b0
[  467.484413][ T9949]  ? __pfx_do_accept+0x10/0x10
[  467.484436][ T9949]  __sys_accept4+0x100/0x1c0
[  467.484449][ T9949]  ? __pfx___sys_accept4+0x10/0x10
[  467.484467][ T9949]  __ia32_sys_accept4+0x94/0x100
[  467.484481][ T9949]  __do_fast_syscall_32+0x7c/0x3a0
[  467.484493][ T9949]  do_fast_syscall_32+0x32/0x80
[  467.484502][ T9949]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  467.484515][ T9949] RIP: 0023:0xf703e579
[  467.484523][ T9949] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  467.484533][ T9949] RSP: 002b:00000000f502e55c EFLAGS: 00000296 ORIG_RAX: 000000000000016c
[  467.484543][ T9949] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[  467.484549][ T9949] RDX: 0000000080000200 RSI: 0000000000080800 RDI: 0000000000000000
[  467.484555][ T9949] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  467.484561][ T9949] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  467.484567][ T9949] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  467.484580][ T9949]  </TASK>
[  467.554798][    C1] vkms_vblank_simulate: vblank timer overrun
[  467.570603][ T8407] usb 10-1: USB disconnect, device number 9
[  467.579116][ T8407] ldusb 10-1:0.0: LD USB Device #0 now disconnected
[  467.617668][ T9953] ieee802154 phy0 wpan0: encryption failed: -22
[  467.676505][ T9953] netlink: 'syz.6.742': attribute type 23 has an invalid length.
[  467.692573][ T9958] overlayfs: failed to resolve './file1': -2
[  467.845424][ T9962] netlink: 'syz.5.744': attribute type 9 has an invalid length.
[  468.274150][ T9973] netlink: 'syz.7.750': attribute type 20 has an invalid length.
[  468.557804][ T9977] netlink: 24 bytes leftover after parsing attributes in process `syz.5.752'.
[  468.670722][ T9975] netlink: 12 bytes leftover after parsing attributes in process `syz.7.751'.
[  468.732512][ T9987] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(10)
[  468.734624][ T9987] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  468.739563][ T9987] vhci_hcd vhci_hcd.0: Device attached
[  468.745075][ T9987] vhci_hcd vhci_hcd.0: pdev(7) rhport(1) sockfd(12)
[  468.747698][ T9987] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  468.750237][ T9987] vhci_hcd vhci_hcd.0: Device attached
[  468.753111][ T9987] vhci_hcd vhci_hcd.0: pdev(7) rhport(2) sockfd(15)
[  468.755209][ T9987] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  468.757641][ T9987] vhci_hcd vhci_hcd.0: Device attached
[  468.759974][ T9987] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  468.763277][ T9996] overlayfs: failed to resolve './file1': -2
[  468.765284][ T9987] vhci_hcd vhci_hcd.0: pdev(7) rhport(4) sockfd(20)
[  468.767388][ T9987] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  468.771047][ T9987] vhci_hcd vhci_hcd.0: Device attached
[  468.774056][ T9987] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(22)
[  468.776090][ T9987] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  468.778624][ T9987] vhci_hcd vhci_hcd.0: Device attached
[  468.781324][ T9987] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  468.784498][ T9987] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  468.788012][ T9987] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  468.793575][ T9999] vhci_hcd: connection closed
[  468.793617][ T9997] vhci_hcd: connection closed
[  468.795327][ T1141] vhci_hcd: stop threads
[  468.795754][ T9988] vhci_hcd: connection closed
[  468.796835][ T1141] vhci_hcd: release socket
[  468.807651][ T9993] vhci_hcd: connection closed
[  468.807759][ T9990] vhci_hcd: connection closed
[  468.811681][ T1141] vhci_hcd: disconnect device
[  468.814961][ T1141] vhci_hcd: stop threads
[  468.816314][ T1141] vhci_hcd: release socket
[  468.817789][ T1141] vhci_hcd: disconnect device
[  468.822721][ T1141] vhci_hcd: stop threads
[  468.824087][ T1141] vhci_hcd: release socket
[  468.825498][ T1141] vhci_hcd: disconnect device
[  468.827057][ T1141] vhci_hcd: stop threads
[  468.828463][ T1141] vhci_hcd: release socket
[  468.833895][ T1141] vhci_hcd: disconnect device
[  468.835581][ T1141] vhci_hcd: stop threads
[  468.836934][ T1141] vhci_hcd: release socket
[  468.838353][ T1141] vhci_hcd: disconnect device
[  469.860396][T10030] overlayfs: failed to resolve './file1': -2
[  470.184864][T10050] random: crng reseeded on system resumption
[  470.195667][T10050] FAULT_INJECTION: forcing a failure.
[  470.195667][T10050] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  470.199927][T10050] CPU: 1 UID: 0 PID: 10050 Comm: syz.5.768 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  470.199942][T10050] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  470.199949][T10050] Call Trace:
[  470.199953][T10050]  <TASK>
[  470.199958][T10050]  dump_stack_lvl+0x16c/0x1f0
[  470.199977][T10050]  should_fail_ex+0x512/0x640
[  470.199995][T10050]  _copy_from_user+0x2e/0xd0
[  470.200013][T10050]  simple_write_to_buffer+0xcb/0x170
[  470.200028][T10050]  snapshot_write+0x14b/0x240
[  470.200042][T10050]  ? __pfx_snapshot_write+0x10/0x10
[  470.200054][T10050]  ? bpf_lsm_file_permission+0x9/0x10
[  470.200065][T10050]  ? security_file_permission+0x71/0x210
[  470.200085][T10050]  ? rw_verify_area+0xcf/0x680
[  470.200099][T10050]  ? __pfx_snapshot_write+0x10/0x10
[  470.200110][T10050]  vfs_write+0x2a0/0x1150
[  470.200127][T10050]  ? __pfx_vfs_write+0x10/0x10
[  470.200140][T10050]  ? find_held_lock+0x2b/0x80
[  470.200151][T10050]  ? __fget_files+0x204/0x3c0
[  470.200166][T10050]  ? __fget_files+0x20e/0x3c0
[  470.200179][T10050]  ? handle_mm_fault+0x230/0xd10
[  470.200195][T10050]  ksys_write+0x12a/0x250
[  470.200209][T10050]  ? __pfx_ksys_write+0x10/0x10
[  470.200224][T10050]  ? rcu_is_watching+0x12/0xc0
[  470.200237][T10050]  __do_fast_syscall_32+0x7c/0x3a0
[  470.200248][T10050]  do_fast_syscall_32+0x32/0x80
[  470.200258][T10050]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.200270][T10050] RIP: 0023:0xf7fa8579
[  470.200279][T10050] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  470.200289][T10050] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  470.200299][T10050] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[  470.200306][T10050] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  470.200311][T10050] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  470.200317][T10050] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  470.200323][T10050] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  470.200336][T10050]  </TASK>
[  470.420503][T10065] netlink: 24 bytes leftover after parsing attributes in process `syz.6.772'.
[  470.449408][T10067] FAULT_INJECTION: forcing a failure.
[  470.449408][T10067] name failslab, interval 1, probability 0, space 0, times 0
[  470.453396][T10067] CPU: 2 UID: 0 PID: 10067 Comm: syz.6.773 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  470.453411][T10067] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  470.453418][T10067] Call Trace:
[  470.453421][T10067]  <TASK>
[  470.453426][T10067]  dump_stack_lvl+0x16c/0x1f0
[  470.453445][T10067]  should_fail_ex+0x512/0x640
[  470.453461][T10067]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  470.453478][T10067]  should_failslab+0xc2/0x120
[  470.453488][T10067]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  470.453503][T10067]  ? __alloc_skb+0x2b2/0x380
[  470.453522][T10067]  __alloc_skb+0x2b2/0x380
[  470.453537][T10067]  ? __pfx___alloc_skb+0x10/0x10
[  470.453553][T10067]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  470.453568][T10067]  netlink_alloc_large_skb+0x69/0x130
[  470.453581][T10067]  netlink_sendmsg+0x6a1/0xdd0
[  470.453595][T10067]  ? __pfx_netlink_sendmsg+0x10/0x10
[  470.453607][T10067]  ? __import_iovec+0x1dd/0x650
[  470.453620][T10067]  ____sys_sendmsg+0xa95/0xc70
[  470.453634][T10067]  ? __pfx_____sys_sendmsg+0x10/0x10
[  470.453646][T10067]  ? get_compat_msghdr+0x11a/0x170
[  470.453662][T10067]  ___sys_sendmsg+0x134/0x1d0
[  470.453679][T10067]  ? __pfx____sys_sendmsg+0x10/0x10
[  470.453702][T10067]  ? find_held_lock+0x2b/0x80
[  470.453721][T10067]  __sys_sendmsg+0x16d/0x220
[  470.453738][T10067]  ? __pfx___sys_sendmsg+0x10/0x10
[  470.453759][T10067]  ? rcu_is_watching+0x12/0xc0
[  470.453771][T10067]  __do_fast_syscall_32+0x7c/0x3a0
[  470.453783][T10067]  do_fast_syscall_32+0x32/0x80
[  470.453792][T10067]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.453805][T10067] RIP: 0023:0xf703e579
[  470.453830][T10067] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  470.453841][T10067] RSP: 002b:00000000f502e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  470.453852][T10067] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800006c0
[  470.453858][T10067] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  470.453864][T10067] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  470.453870][T10067] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  470.453875][T10067] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  470.453888][T10067]  </TASK>
[  470.552918][T10071] random: crng reseeded on system resumption
[  471.000725][T10085] : entered promiscuous mode
[  471.370598][T10094] Cannot find set identified by id 0 to match
[  471.578834][ T8407] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[  471.731193][ T8407] usb 10-1: unable to get BOS descriptor or descriptor too short
[  471.735874][ T8407] usb 10-1: config 1 interface 0 altsetting 170 bulk endpoint 0x82 has invalid maxpacket 16
[  471.740880][ T8407] usb 10-1: config 1 interface 0 has no altsetting 0
[  471.746838][ T8407] usb 10-1: string descriptor 0 read error: -22
[  471.750181][ T8407] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  471.757507][ T8407] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  471.768848][T10093] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  471.886316][T10097] netlink: 16 bytes leftover after parsing attributes in process `syz.6.781'.
[  471.896551][T10097] netlink: 4 bytes leftover after parsing attributes in process `syz.6.781'.
[  471.973027][ T8407] cdc_ether 10-1:1.0: probe with driver cdc_ether failed with error -71
[  471.978129][ T8407] usb 10-1: USB disconnect, device number 10
[  472.964098][T10125] program syz.6.789 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  473.090697][T10128] random: crng reseeded on system resumption
[  473.941582][T10142] netlink: 16 bytes leftover after parsing attributes in process `syz.4.792'.
[  473.944673][T10142] netlink: 4 bytes leftover after parsing attributes in process `syz.4.792'.
[  474.719717][T10169] netlink: 16 bytes leftover after parsing attributes in process `syz.5.801'.
[  474.722695][T10169] netlink: 4 bytes leftover after parsing attributes in process `syz.5.801'.
[  475.131066][T10189] netlink: 60 bytes leftover after parsing attributes in process `syz.4.808'.
[  475.134337][T10187] netlink: 60 bytes leftover after parsing attributes in process `syz.4.808'.
[  475.183461][T10192] netlink: 100 bytes leftover after parsing attributes in process `syz.4.809'.
[  475.331993][T10201] FAULT_INJECTION: forcing a failure.
[  475.331993][T10201] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  475.335723][T10201] CPU: 3 UID: 0 PID: 10201 Comm: syz.5.812 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  475.335738][T10201] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  475.335745][T10201] Call Trace:
[  475.335750][T10201]  <TASK>
[  475.335754][T10201]  dump_stack_lvl+0x16c/0x1f0
[  475.335773][T10201]  should_fail_ex+0x512/0x640
[  475.335791][T10201]  _copy_from_user+0x2e/0xd0
[  475.335808][T10201]  kvm_vm_ioctl+0x9d4/0x3da0
[  475.335824][T10201]  ? stack_trace_save+0x8e/0xc0
[  475.335836][T10201]  ? __pfx_stack_trace_save+0x10/0x10
[  475.335846][T10201]  ? stack_depot_save_flags+0x28/0xa40
[  475.335862][T10201]  ? __lock_acquire+0xb8a/0x1c90
[  475.335876][T10201]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[  475.335892][T10201]  ? kasan_save_stack+0x42/0x60
[  475.335906][T10201]  ? kasan_save_stack+0x33/0x60
[  475.335919][T10201]  ? kasan_save_track+0x14/0x30
[  475.335932][T10201]  ? kasan_save_free_info+0x3b/0x60
[  475.335943][T10201]  ? __kasan_slab_free+0x51/0x70
[  475.335957][T10201]  ? kfree+0x2b4/0x4d0
[  475.335969][T10201]  ? tomoyo_path_number_perm+0x470/0x580
[  475.335981][T10201]  ? security_file_ioctl_compat+0x9b/0x240
[  475.335994][T10201]  ? __ia32_compat_sys_ioctl+0xc3/0x370
[  475.336006][T10201]  ? __do_fast_syscall_32+0x7c/0x3a0
[  475.336015][T10201]  ? do_fast_syscall_32+0x32/0x80
[  475.336023][T10201]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  475.336040][T10201]  ? kvm_arch_vm_compat_ioctl+0x2d0/0x470
[  475.336053][T10201]  ? __pfx_kvm_arch_vm_compat_ioctl+0x10/0x10
[  475.336076][T10201]  ? kasan_quarantine_put+0x10a/0x240
[  475.336091][T10201]  ? lockdep_hardirqs_on+0x7c/0x110
[  475.336107][T10201]  ? find_held_lock+0x2b/0x80
[  475.336117][T10201]  ? tomoyo_path_number_perm+0x295/0x580
[  475.336131][T10201]  ? tomoyo_path_number_perm+0x18d/0x580
[  475.336144][T10201]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  475.336155][T10201]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  475.336172][T10201]  ? do_vfs_ioctl+0x523/0x1a60
[  475.336183][T10201]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  475.336202][T10201]  kvm_vm_compat_ioctl+0x393/0x430
[  475.336217][T10201]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  475.336234][T10201]  ? find_held_lock+0x2b/0x80
[  475.336243][T10201]  ? hook_file_ioctl_common+0x145/0x410
[  475.336257][T10201]  ? __fget_files+0x20e/0x3c0
[  475.336269][T10201]  ? fput+0x60/0xf0
[  475.336280][T10201]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  475.336296][T10201]  __ia32_compat_sys_ioctl+0x242/0x370
[  475.336310][T10201]  __do_fast_syscall_32+0x7c/0x3a0
[  475.336320][T10201]  do_fast_syscall_32+0x32/0x80
[  475.336330][T10201]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  475.336342][T10201] RIP: 0023:0xf7fa8579
[  475.336351][T10201] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  475.336360][T10201] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  475.336370][T10201] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000c008ae67
[  475.336377][T10201] RDX: 0000000080000380 RSI: 0000000000000000 RDI: 0000000000000000
[  475.336382][T10201] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  475.336388][T10201] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  475.336394][T10201] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  475.336406][T10201]  </TASK>
[  475.337705][T10202] netlink: 60 bytes leftover after parsing attributes in process `syz.7.810'.
[  475.408454][  T141] usb 11-1: new full-speed USB device number 19 using dummy_hcd
[  475.640981][  T141] usb 11-1: config index 0 descriptor too short (expected 31, got 27)
[  475.643684][  T141] usb 11-1: config 1 interface 0 altsetting 253 endpoint 0x1 has invalid wMaxPacketSize 0
[  475.646757][  T141] usb 11-1: config 1 interface 0 has no altsetting 0
[  475.662051][  T141] usb 11-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= b.97
[  475.664877][  T141] usb 11-1: New USB device strings: Mfr=28, Product=37, SerialNumber=3
[  475.667467][  T141] usb 11-1: Product: syz
[  475.668907][  T141] usb 11-1: Manufacturer: syz
[  475.670511][  T141] usb 11-1: SerialNumber: syz
[  475.808404][   T10] usb 10-1: new full-speed USB device number 11 using dummy_hcd
[  475.930538][T10221] kvm: pic: level sensitive irq not supported
[  475.970177][   T10] usb 10-1: config index 0 descriptor too short (expected 31, got 27)
[  475.974660][   T10] usb 10-1: config 1 interface 0 altsetting 253 endpoint 0x1 has invalid wMaxPacketSize 0
[  475.977685][   T10] usb 10-1: config 1 interface 0 has no altsetting 0
[  475.981975][   T10] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= b.97
[  475.984810][   T10] usb 10-1: New USB device strings: Mfr=28, Product=37, SerialNumber=3
[  475.987334][   T10] usb 10-1: Product: syz
[  475.989857][   T10] usb 10-1: Manufacturer: syz
[  475.998338][   T10] usb 10-1: SerialNumber: syz
[  476.079434][T10224] FAULT_INJECTION: forcing a failure.
[  476.079434][T10224] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  476.084554][T10224] CPU: 1 UID: 0 PID: 10224 Comm: syz.7.819 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  476.084570][T10224] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  476.084577][T10224] Call Trace:
[  476.084581][T10224]  <TASK>
[  476.084585][T10224]  dump_stack_lvl+0x16c/0x1f0
[  476.084606][T10224]  should_fail_ex+0x512/0x640
[  476.084637][T10224]  _copy_from_user+0x2e/0xd0
[  476.084655][T10224]  input_event_from_user+0x137/0x290
[  476.084672][T10224]  ? __pfx_input_event_from_user+0x10/0x10
[  476.084688][T10224]  ? input_inject_event+0x1a5/0x390
[  476.084705][T10224]  evdev_write+0x26b/0x440
[  476.084721][T10224]  ? __pfx_evdev_write+0x10/0x10
[  476.084736][T10224]  ? bpf_lsm_file_permission+0x9/0x10
[  476.084747][T10224]  ? security_file_permission+0x71/0x210
[  476.084761][T10224]  ? rw_verify_area+0xcf/0x680
[  476.084775][T10224]  ? __pfx_evdev_write+0x10/0x10
[  476.084788][T10224]  vfs_write+0x2a0/0x1150
[  476.084805][T10224]  ? __pfx_vfs_write+0x10/0x10
[  476.084818][T10224]  ? find_held_lock+0x2b/0x80
[  476.084829][T10224]  ? __fget_files+0x204/0x3c0
[  476.084845][T10224]  ? __fget_files+0x20e/0x3c0
[  476.084857][T10224]  ? handle_mm_fault+0x230/0xd10
[  476.084874][T10224]  ksys_write+0x1f8/0x250
[  476.084888][T10224]  ? __pfx_ksys_write+0x10/0x10
[  476.084903][T10224]  ? rcu_is_watching+0x12/0xc0
[  476.084915][T10224]  __do_fast_syscall_32+0x7c/0x3a0
[  476.084927][T10224]  do_fast_syscall_32+0x32/0x80
[  476.084936][T10224]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  476.084949][T10224] RIP: 0023:0xf705e579
[  476.084957][T10224] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  476.084971][T10224] RSP: 002b:00000000f504e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  476.084981][T10224] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000040
[  476.084988][T10224] RDX: 0000000000000918 RSI: 0000000000000000 RDI: 0000000000000000
[  476.084994][T10224] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  476.084999][T10224] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  476.085005][T10224] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  476.085018][T10224]  </TASK>
[  476.290218][  T141] usblp 11-1:1.0: usblp0: USB Unidirectional printer dev 19 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  476.495574][   T62] usb 11-1: USB disconnect, device number 19
[  476.503116][   T62] usblp0: removed
[  476.618170][T10236] ptrace attach of "/syz-executor exec"[10237] was attempted by "/syz-executor exec"[10236]
[  476.627451][   T10] usblp 10-1:1.0: usblp0: USB Unidirectional printer dev 11 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  476.724409][T10243] FAULT_INJECTION: forcing a failure.
[  476.724409][T10243] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  476.730076][T10243] CPU: 0 UID: 0 PID: 10243 Comm: syz.7.825 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  476.730090][T10243] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  476.730097][T10243] Call Trace:
[  476.730105][T10243]  <TASK>
[  476.730108][T10243]  dump_stack_lvl+0x16c/0x1f0
[  476.730139][T10243]  should_fail_ex+0x512/0x640
[  476.730161][T10243]  should_fail_alloc_page+0xe7/0x130
[  476.730172][T10243]  prepare_alloc_pages+0x3c2/0x610
[  476.730187][T10243]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  476.730204][T10243]  ? __lock_acquire+0x622/0x1c90
[  476.730222][T10243]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  476.730244][T10243]  ? is_bpf_text_address+0x94/0x1a0
[  476.730259][T10243]  ? kernel_text_address+0x8d/0x100
[  476.730275][T10243]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  476.730292][T10243]  ? policy_nodemask+0xea/0x4e0
[  476.730309][T10243]  alloc_pages_mpol+0x1fb/0x550
[  476.730326][T10243]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  476.730346][T10243]  folio_alloc_mpol_noprof+0x36/0x2f0
[  476.730358][T10243]  vma_alloc_folio_noprof+0xed/0x1e0
[  476.730370][T10243]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  476.730380][T10243]  ? find_held_lock+0x2b/0x80
[  476.730390][T10243]  ? __handle_mm_fault+0x1092/0x5490
[  476.730405][T10243]  __handle_mm_fault+0x2f21/0x5490
[  476.730422][T10243]  ? __pfx___handle_mm_fault+0x10/0x10
[  476.730435][T10243]  ? __pte_offset_map_lock+0x174/0x310
[  476.730446][T10243]  ? find_held_lock+0x2b/0x80
[  476.730454][T10243]  ? find_held_lock+0x2b/0x80
[  476.730467][T10243]  ? follow_page_pte+0x3af/0x14c0
[  476.730482][T10243]  handle_mm_fault+0x589/0xd10
[  476.730498][T10243]  __get_user_pages+0x589/0x3b80
[  476.730515][T10243]  ? __pfx___get_user_pages+0x10/0x10
[  476.730526][T10243]  ? __pfx_down_read_killable+0x10/0x10
[  476.730539][T10243]  ? __lock_acquire+0x622/0x1c90
[  476.730554][T10243]  get_user_pages_unlocked+0x1c1/0x780
[  476.730567][T10243]  ? __pfx_get_user_pages_unlocked+0x10/0x10
[  476.730578][T10243]  ? get_user_pages_fast_only+0xae/0xf0
[  476.730590][T10243]  ? __pfx_get_user_pages_fast_only+0x10/0x10
[  476.730601][T10243]  ? __pfx___might_resched+0x10/0x10
[  476.730615][T10243]  hva_to_pfn+0x886/0xe40
[  476.730632][T10243]  ? __pfx_hva_to_pfn+0x10/0x10
[  476.730649][T10243]  ? __lock_acquire+0x622/0x1c90
[  476.730663][T10243]  ? lock_acquire+0x179/0x350
[  476.730680][T10243]  kvm_follow_pfn+0x2d4/0x430
[  476.730697][T10243]  __kvm_faultin_pfn+0x11c/0x1a0
[  476.730711][T10243]  ? __pfx___kvm_faultin_pfn+0x10/0x10
[  476.730726][T10243]  ? __pfx_xa_load+0x10/0x10
[  476.730739][T10243]  ? kvm_tdp_mmu_map+0x931/0x20b0
[  476.730758][T10243]  kvm_mmu_faultin_pfn+0x581/0x2170
[  476.730775][T10243]  ? __pfx_fast_page_fault+0x10/0x10
[  476.730789][T10243]  ? __pfx_kvm_mmu_faultin_pfn+0x10/0x10
[  476.730803][T10243]  ? __kvm_mmu_topup_memory_cache+0x332/0x600
[  476.730817][T10243]  ? find_held_lock+0x2b/0x80
[  476.730831][T10243]  kvm_tdp_page_fault+0x186/0x3f0
[  476.730843][T10243]  kvm_mmu_do_page_fault+0x588/0x6c0
[  476.730855][T10243]  ? __pfx_kvm_mmu_do_page_fault+0x10/0x10
[  476.730871][T10243]  ? find_held_lock+0x2b/0x80
[  476.730882][T10243]  kvm_mmu_page_fault+0x225/0x1cb0
[  476.730893][T10243]  ? is_bpf_text_address+0x94/0x1a0
[  476.730907][T10243]  ? kernel_text_address+0x8d/0x100
[  476.730922][T10243]  ? __kernel_text_address+0xd/0x40
[  476.730939][T10243]  ? __pfx_kvm_mmu_page_fault+0x10/0x10
[  476.730950][T10243]  ? __lock_acquire+0xb8a/0x1c90
[  476.730964][T10243]  ? __vmx_complete_interrupts+0x238/0x4e0
[  476.730974][T10243]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  476.730992][T10243]  handle_ept_violation+0x2b4/0x6e0
[  476.731002][T10243]  ? __pfx_handle_ept_violation+0x10/0x10
[  476.731016][T10243]  vmx_handle_exit+0x124c/0x1bd0
[  476.731035][T10243]  vcpu_run+0x315e/0x5500
[  476.731052][T10243]  ? __pfx_vcpu_run+0x10/0x10
[  476.731066][T10243]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  476.731076][T10243]  ? __local_bh_enable_ip+0xa4/0x120
[  476.731090][T10243]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  476.731101][T10243]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  476.731117][T10243]  kvm_vcpu_ioctl+0x5eb/0x1690
[  476.731130][T10243]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  476.731142][T10243]  ? tomoyo_path_number_perm+0x18d/0x580
[  476.731157][T10243]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  476.731168][T10243]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  476.731183][T10243]  ? do_vfs_ioctl+0x523/0x1a60
[  476.731195][T10243]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  476.731218][T10243]  kvm_vcpu_compat_ioctl+0x20f/0x3d0
[  476.731230][T10243]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  476.731243][T10243]  ? __fget_files+0x20e/0x3c0
[  476.731255][T10243]  ? fput+0x60/0xf0
[  476.731267][T10243]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  476.731280][T10243]  __ia32_compat_sys_ioctl+0x242/0x370
[  476.731293][T10243]  __do_fast_syscall_32+0x7c/0x3a0
[  476.731305][T10243]  do_fast_syscall_32+0x32/0x80
[  476.731314][T10243]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  476.731327][T10243] RIP: 0023:0xf705e579
[  476.731340][T10243] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  476.731349][T10243] RSP: 002b:00000000f504e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  476.731359][T10243] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  476.731365][T10243] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  476.731371][T10243] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  476.731377][T10243] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  476.731382][T10243] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  476.731395][T10243]  </TASK>
[  476.923727][T10243] kvm: pic: level sensitive irq not supported
[  476.931279][   T62] usb 10-1: USB disconnect, device number 11
[  476.937239][   T62] usblp0: removed
[  477.058774][T10249] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(10)
[  477.060939][T10249] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  477.063517][T10249] vhci_hcd vhci_hcd.0: Device attached
[  477.067979][T10249] vhci_hcd vhci_hcd.0: pdev(7) rhport(1) sockfd(12)
[  477.070104][T10249] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  477.075319][T10249] vhci_hcd vhci_hcd.0: Device attached
[  477.079536][T10249] vhci_hcd vhci_hcd.0: pdev(7) rhport(2) sockfd(15)
[  477.081507][T10249] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  477.084169][T10249] vhci_hcd vhci_hcd.0: Device attached
[  477.086537][T10249] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  477.091596][T10249] vhci_hcd vhci_hcd.0: pdev(7) rhport(4) sockfd(20)
[  477.093929][T10249] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  477.096345][T10249] vhci_hcd vhci_hcd.0: Device attached
[  477.099625][T10249] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(22)
[  477.101705][T10249] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  477.104171][T10249] vhci_hcd vhci_hcd.0: Device attached
[  477.106608][T10249] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  477.112540][T10249] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  477.116773][T10249] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  477.128374][T10259] vhci_hcd: connection closed
[  477.128702][T10252] vhci_hcd: connection closed
[  477.128771][T10250] vhci_hcd: connection closed
[  477.130779][T10257] vhci_hcd: connection closed
[  477.133979][T10255] vhci_hcd: connection closed
[  477.139491][   T13] vhci_hcd: stop threads
[  477.143307][   T13] vhci_hcd: release socket
[  477.145238][   T13] vhci_hcd: disconnect device
[  477.147404][   T13] vhci_hcd: stop threads
[  477.150821][   T13] vhci_hcd: release socket
[  477.152706][   T13] vhci_hcd: disconnect device
[  477.154887][   T13] vhci_hcd: stop threads
[  477.156406][   T13] vhci_hcd: release socket
[  477.157807][   T13] vhci_hcd: disconnect device
[  477.160477][   T13] vhci_hcd: stop threads
[  477.161887][   T13] vhci_hcd: release socket
[  477.163406][   T13] vhci_hcd: disconnect device
[  477.166745][   T13] vhci_hcd: stop threads
[  477.168123][   T13] vhci_hcd: release socket
[  477.170999][   T13] vhci_hcd: disconnect device
[  477.275746][T10263] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(13)
[  477.277869][T10263] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  477.280347][T10263] vhci_hcd vhci_hcd.0: Device attached
[  477.390668][T10265] vhci_hcd: connection closed
[  477.390923][   T46] vhci_hcd: stop threads
[  477.393979][   T46] vhci_hcd: release socket
[  477.395628][   T46] vhci_hcd: disconnect device
[  477.458343][ T6016] vhci_hcd: vhci_device speed not set
[  479.943944][T10302] __nla_validate_parse: 1 callbacks suppressed
[  479.943955][T10302] netlink: 4 bytes leftover after parsing attributes in process `syz.7.838'.
[  480.305570][T10309] loop6: detected capacity change from 0 to 524287999
[  480.359353][T10311] FAULT_INJECTION: forcing a failure.
[  480.359353][T10311] name failslab, interval 1, probability 0, space 0, times 0
[  480.364146][T10311] CPU: 1 UID: 0 PID: 10311 Comm: syz.7.841 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  480.364182][T10311] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  480.364192][T10311] Call Trace:
[  480.364198][T10311]  <TASK>
[  480.364204][T10311]  dump_stack_lvl+0x16c/0x1f0
[  480.364232][T10311]  should_fail_ex+0x512/0x640
[  480.364251][T10311]  ? __kmalloc_noprof+0xbf/0x510
[  480.364275][T10311]  ? sock_kmalloc+0x111/0x170
[  480.364292][T10311]  should_failslab+0xc2/0x120
[  480.364307][T10311]  __kmalloc_noprof+0xd2/0x510
[  480.364334][T10311]  sock_kmalloc+0x111/0x170
[  480.364352][T10311]  hash_alloc_result+0xd7/0x150
[  480.364366][T10311]  hash_recvmsg+0x198/0x960
[  480.364382][T10311]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  480.364409][T10311]  sock_recvmsg+0x1f6/0x250
[  480.364429][T10311]  ____sys_recvmsg+0x218/0x6b0
[  480.364450][T10311]  ? __pfx_____sys_recvmsg+0x10/0x10
[  480.364464][T10311]  ? import_iovec+0x86/0xb0
[  480.364488][T10311]  ? __lock_acquire+0x622/0x1c90
[  480.364513][T10311]  ___sys_recvmsg+0x114/0x1a0
[  480.364537][T10311]  ? __pfx____sys_recvmsg+0x10/0x10
[  480.364559][T10311]  ? find_held_lock+0x2b/0x80
[  480.364590][T10311]  do_recvmmsg+0x55d/0x750
[  480.364617][T10311]  ? __pfx_do_recvmmsg+0x10/0x10
[  480.364634][T10311]  ? trace_sched_exit_tp+0xde/0x130
[  480.364656][T10311]  ? __pfx___schedule+0x10/0x10
[  480.364669][T10311]  ? __fget_files+0x20e/0x3c0
[  480.364685][T10311]  __sys_recvmmsg+0x21c/0x280
[  480.364694][T10311]  ? __pfx___sys_recvmmsg+0x10/0x10
[  480.364708][T10311]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  480.364720][T10311]  ? lockdep_hardirqs_on+0x7c/0x110
[  480.364735][T10311]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  480.364752][T10311]  __do_fast_syscall_32+0x7c/0x3a0
[  480.364762][T10311]  do_fast_syscall_32+0x32/0x80
[  480.364772][T10311]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  480.364784][T10311] RIP: 0023:0xf705e579
[  480.364793][T10311] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  480.364803][T10311] RSP: 002b:00000000f4eeb55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  480.364813][T10311] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080003700
[  480.364819][T10311] RDX: 0000000000000600 RSI: 0000000000000000 RDI: 0000000000000000
[  480.364825][T10311] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  480.364831][T10311] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  480.364836][T10311] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  480.364849][T10311]  </TASK>
[  480.449227][    C1] vkms_vblank_simulate: vblank timer overrun
[  480.914157][T10326] trusted_key: encrypted_key: insufficient parameters specified
[  480.978300][T10326] trusted_key: encrypted_key: insufficient parameters specified
[  481.581557][T10331] netlink: 16 bytes leftover after parsing attributes in process `syz.7.847'.
[  481.668424][T10338] trusted_key: encrypted_key: insufficient parameters specified
[  481.680229][T10338] trusted_key: encrypted_key: insufficient parameters specified
[  481.692990][T10340] netlink: 8 bytes leftover after parsing attributes in process `syz.7.849'.
[  481.743733][   T40] kauditd_printk_skb: 16 callbacks suppressed
[  481.743746][   T40] audit: type=1326 audit(1749739593.108:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10336 comm="syz.6.848" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x0
[  481.756774][T10340] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.7.849: iget: checksum invalid
[  481.767343][T10340] platform regulatory.0: loading /lib/firmware/updates/6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e/regulatory.db failed with error -74
[  481.774704][T10340] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.7.849: iget: checksum invalid
[  481.788327][T10340] platform regulatory.0: loading /lib/firmware/updates/regulatory.db failed with error -74
[  481.791706][T10340] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.7.849: iget: checksum invalid
[  481.795903][T10340] platform regulatory.0: loading /lib/firmware/6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e/regulatory.db failed with error -74
[  481.806893][T10340] EXT4-fs error (device sda1): ext4_lookup:1787: inode #274: comm syz.7.849: iget: checksum invalid
[  481.818146][T10340] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -74
[  481.821170][T10340] platform regulatory.0: Direct firmware load for regulatory.db failed with error -74
[  481.826512][T10340] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  482.458331][   T62] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  482.469015][   T62] hid-generic 0000:0000:0000.0005: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  482.489594][T10358] EXT4-fs error (device sda1): ext4_lookup:1787: inode #1109: comm fido_id: iget: checksum invalid
[  482.495199][T10360] FAULT_INJECTION: forcing a failure.
[  482.495199][T10360] name failslab, interval 1, probability 0, space 0, times 0
[  482.501175][T10360] CPU: 0 UID: 0 PID: 10360 Comm: syz.7.853 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  482.501190][T10360] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  482.501197][T10360] Call Trace:
[  482.501200][T10360]  <TASK>
[  482.501204][T10360]  dump_stack_lvl+0x16c/0x1f0
[  482.501224][T10360]  should_fail_ex+0x512/0x640
[  482.501240][T10360]  ? fs_reclaim_acquire+0xae/0x150
[  482.501254][T10360]  ? tomoyo_encode2+0x100/0x3e0
[  482.501267][T10360]  should_failslab+0xc2/0x120
[  482.501277][T10360]  __kmalloc_noprof+0xd2/0x510
[  482.501292][T10360]  ? d_absolute_path+0x136/0x1a0
[  482.501305][T10360]  tomoyo_encode2+0x100/0x3e0
[  482.501320][T10360]  tomoyo_encode+0x29/0x50
[  482.501333][T10360]  tomoyo_realpath_from_path+0x18f/0x6e0
[  482.501351][T10360]  tomoyo_path_number_perm+0x245/0x580
[  482.501362][T10360]  ? tomoyo_path_number_perm+0x237/0x580
[  482.501375][T10360]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  482.501401][T10360]  ? find_held_lock+0x2b/0x80
[  482.501411][T10360]  ? hook_file_ioctl_common+0x145/0x410
[  482.501425][T10360]  ? __fget_files+0x20e/0x3c0
[  482.501438][T10360]  ? fput+0x60/0xf0
[  482.501450][T10360]  security_file_ioctl_compat+0x9b/0x240
[  482.501463][T10360]  __ia32_compat_sys_ioctl+0xc3/0x370
[  482.501477][T10360]  __do_fast_syscall_32+0x7c/0x3a0
[  482.501489][T10360]  do_fast_syscall_32+0x32/0x80
[  482.501498][T10360]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  482.501511][T10360] RIP: 0023:0xf705e579
[  482.501520][T10360] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  482.501529][T10360] RSP: 002b:00000000f504e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  482.501539][T10360] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000001
[  482.501546][T10360] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  482.501551][T10360] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  482.501557][T10360] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  482.501563][T10360] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  482.501575][T10360]  </TASK>
[  482.501585][T10360] ERROR: Out of memory at tomoyo_realpath_from_path.
[  482.568369][T10357] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[  482.571389][T10360] program syz.7.853 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  482.572991][T10357] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  482.582557][T10357] vhci_hcd vhci_hcd.0: Device attached
[  482.601684][T10364] vhci_hcd: connection closed
[  482.601896][ T1146] vhci_hcd: stop threads
[  482.605480][ T1146] vhci_hcd: release socket
[  482.606934][ T1146] vhci_hcd: disconnect device
[  482.674044][T10368] random: crng reseeded on system resumption
[  482.968788][T10380] netlink: 'syz.6.857': attribute type 1 has an invalid length.
[  483.246935][T10390] EXT4-fs error (device sda1): ext4_lookup:1787: inode #272: comm dhcpcd-run-hook: iget: checksum invalid
[  483.655747][T10407] : entered promiscuous mode
[  483.784530][T10378] syz.6.857 (10378) used greatest stack depth: 20472 bytes left
[  483.919734][T10416] netlink: 16 bytes leftover after parsing attributes in process `syz.6.865'.
[  484.060914][T10423] netlink: 176 bytes leftover after parsing attributes in process `syz.7.867'.
[  484.098330][T10424] netlink: 4 bytes leftover after parsing attributes in process `syz.6.866'.
[  484.538566][T10436] random: crng reseeded on system resumption
[  484.551898][T10440] overlayfs: missing 'lowerdir'
[  484.706791][ T6053] IPVS: starting estimator thread 0...
[  484.747690][T10450] netlink: 8 bytes leftover after parsing attributes in process `syz.6.875'.
[  484.817924][T10448] IPVS: using max 44 ests per chain, 105600 per kthread
[  485.404761][T10466] random: crng reseeded on system resumption
[  486.173585][T10481] FAULT_INJECTION: forcing a failure.
[  486.173585][T10481] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  486.185935][T10481] CPU: 1 UID: 0 PID: 10481 Comm: syz.6.881 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  486.185964][T10481] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  486.185971][T10481] Call Trace:
[  486.185976][T10481]  <TASK>
[  486.185981][T10481]  dump_stack_lvl+0x16c/0x1f0
[  486.186002][T10481]  should_fail_ex+0x512/0x640
[  486.186020][T10481]  _copy_from_iter+0x29f/0x16f0
[  486.186038][T10481]  ? aa_file_perm+0x4d6/0xfb0
[  486.186053][T10481]  ? __pfx__copy_from_iter+0x10/0x10
[  486.186069][T10481]  ? __lock_acquire+0xb8a/0x1c90
[  486.186083][T10481]  ? __pfx_aa_file_perm+0x10/0x10
[  486.186097][T10481]  ? iov_iter_advance+0x7d/0x6c0
[  486.186114][T10481]  vhost_chr_write_iter+0x1c7/0x10f0
[  486.186125][T10481]  ? lock_acquire+0x179/0x350
[  486.186137][T10481]  ? find_held_lock+0x2b/0x80
[  486.186148][T10481]  ? __pfx_vhost_chr_write_iter+0x10/0x10
[  486.186166][T10481]  ? bpf_lsm_file_permission+0x9/0x10
[  486.186178][T10481]  ? security_file_permission+0x71/0x210
[  486.186191][T10481]  ? rw_verify_area+0xcf/0x680
[  486.186206][T10481]  vfs_write+0x6c4/0x1150
[  486.186220][T10481]  ? __pfx_vhost_vsock_chr_write_iter+0x10/0x10
[  486.186239][T10481]  ? __pfx_vfs_write+0x10/0x10
[  486.186252][T10481]  ? find_held_lock+0x2b/0x80
[  486.186269][T10481]  ksys_write+0x12a/0x250
[  486.186283][T10481]  ? __pfx_ksys_write+0x10/0x10
[  486.186298][T10481]  ? rcu_is_watching+0x12/0xc0
[  486.186310][T10481]  __do_fast_syscall_32+0x7c/0x3a0
[  486.186321][T10481]  do_fast_syscall_32+0x32/0x80
[  486.186331][T10481]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  486.186344][T10481] RIP: 0023:0xf703e579
[  486.186353][T10481] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  486.186362][T10481] RSP: 002b:00000000f4fec55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  486.186372][T10481] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000280
[  486.186378][T10481] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  486.186384][T10481] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  486.186390][T10481] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  486.186395][T10481] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  486.186407][T10481]  </TASK>
[  486.257909][    C1] vkms_vblank_simulate: vblank timer overrun
[  486.515506][T10488] lo speed is unknown, defaulting to 1000
[  486.521445][T10488] lo speed is unknown, defaulting to 1000
[  486.574505][T10489] netlink: 8 bytes leftover after parsing attributes in process `syz.4.883'.
[  486.643063][T10491] 9p: Unknown Cache mode or invalid value re
[  486.836762][T10500] netlink: 116 bytes leftover after parsing attributes in process `syz.5.887'.
[  486.851681][T10501] trusted_key: encrypted_key: insufficient parameters specified
[  486.864429][T10500] input: syz1 as /devices/virtual/input/input12
[  486.958277][T10502] trusted_key: encrypted_key: insufficient parameters specified
[  487.017741][ T6053] usb 12-1: new high-speed USB device number 7 using dummy_hcd
[  487.104732][T10507] QAT: Invalid ioctl 21531
[  487.157132][T10511] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000083: 0000 [#1] SMP KASAN NOPTI
[  487.160950][T10511] KASAN: null-ptr-deref in range [0x0000000000000418-0x000000000000041f]
[  487.165203][T10511] CPU: 1 UID: 0 PID: 10511 Comm: syz.5.890 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  487.167827][ T6053] usb 12-1: Using ep0 maxpacket: 32
[  487.169347][T10511] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  487.172133][ T6053] usb 12-1: config index 0 descriptor too short (expected 29220, got 36)
[  487.174304][T10511] RIP: 0010:fib_lookup_good_nhc+0xaf/0x3f0
[  487.176872][ T6053] usb 12-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  487.178696][T10511] Code: df 48 c1 ea 03 80 3c 02 00 0f 85 1e 03 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 2b 48 8d bd 18 04 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 ef 02 00 00 4c 8b bd 18 04 00 00 e8 1b 70 7c 01
[  487.178711][T10511] RSP: 0018:ffffc9000347f840 EFLAGS: 00010202
[  487.178743][T10511] RAX: dffffc0000000000 RBX: ffff88806b5ad720 RCX: ffffc90003c19000
[  487.178750][T10511] RDX: 0000000000000083 RSI: ffffffff89ff7139 RDI: 0000000000000418
[  487.178757][T10511] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  487.178763][T10511] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88804dde3be0
[  487.199153][T10511] R13: ffff88806b5ad737 R14: 0000000000000001 R15: ffff88806eb8fd18
[  487.201686][T10511] FS:  0000000000000000(0000) GS:ffff888097862000(0063) knlGS:00000000f50c6b40
[  487.204448][T10511] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  487.206513][T10511] CR2: 00000000f7370b8c CR3: 0000000025338000 CR4: 0000000000352ef0
[  487.208982][T10511] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  487.211475][T10511] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  487.213927][T10511] Call Trace:
[  487.214994][T10511]  <TASK>
[  487.215941][T10511]  fib_table_lookup+0x158e/0x2300
[  487.217525][T10511]  ? fib4_rule_action+0x228/0x3c0
[  487.217893][ T6053] usb 12-1: config 0 has 1 interface, different from the descriptor's value: 81
[  487.219151][T10511]  fib4_rule_action+0x1f5/0x3c0
[  487.221992][ T6053] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  487.223499][T10511]  ? __pfx_fib4_rule_action+0x10/0x10
[  487.226515][ T6053] usb 12-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  487.228187][T10511]  fib_rules_lookup+0xe16/0x1030
[  487.228207][T10511]  ? __pfx_fib_rules_lookup+0x10/0x10
[  487.228219][T10511]  __fib_lookup+0xec/0x1e0
[  487.231208][ T6053] usb 12-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  487.232744][T10511]  ? __pfx___fib_lookup+0x10/0x10
[  487.234435][ T6053] usb 12-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  487.235818][T10511]  fib_lookup.constprop.0+0x35c/0x530
[  487.239882][ T6053] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  487.241417][T10511]  ip_route_output_key_hash_rcu+0xde2/0x28f0
[  487.247173][ T6053] usb 12-1: config 0 descriptor??
[  487.248341][T10511]  ip_route_output_key_hash+0x137/0x2e0
[  487.248363][T10511]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  487.255502][T10511]  __ip4_datagram_connect+0x83c/0x1540
[  487.257214][T10511]  ? do_softirq+0xd0/0xf0
[  487.258588][T10511]  ip4_datagram_connect+0x2e/0x50
[  487.260200][T10511]  inet_dgram_connect+0x15e/0x2f0
[  487.261793][T10511]  ? __pfx_inet_dgram_connect+0x10/0x10
[  487.263521][T10511]  __sys_connect_file+0x141/0x1a0
[  487.265104][T10511]  __sys_connect+0x13b/0x160
[  487.266567][T10511]  ? __pfx___sys_connect+0x10/0x10
[  487.268181][T10511]  ? xfd_validate_state+0x61/0x180
[  487.269756][T10511]  ? __sys_setsockopt+0x140/0x1a0
[  487.271335][T10511]  __ia32_sys_connect+0x71/0xb0
[  487.272864][T10511]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  487.274896][T10511]  __do_fast_syscall_32+0x7c/0x3a0
[  487.276501][T10511]  do_fast_syscall_32+0x32/0x80
[  487.278044][T10511]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  487.280078][T10511] RIP: 0023:0xf7fa8579
[  487.281353][T10511] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  487.287405][T10511] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 000000000000016a
[  487.290019][T10511] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[  487.292468][T10511] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  487.294968][T10511] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  487.297436][T10511] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  487.299890][T10511] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  487.302353][T10511]  </TASK>
[  487.303338][T10511] Modules linked in:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  487.304698][    C1] vkms_vblank_simulate: vblank timer overrun
[  487.307099][T10511] ---[ end trace 0000000000000000 ]---
[  487.313541][T10511] RIP: 0010:fib_lookup_good_nhc+0xaf/0x3f0
[  487.315511][T10511] Code: df 48 c1 ea 03 80 3c 02 00 0f 85 1e 03 00 00 48 b8 00 00 00 00 00 fc ff df 48 8b 2b 48 8d bd 18 04 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 ef 02 00 00 4c 8b bd 18 04 00 00 e8 1b 70 7c 01
[  487.322727][T10511] RSP: 0018:ffffc9000347f840 EFLAGS: 00010202
[  487.346613][T10511] RAX: dffffc0000000000 RBX: ffff88806b5ad720 RCX: ffffc90003c19000
[  487.349168][T10511] RDX: 0000000000000083 RSI: ffffffff89ff7139 RDI: 0000000000000418
[  487.351636][T10511] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  487.354040][T10511] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88804dde3be0
[  487.356457][T10511] R13: ffff88806b5ad737 R14: 0000000000000001 R15: ffff88806eb8fd18
[  487.359371][T10511] FS:  0000000000000000(0000) GS:ffff888097962000(0063) knlGS:00000000f50c6b40
[  487.362137][T10511] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  487.364190][T10511] CR2: 00000000579d64ac CR3: 0000000025338000 CR4: 0000000000352ef0
[  487.366654][T10511] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  487.369161][T10511] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  487.371614][T10511] Kernel panic - not syncing: Fatal exception
[  487.374374][T10511] Kernel Offset: disabled
[  487.375732][T10511] Rebooting in 86400 seconds..

VM DIAGNOSIS:
14:46:39  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000583764 RBX=0000000000000000 RCX=ffffffff8b7bec69 RDX=ffffed1005646646
RSI=ffffffff8bf559e0 RDI=ffffffff81917691 RBP=fffffbfff1c12ef0 RSP=ffffffff8e007e08
R8 =0000000000000000 R9 =ffffed1005646645 R10=ffff88802b23322b R11=0000000000000001
R12=0000000000000000 R13=ffffffff8e097780 R14=ffffffff90882750 R15=0000000000000000
RIP=ffffffff8b7bd7cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097762000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080108000 CR3=0000000012fe6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8557d555 RDI=ffffffff9ae6ca80 RBP=ffffffff9ae6ca40 RSP=ffffc9000347f240
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=000000004153414b
R12=0000000000000000 R13=0000000000000030 R14=ffffffff9ae6ca40 R15=ffffffff8557d4f0
RIP=ffffffff8557d57f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097862000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7370b8c CR3=0000000025338000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000000 RBX=ffffea00008eb308 RCX=0000000000000034 RDX=1ffffd400011a562
RSI=0000000000000007 RDI=ffffea00008eb310 RBP=ffffea00008d2b10 RSP=ffffc900035d74f0
R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff90882757 R11=ffffc900035d7840
R12=ffffea00008d2b08 R13=0000000000000000 R14=0000000000000004 R15=ffffea00008eb308
RIP=ffffffff84dddd74 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f2daad3e300 ffffffff 00c00000
GS =0000 ffff888097962000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f2daa7085d0 CR3=000000005140a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8ab550c9 ffffffff81856d99 0000000300000004 0000000600040008
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000381 0000001000000000 0000000000000000 ffffffff8ab54a60
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0608000208000801 70ca000800060800 580800060170961e 0000021500000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff0201000000 08060a0155980008 000cb008005ec080 0201000002080608
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0157cc01dc080005 bfbff00201000000 0806060104b002b8 c0080005bfbff803
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00020005bfbff403 00040005bfbff003 0008000fffffffff 02010800060107c2
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0fffffffff020408 002c080006014bd2 0802880205080280 0005028002000800
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffaa03000000 ffffffa203000000 ffffff9a07000000 0000005cffffffb4
ZMM25=3ca1564c3ca1564c 3ca1564c3ca1564c 3ca1564c3ca1564c 3ca1564c3ca1564c 3ca1564c3ca1564c 3ca1564c3ca1564c 3ca1564c3ca1564c 3ca1564c3ca1564c
ZMM26=4b93f06e4b93f06e 4b93f06e4b93f06e 4b93f06e4b93f06e 4b93f06e4b93f06e 4b93f06e4b93f06e 4b93f06e4b93f06e 4b93f06e4b93f06e 4b93f06e4b93f06e
ZMM27=077c77f7077c77f7 077c77f7077c77f7 077c77f7077c77f7 077c77f7077c77f7 077c77f7077c77f7 077c77f7077c77f7 077c77f7077c77f7 077c77f7077c77f7
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=a2070000a2070000 a2070000a2070000 a2070000a2070000 a2070000a2070000 a2070000a2070000 a2070000a2070000 a2070000a2070000 a2070000a2070000
info registers vcpu 3

CPU#3
RAX=00000000004108dc RBX=0000000000000003 RCX=ffffffff8b7bec69 RDX=ffffed10056a6646
RSI=ffffffff8bf559e0 RDI=ffffffff81917691 RBP=ffffed10037e7000 RSP=ffffc9000048fdf8
R8 =0000000000000000 R9 =ffffed10056a6645 R10=ffff88802b53322b R11=ffffffff9ae0d550
R12=0000000000000003 R13=ffff88801bf38000 R14=ffffffff90882750 R15=0000000000000000
RIP=ffffffff8b7bd7cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097a62000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080e9a000 CR3=000000001b2e4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6cec90f19dd8644c 0e107d17aae9972f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9305120c3d2658d5 fefb51963f6fd218
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 791e16df1d0d0ec5 4c581e7a1528ee5f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7f1ab34314c53e26 7aac28083d243cc4
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000640
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0100000001000000 f908008001000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0129932001299334 0129934101000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4dfc008001299329 01000000d9f60080
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 01299335f4be0080 8410008001299320
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1132c30d88b8172f ae3f32cafacc7152
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 869f5f00d948e5e4 ed5071a9d6183aca
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000