last executing test programs:

25m18.652773886s ago: executing program 32 (id=607):
syz_open_dev$sndpcmp(0x0, 0x7, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0xb8}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x8080583a, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0xf09)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r2, 0x6, 0xe, 0x0, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r2, 0x6, 0xe, 0x0, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
close_range(r3, 0xffffffffffffffff, 0x0)

24m59.218226756s ago: executing program 4 (id=658):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000100), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
prctl$PR_SET_THP_DISABLE(0x44, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
prctl$PR_CAP_AMBIENT(0x2f, 0x2, 0x4000000000)
timer_create(0x1, 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000040)={'wpan0\x00'})
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r3, &(0x7f0000000040)=[{&(0x7f0000000340)=""/240, 0xf0}], 0x1, 0x2, 0xffffffff)

24m45.859519818s ago: executing program 4 (id=684):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000006, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
getrandom(0x0, 0x0, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x14)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0xb, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r1 = gettid()
process_vm_writev(r1, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
mremap(&(0x7f0000a94000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000259000/0x4000)=nil)
mlock(&(0x7f0000216000/0x1000)=nil, 0x1000)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc01100, 0x0, 0x0, 0x0, 0x2)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000003})

24m37.455725641s ago: executing program 4 (id=698):
socket$nl_rdma(0x10, 0x3, 0x14)
socket$netlink(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x24}}, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, 0x0, 0x40810)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000580), 0xa, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000001e00)=ANY=[@ANYBLOB="040f047ce11620"], 0x7)

24m35.721638606s ago: executing program 4 (id=701):
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @mcast2, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x0, 0x0, 0x0, 0x50}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r4 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x4e21, 0x0, @loopback}, 0x1c)
sendmsg(r4, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

24m34.096909333s ago: executing program 4 (id=704):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r4, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f0000000240)=[0x0, 0x0, 0x0, <r6=>0x0], &(0x7f0000000200), 0x4, r5})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)=[<r7=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r4, 0xc03864bc, &(0x7f0000000500)={0x200, 0x1, &(0x7f0000000180)=[r7], &(0x7f0000000200), &(0x7f0000000580)=[r6], &(0x7f0000000040)})

24m32.646309504s ago: executing program 4 (id=709):
wait4(0x0, 0x0, 0x20000000, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x40, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
getpgid(0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(0x0)
tee(0xffffffffffffffff, r3, 0x80000001, 0x0)
getsockopt$inet6_mreq(r2, 0x29, 0x1c, &(0x7f0000000300)={@initdev}, &(0x7f0000000340)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x80)
open_tree(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x100)

24m17.159161123s ago: executing program 33 (id=709):
wait4(0x0, 0x0, 0x20000000, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x40, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
getpgid(0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(0x0)
tee(0xffffffffffffffff, r3, 0x80000001, 0x0)
getsockopt$inet6_mreq(r2, 0x29, 0x1c, &(0x7f0000000300)={@initdev}, &(0x7f0000000340)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x80)
open_tree(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x100)

24m15.218407167s ago: executing program 34 (id=711):
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000100), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
prctl$PR_SET_THP_DISABLE(0x44, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
prctl$PR_CAP_AMBIENT(0x2f, 0x2, 0x4000000000)
timer_create(0x1, 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r1, 0x8955, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000040)={'wpan0\x00'})
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r3, &(0x7f0000000040)=[{&(0x7f0000000340)=""/240, 0xf0}], 0x1, 0x2, 0xffffffff)

21m36.568362034s ago: executing program 7 (id=1039):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x80)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
ioprio_set$pid(0x2, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x80, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000440)='./bus\x00')
r2 = open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, 0x0, {{0x1000000000003, 0x3, 0x8000000000007, 0xaa, 0x3, 0x1, {0x0, 0x180, 0x20fe, 0x5, 0x87, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
sendfile(r2, r2, &(0x7f0000000080), 0x7f03)

21m27.893603754s ago: executing program 7 (id=1057):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket(0x28, 0x5, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='sched_switch\x00', r0, 0x0, 0x3}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$inet6_IPV6_RTHDR(r2, 0x29, 0x39, &(0x7f0000000340)=ANY=[@ANYBLOB="0002020100000000ff02000000000000000000000000000137a5bc3bfda259f50cfdb6afe174f825df40b38cc208b36fd09b2e667ae7e61e9936ecace0a5210501892e159a4f8abd1745fb7c4b3005653f83f5359f126c15bdeec508c3c447b58fdfd1d0174fb9d273db11f4cc7b025d1dc6980c34053972ef700a8a01a4f1c3337c03b0ab6c85cc49ed5e06c1136b6fd0"], 0x18)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @private2}, 0x1c)
setsockopt$inet6_int(r2, 0x29, 0x10, &(0x7f0000000000), 0x4)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0xffdf}], 0x1)
r3 = syz_open_dev$sndctrl(&(0x7f0000000400), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000000)={{0x0, 0x0, 0x81, 0xfffffffe, 'syz0\x00', 0x5}, 0x3, 0x20, 0x5, 0x0, 0x1, 0x8, 'syz1\x00', &(0x7f0000000140)=[':#,\x00'], 0x4})
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r4, &(0x7f0000000040)=0x800000000001c8, 0x12)

21m24.884659603s ago: executing program 7 (id=1063):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x4)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0x3a1)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r6, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r7, 0x0)
r8 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r8, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r9, 0x0)
sendmsg$kcm(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3e7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00121000a6400d0c0c00bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

21m21.551362074s ago: executing program 7 (id=1070):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
getsockopt$PNPIPE_HANDLE(0xffffffffffffffff, 0x113, 0x3, &(0x7f0000000100), 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
write$P9_RREADDIR(0xffffffffffffffff, &(0x7f0000000580)={0xaf, 0x29, 0x1, {0x7fff, [{{0x0, 0x2, 0x5}, 0x810, 0x4, 0x10, './file0/../file1'}, {{0x10, 0x3}, 0x1, 0x7, 0x7, './file1'}, {{0x2, 0x4, 0x1}, 0x5, 0x10, 0x7, './file0'}, {{0x40, 0x0, 0x2}, 0x80000000, 0x1, 0x7, './file0'}, {{0x0, 0x3, 0x1}, 0x1, 0x96, 0x7, './file1'}]}}, 0xaf)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140), r3)
sendmsg$IPVS_CMD_GET_DAEMON(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r4, 0x301, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x24000010}, 0x8000)
sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000240)={0x70, r4, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x40, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x8}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0xc9}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x64010100}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x3}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x2f}]}]}, 0x70}}, 0x44020)

21m19.351865549s ago: executing program 7 (id=1074):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r4 = socket(0x15, 0x5, 0x0)
getsockopt(r4, 0x200000000114, 0x2716, &(0x7f0000c35fff)=""/1, &(0x7f0000000000)=0xf002)
ioctl$SIOCX25SFACILITIES(r3, 0x89e3, &(0x7f0000000000)={0x1000000b, 0x7, 0xc, 0x9, 0x4000000})
r5 = semget$private(0x0, 0x6, 0x0)
semtimedop(r5, &(0x7f00000003c0)=[{0x0, 0x1}, {0x2, 0x4, 0x1800}], 0x2, 0x0)
semop(r5, &(0x7f0000000040)=[{0x1, 0x6, 0x1000}], 0x1)
semop(r5, &(0x7f0000001240)=[{0x0, 0x0, 0x2000}], 0x1)
semctl$IPC_RMID(r5, 0x0, 0x0)
semctl$SETALL(r5, 0x0, 0x11, &(0x7f0000000040)=[0x0, 0x2, 0x8000, 0x5, 0x2])

21m18.047486856s ago: executing program 7 (id=1077):
wait4(0x0, 0x0, 0x20000000, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x40, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
getpgid(0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(0x0)
tee(0xffffffffffffffff, r2, 0x80000001, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000300)={@initdev}, &(0x7f0000000340)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x80)
r3 = open$dir(&(0x7f0000000280)='./file0\x00', 0x941, 0x1a)
open_tree(r3, &(0x7f00000002c0)='./file0\x00', 0x100)

21m2.921782318s ago: executing program 35 (id=1077):
wait4(0x0, 0x0, 0x20000000, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x40, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
getpgid(0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(0x0)
tee(0xffffffffffffffff, r2, 0x80000001, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000300)={@initdev}, &(0x7f0000000340)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x80)
r3 = open$dir(&(0x7f0000000280)='./file0\x00', 0x941, 0x1a)
open_tree(r3, &(0x7f00000002c0)='./file0\x00', 0x100)

19m5.091727557s ago: executing program 5 (id=1291):
socket$can_j1939(0x1d, 0x2, 0x7)
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x2, 0xa, 0x2)
socket$inet_udplite(0x2, 0x2, 0x88)
socket$inet_sctp(0x2, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff})
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000180)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x6000000, 0x2000000000c0, 0x2000000000f0, 0x200000000120], 0x0, 0x0, 0x0}, 0x108)
memfd_secret(0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_io_uring_setup(0x19f2, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000140)=<r3=>0x0, &(0x7f0000000100)=<r4=>0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='pids.events\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f0000000180)=ANY=[@ANYRES64=r5], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, r6, 0x0, r0})
io_uring_enter(r2, 0x2d3c, 0x0, 0x0, 0x0, 0x0)

19m3.428705357s ago: executing program 5 (id=1303):
r0 = socket$kcm(0x10, 0x2, 0x4)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x220c)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000100)={0xa, 0x4e22, 0x5, @empty}, 0x1c)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000040)='ip6tnl0\x00', 0x10)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r5, &(0x7f0000000080)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c)
bind$inet6(r5, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r6, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r7, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r8, 0x0)
sendmsg$kcm(r0, &(0x7f0000000240)={0x0, 0x140, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3e7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00121000a6400d0c0c00bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

19m1.867761883s ago: executing program 5 (id=1296):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000800)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r3}, 0x18)
r4 = mq_open(0x0, 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x1, 0x4})
mq_getsetattr(r4, &(0x7f0000000700)={0x800, 0x10, 0x9}, 0x0)
mq_timedreceive(r4, &(0x7f0000000340)=""/195, 0xc3, 0x0, 0x0)
mq_timedreceive(r4, &(0x7f0000000080)=""/92, 0x5c, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mount(&(0x7f00000000c0)=@nullb, &(0x7f0000000040)='.\x00', &(0x7f0000000140)='f2fs\x00', 0x4000, 0x0)

19m0.401077886s ago: executing program 5 (id=1298):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYRES8, @ANYRESDEC], 0x48)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x8948, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, &(0x7f0000001540)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x200000, 0x10, &(0x7f0000000000), 0x143}, 0x48)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc018937e, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r3 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r3, 0x0, 0x25, 0x0, @void}, 0x10)
close_range(r2, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)

18m57.367707192s ago: executing program 5 (id=1306):
r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r3 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {0x2, 0x0, 0x6}, [@NFULA_CFG_CMD={0x5, 0x1, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x54)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f0000000d40)={0x0, 0x0, r4, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r3, 0xc06864ce, &(0x7f0000000340)={r5, 0x0, 0x0, 0x0, 0x1, [<r6=>0x0], [0x0, 0x7], [0x0, 0x80000002, 0x2], [0x0, 0x0, 0x1, 0x1]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0x806})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r2, 0xc00c642d, &(0x7f0000000080)={r6, 0x0, <r7=>0xffffffffffffffff})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r3, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r7})
ioctl$SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r7, 0xc00c642e, &(0x7f0000000180))

18m55.038003163s ago: executing program 5 (id=1310):
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sendmsg$nl_crypto(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket(0x1e, 0x80004, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x9200000000000000)
ppoll(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

18m39.922920307s ago: executing program 36 (id=1310):
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sendmsg$nl_crypto(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket(0x1e, 0x80004, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x9200000000000000)
ppoll(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

17m58.499188335s ago: executing program 8 (id=1396):
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x44, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x30, 0x1, [@m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @local, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x1, @local, @remote, @link_local, @private=0xac1414bb}}}}, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0x12, 0x0, 0x0)
connect$qrtr(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x8d2, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
socket$packet(0x11, 0x3, 0x300)
r3 = socket$netlink(0x10, 0x3, 0x4)
write(r3, &(0x7f0000005c00)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27)

17m57.358777584s ago: executing program 8 (id=1397):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x2)
mmap$snddsp(&(0x7f00003c6000/0x1000)=nil, 0x1000, 0x2000004, 0x4010, 0xffffffffffffffff, 0x3000)
mbind(&(0x7f0000a45000/0x1000)=nil, 0x1000, 0x2, 0x0, 0x3, 0x0)
r4 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r4, 0xb, 0x0, 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc)
r5 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r5, &(0x7f0000000580)='1\x00', 0x2)

17m56.32869349s ago: executing program 8 (id=1399):
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, 0x0, 0x44050)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r3, 0x0, 0x7}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="c0260000410007010000000007000000017c00000400fc80a72601"], 0x26c0}}, 0x4010)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0))
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, &(0x7f00000001c0)=0x2, 0x4)
bind$xdp(0xffffffffffffffff, &(0x7f0000000100), 0x10)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0x541b, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

17m53.24383302s ago: executing program 8 (id=1402):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
setpgid(0x0, 0x0)
ptrace(0x10, 0x0)
ptrace$cont(0x20, 0x0, 0x1000000ffffffff, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000e00)=@gettaction={0x14, 0x5a, 0x1}, 0x14}}, 0x0)
r5 = fanotify_init(0x200, 0x0)
fanotify_mark(r5, 0x1, 0x40000032, r3, 0x0)

17m52.067559801s ago: executing program 8 (id=1405):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$packet(0x11, 0x0, 0x300)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x40, &(0x7f0000000200)=0x102, 0x4)
bind$inet6(r0, &(0x7f0000000500)={0xa, 0x2, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f00000000c0)="04", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
r4 = dup(r0)
sendmsg$IPSET_CMD_TYPE(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x24008000}, 0x20000001)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)=@ipv4_delroute={0x1c, 0x19, 0x1, 0x70bd28, 0x25dfdbfb, {0x2, 0x14, 0x0, 0x8, 0xfe, 0x0, 0xff, 0x1}}, 0x1c}, 0x1, 0x0, 0x0, 0x2400c091}, 0x4000000)
connect$unix(r4, &(0x7f0000002200)=@file={0x0, './file0\x00'}, 0x6e)
fchown(0xffffffffffffffff, 0x0, 0xee01)

17m49.984018052s ago: executing program 8 (id=1407):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sendmsg$nl_crypto(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe)
syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket(0x1e, 0x80004, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x9200000000000000)
ppoll(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)

17m33.71479958s ago: executing program 37 (id=1407):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sendmsg$nl_crypto(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe)
syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket(0x1e, 0x80004, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r1, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x9200000000000000)
ppoll(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)

15m6.797109617s ago: executing program 2 (id=1638):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast6-avx\x00'}, 0x58)
syz_open_dev$loop(&(0x7f00000005c0), 0xffff, 0x109041)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_WANTLQI(r1, 0x0, 0x3, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000)
connect$llc(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), r1)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
accept4(r0, 0x0, 0x0, 0x800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x4, 0x0, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x7c}}, 0x80)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[], 0x94}, 0x1, 0x0, 0x0, 0xc0}, 0x40000)
sendmsg$NFT_MSG_GETFLOWTABLE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x14, 0x17, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x20000005}, 0x4000000)

15m5.506639321s ago: executing program 3 (id=1640):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000000c0)=ANY=[@ANYRES32], 0x12)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r4}, 0x10)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x80, 0x1)
r5 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e27, 0xffffffff, @mcast2, 0x7}, 0x1c)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x2, @in=@broadcast, 0x6, 0x4, 0x3}]}]}, 0xfc}}, 0x0)
sendmmsg$inet6(r5, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0}}], 0x20, 0x4001c00)

15m4.605487331s ago: executing program 2 (id=1641):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file4\x00', 0x1c0)
mount$tmpfs(0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000200)='./file1/file4/file5\x00', 0x81c0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file1/file4/file7\x00', 0x1c0)
r3 = landlock_create_ruleset(&(0x7f00000002c0)={0x2001}, 0x18, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x200000, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r3, 0x1, &(0x7f0000000340)={0x2000, r4}, 0x0)
landlock_restrict_self(r3, 0x0)
landlock_restrict_self(r3, 0x0)
linkat(0xffffffffffffff9c, &(0x7f0000000500)='./file1/file4/file5\x00', 0xffffffffffffff9c, &(0x7f0000000540)='./file1/file4/file7/file5\x00', 0x0)

15m3.417984755s ago: executing program 2 (id=1643):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$netlink(0x10, 0x3, 0x10)
epoll_create1(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x1e, 0x2, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_rdma(0x10, 0x3, 0x14)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x15, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$key(0xf, 0x3, 0x2)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet(0xa, 0x801, 0x100)
syz_usb_connect(0x2, 0x62, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000095e7d086d04c308166b01020301090250"], 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000740)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r0, @ANYRES64=0x0, @ANYBLOB="ed"], 0x20)

15m1.279717161s ago: executing program 3 (id=1648):
r0 = creat(&(0x7f0000000380)='./file0\x00', 0xecf86c37d5304961)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x410)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r2 = accept4(r1, &(0x7f00000003c0)=@can, &(0x7f0000000440)=0x80, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000001640)={0x0}, 0x1, 0x0, 0x0, 0x20010}, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x10, 0x3, 0x0)
open$dir(&(0x7f0000000040)='./file0\x00', 0x20000, 0x41)
socket$alg(0x26, 0x5, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r3=>0x0, <r4=>0x0}, 0x6000)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240), 0x4080, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f0000000100)={{}, {}, [{0x2, 0x0, r3}], {0x4, 0x5}, [{0x8, 0x5, r4}, {0x8, 0x5, r4}], {0x10, 0x6}, {0x20, 0x1}}, 0x3c, 0x0)
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r5, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{}], 0x1}, 0x0)
write$cgroup_devices(r0, &(0x7f0000000280)={'a', ' *:* ', 'rwm\x00'}, 0xa)

15m0.493987884s ago: executing program 2 (id=1652):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd30", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = fsmount(0xffffffffffffffff, 0x0, 0x2)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$fb0(0xffffffffffffff9c, &(0x7f00000000c0), 0x12b900, 0x0)
socket(0x11, 0x2, 0x0)
sendmmsg$alg(r2, &(0x7f00000024c0)=[{0x0, 0x0, &(0x7f0000001dc0), 0x0, 0x0, 0x0, 0x4}], 0x1, 0x40810)
sendmmsg$alg(r1, &(0x7f0000000280)=[{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000540)="be39d63e6912eb1954f42f8ddb7b03149b24bdda751277f494e388376bfeecf94865f8ff7fe00f4b33ddcf647c357d9ed5e4963169e0bf956b9acbf2ea7a6ba33e40208aaaa3f6a1e6696ecff287ddaf32757e8ed61a1cdbfef333a2f1f05df25878447f2048d5b73c17d56994c2a1a7f466194a76557b415c9f22eb091cbec8b3edb0366be5fe4318c8a282d48f95eb6f3d3cac5e8f5c2599ab046fbdd635aa06ae4a30100ad80f84e1bdb726e3a2478234fe8b14c0783da50349b65fcee0223fe24aa1b4401c15603888c624ece2551c", 0xd1}, {&(0x7f0000002000)}], 0x2, 0x0, 0x0, 0x4000800}], 0x1, 0x24004041)
recvmmsg(r1, &(0x7f00000065c0)=[{{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, &(0x7f0000001e00)=[{&(0x7f0000002f80)=""/4096, 0x1000}], 0x1}, 0xfffffff7}], 0x2, 0x40004023, 0x0)

14m57.607235571s ago: executing program 2 (id=1655):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000000c0)=ANY=[@ANYRES32], 0x12)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x80, 0x1)
r4 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e27, 0xffffffff, @mcast2, 0x7}, 0x1c)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x2, @in=@broadcast, 0x6, 0x4, 0x3}]}]}, 0xfc}}, 0x0)
sendmmsg$inet6(r4, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0}}], 0x20, 0x4001c00)

14m56.458089673s ago: executing program 3 (id=1657):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x40, &(0x7f0000000200)=0x102, 0x4)
bind$inet6(r0, &(0x7f0000000500)={0xa, 0x2, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="04", 0x1, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x4e24, 0x0, @loopback, 0x1}}, 0x0, 0x0, 0x6, 0x0, "10baa70a93289349d889de25b87376f64276337642b890d33cb5b592e66e6229bc5c7ac135fee1b3871b7ef6619db5b2a94edb6f73ea08b02aa3b47debd38b6d889a8c986b33eb49c3157f1f370dfd67"}, 0xd8)
r4 = dup(r0)
sendmsg$IPSET_CMD_TYPE(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x24008000}, 0x20000001)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)=@ipv4_delroute={0x1c, 0x19, 0x1, 0x70bd28, 0x25dfdbfb, {0x2, 0x14, 0x0, 0x8, 0xfe, 0x0, 0xff, 0x1}}, 0x1c}, 0x1, 0x0, 0x0, 0x2400c091}, 0x4000000)
connect$unix(r4, &(0x7f0000002200)=@file={0x0, './file0\x00'}, 0x6e)
fchown(0xffffffffffffffff, 0x0, 0xee01)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffffb)

14m53.757271413s ago: executing program 2 (id=1660):
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @mcast2, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x0, 0x0, 0x0, 0x50}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r4 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x4e21, 0x0, @loopback}, 0x1c)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000180))
sendmsg(r4, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

14m51.374069167s ago: executing program 3 (id=1662):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x80280, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$inet6(0xa, 0x1, 0x8010000000000084)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x80700a, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)

14m41.741624934s ago: executing program 3 (id=1676):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x40, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ptrace$ARCH_GET_UNTAG_MASK(0x1e, 0x0, 0x0, 0x4001)
shmctl$SHM_LOCK(0x0, 0xb)
getpgid(0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80)
r2 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)
close(0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x8)
fchdir(r3)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)

14m37.961514459s ago: executing program 38 (id=1660):
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @mcast2, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x0, 0x0, 0x0, 0x50}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r4 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x4e21, 0x0, @loopback}, 0x1c)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000180))
sendmsg(r4, &(0x7f00000000c0)={0x0, 0x953a, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xfff2}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

14m37.491303824s ago: executing program 3 (id=1685):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
socket$nl_audit(0x10, 0x3, 0x9)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500"/136], 0xfc}}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r3, &(0x7f0000000080)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xc)
r4 = socket$inet6(0xa, 0x3, 0x26)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0)

14m35.240715628s ago: executing program 39 (id=1685):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
socket$nl_audit(0x10, 0x3, 0x9)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500"/136], 0xfc}}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r3, &(0x7f0000000080)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xc)
r4 = socket$inet6(0xa, 0x3, 0x26)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0)

16.620510307s ago: executing program 9 (id=2866):
openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x303100, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r0, 0xfffffffc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x42000773)
sched_setaffinity(0x0, 0x0, 0x0)
poll(0x0, 0x0, 0x1d)
r5 = socket(0x10, 0x2, 0x0)
write(r5, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r5, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r6, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x80, 0x1, 0x8, 0x3, 0x0, 0x0, {0x1, 0x0, 0x5}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8917}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x1}, @CTA_TIMEOUT_DATA={0x2c, 0x4, 0x0, 0x1, @gre=[@CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0x9}, @CTA_TIMEOUT_GRE_REPLIED={0x8, 0x2, 0x1, 0x0, 0x9}, @CTA_TIMEOUT_GRE_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x200}]}, @CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_UNACK={0x8, 0xb, 0x1, 0x0, 0x4}, @CTA_TIMEOUT_TCP_CLOSE={0x8, 0x8, 0x1, 0x0, 0x6}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8917}]}, 0x80}, 0x1, 0x0, 0x0, 0x80}, 0x4804)

15.595494657s ago: executing program 9 (id=2869):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syslog(0x3, &(0x7f0000000700)=""/231, 0xe7)

12.042482414s ago: executing program 9 (id=2873):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x17)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close(0xffffffffffffffff)
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000100)={0x0, &(0x7f0000000040), 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GETCRTC(r4, 0xc06864a1, &(0x7f0000000240)={0x0, 0x0, 0x0, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000600)={r5, 0x0, 0x0, 0x0, 0x0, [<r6=>0x0], [], [], [0xd]})
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xae, 0x3ff, 0x34325241, 0x0, [r6], [0x2b8]})
mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000ffe000/0x1000)=nil)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000c00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03080000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021440000000c0a09030000000000000000070000000900020073797a31000000000900010073797a300000000018000380140000800800034000000002050006405200000014000000110001"], 0xc8}}, 0x0)

11.289804392s ago: executing program 1 (id=2876):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
listen(r0, 0x4)
mkdirat(0xffffffffffffffff, &(0x7f0000000340)='./file1\x00', 0x111)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
shmctl$IPC_RMID(0x0, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000740)=@pppol2tpv3={0x18, 0x1, {0x3, r2, {0x2, 0x4e23, @broadcast}, 0x2, 0x0, 0x4}}, 0x2e)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000040)={'wlan1\x00', &(0x7f0000000080)=@ethtool_ringparam={0x11, 0x0, 0x0, 0x0, 0x0, 0x1b30}})
ioctl(r4, 0x8b1a, &(0x7f0000000040))
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000080), 0x1000000, &(0x7f0000000240)={[{@verity_require}]})
r5 = syz_open_dev$sndctrl(&(0x7f0000000600), 0x0, 0x8801)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r5, 0xc1105517, &(0x7f0000001340)={{0x0, 0x1, 0x0, 0x8, 'syz0\x00'}, 0x3, 0x0, 0x8, 0x0, 0x2, 0x0, 'syz0\x00', &(0x7f0000000180)=['\x00', '-[\'\x00'], 0x5})
mount$9p_tcp(&(0x7f00000002c0), &(0x7f0000000300)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000004c0), 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="7472616e733d74637411a8fb72743d3078303030303030303030303030346532322c70726976706f72742c00"])
mount(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x18642, 0x0)

11.064787656s ago: executing program 0 (id=2877):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
iopl(0x3)
syz_io_uring_setup(0xf00, 0x0, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r0, 0x0, 0x4}, 0xa)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
socket$nl_audit(0x10, 0x3, 0x9)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$kcm(0x10, 0x400000002, 0x0)
io_setup(0x30, &(0x7f0000000600))
pipe2$9p(0x0, 0x80000)
creat(&(0x7f0000000580)='./file1\x00', 0x30)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r5 = fanotify_init(0xf00, 0x0)
fanotify_mark(r5, 0x1, 0x10001011, r4, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', r4, &(0x7f00000004c0)='./file0\x00', 0x2)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000280), 0x0, 0x0)

11.018905667s ago: executing program 9 (id=2878):
modify_ldt$write(0x1, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r2, 0x58, &(0x7f0000001f40)}, 0x9)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e25}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
shutdown(r5, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000200)={<r6=>0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @private=0xa010102}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r5, 0x84, 0x7a, &(0x7f0000000340)={r6, @in6={{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, &(0x7f0000000040)=0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = io_uring_setup(0x3b69, &(0x7f0000001d80)={0x0, 0x714, 0x2, 0x1, 0x3d7})
io_uring_enter(r8, 0x5756, 0x9d76, 0x5, 0x0, 0x0)
poll(&(0x7f0000b2c000)=[{r7}], 0x2c, 0xffffffffffbffff8)
modify_ldt$write(0x1, &(0x7f0000001700), 0x10)

10.896434835s ago: executing program 6 (id=2879):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x1)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002340), 0x40800)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r4, 0xc058534f, &(0x7f0000002380)={{0x0, 0x1}, 0x0, 0x0, 0x2, {0x4, 0x1}, 0x3, 0x800})
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x195)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="02000000020000000000f400040000000000000020"], 0x1c, 0x1)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x2, 0x2, 0x0, 0x2, 0xd, 0x0, 0x0, 0x0, [@sadb_key={0x2, 0x8, 0x8, 0x0, "fd"}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0xa0000000}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @empty}}, @sadb_x_nat_t_type={0x1}]}, 0x68}, 0x1, 0x7}, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x8001}, 0x8)
getsockopt$bt_hci(r5, 0x84, 0x7f, &(0x7f0000000080)=""/4057, &(0x7f0000000000)=0xfd9)

9.727983639s ago: executing program 9 (id=2880):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha256\x00'}, 0x58)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TLS_TX(r4, 0x6, 0x1, &(0x7f00000000c0)=@gcm_256={{0x7}, '\x00', "5171bb672965593497418688ac68cb126474cd3660dab9e2086e246728d7a040", '\x00\x00=*', "1202000000040030"}, 0x58)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x4e21, 0x7fff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3}}, 0x0, 0x0, 0x4b, 0x0, "5d9ed5ab7ede1bcf73742bc36c0ea13d3dec33e0b7cc1ff724fe1906cf9f7945230bc5d9dfea4ffd1e48aaf9a42d97f58da594d5eb926f70f03d2d46f374a6b62ee9d04ac1bf0bef969bcbd8e4700616"}, 0xd8)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r5 = accept4(r0, 0x0, 0x0, 0x80000)
recvmsg(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000021840)=[{&(0x7f00000207c0)=""/39, 0x27}], 0x1}, 0x10041)

8.743829231s ago: executing program 6 (id=2881):
r0 = socket$inet6(0xa, 0x3, 0x2)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
r3 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r5=>0x0})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x28, r3, 0x800, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x4, 0x4}}}}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20004000}, 0x4004040)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close(0xffffffffffffffff)
capset(0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x4e24, 0x0, @empty}, 0x1c)
sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x3a, 0x0, 0x0)

8.632216498s ago: executing program 0 (id=2882):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syslog(0x3, &(0x7f0000000700)=""/231, 0xe7)

7.534943696s ago: executing program 0 (id=2883):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = syz_io_uring_setup(0x3c1e, &(0x7f0000000140)={0x0, 0xaee2, 0x10, 0x20000002, 0x162}, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x47f6, 0x0, 0x2, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000003, 0x50032, 0xffffffffffffffff, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000004c0)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
mlock(&(0x7f0000910000/0x1000)=nil, 0x1000)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000004000000e27f000001"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x206b}, [@map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x7}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$nl_generic(0x11, 0x3, 0x10)
sendmsg(r6, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0x36}], 0x2, 0x0, 0x0, 0x11000000}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFBR(r7, 0x8940, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x54, 0x0, 0x8, 0x301, 0x0, 0x0, {0x0, 0x0, 0xa}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x88a2}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x84}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x6002}, @CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_HEARTBEAT_SENT={0x8, 0x8, 0x1, 0x0, 0x6}, @CTA_TIMEOUT_SCTP_ESTABLISHED={0x8, 0x4, 0x1, 0x0, 0x4}, @CTA_TIMEOUT_SCTP_COOKIE_WAIT={0x8}]}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x54}}, 0x8000)

7.528322748s ago: executing program 6 (id=2884):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[], 0x9c}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000200)={@dev}, 0x14)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00')
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000180)=""/66, 0x42}, {&(0x7f0000000240)=""/225, 0xe1}], 0x2, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendto$packet(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r5, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r6=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r5, 0x3b85, &(0x7f00000001c0)={0x28, 0x7, r6, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r5, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r6, 0x0, <r7=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES(r5, 0x3ba0, &(0x7f0000000040)={0x6e, 0x7, r7, 0x0, 0x0, 0x0, 0x4000000000000000, 0x2})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r5, 0x3ba0, &(0x7f00000004c0)={0x48, 0x7, r7, 0x0, 0x10000, 0x0, 0x8, 0x20cc7a, 0x60cd2})
writev(0xffffffffffffffff, &(0x7f0000000180), 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001380)={&(0x7f0000000e80)=ANY=[@ANYBLOB="9feb010018000000000000004c0000004c00000006000000020000000200000f0300000003000000010000000300000000000000000000000000000044942d000000000000000200000000000000000100000f0100"/98], 0x0, 0x6a, 0x0, 0x1}, 0x28)
socket$nl_route(0x10, 0x3, 0x0)

5.636653628s ago: executing program 9 (id=2885):
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r2, 0x29, 0x37, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x8)
setsockopt$inet6_IPV6_RTHDR(r2, 0x29, 0x39, 0x0, 0x0)
openat$audio(0xffffff9c, 0x0, 0x80, 0x0)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0xee24, 0xffffffffffffffff, 0x0, 0x3}, 0x0)
r3 = fsopen(&(0x7f0000000000)='exfat\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000080)='iocharset', &(0x7f0000000200)='io#harset', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000001100)='iocharset', 0x0, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000080), 0x8, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f0000000380)={0x8, 0x2, 0x3})
signalfd(0xffffffffffffffff, &(0x7f00000002c0)={[0x7fffffff]}, 0x8)
ioctl$vim2m_VIDIOC_QBUF(r4, 0xc058560f, 0x0)
r5 = io_uring_setup(0x46ac, &(0x7f0000000080)={0x0, 0x5d50, 0x0, 0x0, 0x3c1})
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001812", @ANYRES32=r7, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000002000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TUNSETSTEERINGEBPF(r6, 0x800454e0, &(0x7f0000002180)=r8)
close_range(r5, 0xffffffffffffffff, 0x0)

5.287643127s ago: executing program 1 (id=2886):
modify_ldt$write(0x1, &(0x7f0000000300)={0x9, 0x20000000, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000200)=@framed={{}, [@alu={0x4, 0x1, 0x9, 0x0, 0x0, 0x1}]}, &(0x7f0000000300)='GPL\x00', 0xa}, 0x90)
socket$netlink(0x10, 0x3, 0x15)
syz_open_dev$radio(0x0, 0x1, 0x2)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0xa8}, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x1c, 0x0, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [@ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0xb0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000380)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x14, &(0x7f0000000240)={<r3=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f0000000040)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0xe24, 0x4, @mcast2, 0x14}, r3}}, 0x30)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f00000007c0)={0x3, 0x40, 0xfa02, {{0x0, 0x4e24, 0xfffffff7, @empty}, {0x2, 0x4e23, 0x6, @remote, 0x5852}, r3, 0xe}}, 0x48)
write$RDMA_USER_CM_CMD_LISTEN(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x14, 0x0, 0x0)
syz_clone(0x2c9a4080, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)

5.28492712s ago: executing program 6 (id=2887):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r1, 0xae03, 0x17)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close(0xffffffffffffffff)
r4 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000100)={0x0, &(0x7f0000000040), 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GETCRTC(r4, 0xc06864a1, &(0x7f0000000240)={0x0, 0x0, 0x0, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000600)={r5, 0x0, 0x0, 0x0, 0x0, [<r6=>0x0], [], [], [0xd]})
ioctl$DRM_IOCTL_MODE_ADDFB2(0xffffffffffffffff, 0xc06864b8, &(0x7f00000001c0)={0x0, 0xae, 0x3ff, 0x34325241, 0x0, [r6], [0x2b8]})
mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000ffe000/0x1000)=nil)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000c00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03080000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021440000000c0a09030000000000000000070000000900020073797a31000000000900010073797a300000000018000380140000800800034000000002050006405200000014000000110001"], 0xc8}}, 0x0)

5.185787708s ago: executing program 0 (id=2888):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20020008008f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x4048aec9, &(0x7f0000000080)={[{0xfffffffc, 0x0, 0x0, 0x8, 0x6, 0x81, 0x0, 0x8, 0xd, 0xd, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x2, 0x0, 0x0, 0x61, 0xfd, 0x0, 0x0, 0x0, 0x42}, {0x200003, 0xa, 0x20, 0x82, 0x40, 0x0, 0x5f, 0x1, 0x6, 0x2, 0x0, 0x0, 0xfffffffffffffffd}], 0x200})
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="020a040007000000b6f1ffff0000854105001a"], 0x38}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e000000030000000000000405000600000000000a0000000000000400000000000000000000002100000000000100000000000002000100010000000000010200fd000005000500000000000a"], 0x70}}, 0x0)
sendmmsg(r4, &(0x7f0000000180), 0x3ef, 0x0)

3.729235402s ago: executing program 6 (id=2889):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close(0xffffffffffffffff)
r5 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback, 0x7}], 0x1c)
syz_io_uring_setup(0x10b, &(0x7f0000000580)={0x0, 0xd736, 0x80, 0x3, 0xbffffffa}, 0x0, &(0x7f0000000340)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(0x0, r6, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x80, 0x6000})
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000500)='io_uring_defer\x00', r7, 0x0, 0x10000}, 0x18)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmmsg$inet6(r0, &(0x7f0000000780)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x2, @loopback, 0x3}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000380)="06", 0x1}], 0x1}}], 0x1, 0x3404c8d4)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES16=r0, @ANYRES16=r5], 0x1000f)

3.606464851s ago: executing program 0 (id=2890):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x1)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002340), 0x40800)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r4, 0xc058534f, &(0x7f0000002380)={{0x0, 0x1}, 0x0, 0x0, 0x2, {0x4, 0x1}, 0x3, 0x800})
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x195)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="02000000020000000000f400040000000000000020"], 0x1c, 0x1)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x2, 0x2, 0x0, 0x2, 0xd, 0x0, 0x0, 0x0, [@sadb_key={0x2, 0x8, 0x8, 0x0, "fd"}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0xa0000000}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @empty}}, @sadb_x_nat_t_type={0x1}]}, 0x68}, 0x1, 0x7}, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x8001}, 0x8)
getsockopt$bt_hci(r5, 0x84, 0x7f, &(0x7f0000000080)=""/4057, &(0x7f0000000000)=0xfd9)

2.623611559s ago: executing program 6 (id=2891):
socket$nl_rdma(0x10, 0x3, 0x14)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x24}}, 0x0)
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x28bd, 0x75, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x6, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f00000001c0)={0x0, 0x3, 0x10, {0x10, 0x0, "f0704075096166bf5138504eee0f"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000480)='GPL\x00', 0x40, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
setrlimit(0x6, &(0x7f0000000040)={0x9, 0x100000000})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, 0x0, 0x40810)
syz_init_net_socket$llc(0x1a, 0x4, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$random(0xffffffffffffff9c, &(0x7f0000000080), 0x48200, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000580), 0xa, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="02c900000000000000"], 0x9)
ioctl$FS_IOC_SETFLAGS(r1, 0x40046f41, &(0x7f0000000440)=0x1f)
syz_emit_vhci(&(0x7f0000001e00)=ANY=[@ANYBLOB="040f047ce11620"], 0x7)

2.612684039s ago: executing program 1 (id=2892):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='mountinfo\x00')
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syslog(0x3, &(0x7f0000000700)=""/231, 0xe7)

2.523628869s ago: executing program 0 (id=2893):
r0 = syz_open_dev$video4linux(0x0, 0x7fff, 0x48b03)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r0, 0x4020565b, &(0x7f0000000000)={0x1, 0x10000080, 0x3685f8ad576724ab})
socket(0x10, 0x3, 0x0)
r1 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
socket$can_raw(0x1d, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
lsm_get_self_attr(0x64, 0xffffffffffffffff, 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001c40)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @sched_cls}, 0x94)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r3, &(0x7f0000000200)={0xa, 0xffff, 0x0, @loopback}, 0x1c)
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x28000010)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_256={{0x304}, "0002002000", "07f217bd74511e465bbbd5de01000000f9044677d4d588363d63af84db44be59", "00f8ff00", "8ce63ecbc640735f"}, 0x38)
sendto$inet6(r3, 0x0, 0x0, 0x4c000, 0x0, 0x0)
close(r3)
syz_usb_connect(0x2, 0x2d, 0x0, 0x0)
r4 = socket(0x22, 0x2, 0x24)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r4, 0x84, 0x1, 0x0, 0x0)

2.196650885s ago: executing program 1 (id=2894):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x1)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002340), 0x40800)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r4, 0xc058534f, &(0x7f0000002380)={{0x0, 0x1}, 0x0, 0x0, 0x2, {0x4, 0x1}, 0x3, 0x800})
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x195)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="02000000020000000000f400040000000000000020"], 0x1c, 0x1)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x2, 0x2, 0x0, 0x2, 0xd, 0x0, 0x0, 0x0, [@sadb_key={0x2, 0x8, 0x8, 0x0, "fd"}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0xa0000000}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xff}}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @empty}}, @sadb_x_nat_t_type={0x1}]}, 0x68}, 0x1, 0x7}, 0x0)
getsockopt$bt_hci(r5, 0x84, 0x7f, &(0x7f0000000080)=""/4057, &(0x7f0000000000)=0xfd9)

1.103065493s ago: executing program 1 (id=2895):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f00000000c0), 0x12b900, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r5, &(0x7f0000000100)=[{&(0x7f00000000c0)='4', 0x1}], 0x1)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6)
socket(0x11, 0x2, 0x0)
ioctl$FBIOBLANK(r4, 0x4611, 0x4)
socket$tipc(0x1e, 0x5, 0x0)
r6 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
r7 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CREATE(r7, 0xc02054a5, &(0x7f0000000100)={0x5, 0xffffffffffffffff, 'id1\x00'})
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x48800)

0s ago: executing program 1 (id=2896):
mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x2, 0x2})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu\x00', 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = socket(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000ec0)=@raw={'raw\x00', 0xc08, 0x3, 0x440, 0x310, 0x5002004a, 0xb, 0x310, 0xea13, 0x3a8, 0x3c8, 0x3c8, 0x3a8, 0x3c8, 0x3, 0x0, {[{{@ip={@multicast2, @private=0xa010101, 0xff, 0xffffffff, 'bridge0\x00', 'veth0_macvtap\x00', {}, {0xff}, 0x5c, 0x3, 0x2}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{}, {0x16}, {0x4}, {}, {}, {0x0, 0x0, 0x5e}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x6}, {0x0, 0x0, 0x4}, {}, {0x4, 0x8}, {}, {}, {0x1}, {0x0, 0x0, 0x0, 0x7f}, {0x0, 0x4}, {}, {}, {}, {0xfffc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x0, 0x0, 0x40}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x80}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfd}]}}, @common=@inet=@socket3={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4a0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, 0x0, 0x4000000)
r5 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
clock_settime(0x0, &(0x7f0000000240)={0x77359400})
clock_adjtime(0x0, &(0x7f0000000640)={0x7, 0x9, 0x380000, 0x8, 0xfffffffffffffff9, 0xfffffffffffffff7, 0x9, 0x0, 0xae, 0x6, 0x7, 0x4, 0xfffffffffffff04f, 0x7, 0x80000000, 0xfffffffffffffff8, 0xffffffffffffffff, 0x6, 0x0, 0x100, 0x4, 0x2, 0x5, 0x3, 0x8, 0x8})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xffff1000, 0x2000, &(0x7f0000000000/0x2000)=nil})

kernel console output (not intermixed with test programs):

8] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1644.776596][T18435] syz.0.2479: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[ 1644.791900][T18435] CPU: 0 UID: 0 PID: 18435 Comm: syz.0.2479 Not tainted 6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1644.791929][T18435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1644.791942][T18435] Call Trace:
[ 1644.791951][T18435]  <TASK>
[ 1644.791961][T18435]  dump_stack_lvl+0x189/0x250
[ 1644.792000][T18435]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1644.792028][T18435]  ? __pfx__printk+0x10/0x10
[ 1644.792048][T18435]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1644.792080][T18435]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1644.792111][T18435]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[ 1644.792142][T18435]  warn_alloc+0x214/0x310
[ 1644.792167][T18435]  ? stack_depot_save_flags+0x40/0x900
[ 1644.792194][T18435]  ? __pfx_warn_alloc+0x10/0x10
[ 1644.792220][T18435]  ? kasan_save_track+0x4f/0x80
[ 1644.792240][T18435]  ? xskq_create+0x56/0x170
[ 1644.792261][T18435]  ? xsk_init_queue+0xb0/0x110
[ 1644.792281][T18435]  ? xsk_setsockopt+0x43f/0x710
[ 1644.792300][T18435]  ? do_sock_setsockopt+0x257/0x3e0
[ 1644.792319][T18435]  ? __x64_sys_setsockopt+0x18b/0x220
[ 1644.792337][T18435]  ? do_syscall_64+0xfa/0x3b0
[ 1644.792359][T18435]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1644.792387][T18435]  __vmalloc_node_range_noprof+0x125/0x12f0
[ 1644.792444][T18435]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1644.792475][T18435]  ? __kasan_kmalloc+0x93/0xb0
[ 1644.792500][T18435]  vmalloc_user_noprof+0xad/0xf0
[ 1644.792522][T18435]  ? xskq_create+0xbf/0x170
[ 1644.792544][T18435]  xskq_create+0xbf/0x170
[ 1644.792570][T18435]  xsk_init_queue+0xb0/0x110
[ 1644.792595][T18435]  xsk_setsockopt+0x43f/0x710
[ 1644.792619][T18435]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1644.792639][T18435]  ? __lock_acquire+0xab9/0xd20
[ 1644.792673][T18435]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[ 1644.792693][T18435]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1644.792717][T18435]  do_sock_setsockopt+0x257/0x3e0
[ 1644.792740][T18435]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1644.792766][T18435]  ? __fget_files+0x2a/0x420
[ 1644.792805][T18435]  __x64_sys_setsockopt+0x18b/0x220
[ 1644.792833][T18435]  do_syscall_64+0xfa/0x3b0
[ 1644.792855][T18435]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1644.792879][T18435]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1644.792898][T18435]  ? clear_bhb_loop+0x60/0xb0
[ 1644.792921][T18435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1644.792939][T18435] RIP: 0033:0x7f0c7ef8e929
[ 1644.792957][T18435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1644.792974][T18435] RSP: 002b:00007f0c7fd90038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1644.792994][T18435] RAX: ffffffffffffffda RBX: 00007f0c7f1b6240 RCX: 00007f0c7ef8e929
[ 1644.793009][T18435] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000009
[ 1644.793020][T18435] RBP: 00007f0c7f010b39 R08: 0000000000000052 R09: 0000000000000000
[ 1644.793033][T18435] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1644.793045][T18435] R13: 0000000000000000 R14: 00007f0c7f1b6240 R15: 00007ffc54da1448
[ 1644.793075][T18435]  </TASK>
[ 1644.793116][T18435] Mem-Info:
[ 1645.101063][T18435] active_anon:6204 inactive_anon:12831 isolated_anon:0
[ 1645.101063][T18435]  active_file:21794 inactive_file:39781 isolated_file:0
[ 1645.101063][T18435]  unevictable:770 dirty:380 writeback:0
[ 1645.101063][T18435]  slab_reclaimable:6441 slab_unreclaimable:106258
[ 1645.101063][T18435]  mapped:36574 shmem:13146 pagetables:1620
[ 1645.101063][T18435]  sec_pagetables:0 bounce:0
[ 1645.101063][T18435]  kernel_misc_reclaimable:0
[ 1645.101063][T18435]  free:1288437 free_pcp:15134 free_cma:0
[ 1645.146948][T18435] Node 0 active_anon:24816kB inactive_anon:51324kB active_file:86912kB inactive_file:159124kB unevictable:1544kB isolated(anon):0kB isolated(file):0kB mapped:146280kB dirty:1520kB writeback:0kB shmem:51048kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13368kB pagetables:6340kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1645.181219][T18435] Node 1 active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1645.213304][T18435] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1645.242374][T18435] lowmem_reserve[]: 0 2501 2503 2503 2503
[ 1645.248287][T18435] Node 0 DMA32 free:1238796kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24812kB inactive_anon:51280kB active_file:85152kB inactive_file:159056kB unevictable:1544kB writepending:1520kB present:3129332kB managed:2561448kB mlocked:0kB bounce:0kB free_pcp:43616kB local_pcp:29172kB free_cma:0kB
[ 1645.281804][T18435] lowmem_reserve[]: 0 0 1 1 1
[ 1645.286566][T18435] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1760kB inactive_file:68kB unevictable:0kB writepending:0kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[ 1645.316292][T18435] lowmem_reserve[]: 0 0 0 0 0
[ 1645.321029][T18435] Node 1 Normal free:3899572kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:16928kB local_pcp:5984kB free_cma:0kB
[ 1645.352970][T18435] lowmem_reserve[]: 0 0 0 0 0
[ 1645.357720][T18435] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1645.370496][T18435] Node 0 DMA32: 19*4kB (ME) 384*8kB (ME) 617*16kB (UME) 572*32kB (UME) 528*64kB (UME) 254*128kB (UME) 96*256kB (UME) 65*512kB (UME) 12*1024kB (UME) 5*2048kB (ME) 259*4096kB (UME) = 1238876kB
[ 1645.389448][T18435] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1645.402395][T18435] Node 1 Normal: 191*4kB (UE) 47*8kB (UME) 38*16kB (UME) 119*32kB (UME) 40*64kB (UME) 8*128kB (UME) 7*256kB (UME) 5*512kB (UME) 3*1024kB (UME) 2*2048kB (UE) 947*4096kB (M) = 3899572kB
[ 1645.420883][T18435] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1645.430668][T18435] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1645.440185][T18435] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1645.449813][T18435] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1645.459225][T18435] 74717 total pagecache pages
[ 1645.463948][T18435] 0 pages in swap cache
[ 1645.468159][T18435] Free swap  = 124996kB
[ 1645.472334][T18435] Total swap = 124996kB
[ 1645.476595][T18435] 2097051 pages RAM
[ 1645.480427][T18435] 0 pages HighMem/MovableOnly
[ 1645.485155][T18435] 424582 pages reserved
[ 1645.489323][T18435] 0 pages cma reserved
[ 1647.123060][T18432] netlink: 'syz.9.2478': attribute type 10 has an invalid length.
[ 1647.130988][T18432] netlink: 40 bytes leftover after parsing attributes in process `syz.9.2478'.
[ 1647.140653][T18432] dummy0: entered promiscuous mode
[ 1647.147897][T18432] bridge0: port 3(dummy0) entered blocking state
[ 1647.154473][T18432] bridge0: port 3(dummy0) entered disabled state
[ 1647.161182][T18432] dummy0: entered allmulticast mode
[ 1647.168023][T18432] bridge0: port 3(dummy0) entered blocking state
[ 1647.174815][T18432] bridge0: port 3(dummy0) entered forwarding state
[ 1648.217254][T18462] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1648.226128][T18462] batadv_slave_0: entered promiscuous mode
[ 1648.232076][T18462] batadv_slave_0: entered allmulticast mode
[ 1649.104562][T18461] nbd: socks must be embedded in a SOCK_ITEM attr
[ 1649.147583][T18461] block nbd0: shutting down sockets
[ 1651.471868][T18481] IPVS: sync thread started: state = MASTER, mcast_ifn = geneve0, syncid = 10802, id = 0
[ 1655.200897][T18506] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2492'.
[ 1656.154182][T18508] orangefs_mount: mount request failed with -4
[ 1656.169174][T18189] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1656.429164][T18189] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1657.171551][T18189] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1657.201927][T18189] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1657.670019][T18531] ubi: mtd0 is already attached to ubi31
[ 1658.111167][T18189] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1658.226540][T18189] 8021q: adding VLAN 0 to HW filter on device team0
[ 1658.306186][ T8413] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1658.313364][ T8413] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1658.344315][T12836] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1658.352069][T12836] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1660.329095][T18556] kernel read not supported for file /blkio.throttle.io_service_bytes_recursive (pid: 18556 comm: syz.1.2498)
[ 1660.386059][   T30] audit: type=1800 audit(1751487404.841:198): pid=18556 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.2498" name="blkio.throttle.io_service_bytes_recursive" dev="mqueue" ino=54157 res=0 errno=0
[ 1662.377134][T18574] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2502'.
[ 1662.745036][T11410] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[ 1662.761768][T18576] mkiss: ax0: crc mode is auto.
[ 1663.865094][T18189] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1664.415057][T11410] usb 7-1: Using ep0 maxpacket: 32
[ 1664.424082][T11410] usb 7-1: config 2 has an invalid interface number: 190 but max is 0
[ 1664.452438][T11410] usb 7-1: config 2 has no interface number 0
[ 1664.483480][T11410] usb 7-1: config 2 interface 190 has no altsetting 0
[ 1664.645439][T11410] usb 7-1: language id specifier not provided by device, defaulting to English
[ 1666.276616][T11410] usb 7-1: New USB device found, idVendor=3275, idProduct=0085, bcdDevice=f7.69
[ 1666.294879][T11410] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1666.303032][T11410] usb 7-1: Product: syz
[ 1666.320124][T11410] usb 7-1: can't set config #2, error -71
[ 1666.329199][T11410] usb 7-1: USB disconnect, device number 12
[ 1666.472463][T18613] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2507'.
[ 1668.881306][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 1669.901803][T18638] sctp: [Deprecated]: syz.6.2512 (pid 18638) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1669.901803][T18638] Use struct sctp_sack_info instead
[ 1670.318976][T18642] sctp: [Deprecated]: syz.9.2515 (pid 18642) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1670.318976][T18642] Use struct sctp_sack_info instead
[ 1672.415817][T16241] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1672.525255][T16241] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1672.539408][T16241] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1672.549669][T16241] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1672.558070][T16241] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1674.695127][T16241] Bluetooth: hci5: command tx timeout
[ 1675.592333][T18692] sctp: [Deprecated]: syz.9.2526 (pid 18692) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1675.592333][T18692] Use struct sctp_sack_info instead
[ 1675.710414][T18659] lo speed is unknown, defaulting to 1000
[ 1675.803005][T18659] lo speed is unknown, defaulting to 1000
[ 1677.339978][T16241] Bluetooth: hci5: command tx timeout
[ 1678.693960][T18722] warn_alloc: 1 callbacks suppressed
[ 1678.693998][T18722] syz.9.2530: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz9,mems_allowed=0-1
[ 1678.715132][T18722] CPU: 1 UID: 0 PID: 18722 Comm: syz.9.2530 Not tainted 6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1678.715161][T18722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1678.715174][T18722] Call Trace:
[ 1678.715185][T18722]  <TASK>
[ 1678.715195][T18722]  dump_stack_lvl+0x189/0x250
[ 1678.715228][T18722]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[ 1678.715257][T18722]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1678.715284][T18722]  ? __pfx__printk+0x10/0x10
[ 1678.715304][T18722]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1678.715333][T18722]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1678.715371][T18722]  warn_alloc+0x214/0x310
[ 1678.715401][T18722]  ? stack_depot_save_flags+0x40/0x900
[ 1678.715428][T18722]  ? __pfx_warn_alloc+0x10/0x10
[ 1678.715459][T18722]  ? kasan_save_track+0x4f/0x80
[ 1678.715480][T18722]  ? xskq_create+0x56/0x170
[ 1678.715503][T18722]  ? xsk_init_queue+0xb0/0x110
[ 1678.715526][T18722]  ? xsk_setsockopt+0x43f/0x710
[ 1678.715547][T18722]  ? do_sock_setsockopt+0x257/0x3e0
[ 1678.715566][T18722]  ? __x64_sys_setsockopt+0x18b/0x220
[ 1678.715584][T18722]  ? do_syscall_64+0xfa/0x3b0
[ 1678.715607][T18722]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1678.715634][T18722]  __vmalloc_node_range_noprof+0x125/0x12f0
[ 1678.715697][T18722]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1678.715737][T18722]  ? __kasan_kmalloc+0x93/0xb0
[ 1678.715763][T18722]  vmalloc_user_noprof+0xad/0xf0
[ 1678.715786][T18722]  ? xskq_create+0xbf/0x170
[ 1678.715812][T18722]  xskq_create+0xbf/0x170
[ 1678.715839][T18722]  xsk_init_queue+0xb0/0x110
[ 1678.715866][T18722]  xsk_setsockopt+0x43f/0x710
[ 1678.715891][T18722]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1678.715912][T18722]  ? __lock_acquire+0xab9/0xd20
[ 1678.715946][T18722]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[ 1678.715966][T18722]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1678.715990][T18722]  do_sock_setsockopt+0x257/0x3e0
[ 1678.716014][T18722]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1678.716040][T18722]  ? __fget_files+0x2a/0x420
[ 1678.716072][T18722]  __x64_sys_setsockopt+0x18b/0x220
[ 1678.716099][T18722]  do_syscall_64+0xfa/0x3b0
[ 1678.716124][T18722]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1678.716142][T18722]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1678.716160][T18722]  ? clear_bhb_loop+0x60/0xb0
[ 1678.716183][T18722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1678.716203][T18722] RIP: 0033:0x7fc8f538e929
[ 1678.716221][T18722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1678.716237][T18722] RSP: 002b:00007fc8f618e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1678.716259][T18722] RAX: ffffffffffffffda RBX: 00007fc8f55b6320 RCX: 00007fc8f538e929
[ 1678.716273][T18722] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000009
[ 1678.716285][T18722] RBP: 00007fc8f5410b39 R08: 0000000000000052 R09: 0000000000000000
[ 1678.716297][T18722] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1678.716309][T18722] R13: 0000000000000000 R14: 00007fc8f55b6320 R15: 00007ffe365fb7e8
[ 1678.716341][T18722]  </TASK>
[ 1678.716408][T18722] Mem-Info:
[ 1679.028799][T18722] active_anon:6229 inactive_anon:13604 isolated_anon:0
[ 1679.028799][T18722]  active_file:21807 inactive_file:39781 isolated_file:0
[ 1679.028799][T18722]  unevictable:770 dirty:347 writeback:0
[ 1679.028799][T18722]  slab_reclaimable:6636 slab_unreclaimable:107243
[ 1679.028799][T18722]  mapped:37623 shmem:13157 pagetables:1607
[ 1679.028799][T18722]  sec_pagetables:0 bounce:0
[ 1679.028799][T18722]  kernel_misc_reclaimable:0
[ 1679.028799][T18722]  free:1285064 free_pcp:14939 free_cma:0
[ 1679.075024][T18722] Node 0 active_anon:24916kB inactive_anon:54416kB active_file:86964kB inactive_file:159124kB unevictable:1544kB isolated(anon):0kB isolated(file):0kB mapped:150492kB dirty:1388kB writeback:0kB shmem:51092kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13380kB pagetables:6288kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1679.111108][T18722] Node 1 active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1679.142929][T18722] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1679.173150][T18722] lowmem_reserve[]: 0 2501 2503 2503 2503
[ 1679.179622][T18722] Node 0 DMA32 free:1225604kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24912kB inactive_anon:54372kB active_file:85204kB inactive_file:159056kB unevictable:1544kB writepending:1384kB present:3129332kB managed:2561448kB mlocked:0kB bounce:0kB free_pcp:42552kB local_pcp:13628kB free_cma:0kB
[ 1679.213273][T18722] lowmem_reserve[]: 0 0 1 1 1
[ 1679.218092][T18722] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1760kB inactive_file:68kB unevictable:0kB writepending:4kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[ 1679.247305][T18722] lowmem_reserve[]: 0 0 0 0 0
[ 1679.252101][T18722] Node 1 Normal free:3899572kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:16960kB local_pcp:6016kB free_cma:0kB
[ 1679.283543][T18722] lowmem_reserve[]: 0 0 0 0 0
[ 1679.288313][T18722] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1679.301602][T18722] Node 0 DMA32: 1444*4kB (UME) 1106*8kB (UME) 377*16kB (UME) 327*32kB (UME) 417*64kB (ME) 200*128kB (UME) 102*256kB (UME) 64*512kB (UME) 14*1024kB (UME) 4*2048kB (UME) 259*4096kB (UME) = 1225680kB
[ 1679.321067][T18722] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1679.333477][T18722] Node 1 Normal: 191*4kB (UE) 47*8kB (UME) 38*16kB (UME) 119*32kB (UME) 40*64kB (UME) 8*128kB (UME) 7*256kB (UME) 5*512kB (UME) 3*1024kB (UME) 2*2048kB (UE) 947*4096kB (M) = 3899572kB
[ 1679.351877][T18722] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1679.361494][T18722] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1679.370872][T18722] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1679.380500][T18722] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1679.389862][T18722] 74741 total pagecache pages
[ 1679.394558][T18722] 0 pages in swap cache
[ 1679.399280][T18722] Free swap  = 124996kB
[ 1679.403625][T18722] Total swap = 124996kB
[ 1679.407852][T18722] 2097051 pages RAM
[ 1679.411686][T18722] 0 pages HighMem/MovableOnly
[ 1679.416550][T18722] 424582 pages reserved
[ 1679.420765][T18722] 0 pages cma reserved
[ 1679.454874][T16241] Bluetooth: hci5: command tx timeout
[ 1681.494858][T16241] Bluetooth: hci5: command tx timeout
[ 1681.658722][T18735] : entered promiscuous mode
[ 1683.652762][T18750] block nbd1: NBD_DISCONNECT
[ 1685.515852][T18760] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[ 1687.813319][T18659] chnl_net:caif_netlink_parms(): no params data found
[ 1688.914352][T18659] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1688.943543][T18659] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1688.965406][T18659] bridge_slave_0: entered allmulticast mode
[ 1688.982544][T18659] bridge_slave_0: entered promiscuous mode
[ 1689.765631][T18810] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2548'.
[ 1689.774561][T18810] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2548'.
[ 1690.222778][T18659] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1690.297044][T18659] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1690.308169][T18659] bridge_slave_1: entered allmulticast mode
[ 1690.317931][T18659] bridge_slave_1: entered promiscuous mode
[ 1691.413118][T18659] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1691.491262][T18659] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1693.268890][T18659] team0: Port device team_slave_0 added
[ 1693.315329][T12836] bridge_slave_1: left allmulticast mode
[ 1693.321039][T12836] bridge_slave_1: left promiscuous mode
[ 1693.353484][T12836] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1693.527770][T12836] bridge_slave_0: left allmulticast mode
[ 1693.533495][T12836] bridge_slave_0: left promiscuous mode
[ 1693.553305][T12836] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1695.112285][T18854] warn_alloc: 1 callbacks suppressed
[ 1695.112330][T18854] syz.9.2556: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz9,mems_allowed=0-1
[ 1695.133256][T18854] CPU: 0 UID: 0 PID: 18854 Comm: syz.9.2556 Not tainted 6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1695.133285][T18854] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1695.133299][T18854] Call Trace:
[ 1695.133309][T18854]  <TASK>
[ 1695.133319][T18854]  dump_stack_lvl+0x189/0x250
[ 1695.133360][T18854]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[ 1695.133384][T18854]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1695.133416][T18854]  ? __pfx__printk+0x10/0x10
[ 1695.133435][T18854]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1695.133463][T18854]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1695.133499][T18854]  warn_alloc+0x214/0x310
[ 1695.133528][T18854]  ? __pfx_warn_alloc+0x10/0x10
[ 1695.133552][T18854]  ? preempt_schedule_irq+0xb5/0x150
[ 1695.133574][T18854]  ? kasan_save_track+0x4f/0x80
[ 1695.133599][T18854]  ? __pfx___schedule+0x10/0x10
[ 1695.133618][T18854]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1695.133645][T18854]  __vmalloc_node_range_noprof+0x125/0x12f0
[ 1695.133683][T18854]  ? rcu_is_watching+0x15/0xb0
[ 1695.133710][T18854]  ? preempt_schedule_irq+0xde/0x150
[ 1695.133732][T18854]  ? __pfx_preempt_schedule_irq+0x10/0x10
[ 1695.133765][T18854]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1695.133802][T18854]  vmalloc_user_noprof+0xad/0xf0
[ 1695.133825][T18854]  ? xskq_create+0xbf/0x170
[ 1695.133849][T18854]  xskq_create+0xbf/0x170
[ 1695.133875][T18854]  xsk_init_queue+0xb0/0x110
[ 1695.133901][T18854]  xsk_setsockopt+0x43f/0x710
[ 1695.133926][T18854]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1695.133952][T18854]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1695.133972][T18854]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1695.133994][T18854]  ? do_sock_setsockopt+0x236/0x3e0
[ 1695.134017][T18854]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1695.134040][T18854]  do_sock_setsockopt+0x257/0x3e0
[ 1695.134063][T18854]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1695.134089][T18854]  ? __fget_files+0x2a/0x420
[ 1695.134121][T18854]  __x64_sys_setsockopt+0x18b/0x220
[ 1695.134149][T18854]  do_syscall_64+0xfa/0x3b0
[ 1695.134175][T18854]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1695.134192][T18854]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1695.134210][T18854]  ? clear_bhb_loop+0x60/0xb0
[ 1695.134232][T18854]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1695.134250][T18854] RIP: 0033:0x7fc8f538e929
[ 1695.134267][T18854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1695.134282][T18854] RSP: 002b:00007fc8f618e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1695.134303][T18854] RAX: ffffffffffffffda RBX: 00007fc8f55b6320 RCX: 00007fc8f538e929
[ 1695.134316][T18854] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000009
[ 1695.134346][T18854] RBP: 00007fc8f5410b39 R08: 0000000000000052 R09: 0000000000000000
[ 1695.134359][T18854] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1695.134371][T18854] R13: 0000000000000000 R14: 00007fc8f55b6320 R15: 00007ffe365fb7e8
[ 1695.134404][T18854]  </TASK>
[ 1695.134443][T18854] Mem-Info:
[ 1695.435659][T18854] active_anon:6200 inactive_anon:15734 isolated_anon:0
[ 1695.435659][T18854]  active_file:21813 inactive_file:39781 isolated_file:0
[ 1695.435659][T18854]  unevictable:770 dirty:238 writeback:0
[ 1695.435659][T18854]  slab_reclaimable:6512 slab_unreclaimable:108245
[ 1695.435659][T18854]  mapped:40451 shmem:16020 pagetables:1627
[ 1695.435659][T18854]  sec_pagetables:0 bounce:0
[ 1695.435659][T18854]  kernel_misc_reclaimable:0
[ 1695.435659][T18854]  free:1282335 free_pcp:14470 free_cma:0
[ 1695.481955][T18854] Node 0 active_anon:24800kB inactive_anon:62936kB active_file:86988kB inactive_file:159124kB unevictable:1544kB isolated(anon):0kB isolated(file):0kB mapped:161804kB dirty:952kB writeback:0kB shmem:62544kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13692kB pagetables:6368kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1695.516036][T18854] Node 1 active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1695.547645][T18854] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1695.577807][T18854] lowmem_reserve[]: 0 2501 2503 2503 2503
[ 1695.583636][T18854] Node 0 DMA32 free:1214388kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:34596kB inactive_anon:51392kB active_file:85228kB inactive_file:159056kB unevictable:1544kB writepending:952kB present:3129332kB managed:2561448kB mlocked:0kB bounce:0kB free_pcp:42704kB local_pcp:9652kB free_cma:0kB
[ 1695.617181][T18854] lowmem_reserve[]: 0 0 1 1 1
[ 1695.621955][T18854] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1760kB inactive_file:68kB unevictable:0kB writepending:0kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 1695.651330][T18854] lowmem_reserve[]: 0 0 0 0 0
[ 1695.657752][T18854] Node 1 Normal free:3899572kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:16960kB local_pcp:10944kB free_cma:0kB
[ 1695.690238][T18854] lowmem_reserve[]: 0 0 0 0 0
[ 1695.695018][T18854] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1695.707735][T18854] Node 0 DMA32: 792*4kB (UME) 707*8kB (UME) 407*16kB (UME) 401*32kB (ME) 416*64kB (ME) 191*128kB (UME) 101*256kB (UME) 66*512kB (UME) 14*1024kB (UME) 4*2048kB (UME) 259*4096kB (UME) = 1222280kB
[ 1695.726906][T18854] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1695.739206][T18854] Node 1 Normal: 191*4kB (UE) 47*8kB (UME) 38*16kB (UME) 119*32kB (UME) 40*64kB (UME) 8*128kB (UME) 7*256kB (UME) 5*512kB (UME) 3*1024kB (UME) 2*2048kB (UE) 947*4096kB (M) = 3899572kB
[ 1695.757468][T18854] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1695.767039][T18854] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1695.776340][T18854] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1695.786141][T18854] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1695.795512][T18854] 74760 total pagecache pages
[ 1695.800221][T18854] 0 pages in swap cache
[ 1695.804364][T18854] Free swap  = 124996kB
[ 1695.808551][T18854] Total swap = 124996kB
[ 1695.812716][T18854] 2097051 pages RAM
[ 1695.816606][T18854] 0 pages HighMem/MovableOnly
[ 1695.821285][T18854] 424582 pages reserved
[ 1695.825477][T18854] 0 pages cma reserved
[ 1696.151784][T18861] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2557'.
[ 1696.289283][   T30] audit: type=1804 audit(1751487440.731:199): pid=18861 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.0.2557" name="/newroot/662/file0" dev="tmpfs" ino=3673 res=1 errno=0
[ 1702.404765][T18879] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1704.784085][T18902] loop9: detected capacity change from 0 to 7
[ 1704.801052][T18902] buffer_io_error: 9 callbacks suppressed
[ 1704.801184][T18902] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1704.816631][T18902] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1704.825907][T18902] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1704.835277][T18902] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1704.844643][T18902] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1704.853660][T18902] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1704.863317][T18902] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1704.871856][T18902] ldm_validate_partition_table(): Disk read failed.
[ 1704.912032][T18902] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1704.921587][T18902] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1704.930449][T18902] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1704.941185][T18902] Dev loop9: unable to read RDB block 0
[ 1704.953815][T18902]  loop9: unable to read partition table
[ 1704.963106][T18902] loop9: partition table beyond EOD, truncated
[ 1704.970307][T18902] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[ 1704.970307][T18902] 
) failed (rc=-5)
[ 1706.087054][T12836] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1706.424004][T12836] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1706.651410][T12836] bond0 (unregistering): Released all slaves
[ 1707.742218][T18916] netlink: zone id is out of range
[ 1707.747706][T18916] netlink: zone id is out of range
[ 1707.752927][T18916] netlink: zone id is out of range
[ 1707.758267][T18916] netlink: zone id is out of range
[ 1707.763986][T18916] netlink: zone id is out of range
[ 1707.769218][T18916] netlink: zone id is out of range
[ 1707.774354][T18916] netlink: zone id is out of range
[ 1707.779559][T18916] netlink: zone id is out of range
[ 1707.784973][T18916] netlink: zone id is out of range
[ 1707.790104][T18916] netlink: zone id is out of range
[ 1707.817988][T18659] team0: Port device team_slave_1 added
[ 1708.805029][T18927] netlink: 36 bytes leftover after parsing attributes in process `syz.9.2569'.
[ 1709.056096][T18927] netlink: 16 bytes leftover after parsing attributes in process `syz.9.2569'.
[ 1709.886681][T18937] tty tty32: ldisc open failed (-12), clearing slot 31
[ 1709.955027][T18927] netlink: 36 bytes leftover after parsing attributes in process `syz.9.2569'.
[ 1710.046352][T18927] netlink: 36 bytes leftover after parsing attributes in process `syz.9.2569'.
[ 1710.100746][T18659] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1710.128808][T18659] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1710.874863][T18659] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1711.442624][T18948] af_packet: tpacket_rcv: packet too big, clamped from 4 to 4294967272. macoff=96
[ 1711.568755][T12836] hsr_slave_0: left promiscuous mode
[ 1711.755493][T18957] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1711.859236][T12836] hsr_slave_1: left promiscuous mode
[ 1711.967141][T12836] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1712.975309][T12836] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1715.224215][T18973] sctp: [Deprecated]: syz.1.2578 (pid 18973) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1715.224215][T18973] Use struct sctp_sack_info instead
[ 1718.567865][T19005] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1721.199671][T12836] team0 (unregistering): Port device team_slave_1 removed
[ 1721.329581][T12836] team0 (unregistering): Port device team_slave_0 removed
[ 1721.624789][T19020] F2FS-fs (loop19): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1721.632936][T19020] F2FS-fs (loop19): Can't find valid F2FS filesystem in 1th superblock
[ 1721.644727][T19020] F2FS-fs (loop19): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 1721.653661][T19020] F2FS-fs (loop19): Can't find valid F2FS filesystem in 2th superblock
[ 1722.668481][T18659] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1722.676522][T18659] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1722.705286][T18659] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1724.516350][T19045] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2588'.
[ 1724.635504][T19046] netlink: 2384 bytes leftover after parsing attributes in process `syz.9.2590'.
[ 1725.199814][T18659] hsr_slave_0: entered promiscuous mode
[ 1725.459697][T18659] hsr_slave_1: entered promiscuous mode
[ 1725.991783][T19061] orangefs_mount: mount request failed with -4
[ 1727.065596][T11410] usb 10-1: new full-speed USB device number 5 using dummy_hcd
[ 1728.345757][T11410] usb 10-1: config 8 has an invalid interface number: 223 but max is 0
[ 1728.684837][T19076] syz.0.2596: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[ 1728.699940][T19076] CPU: 0 UID: 0 PID: 19076 Comm: syz.0.2596 Not tainted 6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1728.699970][T19076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1728.699984][T19076] Call Trace:
[ 1728.699991][T19076]  <TASK>
[ 1728.700000][T19076]  dump_stack_lvl+0x189/0x250
[ 1728.700038][T19076]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1728.700064][T19076]  ? __pfx__printk+0x10/0x10
[ 1728.700084][T19076]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1728.700111][T19076]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1728.700139][T19076]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[ 1728.700169][T19076]  warn_alloc+0x214/0x310
[ 1728.700192][T19076]  ? stack_depot_save_flags+0x40/0x900
[ 1728.700218][T19076]  ? __pfx_warn_alloc+0x10/0x10
[ 1728.700250][T19076]  ? kasan_save_track+0x4f/0x80
[ 1728.700271][T19076]  ? xskq_create+0x56/0x170
[ 1728.700296][T19076]  ? xsk_init_queue+0xb0/0x110
[ 1728.700317][T19076]  ? xsk_setsockopt+0x43f/0x710
[ 1728.700337][T19076]  ? do_sock_setsockopt+0x257/0x3e0
[ 1728.700356][T19076]  ? __x64_sys_setsockopt+0x18b/0x220
[ 1728.700376][T19076]  ? do_syscall_64+0xfa/0x3b0
[ 1728.700398][T19076]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1728.700425][T19076]  __vmalloc_node_range_noprof+0x125/0x12f0
[ 1728.700479][T19076]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1728.700507][T19076]  ? __kasan_kmalloc+0x93/0xb0
[ 1728.700531][T19076]  vmalloc_user_noprof+0xad/0xf0
[ 1728.700552][T19076]  ? xskq_create+0xbf/0x170
[ 1728.700575][T19076]  xskq_create+0xbf/0x170
[ 1728.700601][T19076]  xsk_init_queue+0xb0/0x110
[ 1728.700625][T19076]  xsk_setsockopt+0x43f/0x710
[ 1728.700650][T19076]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1728.700669][T19076]  ? __lock_acquire+0xab9/0xd20
[ 1728.700702][T19076]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[ 1728.700722][T19076]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1728.700745][T19076]  do_sock_setsockopt+0x257/0x3e0
[ 1728.700768][T19076]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1728.700793][T19076]  ? __fget_files+0x2a/0x420
[ 1728.700824][T19076]  __x64_sys_setsockopt+0x18b/0x220
[ 1728.700850][T19076]  do_syscall_64+0xfa/0x3b0
[ 1728.700872][T19076]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1728.700894][T19076]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1728.700912][T19076]  ? clear_bhb_loop+0x60/0xb0
[ 1728.700934][T19076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1728.700952][T19076] RIP: 0033:0x7f0c7ef8e929
[ 1728.700969][T19076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1728.700985][T19076] RSP: 002b:00007f0c7fdb1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1728.701007][T19076] RAX: ffffffffffffffda RBX: 00007f0c7f1b6160 RCX: 00007f0c7ef8e929
[ 1728.701023][T19076] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000009
[ 1728.701035][T19076] RBP: 00007f0c7f010b39 R08: 0000000000000052 R09: 0000000000000000
[ 1728.701049][T19076] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1728.701062][T19076] R13: 0000000000000000 R14: 00007f0c7f1b6160 R15: 00007ffc54da1448
[ 1728.701094][T19076]  </TASK>
[ 1728.701103][T19076] Mem-Info:
[ 1729.011303][T19076] active_anon:6198 inactive_anon:16559 isolated_anon:0
[ 1729.011303][T19076]  active_file:21873 inactive_file:39733 isolated_file:0
[ 1729.011303][T19076]  unevictable:770 dirty:208 writeback:0
[ 1729.011303][T19076]  slab_reclaimable:6484 slab_unreclaimable:108395
[ 1729.011303][T19076]  mapped:36143 shmem:16021 pagetables:1578
[ 1729.011303][T19076]  sec_pagetables:0 bounce:0
[ 1729.011303][T19076]  kernel_misc_reclaimable:0
[ 1729.011303][T19076]  free:1286476 free_pcp:11129 free_cma:0
[ 1729.057582][T19076] Node 0 active_anon:24792kB inactive_anon:66236kB active_file:87228kB inactive_file:158932kB unevictable:1544kB isolated(anon):0kB isolated(file):0kB mapped:144572kB dirty:832kB writeback:0kB shmem:62548kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13168kB pagetables:6172kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1729.091800][T19076] Node 1 active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1729.123261][T19076] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1729.152880][T19076] lowmem_reserve[]: 0 2501 2503 2503 2503
[ 1729.158727][T19076] Node 0 DMA32 free:1230952kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24788kB inactive_anon:66192kB active_file:85468kB inactive_file:158864kB unevictable:1544kB writepending:832kB present:3129332kB managed:2561448kB mlocked:0kB bounce:0kB free_pcp:27548kB local_pcp:3696kB free_cma:0kB
[ 1729.192106][T19076] lowmem_reserve[]: 0 0 1 1 1
[ 1729.196928][T19076] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1760kB inactive_file:68kB unevictable:0kB writepending:0kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 1729.226264][T19076] lowmem_reserve[]: 0 0 0 0 0
[ 1729.231017][T19076] Node 1 Normal free:3899572kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:16960kB local_pcp:10944kB free_cma:0kB
[ 1729.262589][T19076] lowmem_reserve[]: 0 0 0 0 0
[ 1729.267726][T19076] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1729.280489][T19076] Node 0 DMA32: 1348*4kB (UE) 827*8kB (UE) 494*16kB (UE) 560*32kB (UME) 419*64kB (UME) 189*128kB (UME) 105*256kB (UME) 66*512kB (UME) 14*1024kB (UME) 5*2048kB (UME) 258*4096kB (UME) = 1230856kB
[ 1729.299898][T19076] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1729.312285][T19076] Node 1 Normal: 191*4kB (UE) 47*8kB (UME) 38*16kB (UME) 119*32kB (UME) 40*64kB (UME) 8*128kB (UME) 7*256kB (UME) 5*512kB (UME) 3*1024kB (UME) 2*2048kB (UE) 947*4096kB (M) = 3899572kB
[ 1729.423810][T19076] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1729.433572][T19076] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1729.442955][T19076] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1729.452582][T19076] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1729.461993][T19076] 77623 total pagecache pages
[ 1729.466703][T19076] 0 pages in swap cache
[ 1729.471234][T19076] Free swap  = 124996kB
[ 1729.475454][T19076] Total swap = 124996kB
[ 1729.479619][T19076] 2097051 pages RAM
[ 1729.483433][T19076] 0 pages HighMem/MovableOnly
[ 1729.488162][T19076] 424582 pages reserved
[ 1729.492331][T19076] 0 pages cma reserved
[ 1729.546831][T11410] usb 10-1: config 8 contains an unexpected descriptor of type 0x1, skipping
[ 1729.584233][T11410] usb 10-1: config 8 has an invalid descriptor of length 101, skipping remainder of the config
[ 1729.594953][T11410] usb 10-1: config 8 has no interface number 0
[ 1729.601380][T11410] usb 10-1: config 8 interface 223 altsetting 0 endpoint 0x7 has invalid maxpacket 15872, setting to 64
[ 1729.825825][T11410] usb 10-1: config 8 interface 223 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1729.937279][T11410] usb 10-1: string descriptor 0 read error: -71
[ 1729.943737][T11410] usb 10-1: New USB device found, idVendor=a6da, idProduct=7458, bcdDevice=2d.4d
[ 1730.187780][T11410] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1730.985980][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 1731.254158][T11410] usb 10-1: can't set config #8, error -71
[ 1731.405286][T11410] usb 10-1: USB disconnect, device number 5
[ 1733.829074][T19112] : entered promiscuous mode
[ 1734.367284][T19116] netlink: 14 bytes leftover after parsing attributes in process `syz.9.2603'.
[ 1735.485557][T19125] trusted_key: encrypted_key: insufficient parameters specified
[ 1737.096153][ T5823] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1737.107897][ T5823] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1737.116797][ T5823] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1737.124794][ T5823] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1737.133970][ T5823] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1737.292934][T11410] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[ 1737.377757][T19116] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1737.432634][T19116] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1737.460645][T11410] usb 7-1: device descriptor read/64, error -71
[ 1737.481876][T19143] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2610'.
[ 1737.597202][T19116] bond0 (unregistering): Released all slaves
[ 1737.766268][T11410] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[ 1737.861013][T16128] bridge_slave_1: left allmulticast mode
[ 1737.959143][T11410] usb 7-1: device descriptor read/64, error -71
[ 1738.102406][T16128] bridge_slave_1: left promiscuous mode
[ 1738.207525][T11410] usb usb7-port1: attempt power cycle
[ 1738.233534][T16128] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1738.288598][T19150] overlay: Unknown parameter 'obj_type'
[ 1738.346029][T16128] bridge_slave_0: left allmulticast mode
[ 1738.351739][T16128] bridge_slave_0: left promiscuous mode
[ 1738.378564][T16128] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1738.636927][T11410] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[ 1738.677315][T11410] usb 7-1: device descriptor read/8, error -71
[ 1738.770647][T16128] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1738.817326][T16128] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1738.852650][T16128] bond0 (unregistering): Released all slaves
[ 1738.915216][T11410] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[ 1738.936815][T11410] usb 7-1: device descriptor read/8, error -71
[ 1738.953611][T19136] lo speed is unknown, defaulting to 1000
[ 1738.969731][T19136] lo speed is unknown, defaulting to 1000
[ 1739.057961][T11410] usb usb7-port1: unable to enumerate USB device
[ 1739.211738][ T5823] Bluetooth: hci4: command tx timeout
[ 1741.257198][ T5823] Bluetooth: hci4: command tx timeout
[ 1741.362049][T16128] hsr_slave_0: left promiscuous mode
[ 1741.455357][T16128] hsr_slave_1: left promiscuous mode
[ 1741.477826][T16128] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1742.272879][T16128] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1742.776781][T19194] warn_alloc: 1 callbacks suppressed
[ 1742.776820][T19194] syz.1.2617: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[ 1742.798090][T19194] CPU: 1 UID: 0 PID: 19194 Comm: syz.1.2617 Not tainted 6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1742.798119][T19194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1742.798131][T19194] Call Trace:
[ 1742.798141][T19194]  <TASK>
[ 1742.798150][T19194]  dump_stack_lvl+0x189/0x250
[ 1742.798182][T19194]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[ 1742.798212][T19194]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1742.798236][T19194]  ? __pfx__printk+0x10/0x10
[ 1742.798256][T19194]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1742.798283][T19194]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1742.798318][T19194]  warn_alloc+0x214/0x310
[ 1742.798341][T19194]  ? stack_depot_save_flags+0x40/0x900
[ 1742.798368][T19194]  ? __pfx_warn_alloc+0x10/0x10
[ 1742.798393][T19194]  ? kasan_save_track+0x4f/0x80
[ 1742.798413][T19194]  ? xskq_create+0x56/0x170
[ 1742.798434][T19194]  ? xsk_init_queue+0xb0/0x110
[ 1742.798452][T19194]  ? xsk_setsockopt+0x43f/0x710
[ 1742.798471][T19194]  ? do_sock_setsockopt+0x257/0x3e0
[ 1742.798488][T19194]  ? __x64_sys_setsockopt+0x18b/0x220
[ 1742.798509][T19194]  ? do_syscall_64+0xfa/0x3b0
[ 1742.798531][T19194]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1742.798557][T19194]  __vmalloc_node_range_noprof+0x125/0x12f0
[ 1742.798610][T19194]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1742.798639][T19194]  ? __kasan_kmalloc+0x93/0xb0
[ 1742.798661][T19194]  vmalloc_user_noprof+0xad/0xf0
[ 1742.798683][T19194]  ? xskq_create+0xbf/0x170
[ 1742.798705][T19194]  xskq_create+0xbf/0x170
[ 1742.798731][T19194]  xsk_init_queue+0xb0/0x110
[ 1742.798755][T19194]  xsk_setsockopt+0x43f/0x710
[ 1742.798779][T19194]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1742.798799][T19194]  ? __lock_acquire+0xab9/0xd20
[ 1742.798831][T19194]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[ 1742.798851][T19194]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1742.798874][T19194]  do_sock_setsockopt+0x257/0x3e0
[ 1742.798896][T19194]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1742.798920][T19194]  ? __fget_files+0x2a/0x420
[ 1742.798951][T19194]  __x64_sys_setsockopt+0x18b/0x220
[ 1742.798977][T19194]  do_syscall_64+0xfa/0x3b0
[ 1742.798999][T19194]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1742.799021][T19194]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1742.799039][T19194]  ? clear_bhb_loop+0x60/0xb0
[ 1742.799060][T19194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1742.799078][T19194] RIP: 0033:0x7f44dc78e929
[ 1742.799095][T19194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1742.799111][T19194] RSP: 002b:00007f44dd51c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1742.799130][T19194] RAX: ffffffffffffffda RBX: 00007f44dc9b6320 RCX: 00007f44dc78e929
[ 1742.799144][T19194] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000009
[ 1742.799154][T19194] RBP: 00007f44dc810b39 R08: 0000000000000052 R09: 0000000000000000
[ 1742.799166][T19194] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1742.799178][T19194] R13: 0000000000000000 R14: 00007f44dc9b6320 R15: 00007fff58b97f48
[ 1742.799215][T19194]  </TASK>
[ 1742.799272][T19194] Mem-Info:
[ 1743.112333][T19194] active_anon:6220 inactive_anon:12564 isolated_anon:0
[ 1743.112333][T19194]  active_file:21878 inactive_file:39733 isolated_file:0
[ 1743.112333][T19194]  unevictable:770 dirty:329 writeback:0
[ 1743.112333][T19194]  slab_reclaimable:6484 slab_unreclaimable:107958
[ 1743.112333][T19194]  mapped:37415 shmem:13165 pagetables:1589
[ 1743.112333][T19194]  sec_pagetables:0 bounce:0
[ 1743.112333][T19194]  kernel_misc_reclaimable:0
[ 1743.112333][T19194]  free:1287335 free_pcp:14540 free_cma:0
[ 1743.158966][T19194] Node 0 active_anon:24880kB inactive_anon:50256kB active_file:87248kB inactive_file:158932kB unevictable:1544kB isolated(anon):0kB isolated(file):0kB mapped:149660kB dirty:1316kB writeback:0kB shmem:51124kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13016kB pagetables:6216kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1743.194550][T19194] Node 1 active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1743.226438][T19194] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1743.258004][T19194] lowmem_reserve[]: 0 2501 2503 2503 2503
[ 1743.263915][T19194] Node 0 DMA32 free:1234388kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24876kB inactive_anon:50512kB active_file:85488kB inactive_file:158864kB unevictable:1544kB writepending:1316kB present:3129332kB managed:2561448kB mlocked:0kB bounce:0kB free_pcp:40772kB local_pcp:20692kB free_cma:0kB
[ 1743.301854][T19194] lowmem_reserve[]: 0 0 1 1 1
[ 1743.307870][T19194] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1760kB inactive_file:68kB unevictable:0kB writepending:0kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[ 1743.338740][T19194] lowmem_reserve[]: 0 0 0 0 0
[ 1743.344000][T19194] Node 1 Normal free:3899572kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:16972kB local_pcp:6020kB free_cma:0kB
[ 1743.375895][T19194] lowmem_reserve[]: 0 0 0 0 0
[ 1743.380702][T19194] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1743.393796][T19194] Node 0 DMA32: 42*4kB (ME) 1120*8kB (UME) 649*16kB (UME) 535*32kB (UME) 486*64kB (UME) 187*128kB (UME) 104*256kB (UME) 68*512kB (UME) 14*1024kB (UME) 5*2048kB (UME) 258*4096kB (UME) = 1234456kB
[ 1743.414224][T19194] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1743.426899][T19194] Node 1 Normal: 191*4kB (UE) 47*8kB (UME) 38*16kB (UME) 119*32kB (UME) 40*64kB (UME) 8*128kB (UME) 7*256kB (UME) 5*512kB (UME) 3*1024kB (UME) 2*2048kB (UE) 947*4096kB (M) = 3899572kB
[ 1743.445628][T19194] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1743.455382][T19194] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1743.464899][T19194] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1743.474582][T19194] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1743.484794][T19194] 77622 total pagecache pages
[ 1743.489577][T19194] 0 pages in swap cache
[ 1743.493833][T19194] Free swap  = 124996kB
[ 1743.498944][T19194] Total swap = 124996kB
[ 1743.503240][T19194] 2097051 pages RAM
[ 1743.507259][T19194] 0 pages HighMem/MovableOnly
[ 1743.512045][T19194] 424582 pages reserved
[ 1743.516396][T19194] 0 pages cma reserved
[ 1743.519215][ T5823] Bluetooth: hci4: command tx timeout
[ 1744.297842][T19207] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1744.543837][T19210] loop9: detected capacity change from 0 to 7
[ 1744.553132][T19210] buffer_io_error: 9 callbacks suppressed
[ 1744.553152][T19210] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1744.567723][T19210] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1744.576239][T19210] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1744.584898][T19210] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1744.593328][T19210] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1744.601918][T19210] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1744.610458][T19210] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1744.622354][T19210] ldm_validate_partition_table(): Disk read failed.
[ 1744.630037][T19210] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1744.638923][T19210] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1744.667350][T19210] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1744.676185][T19210] Dev loop9: unable to read RDB block 0
[ 1744.682973][T19210]  loop9: unable to read partition table
[ 1744.689877][T19210] loop9: partition table beyond EOD, truncated
[ 1744.697322][T19210] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[ 1744.697322][T19210] 
) failed (rc=-5)
[ 1745.362161][T19220] netlink: 'syz.9.2622': attribute type 10 has an invalid length.
[ 1745.605178][ T5823] Bluetooth: hci4: command tx timeout
[ 1745.864438][T19227] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2621'.
[ 1748.585933][T16128] team0 (unregistering): Port device team_slave_1 removed
[ 1749.042656][T16128] team0 (unregistering): Port device team_slave_0 removed
[ 1750.120949][T19136] chnl_net:caif_netlink_parms(): no params data found
[ 1753.432332][T19136] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1753.445392][T19136] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1753.452728][T19136] bridge_slave_0: entered allmulticast mode
[ 1753.528910][T19136] bridge_slave_0: entered promiscuous mode
[ 1753.556850][T19136] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1753.564367][T19136] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1754.111441][T19136] bridge_slave_1: entered allmulticast mode
[ 1754.287613][T19136] bridge_slave_1: entered promiscuous mode
[ 1755.521203][T19136] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1755.559933][T19136] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1756.220877][ T5982] libceph: connect (1)[c::]:6789 error -101
[ 1756.263159][ T5982] libceph: mon0 (1)[c::]:6789 connect error
[ 1756.504777][T19307] ceph: No mds server is up or the cluster is laggy
[ 1757.039392][T19318] vxfs: WRONG superblock magic 00000000 at 1
[ 1757.047199][T19318] vxfs: WRONG superblock magic 00000000 at 8
[ 1757.053345][T19318] vxfs: can't find superblock.
[ 1757.417810][T19136] team0: Port device team_slave_0 added
[ 1757.480369][T19316] workqueue: Failed to create a rescuer kthread for wq "ceph-completion": -EINTR
[ 1757.632112][T19320] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2638'.
[ 1757.710154][T19320] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2638'.
[ 1758.167261][T19136] team0: Port device team_slave_1 added
[ 1762.055718][T19330] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-��:�/": -EINTR
[ 1762.188413][T19136] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1762.222991][T19136] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1762.287398][T19136] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1762.308984][T19136] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1762.316485][T19136] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1762.572751][T19136] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1764.125328][T19359] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1764.433232][   T30] audit: type=1326 audit(1751487508.672:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19346 comm="syz.6.2645" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1974d8e929 code=0x0
[ 1765.230613][T19362] kAFS: No cell specified
[ 1767.478632][T19373] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[ 1767.489089][T19373] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[ 1767.532771][T19136] hsr_slave_0: entered promiscuous mode
[ 1767.826920][T19136] hsr_slave_1: entered promiscuous mode
[ 1769.058239][T19396] warn_alloc: 1 callbacks suppressed
[ 1769.058258][T19396] syz.0.2652: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[ 1769.078799][T19396] CPU: 1 UID: 0 PID: 19396 Comm: syz.0.2652 Not tainted 6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1769.078823][T19396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1769.078834][T19396] Call Trace:
[ 1769.078842][T19396]  <TASK>
[ 1769.078851][T19396]  dump_stack_lvl+0x189/0x250
[ 1769.078881][T19396]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1769.078904][T19396]  ? __pfx__printk+0x10/0x10
[ 1769.078922][T19396]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1769.078948][T19396]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1769.078976][T19396]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[ 1769.079004][T19396]  warn_alloc+0x214/0x310
[ 1769.079026][T19396]  ? stack_depot_save_flags+0x40/0x900
[ 1769.079050][T19396]  ? __pfx_warn_alloc+0x10/0x10
[ 1769.079083][T19396]  ? kasan_save_track+0x4f/0x80
[ 1769.079103][T19396]  ? xskq_create+0x56/0x170
[ 1769.079125][T19396]  ? xsk_init_queue+0xb0/0x110
[ 1769.079155][T19396]  ? xsk_setsockopt+0x43f/0x710
[ 1769.079174][T19396]  ? do_sock_setsockopt+0x257/0x3e0
[ 1769.079193][T19396]  ? __x64_sys_setsockopt+0x18b/0x220
[ 1769.079209][T19396]  ? do_syscall_64+0xfa/0x3b0
[ 1769.079229][T19396]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1769.079254][T19396]  __vmalloc_node_range_noprof+0x125/0x12f0
[ 1769.079305][T19396]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1769.079328][T19396]  ? xskq_create+0x56/0x170
[ 1769.079350][T19396]  ? __kasan_kmalloc+0x93/0xb0
[ 1769.079373][T19396]  vmalloc_user_noprof+0xad/0xf0
[ 1769.079393][T19396]  ? xskq_create+0xbf/0x170
[ 1769.079415][T19396]  xskq_create+0xbf/0x170
[ 1769.079439][T19396]  xsk_init_queue+0xb0/0x110
[ 1769.079463][T19396]  xsk_setsockopt+0x43f/0x710
[ 1769.079487][T19396]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1769.079510][T19396]  ? __lock_acquire+0xab9/0xd20
[ 1769.079543][T19396]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[ 1769.079562][T19396]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1769.079584][T19396]  do_sock_setsockopt+0x257/0x3e0
[ 1769.079606][T19396]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1769.079629][T19396]  ? __fget_files+0x2a/0x420
[ 1769.079659][T19396]  __x64_sys_setsockopt+0x18b/0x220
[ 1769.079684][T19396]  do_syscall_64+0xfa/0x3b0
[ 1769.079705][T19396]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1769.079727][T19396]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1769.079744][T19396]  ? clear_bhb_loop+0x60/0xb0
[ 1769.079765][T19396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1769.079781][T19396] RIP: 0033:0x7f0c7ef8e929
[ 1769.079798][T19396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1769.079812][T19396] RSP: 002b:00007f0c7fdd2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1769.079831][T19396] RAX: ffffffffffffffda RBX: 00007f0c7f1b6080 RCX: 00007f0c7ef8e929
[ 1769.079845][T19396] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000008
[ 1769.079856][T19396] RBP: 00007f0c7f010b39 R08: 0000000000000052 R09: 0000000000000000
[ 1769.079868][T19396] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1769.079879][T19396] R13: 0000000000000000 R14: 00007f0c7f1b6080 R15: 00007ffc54da1448
[ 1769.079908][T19396]  </TASK>
[ 1769.079941][T19396] Mem-Info:
[ 1769.447069][T19396] active_anon:6199 inactive_anon:15418 isolated_anon:0
[ 1769.447069][T19396]  active_file:21890 inactive_file:39733 isolated_file:0
[ 1769.447069][T19396]  unevictable:770 dirty:283 writeback:0
[ 1769.447069][T19396]  slab_reclaimable:6480 slab_unreclaimable:107059
[ 1769.447069][T19396]  mapped:40269 shmem:16020 pagetables:1551
[ 1769.447069][T19396]  sec_pagetables:0 bounce:0
[ 1769.447069][T19396]  kernel_misc_reclaimable:0
[ 1769.447069][T19396]  free:1285625 free_pcp:14215 free_cma:0
[ 1769.494594][T19396] Node 0 active_anon:24796kB inactive_anon:61672kB active_file:87296kB inactive_file:158932kB unevictable:1544kB isolated(anon):0kB isolated(file):0kB mapped:161028kB dirty:1132kB writeback:0kB shmem:62544kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13020kB pagetables:6064kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1769.530376][T19396] Node 1 active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:48kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1769.565059][T19396] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1769.603481][T19396] lowmem_reserve[]: 0 2501 2503 2503 2503
[ 1769.610717][T19396] Node 0 DMA32 free:1227548kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24792kB inactive_anon:61628kB active_file:85536kB inactive_file:158864kB unevictable:1544kB writepending:1124kB present:3129332kB managed:2561448kB mlocked:0kB bounce:0kB free_pcp:39804kB local_pcp:29852kB free_cma:0kB
[ 1769.652668][T19396] lowmem_reserve[]: 0 0 1 1 1
[ 1769.666902][T19396] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1760kB inactive_file:68kB unevictable:0kB writepending:0kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[ 1769.700071][T19396] lowmem_reserve[]: 0 0 0 0 0
[ 1769.705752][T19396] Node 1 Normal free:3899572kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:16996kB local_pcp:6048kB free_cma:0kB
[ 1769.739729][T19396] lowmem_reserve[]: 0 0 0 0 0
[ 1769.750344][T19396] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1769.785614][T19396] Node 0 DMA32: 9*4kB (UME) 619*8kB (UME) 566*16kB (UE) 464*32kB (UME) 483*64kB (UME) 185*128kB (UME) 105*256kB (UME) 66*512kB (UME) 16*1024kB (UME) 5*2048kB (UME) 258*4096kB (UME) = 1227548kB
[ 1769.834764][T19396] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1769.867564][T19396] Node 1 Normal: 191*4kB (UE) 47*8kB (UME) 38*16kB (UME) 119*32kB (UME) 40*64kB (UME) 8*128kB (UME) 7*256kB (UME) 5*512kB (UME) 3*1024kB (UME) 2*2048kB (UE) 947*4096kB (M) = 3899572kB
[ 1769.936744][T19396] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1769.955600][T19396] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1769.972611][T19396] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1769.982952][T19396] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1769.992842][T19396] 77639 total pagecache pages
[ 1769.998838][T19396] 0 pages in swap cache
[ 1770.004813][T19396] Free swap  = 124996kB
[ 1770.009609][T19396] Total swap = 124996kB
[ 1770.018058][T19396] 2097051 pages RAM
[ 1770.022265][T19396] 0 pages HighMem/MovableOnly
[ 1770.027045][T19396] 424582 pages reserved
[ 1770.031264][T19396] 0 pages cma reserved
[ 1773.314988][T19416] xt_hashlimit: overflow, rate too high: 0
[ 1773.612316][T19428] [U] �
[ 1779.410154][T19444] ubi: mtd0 is already attached to ubi31
[ 1780.168832][T19436] input: syz0 as /devices/virtual/input/input26
[ 1781.339093][T19454] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[ 1785.261784][T19136] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1785.441734][T19483] netlink: 'syz.0.2668': attribute type 10 has an invalid length.
[ 1785.449899][T19483] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2668'.
[ 1785.504522][T19483] batman_adv: batadv0: Adding interface: virt_wifi0
[ 1785.513615][T19483] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1785.704872][T19483] batman_adv: batadv0: Interface activated: virt_wifi0
[ 1785.783273][T19136] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1785.835693][T19136] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1786.007357][T19136] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1786.781442][T19136] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1786.823437][T19136] 8021q: adding VLAN 0 to HW filter on device team0
[ 1786.866061][T16128] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1786.873266][T16128] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1786.913522][T16128] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1786.920737][T16128] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1787.837312][T19509] No source specified
[ 1788.131084][T19136] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1791.924039][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 1792.506070][T19535] random: crng reseeded on system resumption
[ 1795.915853][T19548] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1796.439459][T19548] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1796.452930][T19548] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1796.716139][T19548] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1796.732270][T19548] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1797.268132][T19558] netlink: 'syz.6.2686': attribute type 9 has an invalid length.
[ 1798.962409][T19572] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1799.620926][T19545] lo speed is unknown, defaulting to 1000
[ 1799.628556][T19545] lo speed is unknown, defaulting to 1000
[ 1801.659107][ T5823] Bluetooth: hci5: command tx timeout
[ 1804.385289][ T5823] Bluetooth: hci5: command tx timeout
[ 1804.670215][T19545] chnl_net:caif_netlink_parms(): no params data found
[ 1805.859695][ T5933] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[ 1805.901389][T19634] o2cb: This node has not been configured.
[ 1805.907695][T19634] o2cb: Cluster check failed. Fix errors before retrying.
[ 1805.915672][T19634] (syz.6.2699,19634,0):user_dlm_register:674 ERROR: status = -22
[ 1805.923589][T19634] (syz.6.2699,19634,0):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "file0"
[ 1806.464920][T19548] Bluetooth: hci5: command tx timeout
[ 1806.465759][ T5933] usb 2-1: config 0 has an invalid interface number: 170 but max is 0
[ 1806.771974][ T5933] usb 2-1: config 0 has no interface number 0
[ 1806.987372][ T5933] usb 2-1: config 0 interface 170 has no altsetting 0
[ 1807.034926][ T5933] usb 2-1: New USB device found, idVendor=c383, idProduct=abd3, bcdDevice=60.bf
[ 1807.364464][ T5933] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1807.776284][ T5933] usb 2-1: config 0 descriptor??
[ 1807.789868][ T5933] usb 2-1: can't set config #0, error -71
[ 1807.894469][ T5933] usb 2-1: USB disconnect, device number 3
[ 1808.108572][T19651] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[ 1808.123059][T19651] Bluetooth: hci0: Opcode 0x0401 failed: -22
[ 1808.535195][ T5823] Bluetooth: hci5: command tx timeout
[ 1809.028539][T19097] libceph: mon0 (1)[c::]:6789 socket closed (con state V1_BANNER)
[ 1809.676001][T19545] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1810.047870][T19639] ceph: No mds server is up or the cluster is laggy
[ 1810.225894][ T5823] Bluetooth: hci0: command tx timeout
[ 1810.284784][T19545] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1810.372294][T19545] bridge_slave_0: entered allmulticast mode
[ 1810.568077][T19545] bridge_slave_0: entered promiscuous mode
[ 1810.755330][T19545] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1810.827574][T19545] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1810.845698][T19545] bridge_slave_1: entered allmulticast mode
[ 1810.896289][T19545] bridge_slave_1: entered promiscuous mode
[ 1811.347326][T19671] syz.6.2706: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz6,mems_allowed=0-1
[ 1811.362408][T19671] CPU: 0 UID: 0 PID: 19671 Comm: syz.6.2706 Not tainted 6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1811.362425][T19671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1811.362432][T19671] Call Trace:
[ 1811.362439][T19671]  <TASK>
[ 1811.362445][T19671]  dump_stack_lvl+0x189/0x250
[ 1811.362468][T19671]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1811.362483][T19671]  ? __pfx__printk+0x10/0x10
[ 1811.362497][T19671]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1811.362523][T19671]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1811.362548][T19671]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[ 1811.362564][T19671]  warn_alloc+0x214/0x310
[ 1811.362579][T19671]  ? stack_depot_save_flags+0x40/0x900
[ 1811.362593][T19671]  ? __pfx_warn_alloc+0x10/0x10
[ 1811.362606][T19671]  ? kasan_save_track+0x4f/0x80
[ 1811.362617][T19671]  ? xskq_create+0x56/0x170
[ 1811.362629][T19671]  ? xsk_init_queue+0xb0/0x110
[ 1811.362640][T19671]  ? xsk_setsockopt+0x43f/0x710
[ 1811.362650][T19671]  ? do_sock_setsockopt+0x257/0x3e0
[ 1811.362660][T19671]  ? __x64_sys_setsockopt+0x18b/0x220
[ 1811.362670][T19671]  ? do_syscall_64+0xfa/0x3b0
[ 1811.362682][T19671]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1811.362696][T19671]  __vmalloc_node_range_noprof+0x125/0x12f0
[ 1811.362724][T19671]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1811.362740][T19671]  ? __kasan_kmalloc+0x93/0xb0
[ 1811.362753][T19671]  vmalloc_user_noprof+0xad/0xf0
[ 1811.362765][T19671]  ? xskq_create+0xbf/0x170
[ 1811.362777][T19671]  xskq_create+0xbf/0x170
[ 1811.362792][T19671]  xsk_init_queue+0xb0/0x110
[ 1811.362805][T19671]  xsk_setsockopt+0x43f/0x710
[ 1811.362819][T19671]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1811.362830][T19671]  ? __lock_acquire+0xab9/0xd20
[ 1811.362847][T19671]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[ 1811.362858][T19671]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1811.362870][T19671]  do_sock_setsockopt+0x257/0x3e0
[ 1811.362882][T19671]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1811.362894][T19671]  ? __fget_files+0x2a/0x420
[ 1811.362911][T19671]  __x64_sys_setsockopt+0x18b/0x220
[ 1811.362925][T19671]  do_syscall_64+0xfa/0x3b0
[ 1811.362938][T19671]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1811.362951][T19671]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1811.362960][T19671]  ? clear_bhb_loop+0x60/0xb0
[ 1811.362971][T19671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1811.362981][T19671] RIP: 0033:0x7f1974d8e929
[ 1811.362992][T19671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1811.363000][T19671] RSP: 002b:00007f1975b19038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1811.363012][T19671] RAX: ffffffffffffffda RBX: 00007f1974fb6320 RCX: 00007f1974d8e929
[ 1811.363036][T19671] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000009
[ 1811.363043][T19671] RBP: 00007f1974e10b39 R08: 0000000000000052 R09: 0000000000000000
[ 1811.363049][T19671] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1811.363055][T19671] R13: 0000000000000000 R14: 00007f1974fb6320 R15: 00007ffeade073c8
[ 1811.363072][T19671]  </TASK>
[ 1811.363077][T19671] Mem-Info:
[ 1811.669984][T19671] active_anon:6199 inactive_anon:19009 isolated_anon:0
[ 1811.669984][T19671]  active_file:22081 inactive_file:39845 isolated_file:0
[ 1811.669984][T19671]  unevictable:789 dirty:362 writeback:0
[ 1811.669984][T19671]  slab_reclaimable:6529 slab_unreclaimable:108156
[ 1811.669984][T19671]  mapped:45006 shmem:21403 pagetables:1221
[ 1811.669984][T19671]  sec_pagetables:0 bounce:0
[ 1811.669984][T19671]  kernel_misc_reclaimable:0
[ 1811.669984][T19671]  free:1279008 free_pcp:16388 free_cma:0
[ 1811.716513][T19671] Node 0 active_anon:24796kB inactive_anon:76036kB active_file:88060kB inactive_file:159380kB unevictable:1620kB isolated(anon):0kB isolated(file):0kB mapped:179960kB dirty:1448kB writeback:0kB shmem:84076kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12584kB pagetables:4744kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1811.750732][T19671] Node 1 active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:64kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1811.782534][T19671] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1811.811670][T19671] lowmem_reserve[]: 0 2501 2503 2503 2503
[ 1811.817456][T19671] Node 0 DMA32 free:1200276kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24792kB inactive_anon:75992kB active_file:86300kB inactive_file:159312kB unevictable:1620kB writepending:1448kB present:3129332kB managed:2561448kB mlocked:0kB bounce:0kB free_pcp:49320kB local_pcp:18028kB free_cma:0kB
[ 1811.850493][T19671] lowmem_reserve[]: 0 0 1 1 1
[ 1811.855504][T19671] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1760kB inactive_file:68kB unevictable:0kB writepending:0kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 1811.884855][T19671] lowmem_reserve[]: 0 0 0 0 0
[ 1811.889556][T19671] Node 1 Normal free:3900376kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:16224kB local_pcp:10464kB free_cma:0kB
[ 1811.921177][T19671] lowmem_reserve[]: 0 0 0 0 0
[ 1811.925940][T19671] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1811.938634][T19671] Node 0 DMA32: 1792*4kB (UME) 625*8kB (UE) 149*16kB (UE) 175*32kB (UME) 449*64kB (UME) 159*128kB (UME) 80*256kB (UME) 65*512kB (UME) 16*1024kB (UME) 2*2048kB (UE) 258*4096kB (UME) = 1200248kB
[ 1811.957741][T19671] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1811.970082][T19671] Node 1 Normal: 192*4kB (UE) 47*8kB (UME) 38*16kB (UME) 134*32kB (UME) 43*64kB (UME) 9*128kB (UME) 7*256kB (UME) 5*512kB (UME) 3*1024kB (UME) 2*2048kB (UE) 947*4096kB (M) = 3900376kB
[ 1811.988419][T19671] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1811.998061][T19671] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1812.007630][T19671] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1812.017220][T19671] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1812.026546][T19671] 83331 total pagecache pages
[ 1812.031229][T19671] 0 pages in swap cache
[ 1812.035390][T19671] Free swap  = 124996kB
[ 1812.039531][T19671] Total swap = 124996kB
[ 1812.043669][T19671] 2097051 pages RAM
[ 1812.047497][T19671] 0 pages HighMem/MovableOnly
[ 1812.052169][T19671] 424582 pages reserved
[ 1812.056350][T19671] 0 pages cma reserved
[ 1812.670868][T19545] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1813.211100][T19545] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1815.473412][T19545] team0: Port device team_slave_0 added
[ 1815.519079][T19545] team0: Port device team_slave_1 added
[ 1815.630074][T19699] o2cb: This node has not been configured.
[ 1815.636455][T19699] o2cb: Cluster check failed. Fix errors before retrying.
[ 1815.645907][T19699] (syz.0.2714,19699,0):user_dlm_register:674 ERROR: status = -22
[ 1815.655417][T19699] (syz.0.2714,19699,0):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "file0"
[ 1815.799812][ T1529] bridge_slave_1: left allmulticast mode
[ 1815.805692][ T1529] bridge_slave_1: left promiscuous mode
[ 1815.811608][ T1529] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1815.822736][ T1529] bridge_slave_0: left allmulticast mode
[ 1816.823229][ T1529] bridge_slave_0: left promiscuous mode
[ 1816.829427][ T1529] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1817.859558][T19716] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[ 1818.008760][T19716] Bluetooth: hci0: Opcode 0x0401 failed: -22
[ 1819.904858][T19548] Bluetooth: hci0: command tx timeout
[ 1822.056879][ T1529] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1822.091147][ T1529] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1822.124331][ T1529] bond0 (unregistering): Released all slaves
[ 1822.354926][T19545] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1822.365041][T19545] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1822.435739][T19545] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1822.450536][T19545] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1822.459520][T19545] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1822.486345][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1822.525977][T19545] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1822.830858][ T1529] hsr_slave_0: left promiscuous mode
[ 1823.024587][T19744] syz.1.2722: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[ 1823.040184][T19744] CPU: 1 UID: 0 PID: 19744 Comm: syz.1.2722 Not tainted 6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1823.040211][T19744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1823.040223][T19744] Call Trace:
[ 1823.040231][T19744]  <TASK>
[ 1823.040239][T19744]  dump_stack_lvl+0x189/0x250
[ 1823.040273][T19744]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1823.040299][T19744]  ? __pfx__printk+0x10/0x10
[ 1823.040318][T19744]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1823.040344][T19744]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1823.040372][T19744]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[ 1823.040400][T19744]  warn_alloc+0x214/0x310
[ 1823.040423][T19744]  ? stack_depot_save_flags+0x40/0x900
[ 1823.040457][T19744]  ? __pfx_warn_alloc+0x10/0x10
[ 1823.040487][T19744]  ? kasan_save_track+0x4f/0x80
[ 1823.040507][T19744]  ? xskq_create+0x56/0x170
[ 1823.040527][T19744]  ? xsk_init_queue+0xb0/0x110
[ 1823.040546][T19744]  ? xsk_setsockopt+0x43f/0x710
[ 1823.040565][T19744]  ? do_sock_setsockopt+0x257/0x3e0
[ 1823.040583][T19744]  ? __x64_sys_setsockopt+0x18b/0x220
[ 1823.040601][T19744]  ? do_syscall_64+0xfa/0x3b0
[ 1823.040623][T19744]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1823.040650][T19744]  __vmalloc_node_range_noprof+0x125/0x12f0
[ 1823.040702][T19744]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1823.040731][T19744]  ? __kasan_kmalloc+0x93/0xb0
[ 1823.040754][T19744]  vmalloc_user_noprof+0xad/0xf0
[ 1823.040775][T19744]  ? xskq_create+0xbf/0x170
[ 1823.040798][T19744]  xskq_create+0xbf/0x170
[ 1823.040823][T19744]  xsk_init_queue+0xb0/0x110
[ 1823.040848][T19744]  xsk_setsockopt+0x43f/0x710
[ 1823.040871][T19744]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1823.040891][T19744]  ? __lock_acquire+0xab9/0xd20
[ 1823.040922][T19744]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[ 1823.040941][T19744]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1823.040965][T19744]  do_sock_setsockopt+0x257/0x3e0
[ 1823.040987][T19744]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1823.041011][T19744]  ? __fget_files+0x2a/0x420
[ 1823.041042][T19744]  __x64_sys_setsockopt+0x18b/0x220
[ 1823.041068][T19744]  do_syscall_64+0xfa/0x3b0
[ 1823.041090][T19744]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1823.041112][T19744]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1823.041129][T19744]  ? clear_bhb_loop+0x60/0xb0
[ 1823.041150][T19744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1823.041167][T19744] RIP: 0033:0x7f44dc78e929
[ 1823.041184][T19744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1823.041199][T19744] RSP: 002b:00007f44dd51c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1823.041218][T19744] RAX: ffffffffffffffda RBX: 00007f44dc9b6320 RCX: 00007f44dc78e929
[ 1823.041231][T19744] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000009
[ 1823.041242][T19744] RBP: 00007f44dc810b39 R08: 0000000000000052 R09: 0000000000000000
[ 1823.041254][T19744] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1823.041265][T19744] R13: 0000000000000000 R14: 00007f44dc9b6320 R15: 00007fff58b97f48
[ 1823.041295][T19744]  </TASK>
[ 1823.041325][T19744] Mem-Info:
[ 1823.379619][T19744] active_anon:8699 inactive_anon:16516 isolated_anon:0
[ 1823.379619][T19744]  active_file:21927 inactive_file:39717 isolated_file:0
[ 1823.379619][T19744]  unevictable:770 dirty:264 writeback:0
[ 1823.379619][T19744]  slab_reclaimable:6510 slab_unreclaimable:108462
[ 1823.379619][T19744]  mapped:44057 shmem:21411 pagetables:1271
[ 1823.379619][T19744]  sec_pagetables:0 bounce:0
[ 1823.379619][T19744]  kernel_misc_reclaimable:0
[ 1823.379619][T19744]  free:1280298 free_pcp:15082 free_cma:0
[ 1823.426953][T19744] Node 0 active_anon:34796kB inactive_anon:66064kB active_file:87444kB inactive_file:158868kB unevictable:1544kB isolated(anon):0kB isolated(file):0kB mapped:176228kB dirty:1056kB writeback:0kB shmem:84108kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12496kB pagetables:4944kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1823.462283][T19744] Node 1 active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1823.496456][T19744] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1823.525857][T19744] lowmem_reserve[]: 0 2501 2503 2503 2503
[ 1823.531945][T19744] Node 0 DMA32 free:1205436kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:34792kB inactive_anon:66020kB active_file:85684kB inactive_file:158800kB unevictable:1544kB writepending:1056kB present:3129332kB managed:2561448kB mlocked:0kB bounce:0kB free_pcp:44272kB local_pcp:31856kB free_cma:0kB
[ 1823.565539][T19744] lowmem_reserve[]: 0 0 1 1 1
[ 1823.570745][T19744] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1760kB inactive_file:68kB unevictable:0kB writepending:0kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[ 1823.604703][T19744] lowmem_reserve[]: 0 0 0 0 0
[ 1823.609637][T19744] Node 1 Normal free:3900376kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:16224kB local_pcp:5760kB free_cma:0kB
[ 1823.644459][T19744] lowmem_reserve[]: 0 0 0 0 0
[ 1823.649553][T19744] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1823.687672][T19744] Node 0 DMA32: 2253*4kB (UM) 1813*8kB (UME) 812*16kB (UME) 487*32kB (UME) 335*64kB (UME) 57*128kB (UME) 63*256kB (UME) 61*512kB (UME) 16*1024kB (UME) 2*2048kB (UE) 258*4096kB (UME) = 1205436kB
[ 1823.708004][T19744] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1823.720946][T19744] Node 1 Normal: 192*4kB (UE) 47*8kB (UME) 38*16kB (UME) 134*32kB (UME) 43*64kB (UME) 9*128kB (UME) 7*256kB (UME) 5*512kB (UME) 3*1024kB (UME) 2*2048kB (UE) 947*4096kB (M) = 3900376kB
[ 1823.743149][T19744] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1823.753537][T19744] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1823.763270][T19744] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1823.773160][T19744] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1823.784161][T19744] 83052 total pagecache pages
[ 1823.789027][T19744] 0 pages in swap cache
[ 1823.793316][T19744] Free swap  = 124996kB
[ 1823.797739][T19744] Total swap = 124996kB
[ 1823.802508][T19744] 2097051 pages RAM
[ 1823.806633][T19744] 0 pages HighMem/MovableOnly
[ 1823.812412][T19744] 424582 pages reserved
[ 1823.816789][T19744] 0 pages cma reserved
[ 1823.923151][ T1529] hsr_slave_1: left promiscuous mode
[ 1823.945747][ T1529] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1824.314196][ T1529] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1826.105157][T19762] o2cb: This node has not been configured.
[ 1826.112728][T19762] o2cb: Cluster check failed. Fix errors before retrying.
[ 1826.121962][T19762] (syz.1.2727,19762,0):user_dlm_register:674 ERROR: status = -22
[ 1826.137119][T19762] (syz.1.2727,19762,0):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "file0"
[ 1826.558979][T19766] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2728'.
[ 1826.643197][T19766] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2728'.
[ 1834.671335][T19804] delete_channel: no stack
[ 1834.775716][ T1529] team0 (unregistering): Port device team_slave_1 removed
[ 1835.026271][ T1529] team0 (unregistering): Port device team_slave_0 removed
[ 1836.238839][T19545] hsr_slave_0: entered promiscuous mode
[ 1836.246622][T19545] hsr_slave_1: entered promiscuous mode
[ 1837.276609][T19826] o2cb: This node has not been configured.
[ 1837.282863][T19826] o2cb: Cluster check failed. Fix errors before retrying.
[ 1837.290505][T19826] (syz.9.2740,19826,0):user_dlm_register:674 ERROR: status = -22
[ 1837.487709][T19826] (syz.9.2740,19826,0):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "file0"
[ 1839.011229][T19842] dlm: no local IP address has been set
[ 1839.021061][T19842] dlm: cannot start dlm midcomms -107
[ 1839.029551][T16679] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[ 1839.594831][T16679] usb 2-1: Using ep0 maxpacket: 8
[ 1839.829033][T16679] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1839.845175][T16679] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1839.920623][T16679] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1839.944850][T16679] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1840.103729][T16679] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1840.113189][T16679] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1840.845312][T19851] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[ 1840.853592][T19851] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[ 1841.524899][T16679] usb 2-1: usb_control_msg returned -71
[ 1841.530636][T16679] usbtmc 2-1:16.0: can't read capabilities
[ 1841.580121][T16679] usb 2-1: USB disconnect, device number 4
[ 1843.567454][   T30] audit: type=1326 audit(1751487588.062:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19858 comm="syz.1.2751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44dc78e929 code=0x7ffc0000
[ 1843.758941][T19864] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2751'.
[ 1843.815756][T19864] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2751'.
[ 1844.105769][   T30] audit: type=1326 audit(1751487588.062:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19858 comm="syz.1.2751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44dc78e929 code=0x7ffc0000
[ 1844.188015][   T30] audit: type=1326 audit(1751487588.082:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19858 comm="syz.1.2751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f44dc78e929 code=0x7ffc0000
[ 1844.236213][   T30] audit: type=1326 audit(1751487588.082:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19858 comm="syz.1.2751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44dc78e929 code=0x7ffc0000
[ 1844.268553][   T30] audit: type=1326 audit(1751487588.082:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19858 comm="syz.1.2751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44dc78e929 code=0x7ffc0000
[ 1844.406064][   T30] audit: type=1326 audit(1751487588.242:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19858 comm="syz.1.2751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f44dc78e929 code=0x7ffc0000
[ 1844.448356][   T30] audit: type=1326 audit(1751487588.242:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19858 comm="syz.1.2751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44dc78e929 code=0x7ffc0000
[ 1845.059961][   T30] audit: type=1326 audit(1751487588.242:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19858 comm="syz.1.2751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44dc78e929 code=0x7ffc0000
[ 1845.082000][   T30] audit: type=1326 audit(1751487588.252:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19858 comm="syz.1.2751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f44dc78e929 code=0x7ffc0000
[ 1845.235289][   T30] audit: type=1326 audit(1751487588.292:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19858 comm="syz.1.2751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44dc78e929 code=0x7ffc0000
[ 1845.661607][T19879] loop9: detected capacity change from 0 to 7
[ 1845.671331][T19879] buffer_io_error: 4 callbacks suppressed
[ 1845.677607][T19879] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1845.686346][T19879] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1845.695815][T19879] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1845.704781][T19879] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1845.713700][T19879] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1845.722994][T19879] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1845.732280][T19879] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1845.740764][T19879] ldm_validate_partition_table(): Disk read failed.
[ 1845.773591][T19879] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1845.782658][T19879] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1845.791572][T19879] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1845.801145][T19879] Dev loop9: unable to read RDB block 0
[ 1845.808025][T19879]  loop9: unable to read partition table
[ 1845.816072][T19879] loop9: partition table beyond EOD, truncated
[ 1845.822824][T19879] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[ 1845.822824][T19879] 
) failed (rc=-5)
[ 1846.406662][T19877] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2754'.
[ 1846.508461][T19885] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2754'.
[ 1846.649610][T19545] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1846.664133][T19877] unsupported nlmsg_type 40
[ 1846.731292][T19886] syz.1.2755: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[ 1846.746994][T19886] CPU: 1 UID: 0 PID: 19886 Comm: syz.1.2755 Not tainted 6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1846.747021][T19886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1846.747032][T19886] Call Trace:
[ 1846.747040][T19886]  <TASK>
[ 1846.747048][T19886]  dump_stack_lvl+0x189/0x250
[ 1846.747083][T19886]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1846.747108][T19886]  ? __pfx__printk+0x10/0x10
[ 1846.747127][T19886]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1846.747153][T19886]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1846.747180][T19886]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[ 1846.747208][T19886]  warn_alloc+0x214/0x310
[ 1846.747231][T19886]  ? stack_depot_save_flags+0x40/0x900
[ 1846.747255][T19886]  ? __pfx_warn_alloc+0x10/0x10
[ 1846.747280][T19886]  ? kasan_save_track+0x4f/0x80
[ 1846.747301][T19886]  ? xskq_create+0x56/0x170
[ 1846.747321][T19886]  ? xsk_init_queue+0xb0/0x110
[ 1846.747339][T19886]  ? xsk_setsockopt+0x43f/0x710
[ 1846.747358][T19886]  ? do_sock_setsockopt+0x257/0x3e0
[ 1846.747375][T19886]  ? __x64_sys_setsockopt+0x18b/0x220
[ 1846.747391][T19886]  ? do_syscall_64+0xfa/0x3b0
[ 1846.747411][T19886]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1846.747437][T19886]  __vmalloc_node_range_noprof+0x125/0x12f0
[ 1846.747492][T19886]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1846.747522][T19886]  ? __kasan_kmalloc+0x93/0xb0
[ 1846.747546][T19886]  vmalloc_user_noprof+0xad/0xf0
[ 1846.747569][T19886]  ? xskq_create+0xbf/0x170
[ 1846.747594][T19886]  xskq_create+0xbf/0x170
[ 1846.747619][T19886]  xsk_init_queue+0xb0/0x110
[ 1846.747644][T19886]  xsk_setsockopt+0x43f/0x710
[ 1846.747667][T19886]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1846.747686][T19886]  ? __lock_acquire+0xab9/0xd20
[ 1846.747719][T19886]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[ 1846.747739][T19886]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1846.747761][T19886]  do_sock_setsockopt+0x257/0x3e0
[ 1846.747791][T19886]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1846.747817][T19886]  ? __fget_files+0x2a/0x420
[ 1846.747850][T19886]  __x64_sys_setsockopt+0x18b/0x220
[ 1846.747878][T19886]  do_syscall_64+0xfa/0x3b0
[ 1846.747900][T19886]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1846.747922][T19886]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1846.747939][T19886]  ? clear_bhb_loop+0x60/0xb0
[ 1846.747960][T19886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1846.747977][T19886] RIP: 0033:0x7f44dc78e929
[ 1846.747994][T19886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1846.748009][T19886] RSP: 002b:00007f44dd57f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1846.748028][T19886] RAX: ffffffffffffffda RBX: 00007f44dc9b6080 RCX: 00007f44dc78e929
[ 1846.748041][T19886] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000007
[ 1846.748052][T19886] RBP: 00007f44dc810b39 R08: 0000000000000052 R09: 0000000000000000
[ 1846.748063][T19886] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1846.748075][T19886] R13: 0000000000000000 R14: 00007f44dc9b6080 R15: 00007fff58b97f48
[ 1846.748105][T19886]  </TASK>
[ 1846.748137][T19886] Mem-Info:
[ 1847.058527][T19886] active_anon:6224 inactive_anon:14525 isolated_anon:0
[ 1847.058527][T19886]  active_file:21935 inactive_file:39717 isolated_file:0
[ 1847.058527][T19886]  unevictable:770 dirty:191 writeback:0
[ 1847.058527][T19886]  slab_reclaimable:6474 slab_unreclaimable:106764
[ 1847.058527][T19886]  mapped:39223 shmem:15998 pagetables:1243
[ 1847.058527][T19886]  sec_pagetables:0 bounce:0
[ 1847.058527][T19886]  kernel_misc_reclaimable:0
[ 1847.058527][T19886]  free:1286687 free_pcp:14775 free_cma:0
[ 1847.104801][T19886] Node 0 active_anon:24896kB inactive_anon:58100kB active_file:87476kB inactive_file:158868kB unevictable:1544kB isolated(anon):0kB isolated(file):0kB mapped:156892kB dirty:764kB writeback:0kB shmem:62456kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12324kB pagetables:4832kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1847.139449][T19886] Node 1 active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1847.171230][T19886] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1847.200691][T19886] lowmem_reserve[]: 0 2501 2503 2503 2503
[ 1847.206595][T19886] Node 0 DMA32 free:1230992kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24892kB inactive_anon:58056kB active_file:85716kB inactive_file:158800kB unevictable:1544kB writepending:764kB present:3129332kB managed:2561448kB mlocked:0kB bounce:0kB free_pcp:42860kB local_pcp:24488kB free_cma:0kB
[ 1847.240235][T19886] lowmem_reserve[]: 0 0 1 1 1
[ 1847.245087][T19886] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1760kB inactive_file:68kB unevictable:0kB writepending:0kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[ 1847.276126][T19886] lowmem_reserve[]: 0 0 0 0 0
[ 1847.280965][T19886] Node 1 Normal free:3900376kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:16228kB local_pcp:5760kB free_cma:0kB
[ 1847.312861][T19886] lowmem_reserve[]: 0 0 0 0 0
[ 1847.317694][T19886] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1847.330874][T19886] Node 0 DMA32: 2057*4kB (U) 1164*8kB (UE) 317*16kB (UME) 687*32kB (UME) 460*64kB (UME) 170*128kB (UME) 74*256kB (UME) 62*512kB (UME) 17*1024kB (UME) 5*2048kB (UME) 258*4096kB (UME) = 1230900kB
[ 1847.351242][T19886] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1847.363820][T19886] Node 1 Normal: 192*4kB (UE) 47*8kB (UME) 38*16kB (UME) 134*32kB (UME) 43*64kB (UME) 9*128kB (UME) 7*256kB (UME) 5*512kB (UME) 3*1024kB (UME) 2*2048kB (UE) 947*4096kB (M) = 3900376kB
[ 1847.382428][T19886] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1847.392139][T19886] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1847.401669][T19886] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1847.411349][T19886] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1847.420867][T19886] 77648 total pagecache pages
[ 1847.425624][T19886] 0 pages in swap cache
[ 1847.429829][T19886] Free swap  = 124996kB
[ 1847.434344][T19886] Total swap = 124996kB
[ 1847.438663][T19886] 2097051 pages RAM
[ 1847.442531][T19886] 0 pages HighMem/MovableOnly
[ 1847.447302][T19886] 424582 pages reserved
[ 1847.451728][T19886] 0 pages cma reserved
[ 1848.173876][T19891] lo speed is unknown, defaulting to 1000
[ 1848.181420][T19545] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1848.385899][T19891] lo speed is unknown, defaulting to 1000
[ 1848.386298][T19545] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1849.033090][T19545] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1850.626510][T14841] schedule_timeout: wrong timeout value ffffffffffffffd4
[ 1850.640451][T14841] CPU: 0 UID: 0 PID: 14841 Comm: vivid-000-vid-o Not tainted 6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1850.640480][T14841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1850.640491][T14841] Call Trace:
[ 1850.640499][T14841]  <TASK>
[ 1850.640508][T14841]  dump_stack_lvl+0x189/0x250
[ 1850.640551][T14841]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1850.640574][T14841]  ? __pfx__printk+0x10/0x10
[ 1850.640605][T14841]  schedule_timeout+0x1e1/0x270
[ 1850.640626][T14841]  ? __pfx_schedule_timeout+0x10/0x10
[ 1850.640656][T14841]  ? prepare_to_wait_event+0x437/0x480
[ 1850.640683][T14841]  vivid_thread_vid_out+0x139f/0x1c90
[ 1850.640744][T14841]  ? __pfx_vivid_thread_vid_out+0x10/0x10
[ 1850.640775][T14841]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1850.640793][T14841]  ? __kthread_parkme+0x7b/0x200
[ 1850.640816][T14841]  ? __kthread_parkme+0x1a1/0x200
[ 1850.640845][T14841]  kthread+0x711/0x8a0
[ 1850.640866][T14841]  ? __pfx_vivid_thread_vid_out+0x10/0x10
[ 1850.640887][T14841]  ? __pfx_kthread+0x10/0x10
[ 1850.640906][T14841]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1850.640925][T14841]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1850.640944][T14841]  ? __pfx_kthread+0x10/0x10
[ 1850.640963][T14841]  ret_from_fork+0x3fc/0x770
[ 1850.640987][T14841]  ? __pfx_ret_from_fork+0x10/0x10
[ 1850.641013][T14841]  ? __switch_to_asm+0x39/0x70
[ 1850.641028][T14841]  ? __switch_to_asm+0x33/0x70
[ 1850.641042][T14841]  ? __pfx_kthread+0x10/0x10
[ 1850.641060][T14841]  ret_from_fork_asm+0x1a/0x30
[ 1850.641093][T14841]  </TASK>
[ 1851.631136][T19545] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1851.654161][T19545] 8021q: adding VLAN 0 to HW filter on device team0
[ 1851.671229][T16138] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1851.678415][T16138] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1851.701987][ T1529] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1851.709221][ T1529] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1851.926580][T19545] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1853.425014][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 1856.534912][T19970] : entered promiscuous mode
[ 1860.256349][ T5823] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1860.269505][ T5823] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1860.326866][T19999] netlink: 'syz.9.2778': attribute type 11 has an invalid length.
[ 1860.345197][ T5823] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1860.384279][ T5823] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1860.397785][ T5823] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1860.727802][T20006] loop9: detected capacity change from 0 to 7
[ 1860.736199][T20006] buffer_io_error: 9 callbacks suppressed
[ 1860.736217][T20006] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1860.750975][T20006] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1860.759280][T20006] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1860.767802][T20006] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1860.776269][T20006] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1860.784936][T20006] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1860.793598][T20006] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1860.802338][T20006] ldm_validate_partition_table(): Disk read failed.
[ 1860.809386][T20006] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1860.818191][T20006] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1860.827078][T20006] Buffer I/O error on dev loop9, logical block 0, async page read
[ 1860.860140][T20006] Dev loop9: unable to read RDB block 0
[ 1860.867380][T20006]  loop9: unable to read partition table
[ 1860.874053][T20006] loop9: partition table beyond EOD, truncated
[ 1860.882039][T20006] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[ 1860.882039][T20006] 
) failed (rc=-5)
[ 1862.283733][T20016] warn_alloc: 3 callbacks suppressed
[ 1862.283753][T20016] syz.1.2781: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[ 1862.305011][T20016] CPU: 0 UID: 0 PID: 20016 Comm: syz.1.2781 Not tainted 6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 1862.305037][T20016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1862.305048][T20016] Call Trace:
[ 1862.305069][T20016]  <TASK>
[ 1862.305076][T20016]  dump_stack_lvl+0x189/0x250
[ 1862.305105][T20016]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1862.305125][T20016]  ? __pfx__printk+0x10/0x10
[ 1862.305139][T20016]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1862.305161][T20016]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 1862.305183][T20016]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[ 1862.305204][T20016]  warn_alloc+0x214/0x310
[ 1862.305222][T20016]  ? stack_depot_save_flags+0x40/0x900
[ 1862.305241][T20016]  ? __pfx_warn_alloc+0x10/0x10
[ 1862.305258][T20016]  ? kasan_save_track+0x4f/0x80
[ 1862.305272][T20016]  ? xskq_create+0x56/0x170
[ 1862.305288][T20016]  ? xsk_init_queue+0xb0/0x110
[ 1862.305302][T20016]  ? xsk_setsockopt+0x43f/0x710
[ 1862.305315][T20016]  ? do_sock_setsockopt+0x257/0x3e0
[ 1862.305328][T20016]  ? __x64_sys_setsockopt+0x18b/0x220
[ 1862.305340][T20016]  ? do_syscall_64+0xfa/0x3b0
[ 1862.305356][T20016]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1862.305375][T20016]  __vmalloc_node_range_noprof+0x125/0x12f0
[ 1862.305413][T20016]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1862.305433][T20016]  ? __kasan_kmalloc+0x93/0xb0
[ 1862.305450][T20016]  vmalloc_user_noprof+0xad/0xf0
[ 1862.305466][T20016]  ? xskq_create+0xbf/0x170
[ 1862.305484][T20016]  xskq_create+0xbf/0x170
[ 1862.305506][T20016]  xsk_init_queue+0xb0/0x110
[ 1862.305537][T20016]  xsk_setsockopt+0x43f/0x710
[ 1862.305555][T20016]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1862.305569][T20016]  ? __lock_acquire+0xab9/0xd20
[ 1862.305593][T20016]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[ 1862.305608][T20016]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1862.305624][T20016]  do_sock_setsockopt+0x257/0x3e0
[ 1862.305641][T20016]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1862.305659][T20016]  ? __fget_files+0x2a/0x420
[ 1862.305682][T20016]  __x64_sys_setsockopt+0x18b/0x220
[ 1862.305702][T20016]  do_syscall_64+0xfa/0x3b0
[ 1862.305721][T20016]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1862.305733][T20016]  ? asm_sysvec_call_function_single+0x1a/0x20
[ 1862.305746][T20016]  ? clear_bhb_loop+0x60/0xb0
[ 1862.305762][T20016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1862.305775][T20016] RIP: 0033:0x7f44dc78e929
[ 1862.305790][T20016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1862.305801][T20016] RSP: 002b:00007f44dd53d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1862.305818][T20016] RAX: ffffffffffffffda RBX: 00007f44dc9b6240 RCX: 00007f44dc78e929
[ 1862.305828][T20016] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000009
[ 1862.305836][T20016] RBP: 00007f44dc810b39 R08: 0000000000000052 R09: 0000000000000000
[ 1862.305845][T20016] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1862.305854][T20016] R13: 0000000000000000 R14: 00007f44dc9b6240 R15: 00007fff58b97f48
[ 1862.305877][T20016]  </TASK>
[ 1862.305889][T20016] Mem-Info:
[ 1862.618486][T20016] active_anon:6199 inactive_anon:9554 isolated_anon:0
[ 1862.618486][T20016]  active_file:21942 inactive_file:39717 isolated_file:0
[ 1862.618486][T20016]  unevictable:770 dirty:294 writeback:0
[ 1862.618486][T20016]  slab_reclaimable:6502 slab_unreclaimable:106985
[ 1862.618486][T20016]  mapped:35340 shmem:10279 pagetables:1195
[ 1862.618486][T20016]  sec_pagetables:0 bounce:0
[ 1862.618486][T20016]  kernel_misc_reclaimable:0
[ 1862.618486][T20016]  free:1293622 free_pcp:12871 free_cma:0
[ 1862.665548][T20016] Node 0 active_anon:24796kB inactive_anon:38216kB active_file:87504kB inactive_file:158868kB unevictable:1544kB isolated(anon):0kB isolated(file):0kB mapped:141360kB dirty:1176kB writeback:0kB shmem:39580kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12212kB pagetables:4640kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1862.700179][T20016] Node 1 active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:140kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1862.732333][T20016] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1862.763710][T20016] lowmem_reserve[]: 0 2501 2503 2503 2503
[ 1862.769756][T20016] Node 0 DMA32 free:1258732kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24792kB inactive_anon:38172kB active_file:85744kB inactive_file:158800kB unevictable:1544kB writepending:1172kB present:3129332kB managed:2561448kB mlocked:0kB bounce:0kB free_pcp:35220kB local_pcp:17644kB free_cma:0kB
[ 1862.806877][T20016] lowmem_reserve[]: 0 0 1 1 1
[ 1862.811667][T20016] Node 0 Normal free:20kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:4kB inactive_anon:44kB active_file:1760kB inactive_file:68kB unevictable:0kB writepending:4kB present:1048580kB managed:1904kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[ 1862.841008][T20016] lowmem_reserve[]: 0 0 0 0 0
[ 1862.845959][T20016] Node 1 Normal free:3900376kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:264kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:16232kB local_pcp:10468kB free_cma:0kB
[ 1862.880044][T20016] lowmem_reserve[]: 0 0 0 0 0
[ 1862.885031][T20016] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1862.898217][T20016] Node 0 DMA32: 371*4kB (UE) 1180*8kB (UME) 768*16kB (UME) 1162*32kB (UME) 488*64kB (UME) 180*128kB (UME) 77*256kB (UME) 64*512kB (UME) 16*1024kB (UME) 7*2048kB (UME) 259*4096kB (UME) = 1258732kB
[ 1862.918807][T20016] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[ 1862.931841][T20016] Node 1 Normal: 192*4kB (UE) 47*8kB (UME) 38*16kB (UME) 134*32kB (UME) 43*64kB (UME) 9*128kB (UME) 7*256kB (UME) 5*512kB (UME) 3*1024kB (UME) 2*2048kB (UE) 947*4096kB (M) = 3900376kB
[ 1862.952838][T20016] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1862.962598][T20016] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1862.972698][T20016] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1862.982318][T20016] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 1863.009748][T20016] 71935 total pagecache pages
[ 1863.014508][T20016] 0 pages in swap cache
[ 1863.018886][T20016] Free swap  = 124996kB
[ 1863.023095][T20016] Total swap = 124996kB
[ 1863.027317][T20016] 2097051 pages RAM
[ 1863.031139][T20016] 0 pages HighMem/MovableOnly
[ 1863.035868][T20016] 424582 pages reserved
[ 1863.040209][T20016] 0 pages cma reserved
[ 1863.072147][T19548] Bluetooth: hci4: command tx timeout
[ 1864.171044][T20023] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1864.298254][T19989] lo speed is unknown, defaulting to 1000
[ 1864.571141][T19989] lo speed is unknown, defaulting to 1000
[ 1865.668668][T19548] Bluetooth: hci4: command tx timeout
[ 1867.919576][T19548] Bluetooth: hci4: command tx timeout
[ 1870.096987][T19548] Bluetooth: hci4: command tx timeout
[ 1870.879149][T19989] chnl_net:caif_netlink_parms(): no params data found
[ 1871.139333][T16138] bridge_slave_1: left allmulticast mode
[ 1871.704807][T16138] bridge_slave_1: left promiscuous mode
[ 1871.710784][T16138] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1871.791787][T16138] bridge_slave_0: left allmulticast mode
[ 1871.808861][T16138] bridge_slave_0: left promiscuous mode
[ 1871.858518][T16138] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1873.062965][T20100] net_ratelimit: 7 callbacks suppressed
[ 1873.062998][T20100] openvswitch: netlink: Tunnel attr 6 has unexpected len 1 expected 0
[ 1874.978991][T20111] trusted_key: encrypted_key: insufficient parameters specified
[ 1876.712809][T20124] 9pnet_fd: Insufficient options for proto=fd
[ 1877.579625][T20130] CUSE: unknown device info "�KJ�H+��ۤ2Lh��nL�1�`�Cc��n�����8���0���(�3նi��>f���_ٮ,��
�<�_e�F��"
[ 1877.592250][T20130] CUSE: unknown device info "3�ܟ�,��̘�"
[ 1877.599753][T20130] CUSE: unknown device info "J���2SZ�� !e/��������J�+-n��a4����D�|G$��5O~�q	��
[ 1877.599753][T20130] f����z��X�SA�x��j��T�ǔ��w���xR�ɐQ��(hҏj	p�VdY0��|M?2J��I�v�^
R�@��"
[ 1877.619793][T20130] CUSE: unknown device info "!To�}ݝ&|L+U��o��ϲ���"��FstV�:׌E�gJ�����<@c�����4�T�M�M|�����"
[ 1877.633451][T20130] CUSE: DEVNAME unspecified
[ 1878.490756][T16138] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1878.517594][T16138] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1878.533727][T16138] bond0 (unregistering): Released all slaves
[ 1879.622906][T20139] netlink: 'syz.1.2813': attribute type 1 has an invalid length.
[ 1879.633381][T20139] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2813'.
[ 1880.340953][T16138] hsr_slave_0: left promiscuous mode
[ 1880.578860][T16138] hsr_slave_1: left promiscuous mode
[ 1880.740664][T16138] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1880.838971][T16138] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1883.058954][T20172] 9pnet_fd: Insufficient options for proto=fd
[ 1883.371573][T20179] binder: 20173:20179 ioctl c0306201 2000000003c0 returned -14
[ 1886.757243][T20201] syz.6.2826 (20201): drop_caches: 2
[ 1886.767341][T20201] syz.6.2826 (20201): drop_caches: 2
[ 1888.958488][T16138] team0 (unregistering): Port device team_slave_1 removed
[ 1889.152270][T16138] team0 (unregistering): Port device team_slave_0 removed
[ 1891.545797][T20223] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[ 1891.553710][T20224] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2830'.
[ 1891.718126][T20228] atomic_op ffff88807a8f8198 conn xmit_atomic 0000000000000000
[ 1891.970221][T19989] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1891.977748][T19989] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1891.986236][T19989] bridge_slave_0: entered allmulticast mode
[ 1891.994377][T19989] bridge_slave_0: entered promiscuous mode
[ 1892.004146][T19989] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1892.016569][T19989] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1892.023886][T19989] bridge_slave_1: entered allmulticast mode
[ 1892.054814][T19989] bridge_slave_1: entered promiscuous mode
[ 1892.883755][T20236] sctp: [Deprecated]: syz.9.2833 (pid 20236) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1892.883755][T20236] Use struct sctp_sack_info instead
[ 1893.640088][T19989] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1893.687728][T19989] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1895.806232][T19989] team0: Port device team_slave_0 added
[ 1895.940931][T19989] team0: Port device team_slave_1 added
[ 1897.634487][T20277] netlink: 'syz.9.2842': attribute type 6 has an invalid length.
[ 1897.817160][T20278] syz.9.2842 (20278): attempted to duplicate a private mapping with mremap.  This is not supported.
[ 1898.117020][T19989] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1898.124433][T19989] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1898.190230][T19989] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1898.341178][T19989] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1898.364938][T19989] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1898.595053][T20284] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input28
[ 1899.397522][T19989] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1899.716664][T20286] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2845'.
[ 1900.308489][T20290] sctp: [Deprecated]: syz.9.2846 (pid 20290) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1900.308489][T20290] Use struct sctp_sack_info instead
[ 1902.424879][T20306] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1902.577688][   T30] kauditd_printk_skb: 32 callbacks suppressed
[ 1902.577708][   T30] audit: type=1326 audit(1751487647.032:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20299 comm="syz.1.2849" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f44dc78e929 code=0x0
[ 1902.638137][T19989] hsr_slave_0: entered promiscuous mode
[ 1902.686324][T19989] hsr_slave_1: entered promiscuous mode
[ 1908.365031][T20325] loop2: detected capacity change from 0 to 7
[ 1908.415049][T20327] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1908.439403][T20325] Dev loop2: unable to read RDB block 7
[ 1908.445247][T20325]  loop2: AHDI p1 p2 p3
[ 1908.449519][T20325] loop2: partition table partially beyond EOD, truncated
[ 1908.457088][T20325] loop2: p1 start 1601398130 is beyond EOD, truncated
[ 1908.463974][T20325] loop2: p2 start 1702059890 is beyond EOD, truncated
[ 1910.428824][T20339] sctp: [Deprecated]: syz.6.2859 (pid 20339) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1910.428824][T20339] Use struct sctp_sack_info instead
[ 1912.410219][T19989] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1912.884986][T19989] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1912.922792][T19989] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1912.968643][T19989] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1914.149526][T19989] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1914.251071][T19989] 8021q: adding VLAN 0 to HW filter on device team0
[ 1914.620363][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[ 1914.797296][T20102] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1914.804674][T20102] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1914.981075][ T8413] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1914.988454][ T8413] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1915.535422][T20395] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2871'.
[ 1918.485191][T16130] bridge_slave_1: left allmulticast mode
[ 1918.490995][T16130] bridge_slave_1: left promiscuous mode
[ 1918.505197][T16130] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1918.634791][T16130] bridge_slave_0: left allmulticast mode
[ 1918.978552][T16130] bridge_slave_0: left promiscuous mode
[ 1919.210816][T16130] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1920.044981][T20421] 9pnet: Could not find request transport: tct��rt=0x0000000000004e22
[ 1920.841433][ T5823] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1920.856168][ T5823] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1920.888536][ T5823] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1920.920307][ T5823] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1921.946136][T20452] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1923.912603][T16130] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1923.923921][T16130] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1923.942516][T16130] bond0 (unregistering): Released all slaves
[ 1924.062904][T19548] Bluetooth: hci4: command tx timeout
[ 1924.310660][T20442] lo speed is unknown, defaulting to 1000
[ 1924.728195][T20442] lo speed is unknown, defaulting to 1000
[ 1925.775153][   T30] audit: type=1326 audit(1751487670.192:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=20469 comm="syz.1.2886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44dc78e929 code=0x7fc00000
[ 1926.152229][T16130] hsr_slave_0: left promiscuous mode
[ 1926.159317][T19548] Bluetooth: hci4: command tx timeout
[ 1926.172425][T16130] hsr_slave_1: left promiscuous mode
[ 1926.564190][T16130] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1926.639311][T16130] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1927.264777][ T5933] usb 7-1: new full-speed USB device number 17 using dummy_hcd
[ 1927.809899][ T5933] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1928.356153][ T5933] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1928.367604][ T5933] usb 7-1: New USB device found, idVendor=28bd, idProduct=0075, bcdDevice= 0.00
[ 1928.374970][T19548] Bluetooth: hci4: command tx timeout
[ 1928.377662][ T5933] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1928.503570][T16130] team0 (unregistering): Port device team_slave_1 removed
[ 1928.615753][ T5933] usb 7-1: config 0 descriptor??
[ 1928.642080][T20496] delete_channel: no stack
[ 1929.524452][T16130] team0 (unregistering): Port device team_slave_0 removed
[ 1929.573726][ T5933] uclogic 0003:28BD:0075.0003: interface is invalid, ignoring
[ 1930.455194][T19548] Bluetooth: hci4: command tx timeout
[ 2034.788772][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 2034.795795][    C1] rcu: 	0-...!: (0 ticks this GP) idle=26f4/1/0x4000000000000000 softirq=124590/124590 fqs=0
[ 2034.808123][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P12836/1:b..l P20512 P20511/1:b..l
[ 2034.818089][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=88141, q=301 ncpus=2)
[ 2034.825839][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 2034.825880][    C0] NMI backtrace for cpu 0
[ 2034.825895][    C0] CPU: 0 UID: 0 PID: 20512 Comm: syz.1.2896 Not tainted 6.16.0-rc4-syzkaller-00049-gb4911fb0b060 #0 PREEMPT(full) 
[ 2034.825913][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 2034.825923][    C0] RIP: 0010:lock_release+0x44/0x3e0
[ 2034.825947][    C0] Code: 8b 05 30 8e fb 10 48 89 44 24 28 0f 1f 44 00 00 65 8b 05 33 8e fb 10 83 f8 08 0f 83 9a 02 00 00 89 c0 48 0f a3 05 dc a9 01 0e <73> 16 e8 35 e0 08 00 84 c0 75 0d f6 05 25 9e eb 0d 01 0f 84 ad 02
[ 2034.825959][    C0] RSP: 0000:ffffc90000007c18 EFLAGS: 00000093
[ 2034.825972][    C0] RAX: 0000000000000000 RBX: 0000000000000802 RCX: 0000000000000002
[ 2034.825981][    C0] RDX: 0000000000000001 RSI: ffffffff81ae934d RDI: ffffffff99cc9948
[ 2034.825991][    C0] RBP: ffffc90000007d08 R08: 0000000000000003 R09: 0000000000000004
[ 2034.826000][    C0] R10: dffffc0000000000 R11: fffff52000000f70 R12: dffffc0000000000
[ 2034.826011][    C0] R13: ffffffff81ae934d R14: ffffffff99cc9948 R15: 1ffff92000000f90
[ 2034.826022][    C0] FS:  00007f44dd55e6c0(0000) GS:ffff888125c84000(0000) knlGS:0000000000000000
[ 2034.826034][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 2034.826044][    C0] CR2: 000000110c32a266 CR3: 000000005a82e000 CR4: 00000000003526f0
[ 2034.826057][    C0] Call Trace:
[ 2034.826065][    C0]  <IRQ>
[ 2034.826077][    C0]  _raw_spin_unlock_irqrestore+0x70/0x110
[ 2034.826097][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2034.826113][    C0]  ? debug_object_deactivate+0x9a/0x250
[ 2034.826132][    C0]  debug_deactivate+0x1d/0x200
[ 2034.826154][    C0]  __hrtimer_run_queues+0x2b0/0xc60
[ 2034.826181][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 2034.826198][    C0]  ? read_tsc+0x9/0x20
[ 2034.826217][    C0]  hrtimer_interrupt+0x45b/0xaa0
[ 2034.826248][    C0]  __sysvec_apic_timer_interrupt+0x10b/0x410
[ 2034.826269][    C0]  sysvec_apic_timer_interrupt+0xa1/0xc0
[ 2034.826286][    C0]  </IRQ>
[ 2034.826291][    C0]  <TASK>
[ 2034.826297][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 2034.826312][    C0] RIP: 0010:finish_task_switch+0x26b/0x950
[ 2034.826329][    C0] Code: 0f 84 3c 01 00 00 48 85 db 0f 85 63 01 00 00 e9 27 05 00 00 4c 8b 75 d0 4c 89 e7 e8 ff 98 d0 09 e8 5a fe 35 00 fb 4c 8b 65 c0 <49> 8d bc 24 18 16 00 00 48 89 f8 48 c1 e8 03 42 0f b6 04 28 84 c0
[ 2034.826340][    C0] RSP: 0000:ffffc900045cf298 EFLAGS: 00000282
[ 2034.826352][    C0] RAX: c4c32b3262294c00 RBX: 0000000000000000 RCX: c4c32b3262294c00
[ 2034.826362][    C0] RDX: 0000000000000006 RSI: ffffffff8d96e815 RDI: ffffffff8be1b940
[ 2034.826372][    C0] RBP: ffffc900045cf2f0 R08: ffffffff8f9fdbf7 R09: 1ffffffff1f3fb7e
[ 2034.826383][    C0] R10: dffffc0000000000 R11: fffffbfff1f3fb7f R12: ffff88802f6fbc00
[ 2034.826394][    C0] R13: dffffc0000000000 R14: ffff888025e29e00 R15: ffff8880b863a9d8
[ 2034.826413][    C0]  ? finish_task_switch+0x266/0x950
[ 2034.826432][    C0]  __schedule+0x16aa/0x4cb0
[ 2034.826455][    C0]  ? rcu_preempt_deferred_qs_irqrestore+0x851/0xc40
[ 2034.826473][    C0]  ? preempt_schedule_common+0x83/0xd0
[ 2034.826489][    C0]  ? switch_ldt+0x10a/0x250
[ 2034.826509][    C0]  ? __pfx___schedule+0x10/0x10
[ 2034.826528][    C0]  ? switch_mm_irqs_off+0x5b6/0x7a0
[ 2034.826545][    C0]  ? get_flush_tlb_info+0x171/0x260
[ 2034.826559][    C0]  ? preempt_schedule+0xae/0xc0
[ 2034.826575][    C0]  preempt_schedule_common+0x83/0xd0
[ 2034.826592][    C0]  ? kvm_set_msr_common+0x2825/0x3ab0
[ 2034.826612][    C0]  preempt_schedule+0xae/0xc0
[ 2034.826627][    C0]  ? __pfx_preempt_schedule+0x10/0x10
[ 2034.826645][    C0]  ? kvm_set_msr_common+0x2825/0x3ab0
[ 2034.826660][    C0]  preempt_schedule_thunk+0x16/0x30
[ 2034.826680][    C0]  _raw_spin_unlock+0x3f/0x50
[ 2034.826695][    C0]  __text_poke+0x7b1/0xa10
[ 2034.826712][    C0]  ? __pfx_text_poke_memcpy+0x10/0x10
[ 2034.826726][    C0]  ? kvm_set_msr_common+0x2825/0x3ab0
[ 2034.826740][    C0]  ? __pfx___text_poke+0x10/0x10
[ 2034.826755][    C0]  ? preempt_schedule_thunk+0x16/0x30
[ 2034.826775][    C0]  smp_text_poke_batch_finish+0x8af/0x1100
[ 2034.826793][    C0]  ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[ 2034.826810][    C0]  ? arch_jump_label_transform_queue+0x97/0x110
[ 2034.826827][    C0]  ? __jump_label_update+0x37e/0x3a0
[ 2034.826845][    C0]  arch_jump_label_transform_apply+0x1c/0x30
[ 2034.826861][    C0]  static_key_slow_inc_cpuslocked+0x80/0xf0
[ 2034.826881][    C0]  static_key_slow_inc+0x1a/0x30
[ 2034.826898][    C0]  kvm_create_lapic+0x110/0x400
[ 2034.826915][    C0]  kvm_arch_vcpu_create+0x1ec/0x920
[ 2034.826935][    C0]  kvm_vm_ioctl_create_vcpu+0x429/0x930
[ 2034.826958][    C0]  kvm_vm_ioctl+0x7f7/0xc60
[ 2034.826976][    C0]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[ 2034.826992][    C0]  ? finish_task_switch+0x266/0x950
[ 2034.827008][    C0]  ? do_vfs_ioctl+0x12ba/0x1990
[ 2034.827024][    C0]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 2034.827036][    C0]  ? rcu_is_watching+0x15/0xb0
[ 2034.827055][    C0]  ? trace_sched_exit_tp+0x38/0x120
[ 2034.827070][    C0]  ? __schedule+0x16c0/0x4cb0
[ 2034.827093][    C0]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 2034.827108][    C0]  ? preempt_schedule_irq+0xb5/0x150
[ 2034.827124][    C0]  ? tomoyo_path_number_perm+0x4e2/0x5a0
[ 2034.827140][    C0]  ? __pfx___schedule+0x10/0x10
[ 2034.827164][    C0]  ? rcu_is_watching+0x15/0xb0
[ 2034.827181][    C0]  ? trace_irq_disable+0x37/0x110
[ 2034.827196][    C0]  ? preempt_schedule_irq+0xde/0x150
[ 2034.827211][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[ 2034.827226][    C0]  ? smack_file_ioctl+0x302/0x340
[ 2034.827245][    C0]  ? irqentry_exit+0x74/0x90
[ 2034.827261][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2034.827282][    C0]  ? __se_sys_ioctl+0x52/0x170
[ 2034.827297][    C0]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[ 2034.827313][    C0]  __se_sys_ioctl+0xfc/0x170
[ 2034.827328][    C0]  do_syscall_64+0xfa/0x3b0
[ 2034.827347][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2034.827360][    C0]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 2034.827372][    C0]  ? clear_bhb_loop+0x60/0xb0
[ 2034.827388][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2034.827423][    C0] RIP: 0033:0x7f44dc78e929
[ 2034.827437][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2034.827449][    C0] RSP: 002b:00007f44dd55e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2034.827463][    C0] RAX: ffffffffffffffda RBX: 00007f44dc9b6160 RCX: 00007f44dc78e929
[ 2034.827473][    C0] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000009
[ 2034.827482][    C0] RBP: 00007f44dc810b39 R08: 0000000000000000 R09: 0000000000000000
[ 2034.827491][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2034.827500][    C0] R13: 0000000000000000 R14: 00007f44dc9b6160 R15: 00007fff58b97f48
[ 2034.827518][    C0]  </TASK>
[ 2034.827868][    C1] task:modprobe        state:R  running task     stack:24072 pid:20511 tgid:20511 ppid:20102  task_flags:0x400000 flags:0x00004000
[ 2035.493760][    C1] Call Trace:
[ 2035.498067][    C1]  <TASK>
[ 2035.501045][    C1]  __schedule+0x16a2/0x4cb0
[ 2035.505602][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2035.511513][    C1]  ? preempt_schedule_irq+0xb5/0x150
[ 2035.516851][    C1]  ? __pfx___schedule+0x10/0x10
[ 2035.522252][    C1]  ? rcu_preempt_deferred_qs_irqrestore+0x851/0xc40
[ 2035.528892][    C1]  ? preempt_schedule_irq+0xaa/0x150
[ 2035.534300][    C1]  preempt_schedule_irq+0xb5/0x150
[ 2035.539421][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[ 2035.545159][    C1]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[ 2035.550991][    C1]  irqentry_exit+0x6f/0x90
[ 2035.555419][    C1]  asm_sysvec_reschedule_ipi+0x1a/0x20
[ 2035.561062][    C1] RIP: 0010:lock_release+0x2b5/0x3e0
[ 2035.566447][    C1] Code: 51 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f7 44 24 20 00 02 00 00 75 56 f7 c3 00 02 00 00 74 01 fb 65 48 8b 05 9b 8b fb 10 <48> 3b 44 24 28 0f 85 8b 00 00 00 48 83 c4 30 5b 41 5c 41 5d 41 5e
[ 2035.586415][    C1] RSP: 0000:ffffc9000481f050 EFLAGS: 00000206
[ 2035.592496][    C1] RAX: 59d8d1994c52ac00 RBX: 0000000000000202 RCX: 59d8d1994c52ac00
[ 2035.600499][    C1] RDX: 0000000000000002 RSI: ffffffff8db5a681 RDI: ffffffff8be1b940
[ 2035.608575][    C1] RBP: ffff88802c664740 R08: 0000000000000022 R09: ffffffff81728af5
[ 2035.616564][    C1] R10: ffffc9000481f1d8 R11: ffffffff81ace5d0 R12: 0000000000000002
[ 2035.624556][    C1] R13: 0000000000000002 R14: ffffffff8e13ee20 R15: ffff88802c663c00
[ 2035.632547][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2035.638809][    C1]  ? unwind_next_frame+0xa5/0x2390
[ 2035.643951][    C1]  ? unwind_next_frame+0xa5/0x2390
[ 2035.649080][    C1]  ? unwind_next_frame+0xa5/0x2390
[ 2035.654205][    C1]  unwind_next_frame+0x19a9/0x2390
[ 2035.659370][    C1]  ? unwind_next_frame+0xa5/0x2390
[ 2035.664646][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2035.670895][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 2035.677081][    C1]  arch_stack_walk+0x11c/0x150
[ 2035.681879][    C1]  stack_trace_save+0x9c/0xe0
[ 2035.686586][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[ 2035.692068][    C1]  ? is_bpf_text_address+0x26/0x2b0
[ 2035.697294][    C1]  ? is_bpf_text_address+0x292/0x2b0
[ 2035.702601][    C1]  kasan_save_track+0x3e/0x80
[ 2035.707306][    C1]  ? kasan_save_track+0x3e/0x80
[ 2035.712189][    C1]  ? __kasan_slab_alloc+0x6c/0x80
[ 2035.717229][    C1]  ? kmem_cache_alloc_noprof+0x1c1/0x3c0
[ 2035.722963][    C1]  ? jbd2__journal_start+0x146/0x5b0
[ 2035.728277][    C1]  ? __ext4_journal_start_sb+0x227/0x5c0
[ 2035.733940][    C1]  ? ext4_dirty_inode+0x93/0x110
[ 2035.738891][    C1]  ? __mark_inode_dirty+0x2ce/0xdf0
[ 2035.744199][    C1]  ? touch_atime+0x59b/0x6d0
[ 2035.748810][    C1]  ? ext4_file_mmap+0x244/0x5d0
[ 2035.753690][    C1]  ? mmap_region+0x127a/0x1f30
[ 2035.758472][    C1]  ? do_mmap+0xc45/0x10d0
[ 2035.762910][    C1]  ? vm_mmap_pgoff+0x31b/0x4c0
[ 2035.767771][    C1]  ? ksys_mmap_pgoff+0x51f/0x760
[ 2035.772731][    C1]  ? do_syscall_64+0xfa/0x3b0
[ 2035.777426][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2035.783562][    C1]  __kasan_slab_alloc+0x6c/0x80
[ 2035.788437][    C1]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[ 2035.793927][    C1]  ? jbd2__journal_start+0x146/0x5b0
[ 2035.799240][    C1]  jbd2__journal_start+0x146/0x5b0
[ 2035.804382][    C1]  __ext4_journal_start_sb+0x227/0x5c0
[ 2035.809877][    C1]  ext4_dirty_inode+0x93/0x110
[ 2035.814751][    C1]  ? __pfx_ext4_dirty_inode+0x10/0x10
[ 2035.820145][    C1]  __mark_inode_dirty+0x2ce/0xdf0
[ 2035.825291][    C1]  ? ext4_file_mmap+0x244/0x5d0
[ 2035.830158][    C1]  touch_atime+0x59b/0x6d0
[ 2035.834595][    C1]  ? ext4_file_mmap+0x244/0x5d0
[ 2035.839497][    C1]  ext4_file_mmap+0x244/0x5d0
[ 2035.844296][    C1]  mmap_region+0x127a/0x1f30
[ 2035.848921][    C1]  ? __pfx_mmap_region+0x10/0x10
[ 2035.853881][    C1]  ? xfd_validate_state+0x6d/0x150
[ 2035.859007][    C1]  ? save_fpregs_to_fpstate+0xa3/0x210
[ 2035.864491][    C1]  ? rcu_is_watching+0x15/0xb0
[ 2035.869287][    C1]  ? __switch_to+0xd74/0x1600
[ 2035.874051][    C1]  ? mm_get_unmapped_area_vmflags+0xb3/0xe0
[ 2035.880006][    C1]  ? bpf_lsm_mmap_addr+0x9/0x20
[ 2035.884889][    C1]  ? security_mmap_addr+0x71/0x270
[ 2035.890030][    C1]  ? shmem_mapping+0xd/0x50
[ 2035.894551][    C1]  ? memfd_check_seals_mmap+0xc5/0x200
[ 2035.900029][    C1]  do_mmap+0xc45/0x10d0
[ 2035.904215][    C1]  ? __pfx_do_mmap+0x10/0x10
[ 2035.908821][    C1]  ? down_write_killable+0x178/0x230
[ 2035.914124][    C1]  ? __pfx_down_write_killable+0x10/0x10
[ 2035.919780][    C1]  vm_mmap_pgoff+0x31b/0x4c0
[ 2035.924400][    C1]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 2035.929531][    C1]  ? __fget_files+0x2a/0x420
[ 2035.934143][    C1]  ? __fget_files+0x3a0/0x420
[ 2035.938839][    C1]  ? __fget_files+0x2a/0x420
[ 2035.943451][    C1]  ksys_mmap_pgoff+0x51f/0x760
[ 2035.948250][    C1]  do_syscall_64+0xfa/0x3b0
[ 2035.952783][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2035.958890][    C1]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 2035.964623][    C1]  ? clear_bhb_loop+0x60/0xb0
[ 2035.969322][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2035.975237][    C1] RIP: 0033:0x7f183eefd242
[ 2035.979675][    C1] RSP: 002b:00007ffefd5c3228 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 2035.988103][    C1] RAX: ffffffffffffffda RBX: 00007f183eecd000 RCX: 00007f183eefd242
[ 2035.996089][    C1] RDX: 0000000000000003 RSI: 0000000000004000 RDI: 00007f183eecd000
[ 2036.004077][    C1] RBP: 0000000000000812 R08: 0000000000000000 R09: 00000000000be000
[ 2036.012059][    C1] R10: 0000000000000812 R11: 0000000000000206 R12: 00007ffefd5c32e8
[ 2036.020058][    C1] R13: 00007f183eed10c0 R14: 00007ffefd5c3630 R15: 00000fffdfab8648
[ 2036.028064][    C1]  </TASK>
[ 2036.031092][    C1] task:syz.1.2896      state:R  running task     stack:27048 pid:20512 tgid:20508 ppid:15176  task_flags:0x400140 flags:0x00004008
[ 2036.044689][    C1] Call Trace:
[ 2036.047980][    C1]  <TASK>
[ 2036.050923][    C1]  ? __schedule+0x16aa/0x4cb0
[ 2036.055632][    C1]  ? rcu_preempt_deferred_qs_irqrestore+0x851/0xc40
[ 2036.062238][    C1]  ? preempt_schedule_common+0x83/0xd0
[ 2036.067717][    C1]  ? switch_ldt+0x10a/0x250
[ 2036.072240][    C1]  ? __pfx___schedule+0x10/0x10
[ 2036.077113][    C1]  ? switch_mm_irqs_off+0x5b6/0x7a0
[ 2036.082467][    C1]  ? get_flush_tlb_info+0x171/0x260
[ 2036.087681][    C1]  ? preempt_schedule+0xae/0xc0
[ 2036.092567][    C1]  ? preempt_schedule_common+0x83/0xd0
[ 2036.098042][    C1]  ? kvm_set_msr_common+0x2825/0x3ab0
[ 2036.103427][    C1]  ? preempt_schedule+0xae/0xc0
[ 2036.108294][    C1]  ? __pfx_preempt_schedule+0x10/0x10
[ 2036.113736][    C1]  ? kvm_set_msr_common+0x2825/0x3ab0
[ 2036.119138][    C1]  ? preempt_schedule_thunk+0x16/0x30
[ 2036.124528][    C1]  ? _raw_spin_unlock+0x3f/0x50
[ 2036.129445][    C1]  ? __text_poke+0x7b1/0xa10
[ 2036.134069][    C1]  ? __pfx_text_poke_memcpy+0x10/0x10
[ 2036.139452][    C1]  ? kvm_set_msr_common+0x2825/0x3ab0
[ 2036.144834][    C1]  ? __pfx___text_poke+0x10/0x10
[ 2036.149805][    C1]  ? preempt_schedule_thunk+0x16/0x30
[ 2036.155237][    C1]  ? smp_text_poke_batch_finish+0x8af/0x1100
[ 2036.161272][    C1]  ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[ 2036.167541][    C1]  ? arch_jump_label_transform_queue+0x97/0x110
[ 2036.173910][    C1]  ? __jump_label_update+0x37e/0x3a0
[ 2036.179244][    C1]  ? arch_jump_label_transform_apply+0x1c/0x30
[ 2036.185443][    C1]  ? static_key_slow_inc_cpuslocked+0x80/0xf0
[ 2036.191541][    C1]  ? static_key_slow_inc+0x1a/0x30
[ 2036.196671][    C1]  ? kvm_create_lapic+0x110/0x400
[ 2036.201716][    C1]  ? kvm_arch_vcpu_create+0x1ec/0x920
[ 2036.207116][    C1]  ? kvm_vm_ioctl_create_vcpu+0x429/0x930
[ 2036.212863][    C1]  ? kvm_vm_ioctl+0x7f7/0xc60
[ 2036.217557][    C1]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[ 2036.222613][    C1]  ? finish_task_switch+0x266/0x950
[ 2036.227831][    C1]  ? do_vfs_ioctl+0x12ba/0x1990
[ 2036.232698][    C1]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 2036.237737][    C1]  ? rcu_is_watching+0x15/0xb0
[ 2036.242518][    C1]  ? trace_sched_exit_tp+0x38/0x120
[ 2036.247751][    C1]  ? __schedule+0x16c0/0x4cb0
[ 2036.252476][    C1]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 2036.258132][    C1]  ? preempt_schedule_irq+0xb5/0x150
[ 2036.263517][    C1]  ? tomoyo_path_number_perm+0x4e2/0x5a0
[ 2036.269168][    C1]  ? __pfx___schedule+0x10/0x10
[ 2036.274055][    C1]  ? rcu_is_watching+0x15/0xb0
[ 2036.278838][    C1]  ? trace_irq_disable+0x37/0x110
[ 2036.283971][    C1]  ? preempt_schedule_irq+0xde/0x150
[ 2036.289273][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[ 2036.295043][    C1]  ? smack_file_ioctl+0x302/0x340
[ 2036.300107][    C1]  ? irqentry_exit+0x74/0x90
[ 2036.304750][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2036.310131][    C1]  ? __se_sys_ioctl+0x52/0x170
[ 2036.314934][    C1]  ? __pfx_kvm_vm_ioctl+0x10/0x10
[ 2036.320002][    C1]  ? __se_sys_ioctl+0xfc/0x170
[ 2036.324800][    C1]  ? do_syscall_64+0xfa/0x3b0
[ 2036.329496][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2036.335661][    C1]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 2036.341304][    C1]  ? clear_bhb_loop+0x60/0xb0
[ 2036.345990][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2036.352083][    C1]  </TASK>
[ 2036.355115][    C1] task:kworker/u8:17   state:R  running task     stack:21160 pid:12836 tgid:12836 ppid:2      task_flags:0x4208060 flags:0x00004000
[ 2036.368730][    C1] Workqueue: bat_events batadv_nc_worker
[ 2036.374407][    C1] Call Trace:
[ 2036.377693][    C1]  <TASK>
[ 2036.380637][    C1]  __schedule+0x16a2/0x4cb0
[ 2036.385172][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2036.391079][    C1]  ? preempt_schedule_irq+0xb5/0x150
[ 2036.396389][    C1]  ? __pfx___schedule+0x10/0x10
[ 2036.401255][    C1]  ? rcu_preempt_deferred_qs_irqrestore+0x851/0xc40
[ 2036.407868][    C1]  ? preempt_schedule_irq+0xaa/0x150
[ 2036.413197][    C1]  preempt_schedule_irq+0xb5/0x150
[ 2036.418355][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[ 2036.424119][    C1]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[ 2036.429957][    C1]  irqentry_exit+0x6f/0x90
[ 2036.434418][    C1]  asm_sysvec_reschedule_ipi+0x1a/0x20
[ 2036.439925][    C1] RIP: 0010:lock_release+0x2b5/0x3e0
[ 2036.445249][    C1] Code: 51 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f7 44 24 20 00 02 00 00 75 56 f7 c3 00 02 00 00 74 01 fb 65 48 8b 05 9b 8b fb 10 <48> 3b 44 24 28 0f 85 8b 00 00 00 48 83 c4 30 5b 41 5c 41 5d 41 5e
[ 2036.464877][    C1] RSP: 0000:ffffc90004947948 EFLAGS: 00000206
[ 2036.470964][    C1] RAX: 83e0e88eea930000 RBX: 0000000000000202 RCX: 83e0e88eea930000
[ 2036.478950][    C1] RDX: 0000000000000002 RSI: ffffffff8db5a681 RDI: ffffffff8be1b940
[ 2036.486932][    C1] RBP: ffff88802bc82940 R08: 0000000000000000 R09: ffffffff8b2e1d7a
[ 2036.494943][    C1] R10: dffffc0000000000 R11: fffffbfff1f3fb7f R12: 0000000000000002
[ 2036.502957][    C1] R13: 0000000000000002 R14: ffffffff8e13ee20 R15: ffff88802bc81e00
[ 2036.510954][    C1]  ? batadv_nc_process_nc_paths+0xba/0x3a0
[ 2036.516796][    C1]  ? batadv_nc_process_nc_paths+0xba/0x3a0
[ 2036.522625][    C1]  ? __pfx_batadv_nc_sniffed_purge+0x10/0x10
[ 2036.528626][    C1]  batadv_nc_process_nc_paths+0x2f9/0x3a0
[ 2036.534372][    C1]  ? batadv_nc_process_nc_paths+0xba/0x3a0
[ 2036.540287][    C1]  batadv_nc_worker+0x52b/0x610
[ 2036.545168][    C1]  ? process_scheduled_works+0x9ef/0x17b0
[ 2036.550926][    C1]  process_scheduled_works+0xae1/0x17b0
[ 2036.556995][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2036.563021][    C1]  worker_thread+0x8a0/0xda0
[ 2036.567659][    C1]  kthread+0x711/0x8a0
[ 2036.571790][    C1]  ? __pfx_worker_thread+0x10/0x10
[ 2036.576945][    C1]  ? __pfx_kthread+0x10/0x10
[ 2036.581570][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2036.586894][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2036.592125][    C1]  ? __pfx_kthread+0x10/0x10
[ 2036.596734][    C1]  ret_from_fork+0x3fc/0x770
[ 2036.601385][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[ 2036.606523][    C1]  ? __switch_to_asm+0x39/0x70
[ 2036.611300][    C1]  ? __switch_to_asm+0x33/0x70
[ 2036.616073][    C1]  ? __pfx_kthread+0x10/0x10
[ 2036.620675][    C1]  ret_from_fork_asm+0x1a/0x30
[ 2036.625470][    C1]  </TASK>
[ 2036.628497][    C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 10501 jiffies! g88141 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[ 2036.640844][    C1] rcu: 	Possible timer handling issue on cpu=0 timer-softirq=129120
[ 2036.648829][    C1] rcu: rcu_preempt kthread starved for 10502 jiffies! g88141 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=0
[ 2036.660331][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 2036.670336][    C1] rcu: RCU grace-period kthread stack dump:
[ 2036.676237][    C1] task:rcu_preempt     state:I stack:27128 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00004000
[ 2036.688170][    C1] Call Trace:
[ 2036.691462][    C1]  <TASK>
[ 2036.694411][    C1]  __schedule+0x16a2/0x4cb0
[ 2036.698940][    C1]  ? preempt_schedule+0xae/0xc0
[ 2036.703812][    C1]  ? schedule+0x165/0x360
[ 2036.708162][    C1]  ? __pfx___schedule+0x10/0x10
[ 2036.713043][    C1]  ? schedule+0x91/0x360
[ 2036.717307][    C1]  schedule+0x165/0x360
[ 2036.721480][    C1]  schedule_timeout+0x12b/0x270
[ 2036.726352][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[ 2036.731737][    C1]  ? __pfx_process_timeout+0x10/0x10
[ 2036.737059][    C1]  ? prepare_to_swait_event+0x341/0x380
[ 2036.742627][    C1]  rcu_gp_fqs_loop+0x301/0x1540
[ 2036.747509][    C1]  ? __pfx_rcu_gp_init+0x10/0x10
[ 2036.752463][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2036.757684][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 2036.762983][    C1]  ? _raw_spin_unlock_irq+0x2e/0x50
[ 2036.768200][    C1]  ? finish_swait+0xcd/0x1f0
[ 2036.772819][    C1]  rcu_gp_kthread+0x99/0x390
[ 2036.777427][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 2036.782645][    C1]  ? __kthread_parkme+0x7b/0x200
[ 2036.787602][    C1]  ? __kthread_parkme+0x1a1/0x200
[ 2036.792676][    C1]  kthread+0x711/0x8a0
[ 2036.796779][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 2036.801998][    C1]  ? __pfx_kthread+0x10/0x10
[ 2036.806600][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2036.811838][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2036.817087][    C1]  ? __pfx_kthread+0x10/0x10
[ 2036.821708][    C1]  ret_from_fork+0x3fc/0x770
[ 2036.826327][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[ 2036.831489][    C1]  ? __switch_to_asm+0x39/0x70
[ 2036.836295][    C1]  ? __switch_to_asm+0x33/0x70
[ 2036.841083][    C1]  ? __pfx_kthread+0x10/0x10
[ 2036.845702][    C1]  ret_from_fork_asm+0x1a/0x30
[ 2036.850494][    C1]  </TASK>