last executing test programs:

15m2.2391275s ago: executing program 3 (id=636):
r0 = socket$kcm(0x2b, 0x1, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x40000)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000440)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="851666ce20db", 0x0, 0x10, 0x10038, 0x0, 0x0})
sendmsg$inet(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0x32}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x200048cc)
setsockopt$sock_attach_bpf(r0, 0x1, 0xd, &(0x7f0000000080), 0x24)
close(r0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r4 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x64, r5, 0x200, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x1400, 0x38}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x800}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x15b8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xe}], @NL80211_ATTR_MESH_ID={0xa}]}, 0x64}, 0x1, 0x0, 0x0, 0x20008000}, 0x400c005)
recvmmsg(0xffffffffffffffff, &(0x7f0000000480), 0x0, 0x0, 0x0)
write$tun(r3, &(0x7f00000002c0)={@val={0x0, 0x86dd}, @val={0x0, 0x1, 0x11, 0x4, 0x0, 0xca6}, @mpls={[], @ipv6=@gre_packet={0xe, 0x6, "ec00be", 0x44, 0x2f, 0xff, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x88be, 0x0, 0x3}, {0x0, 0x0, 0x1, 0x1}, {0x1, 0x0, 0x1}, {0xa888, 0x88be, 0x2, {{0x6, 0x1, 0x9, 0x2, 0x1, 0x0, 0x3, 0x5}, 0x1, {0x88a8}}}, {0x8, 0x22eb, 0x20000, {{0x0, 0x2, 0xc, 0x0, 0x0, 0x2, 0x7, 0x8}, 0x2, {0x2, 0x4, 0x0, 0x5, 0x1, 0x1, 0x1}}}, {0x8, 0x6558, 0x2}}}}}}, 0x7a)

15m1.161193609s ago: executing program 3 (id=640):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000480), 0xa0000, 0x0)
r1 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10) (async)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10)
sendmmsg$inet(r1, &(0x7f0000001c80)=[{{&(0x7f0000000180)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x24}}, 0x10, 0x0}}], 0x1, 0x20004840)
shutdown(r1, 0x1) (async)
shutdown(r1, 0x1)
r2 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @multicast1}, 0x10)
sendmmsg$inet(r2, &(0x7f0000001c80)=[{{&(0x7f0000000180)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x24}}, 0x10, 0x0}}], 0x1, 0x20004840)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x40, 0x10, 0x44b, 0x0, 0x0, {0x7a}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERY_RESPONSE_INTVL={0xc, 0x22, 0x2}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x400c000}, 0x44)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000100)={{0xeeee8000, 0x0, 0x8, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x1}, {0x0, 0xddccb000, 0xa, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x81, 0x0, 0x44, 0xe, 0x0, 0x3}, {0x8080000, 0xeeef0000, 0xc, 0xfd, 0x80, 0x0, 0x3}, {0xeeee0000, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1a}, {0x1, 0xd000, 0x0, 0x0, 0x0, 0x8f, 0x0, 0x0, 0x0, 0xfc, 0x86, 0xfe}, {0xeeee0000, 0x80a0000, 0xd, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x4}, {0x0, 0x80a0000, 0x0, 0x82, 0x0, 0x0, 0x4, 0xe}, {0x30000}, {0x5000, 0xfffe}, 0x60000010, 0x0, 0x0, 0x0, 0x1, 0x0, 0x900, [0x0, 0x0, 0x10000, 0x3]})

15m0.309260582s ago: executing program 3 (id=645):
mbind(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x6002, 0x0, 0x6, 0x0)
mbind(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x6002, 0x0, 0x7, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a78000000060a0b0400000000000000000200fffe4c0004802800018008000100666962001c00028008000340000000060800024000ecff01080001400000000920000180070001006374000014000280080002400000001108000140000000100900010073797a30000000000900020073797a32"], 0xa0}}, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = socket$kcm(0x21, 0x2, 0xa)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r4, &(0x7f00000002c0)={0x1f, 0x0, @any, 0xfffa}, 0xe)
connect$bt_l2cap(r4, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
sendmmsg(r4, &(0x7f00000024c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="101000000000000011010000220e0000503f1a53cde4c3948435eba083e5d74c9a7477ab19ac2f5f9cd286eb450cbd65c7f7a30907924a7d9b0465b0e6e2c0a6c85e68c771eb4b59e84b1f33bade1936a990b2960c9940705df129b44d69b15835f06145f844155a6b4d6a3d9016a7e606135c377a73cf550a6e748ab94eb98b21bd78ff95ce68d154dbaf08be483440eb6d417301ee1c30e60a20b86116d549a64541bc910c4b315b206a51f12f90c3c582f8f50f597b8aa1d8b14df86e38915cd2fbe4bcaba6f72b88ff0dbb319db8b34f3075bd203afd48b8945af0e4b1cb316b95d06a5c30e0c30e053179ce190d557525b4852321d528b91bb39bb7b56aec56a78bcb017e2d36bbc9d0658855bffc0caa3e028770de02bbca173e159272e8d97f0afa632bbd0cf32cecaddb231c62b1febc098178c4903165c5ea54257c94410541b7d19224677401b59133bb71e4e07a8db4c89d8f63eae4327ae39084de74fa109cfe32955e056970a367ee93460d7409d21c888082aa23a2e4a627750f8e3128464effa5ac5bba57a0c04fe301ecb043d80bce61f650c8dd75a32c7bf98cdd5ff8099ef8d3bf688cad276987594863a1855ca55458aca1d21dab53156edf3d4ced6aa45a2e4c5b58d9fc7371b0daf1dbdf511caa74d9c097353765e333cef92fa94461908e7d10c78bfbfea4a67f6b70d420c5ae53dc96fb76a860d1e77f295d668628adadf93446f3dc29a5c8e46e7012e4d997c4045c1d4bc0281f35de2c142ed3d484dd2e07650e31c1698a798209890db50e542a062827a9b7362bf5de4c3020d1ef682660e0e0644d60aacc12580d1dec0d2e3d698823c4f108b46d05010b83530ac4823a4cd9bec7e1c3f9c8c7f46093b6ca4aa5ed557bb38808beb88db5027c2552099668afa20bef6cb29738bb90cc9ba9120ba03a606617426ab3212f2364b7ad168483bc8fd9d60cac22e9f93979fbeafc73b5f55e7f9f78ba8d5ce59ab711a2c3ea32e9c5925a29cb16b8bfbcbfafc8a3d715a69288952f29da86a94722718624e27edf6a7751517442fb1dc575489aaf3572dd6044a4eae83bfd7c1f5220cebe2e882b066c2554df7538b6e210ca855f472db42b6e8577c3c82a1cb9db051fc312184fe879dc6f6553e93568d01d3c7188f749c0fcf3d5204aec65b9ed781c595b80f640b70cab50aa646f52f6faa983d9fb9896ce39b65258de598b4b22c9f70dce117984ed155fab07897b6256c68f9978616c30afbb4303c32a201e9faaf63652c97997163a077ac20e2ec60c56b8ce80bcd41ea03072f44f094db4340faac79dd3f6d24bf8bcf867e9cdb3c7a19148ff664c13b84b06bcbfe72bcfd800536c171ce4f2c6acecc460786e1a39bcc566cfd8103aa1e85af45d07be626c0a83fb78d6f5768981e06db29278a919c14e0158220ce571dd2ed43b04bcbe4807033be39947e89eed4d89c05a2274aacd70904c347f1cda05912b62a25b3c3f16e1b72029289d1f60689ea87c386350dee05b484fb5ccacab6894fc2d96f95f9b4d3913f34865a37240901e0d2a674155b355d12956129e8cd4ad11ea97ffa3f4ddc9ccd8c13b961e25c36bc333220f272514588f3998b9cc4173d9db5e003f84cdf5a8a923d5bb293d4c8dd0e02e72c9b11f5dfc80afc30b1853abe2e01e2f33b798aee50a35c96c43ca016df65be2717933ea62c5fe87b8fdbe03eb3cd7784adcdd21bd2e2ed6b213ceb11f7ae19922a641c292d06cfb8465797962f4936c42522e1571e4ffa6548093afeed3590c7e162335d83d0cb8f434019dd6f62f562f46d2bde7fce3f21e0018cd747db7a8457ab9314219e660587aaa6e5b1133166eb8a37911c6d945a51c4aeb1f620b04e2eef75db3b1bdcc483aef48f09ea9e974c05f3bb3c7071d21ed63b2c2a2df930fd1bf167438ed4f8bae3e0c3e5f4b36ff843b80d7957c667d010d64f3fa6185023b0a7ef84647b35ae750df249f3842d33a3e63410915071f1f2ba842ac7b3db10dc53e68a617abdc742ab246be584acb2431159eb38d5b14b67cc2fed8dac7b20db23144b343ec1bc522238cb81824da7f474463e6b213e66404487e4d929e08e3543f8deedde91ab6d6f9d13d1a8c9058f90a3b2ae7a602ff2887a82901ea2511d3eaea8f84301848d09dfca20769b645b3f72cab890575ec9ceb6a8abed1e87745380afab52ef8dabf00f94356b8fcb291d51534df934c1ddb22dd754af0dcd4877b8a4b67c29f9a7951a981cf1587dd66cd53293b3eadb6ec81c19ab86b38761881489839e44bf628686e80ebe6974ab4595d5dd6da9d146f982fb30a19a790d06ffff37081f8a964b0bf2f397866ba5c33a69566a71cf990cc1888ef16232f838d190db6c170b41c593f3b0c168aea21b887cd4989ec6c9337dcaeffaefe20f65a6cb052190104c7675afe7ccea47cda8af3804a6211de30e557afc7404aeed7d77efca07f55593de0a67e8d176bfd8cfe6363aa07266643a7d900b0e43dafb6f58bebeef2bf55aa0a68c65834a1bebfb8f51f58f174e3493d93578579e2ea3015bc2a32420234f08728420308adc699036638d16742c78bdf7bdbdd785e3d7424a6822f64f9c6963d1770e28d420aeaf9608af2bb4333496725038d4d2bab133f0a60e13073ae53c378f0f1e7b20a34007e2b8a57e563c49de526283061507cf67344bd2f554782caa962ca78d14a09e136d939169e43948313ca341c665d170fe56362afe10c41806bc17264d7826a3654202ad7aed466dffb1ecf1be84a0196f0741dd4382a79d19628e4ff3239a1cdf0e917cf1b3d26ba61bb837f0aaefbd2d13a33a44961bd55848ff29b7a885218e09404c09f8001808c22bc3f25313cf4a47a0f867b51188a65324b7b096fc555a9184602a93b18a9e2428d0b4253ef036c390b74b69607d6f6ac7c5ff82a2f94fc6f3e18a6077c6ed5bbe00bec020527f14421eb1e19c15d1c95676ed15748b04f8d283263214e3f67195a079e15f5d488e4ba0b0413d0450a2d6c4492dfa33fea9365561d0f9abe4d36c2d95ff7433ffa335a8331a463bde13cdf24e2f226912a53d70a4c306a6040f453a64d59c5932d9e9bd9b017943e05e2e0bcfacd2a6b3821a20f65ce8e021b232daadbf004b2cf8d0476ced73cd55fe70566669ca45ff3c64fbae8a8c2a884a1418b8f02a9a0c1606a10797feee6ea9b34e93966e2a16737e14f9dda2dd6dd73a615cafe156b2696557474bbd941bb9939462a47e9c3c2ed04fbf30e88f53865e0499cffc93105fb3276c570a272a75e1131881cdee283b69b1d52e77b5e86bdecc64ed001ad909dee9372e4e722ed63d24c087800688b9c4c485261c19a5ecc7aa51e884dd39b3d80e7880e2bb605c04efcc55eceeaf4e1d62eee4e51649c90a64f2ec3f4606a1dd5678a0d97c200503e70a0f9faaa77cb9b9d4bbd83df98bfb43e625717cd135ab7d0d1e36e82d0228295b03852261e1f59df0cf97fb941922f0c670e0c35cb1a5115beb99106f30c0bdfb50ff083de5ae4eada927422fb881766b7e29217a3b1f6a4026b736c0b4e1a13d599e4e07afa7709530d0301b11eb89b475175c805cae6c25cdf5a98984fd87e9834346a8b506e0448db9ad55f8ab421912bdeda38e0c23c256ce01f1e1d6513833dcdba1a1dcb4db4ec2b042e2ade1be083eeaf1db75be57e103cffed7859674fa1e9e141945d8d1374647444a9a2f87d446da5e39a22c8996beb26cdaa488314e3ddf7ece1402923a0b70ef992cb904fb4613a23ff558dc5f524471019f09f795e57f0d0a8357b6e077c6c7de15c2b72a521ecef99b7b9b70c1aa074002d8696ab07665a3c8d1bf11f22d59b2b2920aba60cdb0ad82b5ef2dd3f8ae7aed7c2eb0b4df6c831716e245877df3db5e56ad7f84eebb638dd168e3e50565edaadfa58dd73bd6a7bbc42d56ccbb3605ef5686d9b2d117e15d32821e84c08e391dab26872bcaee9a7d94c91eae175bcc5f9b36e9ce703f790c73cdb84b0fabc64f11abd368bd2a1879aaae5e81565c05fa9f5162cde8f1a852e44cda3d316a063141782c32556e7fe07f8bfabe61a73948d2365650c0f789709d149edb51f0d7df0cc4067083093e79516d72260248caef3e583de15e3f31e58069ac6135e6d0ac454ac2e97e5f0bf1ca8744053ab05fcdf3f6f7a0be88dbf3ca860562969cf502d64a3730eac893be2091b78a7796defa54c0ee37ea2a3db2415291dd62795e927ef7f799000bde0071aac4441dc1b8efd0685df6cb8139e99fc7bbc1b782f7b258664d2a3c6b751d629d3121de815121910516faa8718224b8d2543ef9cd6e3f4a5a0c0c14b31d7f4e021a1a28d9a139e42c074a788c83bbd970522f0d481c7a5afc35f1fc65edc7aa1cf50a6ab83d4caa8fc504d2f83972c9d16585421b4db737f8efa0d588a928e8252d0a4843459fe5b68f88b2a20cdc163d81a447e694c1226589acf9860e69b51ace4c214aac29f82f81e4140105524bb83b7417e41f1c1772351982f00be6b0df2c6cb42894b25a5d79bddb49d4ba59bb8b14041235e642ee0585c4d7deb4d501cc4cb6e137149aaa91118f247ac037c74079f7423b573b92febdb6a84e40547b6e12bcfba617a77a4e1b3b400136ecc0fd18b51f50c2d7764ddd03c60491a0703f72899598ba7972b85be92606e0b8d35eeb292e94398afbb58d605c3a63d3dad48198ac700049f4bad9bcc245c35e7bd602b893c72d5894d0e6b70b939a9e2f07c012e8a67317ca8124bd6fe3cf209df1fa6058631ce2386700eb8aa40da0109e10cb57fa943e01bbc0c8b6e5ebaaf6a9fd888160f0b66ce25a675d2f919524db990004463ff80c33f9ec729272376d65ddf7f799bdd5cb883f0e2c7ab0009a3981d02deebe7d8a301e0b3b52f0338b0c5dc6ca59d62a768fdf1c4b3a44464479fccb4d5b181ca94ed68d4e486bd963dd1e4d8ec043e8912b141acd9ddc2da9ed42b2b23179bf69844cece89ddea9f0eca4098d97fb526a53bc6a4731dbbe30d637c914ed44b9cf16fc55efb9df17a5e2c61f8e986f04a0b3a3247ce42772605dd6720818e8fa7933afb79e0e8bb675a8370af74efef8319dcae59ad2c76e22bff3c471739785b69b9c67e0e5235259e0cf431a9afed964e4bd90228d465c51bfc08bb17a0411f9331f827daf5cd0045f97de298744fe3a0dc083d63633edc500c2c739cb451ccda76ad6fb08f911f743e8e11c7e912c3e0e305fca4a3c8f2c67d0962534443daad06b2747af3481662f8b9d1de516a75d2b15a6a4543b15608554911c5a3f9caa0f428119274071c7f8b1e3500e7d7d9646386c8ba7fd7697b00e68e9b8b8636a853f25102fd994592e0536d1de48ebe473074cf8df4ebdc66da0cc9e3ff248dc283f063f018b874944da59fefb2032cf54ebc424948ed0e3f299a756a3331995c242c7af4d2bfeb2da4528bd6f448bf926ea57f5de52f724885532a11ee669364cd90ae6c1bf886b3b750325444b0dc393af627c8295a381dc6a54ebd5147191b0dde397033629bb4ce8ef1feb04ffc786936bbcd17327b485f8344e29c139b913ca92c9a994bfc3d7c9668e5723e9fdb45e667a95972829c766c1979f966bbd52bb9043896ada7116c828f932167ca4abbbe5db454f552f76fae397b21328532df3cc9c800f31bf5e1de6020d10ac7f04669fa0bacc655d60f8c629900689a19032bafefdef6aec75a7f5f2978e73fba9836b9fd02073ddeafe3315804bc32c028e329ff902d9ba24346b26646a78d8ab348a308347dff6000000000000000060000000b0000009dd00657b6ad5dc059d075a271eae004613c2e5d48853e3c881d2daac6150ccf2a7104cc28fe06ea2f489f06a0e1a24cfe98f1c4baa3b9657fbf8fd4ad9b53544e55ac7ce75967781bee0f0000000000a00000000000000003010000ff030000ffb80ef734d21f2d783f965758117b77fb7ac4aea25dcda759a2c4f5bade7f108e91a816c86790b506ae2de1d99d5cc9a419279a30d541fbfb43e3985282553a4b755246adca05d2623a1d9f2c07dc442822547a14729de53d9db6198a9dcc3b946521544cacc3497d1fffcf53b8d0bc2bd0bdd3a46d5295456d0db1ad45196a359881c183c27a8fe31a92290000000070000000000000000f01000003000000114781b2c5db181051fc8b32960263284ae1fba125dd20a0705a2bc7b19d1100df64973defd204f0fb3f3e13c6ed5a302f32107831c9234824ec184952012cce54d790c08e611c849d935490cf37520accd6f00841e23ab2c8e2e200f429c206980000000000000088000000040000000ccaa6c404c74dea51dcf341fdd3fbc71252e320e69b6583fa08ee027251982e2e4bac18f3533906e14fc98c1e14179dd734df65671081acc3e5e89e153c391197320a264a7fd1ba6532ffb0b085fe9d99ceba34e3c166960f0b67b738780319c0bf8b39ec5212792a24045f73fc1f68b2007f9a4eb267997437243766005fe129ad6050f40b3700f00000000000000000000000ffffff7fe3d2fce3b548ac6e1fe45b2960ccdc17cf4c75dc6027018eebadd087de65280b17942f03cbc264e5275015bb164f37b5aa26da15f94099fdcdf7edd50b2ddaef21451ef21662ef5af4a2305a50e4c62f5efbb947d45cde8bd86497969a84b1f4560b20a8cfa2e73413aa0ae81adda905e4876ed27f499396478720002c9893e0dd404936eea8514b8d0a5189831238502f7f8ee6fba735ae6b0dba2b7157835e77ebb3b8d4f585057a418e47c2ce7d1c96c4b3130363d6fa189264856fa3b12d86428ab4a262092d4849a2392f12fd56a8c6ee0702efded6a500000000000000100100000000000018010000f3ffffff6b1bef1abf3ef20caef95a174802de686e48a218fed5c3c904fb51479025360732e0349c1d455bdce3862b2a7fc7e888aae78cbe116205a5f5ff6c4960e87a45659e4404376d531afa8e2c6be1dbc7154083e4f7a4cd8cd37a07727eca48688e86070b7ea432ee76637271e2c9e16ca6450aed1d0fe14287d5b2856a5119581cde9050b37ca7e8960fe38b596e48f3b09e8859f0cbaa59740870b782996fb2e4e0d1861a8b10fc6bd6a7a7cb9a796521b9c97c572d99ae6f2a81a231ac5c3bd338f53dcd2a3fc805ab132daf3dbd85abe68e465c7c400fa5b07d11c087b95afcdb57c36211a059f6b07cd44b4652018cb3e5218a477635f6244f000000000000d0000000000000009f01000008000000dcbbe47c38d4568fe4e2d8bf7f58848a2b5331402d3a0ed461360677920ff7f06c65dfe44ca243f976b140600d412e7f97b64e43f689661e65b48aa635b3faf47089a3a378348dbcccfb0dc7ba9443618a77a81c5da42d6efd2867c372d67f05df8ad1ce8547caff4f47446ec57f29191564ef494670ad1f9fa4fefa47b24059aac93d213b5b0d11a12678ba5c3a0b5795c5d96eace2fa902ab397929792b04ce2aec873ef973ed65bf8edc6bdb1db557cad6cadb27e7d759f897d5b7880b91918"], 0x1500}}, {{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000680)="aabf", 0x2}], 0x1}}], 0x2, 0x30040040)
sendmsg$kcm(r3, &(0x7f0000000080)={&(0x7f0000000100)=@rxrpc=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e20, 0x9c000000, @ipv4={'\x00', '\xff\xff', @remote}, 0x1df}}, 0x80, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="100000001001000001"], 0x10}, 0x40)
readv(r3, &(0x7f0000004500), 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(0x0, 0x0, 0x0)

15m0.079421259s ago: executing program 3 (id=648):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000002c0)={0xffffffffffffffff, 0xe0, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r1=>0x0, 0x0, 0x0, 0x0, 0x8, 0x6, &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x6f, &(0x7f00000001c0)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000100), &(0x7f0000000140), 0x8, 0x5a, 0x8, 0x8, &(0x7f0000000180)}}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x82, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000001280)={0xb0000002})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r4, 0x0, &(0x7f0000000340)=""/171}, 0x1c)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000001740)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r5, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1}, 0x6d)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, <r7=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x13, 0xf, &(0x7f0000000680)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x58, '\x00', 0x0, @fallback=0x2, r5, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r7, r6, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1d, 0x19, &(0x7f0000000580)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [@generic={0xd, 0x5, 0x5, 0x39c, 0x4}, @initr0={0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6}, @map_idx={0x18, 0x5, 0x5, 0x0, 0x9}, @exit, @btf_id={0x18, 0x2, 0x3, 0x0, 0x2}, @map_idx={0x18, 0x3, 0x5, 0x0, 0x2}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000680)='GPL\x00', 0xf3b, 0x81, &(0x7f00000006c0)=""/129, 0x40f00, 0x50, '\x00', r1, @fallback=0x38, 0xffffffffffffffff, 0x8, &(0x7f0000000780)={0x6, 0x2}, 0x8, 0x10, &(0x7f00000007c0)={0x2, 0x2, 0xa78, 0x19}, 0x10, r7, 0xffffffffffffffff, 0x2, 0x0, &(0x7f0000000800)=[{0x5, 0x5, 0x1, 0x1}, {0x1, 0x2, 0x2, 0x5}], 0x10, 0x6c3c}, 0x94)
sendmsg(r0, &(0x7f0000000540)={&(0x7f0000000300)=@ll={0x11, 0x1b, r1, 0x1, 0xe3, 0x6, @multicast}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000380)="54f03846914f56f0aecee5c30fe74ba057e2f53b2316a2c9e91aafaa7414ab2f79e5ccb95d1f902be23686c265c980ee94f8832f0299c59da606cdb77fe00141afeace28f7a842b74aaae22b45e901bc1f87a4a9076c84bcca7d2cb7116f9bbdefaeb80bb37ae26d74bb4bbfb5beaa7fb87a33dddb6d26a6", 0x78}, {&(0x7f0000000400)="ee03e49302770f0b968d0fb005031416cad3ad625cfaef3a1c0126e3090a34f0a5590ee5e95f308e49a6661fd667b145374e2ba6eb4550f61cf210b285125106382743a25a458e941345c24c2416d71b6dce0a901b55815568e45a6286864f9db327122f1e43b24f91c3d98e6ec9977328f3d3d9d0a086d06dcf0ef3319d32532811e23bc4b44998f50a9dc0e0931388bad62a2220", 0x95}, {&(0x7f00000004c0)="e66276cc3e041d009b27de657fd774698962d63670f39ee3eb2da36927eb8cd7322d9161c2470cd18f0ec405b01966cff9722f", 0x33}], 0x3}, 0x4000050)

15m0.079077523s ago: executing program 3 (id=649):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
setpgid(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x23, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x5, &(0x7f0000000200)=0x6)
mmap(&(0x7f00007ac000/0x4000)=nil, 0x4000, 0xb635773f06ebbeef, 0x8010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000100)={0x0, 'erspan0\x00', {0x1}, 0x26})
mkdir(&(0x7f0000000340)='./file0\x00', 0xc1)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
acct(&(0x7f0000000380)='./file0\x00')
geteuid()
socket(0x10, 0x3, 0x0)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r3, 0x0, 0xcc, &(0x7f0000000140)={@multicast2, @multicast1, 0x0, "aaa517d60f2811d48c8a2cc60c4380bc23b510d442ff13482864280a9c0f4eb5"}, 0x3c)
setsockopt$MRT_ADD_MFC_PROXY(r3, 0x0, 0xd2, &(0x7f0000000040)={@broadcast, @multicast1, 0x2, "4f6fb4d1af0f724e6118ecd4ac1100843af297baebb0efcdf5a284da144a011a", 0x0, 0x8000}, 0x3c)

14m59.979112783s ago: executing program 3 (id=650):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400600, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x1, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
dup(r2)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000280)={0x73622a85, 0x1000, 0x2})
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x2, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'xcbc(twofish-generic)\x00'}, 0x58)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x24, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}}, 0x24}}, 0x44080)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000000080)="a95c55bcc7cb4a9362a5ce533229c8ee", 0x20)
r7 = dup3(r5, r4, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000540)={0x10, 0x0, &(0x7f0000000440)=[@request_death={0x400c6313}], 0x0, 0x1000000, 0x0})
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000140)="d2ffb49ede31518d65a476b76e4a4e0b75db47c327ab597233001000006db41df04709094056af33a6db1e301a74db81f27f6aa6a8ca9d22a565ff96d46e88fa99b284c26c46494072fc2e47da240c71"})
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x40086315}], 0x0, 0x0, 0x0})

14m44.827498323s ago: executing program 32 (id=650):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400600, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x1, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
dup(r2)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000280)={0x73622a85, 0x1000, 0x2})
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x2, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'xcbc(twofish-generic)\x00'}, 0x58)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x24, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}}, 0x24}}, 0x44080)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000000080)="a95c55bcc7cb4a9362a5ce533229c8ee", 0x20)
r7 = dup3(r5, r4, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000540)={0x10, 0x0, &(0x7f0000000440)=[@request_death={0x400c6313}], 0x0, 0x1000000, 0x0})
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000140)="d2ffb49ede31518d65a476b76e4a4e0b75db47c327ab597233001000006db41df04709094056af33a6db1e301a74db81f27f6aa6a8ca9d22a565ff96d46e88fa99b284c26c46494072fc2e47da240c71"})
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x40086315}], 0x0, 0x0, 0x0})

7m30.315071532s ago: executing program 1 (id=2575):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000700)={&(0x7f00000004c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000020000017000000540006803c00040067636d286165732900000000000000000000000000000000000000000000000014000000e3de3d7b4cd07ec3ee777de774fc7987cca41989140003"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x4008014)

7m30.100612435s ago: executing program 1 (id=2576):
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r0, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f00000007c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1, 0x0, 0x4000}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)="ec000900062b2c25fe800000f7ffffffdc8b851a238466cc80007a000000ad6e911b51818462b4003a000001828c75416cf99116e3a902d8", 0x38}], 0x2}, 0x0)

7m29.858448725s ago: executing program 1 (id=2577):
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000400)={0xb8, 0x1, 0x1, 0x401, 0x0, 0x0, {0x0, 0x0, 0x8}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x8}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x101}, @CTA_NAT_DST={0xc, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MAXIP={0x8, 0x2, @multicast2}]}, @CTA_TUPLE_ORIG={0x34, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x11}}, {0x8, 0x2, @rand_addr=0x64010101}}}]}, @CTA_NAT_DST={0x20, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @broadcast}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast2}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x2}, @CTA_SEQ_ADJ_ORIG={0x1c, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x2400}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x10000}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xd66}]}, @CTA_PROTOINFO={0x10, 0x4, 0x0, 0x1, @CTA_PROTOINFO_SCTP={0xc, 0x3, 0x0, 0x1, [@CTA_PROTOINFO_SCTP_STATE={0x5, 0x1, 0x83}]}}]}, 0xb8}, 0x1, 0x0, 0x0, 0x40001}, 0x400d4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x17d4}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="4801000042000100fffffffffddbdf250200000004003880100001800c00c8000200000000000000200104801c01"], 0x148}, 0x1, 0x0, 0x0, 0x8800}, 0x4040)

7m29.629082811s ago: executing program 1 (id=2578):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000d80)=ANY=[@ANYBLOB="9feb010018000000000000002800000028000000060000000000000000000003000000000100000002000000030000000400c200000000110400000000000000005f305f3000"], 0x0, 0x46, 0x0, 0x8}, 0x28)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x28a5291, 0x0)
unshare(0x6020480)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000380)={0x0, r0}, 0x8)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000440)={'gre0\x00', &(0x7f0000000680)={'ip_vti0\x00', <r1=>0x0, 0x80, 0x30, 0x8, 0x7fffffff, {{0x26, 0x4, 0x2, 0x4, 0x98, 0x68, 0x0, 0x8, 0x29, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010101, {[@rr={0x7, 0x17, 0xab, [@loopback, @empty, @broadcast, @multicast1, @rand_addr=0x64010102]}, @generic={0x82, 0x12, "1044b359a8d9992ecee6c9cf6ea5afe7"}, @noop, @end, @timestamp_prespec={0x44, 0x54, 0xaa, 0x3, 0x8, [{@loopback, 0x42b40028}, {@loopback, 0x6e}, {@multicast1, 0x17c3dda7}, {@remote, 0xdc1c}, {@remote, 0x10}, {@multicast2, 0x1}, {@rand_addr=0x64010100, 0x1ff}, {@rand_addr=0x64010102, 0x8}, {@multicast2, 0x6}, {@rand_addr=0x64010101, 0x9}]}, @ra={0x94, 0x4, 0x1}, @end]}}}}})
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x5, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', r1, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0xffffffffffffff15, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1c1a0f4aa7a28384ff63fe1517fd"], 0x17)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r2}, 0x4)
r3 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = shmget$private(0x0, 0x13000, 0x1, &(0x7f0000feb000/0x13000)=nil)
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000a0db000000000000000000850000000e000000c50000002a0000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000500)=@gettaction={0xa0, 0x32, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@action_gd=@TCA_ACT_TAB={0x24, 0x1, [{0x10, 0x9, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'vlan\x00'}}, {0x10, 0x18, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x60, 0x1, [{0xc, 0xb, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x5}}, {0xc, 0x1d, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}, {0x10, 0xb, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0xc, 0x12, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x2}}, {0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0xc, 0x9, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xe77a}}, {0xc, 0x12, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x4}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8}]}, 0xa0}, 0x1, 0x0, 0x0, 0x4004010}, 0x44080)
shmat(r4, &(0x7f0000ff7000/0x3000)=nil, 0x400c)
munmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000)
renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffff9c, 0x0, 0x5)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)

7m20.041605564s ago: executing program 1 (id=2595):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000000)={0x3, 0x80, 0x6, 0x0, 0x8, 0x80, 0x7}, 0xc)
bind$bt_l2cap(r0, &(0x7f00000002c0)={0x1f, 0x80, @any, 0xfffa}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
syz_extract_tcp_res(&(0x7f0000000580)={<r1=>0x41424344}, 0x8147, 0x200)
syz_extract_tcp_res(&(0x7f00000005c0)={<r2=>0x41424344}, 0xff, 0x1)
syz_emit_ethernet(0x6a, &(0x7f0000000600)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x18, 0x5c, 0x64, 0x0, 0x55, 0x6, 0x0, @dev={0xac, 0x14, 0x14, 0x44}, @initdev={0xac, 0x1e, 0x0, 0x0}}, {{0x4e21, 0x4e22, r1, r2, 0x0, 0x0, 0x7, 0x10, 0xfffd, 0x0, 0x4, {[@exp_smc={0xfe, 0x6}]}}, {"a9584fad2efd778020b2854d8d74836df7d1639e4774f6b1e1e0378178f718150ac60cdaeb1f5848841bb4ce"}}}}}}, 0x0)
syz_emit_ethernet(0xfd2d, &(0x7f00000000c0)={@local, @broadcast, @void, {@canfd={0xd, {{0x3, 0x1, 0x0, 0x1}, 0x1d, 0x2, 0x0, 0x0, "181b2a0359bceb997e17f616a1b9fc58025d052ff1cb83d27062f386fe1f5365546fc8fbc18618c7a2a4cfc05dd26397eec2325003ab72e00fb2b3c8a93e78e1"}}}}, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r3, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r3, 0x8949, &(0x7f0000000000))
sendmmsg(r0, &(0x7f00000024c0)=[{{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000680)="aa", 0x1}], 0x1}}], 0x1, 0x30040040)

7m19.611554346s ago: executing program 1 (id=2597):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x5, 0x0, 0x0, 0x7fffff7f}]}) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x5, 0x0, 0x0, 0x7fffff7f}]})
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000500)={'gre0\x00', &(0x7f00000001c0)={'gretap0\x00', 0x0, 0x0, 0x1100, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x3d, 0x14, 0x0, 0x0, 0x0, 0x29, 0x0, @empty, @remote}}}})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2400, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x1, 0x5, 0x6000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x1, 0x5, 0x6000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_CREATE_DEVICE(r2, 0xc018aec0, &(0x7f00000000c0)={0x1})
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) (async)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
syz_io_uring_setup(0x4000233, 0x0, &(0x7f0000000080), &(0x7f0000000140))
setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f0000000200)='wg0\x00', 0x4)
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0) (async)
r3 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
fsmount(r3, 0x0, 0x0) (async)
r4 = fsmount(r3, 0x0, 0x0)
fchdir(r4) (async)
fchdir(r4)
io_uring_enter(r4, 0x335a, 0x0, 0x5a, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000002c0)='./binderfs2/binder1\x00', 0xc00, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000011c0)=@multiplanar_overlay={0xbc8c, 0xb, 0x4, 0x2000, 0x6, {0x77359400}, {0x3, 0x0, 0xf7, 0xa, 0x3, 0x81, "09da813f"}, 0x4, 0x3, {0x0}, 0x80})
sched_setscheduler(0x0, 0x5, &(0x7f0000000000)=0x407)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102) (async)
r5 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r5, &(0x7f0000000840)=[{&(0x7f0000000180)="94", 0x1}, {0x0}], 0x2)
ioctl$SNDCTL_SEQ_GETOUTCOUNT(0xffffffffffffffff, 0x4004510d, &(0x7f0000000000)) (async)
ioctl$SNDCTL_SEQ_GETOUTCOUNT(0xffffffffffffffff, 0x4004510d, &(0x7f0000000000))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, &(0x7f0000000100)={0x4, 0xffffff71, 0x3, 0xffffffffffffffff, 0x0, 0x0}) (async)
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, &(0x7f0000000100)={0x4, 0xffffff71, 0x3, 0xffffffffffffffff, 0x0, 0x0})
epoll_create(0xb)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r7 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r7, r6, &(0x7f0000002080)=0x64, 0x21c)
listen(r0, 0x9)

7m18.914474609s ago: executing program 33 (id=2597):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x5, 0x0, 0x0, 0x7fffff7f}]}) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x5, 0x0, 0x0, 0x7fffff7f}]})
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000500)={'gre0\x00', &(0x7f00000001c0)={'gretap0\x00', 0x0, 0x0, 0x1100, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x3d, 0x14, 0x0, 0x0, 0x0, 0x29, 0x0, @empty, @remote}}}})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2400, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x1, 0x5, 0x6000, 0x2000, &(0x7f0000fa3000/0x2000)=nil}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x1, 0x5, 0x6000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_CREATE_DEVICE(r2, 0xc018aec0, &(0x7f00000000c0)={0x1})
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) (async)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
syz_io_uring_setup(0x4000233, 0x0, &(0x7f0000000080), &(0x7f0000000140))
setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f0000000200)='wg0\x00', 0x4)
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0) (async)
r3 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
fsmount(r3, 0x0, 0x0) (async)
r4 = fsmount(r3, 0x0, 0x0)
fchdir(r4) (async)
fchdir(r4)
io_uring_enter(r4, 0x335a, 0x0, 0x5a, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000002c0)='./binderfs2/binder1\x00', 0xc00, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f00000011c0)=@multiplanar_overlay={0xbc8c, 0xb, 0x4, 0x2000, 0x6, {0x77359400}, {0x3, 0x0, 0xf7, 0xa, 0x3, 0x81, "09da813f"}, 0x4, 0x3, {0x0}, 0x80})
sched_setscheduler(0x0, 0x5, &(0x7f0000000000)=0x407)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102) (async)
r5 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r5, &(0x7f0000000840)=[{&(0x7f0000000180)="94", 0x1}, {0x0}], 0x2)
ioctl$SNDCTL_SEQ_GETOUTCOUNT(0xffffffffffffffff, 0x4004510d, &(0x7f0000000000)) (async)
ioctl$SNDCTL_SEQ_GETOUTCOUNT(0xffffffffffffffff, 0x4004510d, &(0x7f0000000000))
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, &(0x7f0000000100)={0x4, 0xffffff71, 0x3, 0xffffffffffffffff, 0x0, 0x0}) (async)
ioctl$VIDIOC_S_EXT_CTRLS(0xffffffffffffffff, 0xc0205648, &(0x7f0000000100)={0x4, 0xffffff71, 0x3, 0xffffffffffffffff, 0x0, 0x0})
epoll_create(0xb)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r7 = openat$sysctl(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r7, r6, &(0x7f0000002080)=0x64, 0x21c)
listen(r0, 0x9)

20.360439163s ago: executing program 4 (id=4318):
creat(&(0x7f0000000000)='./file0\x00', 0x60)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000004200)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x1812c09}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x20, 0x0, 0x8, {0x0, 0x3572111cb2a712f5}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x94}, 0x24000000)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4044050}, 0x40)
openat$dir(0xffffff9c, &(0x7f0000000bc0)='./file0\x00', 0x101200, 0x8)

20.250416114s ago: executing program 4 (id=4320):
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x139}}, './file0\x00'})
landlock_restrict_self(r0, 0x5) (async, rerun: 32)
r1 = syz_pidfd_open(0xffffffffffffffff, 0x0) (rerun: 32)
copy_file_range(r0, &(0x7f0000000040)=0x308d, r1, &(0x7f0000000080)=0x3, 0x9, 0x0) (async)
ioctl$SNDCTL_SEQ_SYNC(0xffffffffffffffff, 0x5101) (async, rerun: 32)
write$binfmt_aout(r0, &(0x7f00000000c0)={{0xcc, 0x40, 0x80, 0x122, 0x205, 0x57, 0x1f3, 0x10}, "7637e9c9068dc467f8872d477b2b30ce9289c6366a8682f34a882b1056c8e336c0739a", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x543) (async, rerun: 32)
ioctl$SNDCTL_SEQ_CTRLRATE(r0, 0xc0045103, &(0x7f0000000640)=0x7ff) (async, rerun: 32)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x30910012}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x40, r3, 0x821, 0x70bd2b, 0x25dfdbfc, {}, [@NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x40}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xdcda}]}, 0x40}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000) (async)
r4 = openat$sequencer2(0xffffff9c, &(0x7f00000007c0), 0x40, 0x0)
ioctl$SNDCTL_SEQ_GETINCOUNT(r4, 0x80045105, &(0x7f0000000800)) (async)
ioctl$SNDCTL_SEQ_RESET(r4, 0x5100) (async)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000840)={0x0, @in={{0x2, 0x4e24, @local}}}, &(0x7f0000000900)=0x84)
r5 = openat$sequencer2(0xffffff9c, &(0x7f0000000940), 0x503000, 0x0)
ioctl$SNDCTL_SEQ_RESET(r5, 0x5100) (async)
r6 = syz_init_net_socket$x25(0x9, 0x5, 0x0) (async, rerun: 32)
ioctl$SNDRV_TIMER_IOCTL_PVERSION(r0, 0x80045400, &(0x7f0000000980)) (async, rerun: 32)
sendmsg$TIPC_CMD_DISABLE_BEARER(r0, &(0x7f0000000a80)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x2c, 0x0, 0x400, 0x70bd2c, 0x25dfdbfe, {{}, {}, {0x10, 0x13, @udp='udp:syz0\x00'}}, ["", "", "", "", ""]}, 0x2c}}, 0x4000000) (async)
ioctl$KVM_SET_SREGS2(r0, 0x4140aecd, &(0x7f0000000ac0)={{0x0, 0x0, 0x0, 0x2, 0xa, 0x0, 0x8, 0xe4, 0x80, 0x5, 0x8, 0x7}, {0x8000000, 0x7000, 0x0, 0x6, 0xb9, 0x5, 0x8, 0x9, 0x8, 0x20, 0x7d, 0x52}, {0xdddd0000, 0x4, 0x10, 0x6, 0x6, 0xa, 0xa6, 0x1, 0xfd, 0x6, 0x1}, {0x50000, 0xe000, 0x8, 0x2, 0x6, 0x6, 0xd, 0xf1, 0x6, 0x3b, 0xc0, 0x2}, {0xe000, 0x0, 0x4, 0x8, 0x2, 0x40, 0xfe, 0xf9, 0x81, 0x91, 0x6, 0x7}, {0x54000, 0xeeee8000, 0xc, 0x0, 0xd0, 0xf, 0x81, 0x3, 0x4, 0x31, 0xa, 0x39}, {0x25000, 0x1000, 0x9, 0xb, 0x4, 0x8, 0x1, 0x6, 0x3, 0x3}, {0x0, 0x1, 0x8, 0xeb, 0x4, 0x8, 0x4, 0x85, 0x37, 0xff, 0x0, 0xb}, {0xf000, 0x8000}, {0x4, 0x6}, 0x8, 0x0, 0x2000, 0x2002ca, 0x7, 0x5981, 0xdddd0000, 0x0, [0xffffffffffffffff, 0x0, 0x1a, 0x40]})
ioctl$SIOCNRDECOBS(r0, 0x89e2) (async)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000c00)={0xc, 0x0, <r7=>0x0})
ioctl$IOMMU_IOAS_ALLOW_IOVAS(r0, 0x3b82, &(0x7f0000000cc0)={0x18, r7, 0x6, 0x0, &(0x7f0000000c40)=[{0x0, 0x3}, {0x3, 0x9b}, {0x3be87e4d, 0xb695}, {0xda, 0x10001}, {0x5, 0x2}, {0x0, 0x7fff}]}) (async, rerun: 64)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000d40)=<r8=>0x0) (rerun: 64)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000d80)=<r9=>0x0)
sendmsg$NFC_CMD_GET_DEVICE(r2, &(0x7f0000000e40)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000dc0)={0x24, 0x0, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r8}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r9}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x4000081)
fsetxattr(r6, &(0x7f0000000e80)=@random={'security.', '/dev/sequencer2\x00'}, &(0x7f0000000ec0)='udp:syz0\x00', 0x9, 0x2) (async)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f0000000f00)) (async, rerun: 32)
r10 = openat$comedi(0xffffff9c, &(0x7f0000000f40)='/dev/comedi3\x00', 0x2, 0x0) (rerun: 32)
ioctl$COMEDI_SETWSUBD(r10, 0x6411)

20.189489577s ago: executing program 4 (id=4321):
syz_emit_ethernet(0x43, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c2bbbbbb0800450000ad0900000000029078ac1e0001e0000001117c9078e0000001330bce41a4267b7a67a600f21965469760df5d0119de93273c7e1246c70f849a73482d8140391e852e8fedb047c6bf3bae06aff27c3ccac963d09db47746884326ef9dc69a8f483ef22b80b5353a91638d963a97de89c8d3413bf66456bbc54ff5ea0d04cc4a7fb78cc5941bb7f40d0583352cd0cd15ddff0fc6ec1b51f037000000000000"], 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sndpcmc(&(0x7f0000000100), 0x5, 0x200000)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r1, 0x80104132, &(0x7f0000000140))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x3, 0x0, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r2 = syz_io_uring_setup(0x44cd, &(0x7f00000004c0)={0x0, 0x5331, 0x10100, 0x1000006, 0xfffefffe}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cgroup.freeze\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1})
io_uring_enter(r2, 0x2d3e, 0xec84, 0x0, 0x0, 0x0)
openat$fuse(0xffffff9c, &(0x7f00000000c0), 0x2, 0x0)

20.130391414s ago: executing program 4 (id=4323):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000180)=0x6f)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}, 0x1c)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002500)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0x146, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)

19.772106156s ago: executing program 4 (id=4326):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vxcan0\x00'})
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000), 0xa4)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPIOCSFLAGS(r2, 0x40047459, &(0x7f00000003c0)=0x220420c)
open(&(0x7f0000000340)='./file0\x00', 0x0, 0x1d8)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000180)=0x6f)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}, 0x1c)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1f, 0xe, &(0x7f0000000880)=ANY=[@ANYRES64, @ANYRESHEX=r0], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x14}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0x146, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)

18.898003596s ago: executing program 4 (id=4329):
openat$comedi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/comedi2\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000680)={0x8, 0x7, 0x0, 0xfffffffffffffff9, 0x916, 0xae3, 0x7, 0x8}, 0x0, 0x0, &(0x7f0000000740), 0x0)

16.779854116s ago: executing program 0 (id=4345):
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x801, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x84)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="7a0a00ff00000000711070000000000095000000a477b7af"], &(0x7f0000000480)='syzkaller\x00'}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
mount(&(0x7f00000000c0)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000000)='iso9660\x00', 0x208000, 0x0)
r3 = syz_io_uring_setup(0x496, &(0x7f0000000f80)={0x0, 0x79af, 0x3180, 0x7ffc, 0x40024e}, &(0x7f0000000340), &(0x7f0000000080))
syz_io_uring_setup(0x641a, &(0x7f0000000300)={0x0, 0x235d, 0x10100, 0x0, 0x400002d8, 0x0, r3}, &(0x7f0000000200)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000140)=@IORING_OP_UNLINKAT={0x24, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x200, 0x1})
io_uring_enter(r3, 0x627, 0x4c1, 0x43, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f00000004c0)=""/216, 0xd8}, {&(0x7f00000006c0)=""/100, 0x64}, {&(0x7f0000000740)=""/104, 0x68}, {&(0x7f0000000880)=""/234, 0xea}], 0x4, 0x2, 0x5)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18}, './file0\x00'})
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000400)={&(0x7f0000000980)={0x22c, r6, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_NET={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x93}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xf0}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xcd1d}]}, @TIPC_NLA_NET={0x18, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8}, @TIPC_NLA_NET_NODEID_W1={0xc}]}, @TIPC_NLA_MEDIA={0x108, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc33d}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfb}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x613}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x71b76de}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xf13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xb05}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}]}, @TIPC_NLA_LINK={0x7c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6dc7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x12c}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x200}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}]}, @TIPC_NLA_NET={0x28, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0xffffffffffffffb9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x929}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xbad}]}, @TIPC_NLA_NET={0x30, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x6db7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xfffffffffffffffb}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xffffffff}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6bd1}]}]}, 0x22c}, 0x1, 0x0, 0x0, 0x4}, 0x8001)
mkdir(&(0x7f0000001c00)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x800400, &(0x7f0000000100)={[{@usrquota}, {@usrquota_block_hardlimit={'usrquota_block_hardlimit', 0x3d, [0x38]}}]})
chown(0x0, 0xee00, 0x0)
shutdown(r1, 0x0)
epoll_create1(0x80000)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000080)=0x74000000)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, 0x0, &(0x7f0000000100))
write$dsp(r0, &(0x7f0000002000)='`', 0x88020)
bind$alg(0xffffffffffffffff, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(streebog256-generic)\x00'}, 0x58)

13.798541248s ago: executing program 0 (id=4347):
write$dsp(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$sndctrl(0x0, 0x0, 0x801)
connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x4e21, @rand_addr=0x64010102}, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, 0x0, &(0x7f0000000240))
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r1)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000340)={'wpan0\x00'})
syz_io_uring_setup(0x5ce, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x1000, 0x103)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x80800, 0x0)
r4 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x5]}, 0x8)
mount$9p_fd(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x10, &(0x7f00000004c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
creat(&(0x7f0000000080)='./file1\x00', 0x18a)

12.809179553s ago: executing program 0 (id=4350):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) (async)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
read$FUSE(0xffffffffffffffff, &(0x7f0000000480)={0x2020, 0x0, 0x0, <r1=>0x0}, 0x2020)
quotactl_fd$Q_GETNEXTQUOTA(r0, 0xffffffff80000902, r1, &(0x7f0000000300))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) (async)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe) (async)
mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="1400000016000b63d25a80648c2594f91124fc60", 0x14}], 0x1}, 0x0)
bind$bt_l2cap(r0, 0x0, 0x0)
listen(r0, 0x0)
shutdown(r0, 0x1)
fsopen(&(0x7f0000000040)='ocfs2\x00', 0x1)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, 0x0, 0xc000)

12.373104506s ago: executing program 0 (id=4353):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = eventfd(0x5)
write$eventfd(r1, &(0x7f0000000240)=0xfffffffffffffffa, 0x8)
read$eventfd(r1, &(0x7f0000000200), 0x8)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0xfffc, @broadcast}, 0x2}}, 0x2e)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x1000000a, 0x8b}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c20000000180c200000208004500002c0000e7000011907800000000000000000000000000189078a20c0001000000009dc6f94df642dfe3"], 0x0)
syz_emit_ethernet(0xa2, &(0x7f0000001b00)={@broadcast, @multicast, @void, {@ipv4={0x800, @tipc={{0x14, 0x4, 0x1, 0x3b, 0x94, 0x67, 0x0, 0x8, 0x6, 0x0, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ssrr={0x89, 0x7, 0xa3, [@loopback]}, @generic={0x83, 0x7, "85c89df7c8"}, @generic={0x86, 0xc, "bf76c3c2d0cafbb7b79a"}, @timestamp={0x44, 0x8, 0x8b, 0x0, 0x5, [0x1]}, @lsrr={0x83, 0xb, 0xfb, [@dev={0xac, 0x14, 0x14, 0x3f}, @multicast2]}, @timestamp={0x44, 0xc, 0xa6, 0x0, 0x4, [0xd7, 0x9]}]}}, @name_distributor={{0x44, 0x0, 0x0, 0x0, 0x1, 0xa, 0xb, 0x2, 0x81, 0x0, 0x0, 0x8, 0x48, 0x4, 0x4e22, 0x4e21}, [{0xfffffff8, 0x5, 0x7, 0x3, 0x8000000, 0x2, 0xe, 0x6}]}}}}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
migrate_pages(0x0, 0x1ef9, &(0x7f0000000140)=0x6067, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x79af, 0x8, 0x0, 0x272}, &(0x7f0000000340)=<r6=>0x0, &(0x7f0000000040)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
r8 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r8, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(r8, &(0x7f00000001c0)='O', 0x1, 0x80, 0x0, 0x0)
shutdown(r8, 0x1)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r8, 0x0, 0x0, 0x0, 0x10, 0x1})
io_uring_enter(r5, 0x627, 0x4c1, 0x43, 0x0, 0x0)
write(r0, &(0x7f0000002580)="8adc6364fa280e2e2208a887ac9e37d116546fca1589b50ecba8ed4143c3858c8a9b05a16f7a60b4be062081a61399232f762934f2ec27855db861083a584a75b5cd5effdf972dc26ad98ee4aa25b6f849080a258b8672af9e8229ec2a2acefc830221f349b2d734c18cce117ac950547969594ccef9e7fc4b761fac1984a7dc4fa0894a587481b23a194b8160b921b1f130352991db0abaf161d1f7e8ebe66d5e3ffa2d1756b866d73f3fbc8f33ee56dc60f8a61518029eeee82d83421a5280822940c3ca3e2a8e03afa658adc088bcc21a7b449f57dd0ee424ff33d7351ec2732b769138a8e930570af4b342cb753aebbad79e7f8bbc0c3001587cd1678776b44c846698a9d242312b8fe3f94e9f30340af76a58df3a1ec48f90e1e0a695fd3ec371d64b6af0a9051e6faaa93d28799a516b9066aba6d5f0b5ccd7c502141b3170b7fdc026b775fb3a92da441a61e9dd90ce213d4cda7f6b13255488391f2821b550f979f97c601e0d5014c6a92a851cf9649fed0e3ba1b01a93066a1f22e41a293862be83122e16b26d10d43ac450d50cb7b65fc6f362ccdc7fe0c70941099b597b7fc904b4841babf8b1f41b2b8890ecbbb069705546bd60bca1e3f724a7233b091c71f45da78e16e972174d144735cbd209a7e8de2c1845f234be206f365872e512967f7671e2e0d8a6edfc5933b50b3e9374767a1b184445d60935556ca9b208e83f7f7ebe66ef71bb23cda895feb048ac89b0e50d376eca0de1cefaf4085b2dfcef5ca2e7cabd93f2706d6e14c0f2d5ff35121acde909082bfc3bdefe4fe66bde9266dd5493c274f418a0ccc9c40447e18770f391f522c04754cef6c44dd8b9dd4f6055830617b15c269f8e8ff2373e060844a16aa161d0d5a150452f268b74c453ac155b23572e2c2a9a964c180d1660e71b3c7337510bb7868a072250b509d74e8c885e3c5bc02a067d01346ba67e06053cb45307459722dbc218af8ab2e0056240a517d38c72366b344b9d117d88d81558f1a81daec303f6be2963e7bf162b7d299b194664c652eedfd160668e9b76eda03968d3b3d8c1b1765956693ac2e8645792d36ab772af3955ea2ddc525a5800d50af88b32cca2591e01411d6da79373b3d5764e2abf3e7412eab33ee9bddec778ce698bbd0f849fcd54cc6b870ccaf16b288e30e23f37840ea81e2195ebb1bc4bf67275c9b92784eb694e720d56eb3f455c9f178015496ae08b5ab324bd8506ba95f4ff2ace444311bc897e191297fd9103bb9cad53640d8a70f8eea789110c7a13c9cadf81911cdb70fa810611ef2ff32f3eb5c8bdcf0ad6869e9138aeca2b50d2e773e5b31ed74723290cf37261b0496326a623eaa7a0f7ff829cd26057595dcb054834a9ef52ce139de2dc568d1865c74adf465c2787075b8bbe973dba0eff709e7675f1718c68f5c5458e5c30e96dbae10d647aa2255513cb65cdddbe5cfba42e5fa2c63f739ab317f9e4cc2ea0ae6dd5beca125ee9ac8390058a01eabd84f692481cfbc9e0572eaf1385983d9fe32ff496364cca3e4d68e471df6781c2e5ed7ecbf984233a5cb61db3c5804cde1f7cc210c46be80cd9fcc7a76313043515315ef5f4907067eb938792e78990e90886fb41336e5f7149d7a58a69ff71d05d9f2864439c8ac5d7b0923c08b5f2c819c6ed70ae414d4f14c985e44894fc077acc04b192477930875a6f11801fc8abc0be6cfb26a779ac130b23bed6e9f2b5995a28c2a83ca0ed3e34312dfbae10356ec01db4a67a29f905ad6093bd77ecd93172ddaac662989bbe586643450000dd5eb57a76c5027acfc8c3b6ef4b0b5d64541338e713a02ff52c9babed4090f56de7ae8533c2e36b574627264d641817cbb12cf5aed3220306065a4793fc482a4ea4430cbdc64596e226bcf40202656a9e0671ca6a84d78632110141a603b3d139359526d4b626617595b4b6f2bdbd0c7eabc1d6e011068855b46c6f7b7dd9622ef470a571e0a8cf5a24c95a006050144df88c25c895ffd9e67d13c910b3f83053109523370c61e0fc9db46ddd337b2bbc82414bd9dafcb45aa60008cb40e7ab7d1dc337e43decfa9ded0c6029a7741ef37a05017eb7b02692beab04b5c292869f09fd68b332a02a47765040ac40c478f0b600dcf924a1fc2f0af5dd54c2fc2db497017db43065f4d04a8984b6152c952b907c8cc199ee0f6e429d0f454071b2814e10b430e7963d015683f509b945d82a16d600534760c5c189adbb02a3f2317d92fb0b3c0afba90b619119dfd1b7562abe43ba82af37d2fed7eb01835e324ed859e77f2fe526fcdb46dc660f83c10fcddd64f5c99af599fc29acae9bbeeb5dbbec817fa0f26fef35d94472f97c6797e625869cc16ca9882788d4dde0989ef0f77dec235b155f3e274f6284a87835bb16418e611cbb2f9c3cb2ba67335e80594b3944510f44c2098d576da76bdf441dc0ae7cb82c75ad54e630759e47b2375e2779764634ed16216f6a64366eb53363e43f3262ab50bd6601f8098c4862328d91b6a4708a3b71f011f890da25e9bf03a7819bb20ffba9957b2bb99a04d5ddd855e9fc78b269139a23792dcf1e4446274bdc77d35c6c88847c3588b0f0b7ca7a46ea348aa6ce7059cb6eea40797a90cc62f070a5d29ea3976864c8d45e011794b5df38b97f8529079bc28ddb4c8fbc96a3ec91cf93d0141c2877f2caa69f782ff67b6298b8ac054ce0234ff953c3f675f68f20d86e41a7b53c2a32446207028baee37dd6df46033df6694857a7339b924f289008885b4a6ef0ab686217421ca531f069ad25f16afe050c0f256216cd17befac7e92545417311567ccf141553ed99d4450778b08b75ff98c78556b39f3fdb34c7fc9e833374e966e587737962696f0d30ba04b665e7c0c38dee0fd3017d4a87efcc9611015b1b0c943c216ab980effbf64683878be24279f4d0525aeb7b2f628fa658cf7e1babdd6fe63049442a06fc97d0fbcc7635f1b52fba3146c62daf47caa063c14c3e0375a74563646e24d5379373e1f150ebdedf4367cbc8e87ee98b864224326bfa536d959749c6368d2fbe413de5b4a0c2b62a0e1673ab6cfb84eb78a246cc7bb6df1871c7d68ddf529d05e554490af31d394f6d01d787a8ffa92598d27480e4b4f39ad901639ae400351295db96dee8773dcd2f77d92c8ea08c4a6a174b54a131fd0ddc18cfdd9e056b104f26eb868caf17d10502f1026cc0668cdd289898b11559425d6d904d8d6c0e9e89bf0343d6fb543b720a000007dbed1e21fbc901db7f249ea96c6dbe1d9945401dd92754b96d3a5f2a55ea9d23e5f69d50dc77f826d3957ad71b4ac8a120684584ff10bc05ecd0df41532562abf07ac46398c80459be972442c170d6b751682038dc98f39b7127c2794ec6fe167d207fcd0e9f9b8cec54c764eb2c21aa1e636708b810afaf827675e58c1a5c87fc2f3fae8a4cfc5c5cb24e66be8d7b57228450713d36c0ce58cc2dd14844bab0c8bcdde6d5659f5c0800c0b94eb1ac39643a1ca175c3f076318ff1a938c728ad7c4851ea57eecbf7343f05796192aeed59dd025abd3c1fd7b1b941c75e0dccb5e0720e47fb9211dbda020d421952ca5c141c5cce0c500d236db212db80284b9b7e2ef0cec216dd099037378c12a73164f2c24144db5dd66b438ab03f22e5367986268e254f77eaeedeb37cd33b6a3e8abcb93ca5c98c026e256c5c002dcfe9087d55304222834331ef53b667b4cd87cc1afeaa7e674e2eeb1a8225125295715302d958eccfed994fb67ebcfe9bb8807f067916c650962b7dcf664998b746189dda81f30d61888fca5b60e65b15d65f878df9c60fa957c2314e11e208980554a9066a4ff0d5ff82fed2ce737234acb2de86fd4f50c8c74d3446949703de811da78dd2cfb4ea3bfa7ea5efd02f8eec67eb64a656685d035bc67b20b7a8c02e0d65cc714fc9304a1b7174b79e95116900eaef2fe00f1f833b1184009bdfb699377fcfaef65d31a7350d587f47ed725e11c3d84c5d67a7efa47d95daa24ed867486361ff9e5914b8fcdbd753d9d62aa972e691582c901652e4ab546b90a46bd41c53e4ff16a935161a627dc3f61b0371a6e45c", 0xb64)

11.28681474s ago: executing program 0 (id=4364):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vxcan0\x00'})
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000), 0xa4)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
r2 = socket$pppoe(0x18, 0x1, 0x0)
ioctl$PPPIOCSFLAGS(r2, 0x40047459, &(0x7f00000003c0)=0x220420c)
open(&(0x7f0000000340)='./file0\x00', 0x0, 0x1d8)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000180)=0x6f)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}, 0x1c)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1f, 0xe, &(0x7f0000000880)=ANY=[@ANYRES64, @ANYRESHEX=r0], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x14}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0x146, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)

10.362317923s ago: executing program 0 (id=4367):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
socket(0x10, 0x803, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x101002, 0x0)
ioctl$TIOCSTI(r4, 0x5412, 0x0)
r5 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r5, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @loopback}, 0xc)
r6 = socket$netlink(0x10, 0x3, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0xd, &(0x7f0000000480)=@raw=[@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffa}}], &(0x7f0000000000)='syzkaller\x00', 0x4000, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080)={0x0, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200000}, 0x94)
writev(r6, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r6, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_mreqsrc(r5, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)
clock_getres(0x6, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x5c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x5c}}, 0x0)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f00000001c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, 0x7, 0x6, 0x801, 0x0, 0x0, {0x7, 0x0, 0x3}, [@IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x9}, @IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0xf84}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000840}, 0x8005)

3.369283306s ago: executing program 34 (id=4329):
openat$comedi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/comedi2\x00', 0x0, 0x0)
pselect6(0x40, &(0x7f0000000680)={0x8, 0x7, 0x0, 0xfffffffffffffff9, 0x916, 0xae3, 0x7, 0x8}, 0x0, 0x0, &(0x7f0000000740), 0x0)

2.879508678s ago: executing program 5 (id=4390):
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_GET_STATS_FD_cpu(r0, 0xaece) (async)
r1 = ioctl$KVM_GET_STATS_FD_cpu(r0, 0xaece)
ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000000))
openat$binderfs(0xffffff9c, &(0x7f0000000040)='./binderfs/custom0\x00', 0x800, 0x0) (async)
openat$binderfs(0xffffff9c, &(0x7f0000000040)='./binderfs/custom0\x00', 0x800, 0x0)
r2 = syz_io_uring_setup(0x9eb, &(0x7f0000000080)={0x0, 0x5fa6, 0x2000, 0x0, 0x165, 0x0, r1}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
io_uring_setup(0x386, &(0x7f0000000180)={0x0, 0xdbe8, 0x20, 0x1, 0x34d, 0x0, r2}) (async)
r5 = io_uring_setup(0x386, &(0x7f0000000180)={0x0, 0xdbe8, 0x20, 0x1, 0x34d, 0x0, r2})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r6=>0x0})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f00000002c0)={'syztnl0\x00', &(0x7f0000000240)={'syztnl1\x00', <r7=>r6, 0x2f, 0xec, 0x8, 0x5, 0x1, @private1={0xfc, 0x1, '\x00', 0x1}, @remote, 0x20, 0x10, 0xfffffffe, 0x80000000}})
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) (async)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xd, 0x0, {0x0, r8}})
ioctl$VIDIOC_SUBDEV_DV_TIMINGS_CAP(r1, 0xc0905664, &(0x7f0000000340)={0x0, 0x0, '\x00', @raw_data=[0xe, 0x5, 0x40, 0x9, 0xd91, 0x1, 0x7ff, 0x5, 0x6, 0x4, 0xf, 0xfffffffe, 0x800, 0x5, 0x0, 0x2, 0x1000, 0x3, 0x2, 0xffff, 0x3, 0x9, 0x1ff, 0x10000, 0x1ff, 0x8, 0x8, 0x3, 0x0, 0x3a, 0x200, 0x3]}) (async)
ioctl$VIDIOC_SUBDEV_DV_TIMINGS_CAP(r1, 0xc0905664, &(0x7f0000000340)={0x0, 0x0, '\x00', @raw_data=[0xe, 0x5, 0x40, 0x9, 0xd91, 0x1, 0x7ff, 0x5, 0x6, 0x4, 0xf, 0xfffffffe, 0x800, 0x5, 0x0, 0x2, 0x1000, 0x3, 0x2, 0xffff, 0x3, 0x9, 0x1ff, 0x10000, 0x1ff, 0x8, 0x8, 0x3, 0x0, 0x3a, 0x200, 0x3]})
openat$binderfs(0xffffff9c, &(0x7f0000000400)='./binderfs2/binder0\x00', 0x800, 0x0)
gettid() (async)
r9 = gettid()
process_vm_writev(0x0, &(0x7f00000005c0)=[{&(0x7f0000000440)=""/229, 0xe5}, {&(0x7f0000000540)=""/107, 0x6b}], 0x2, &(0x7f0000002880)=[{&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f0000001600)=""/166, 0xa6}, {&(0x7f00000016c0)=""/4096, 0x1000}, {&(0x7f00000026c0)=""/39, 0x27}, {&(0x7f0000002700)=""/91, 0x5b}, {&(0x7f0000002780)=""/218, 0xda}], 0x6, 0x0)
getpgid(r9) (async)
r10 = getpgid(r9)
r11 = getpid()
setpgid(r10, r11)
read$FUSE(r1, &(0x7f00000028c0)={0x2020, 0x0, 0x0, 0x0, 0x0, <r12=>0x0}, 0x2020)
wait4(r12, &(0x7f0000004900), 0x2, &(0x7f0000004940))
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000004a80)={r1, 0x58, &(0x7f0000004a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r13=>0x0}}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000004b40)={'syztnl2\x00', &(0x7f0000004ac0)={'syztnl2\x00', <r14=>0x0, 0x29, 0x5, 0x0, 0x2e1, 0x58, @mcast1, @mcast1, 0x700, 0x7800, 0x4, 0x1}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000004c00)={'gretap0\x00', &(0x7f0000004b80)={'syztnl0\x00', r7, 0x10, 0x7, 0x1000, 0x7, {{0x12, 0x4, 0x1, 0x5, 0x48, 0x64, 0x0, 0x7f, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, {[@timestamp={0x44, 0x28, 0x54, 0x0, 0x9, [0x5, 0x2, 0x4d, 0x10, 0x6, 0x9, 0x1, 0x5, 0x4]}, @rr={0x7, 0xb, 0x3e, [@multicast1, @private=0xa010100]}]}}}}}) (async)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000004c00)={'gretap0\x00', &(0x7f0000004b80)={'syztnl0\x00', <r15=>r7, 0x10, 0x7, 0x1000, 0x7, {{0x12, 0x4, 0x1, 0x5, 0x48, 0x64, 0x0, 0x7f, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, {[@timestamp={0x44, 0x28, 0x54, 0x0, 0x9, [0x5, 0x2, 0x4d, 0x10, 0x6, 0x9, 0x1, 0x5, 0x4]}, @rr={0x7, 0xb, 0x3e, [@multicast1, @private=0xa010100]}]}}}}})
sendmsg$TEAM_CMD_OPTIONS_GET(r1, &(0x7f0000005380)={&(0x7f00000049c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000005340)={&(0x7f0000004c40)={0x6e8, 0x0, 0x800, 0x70bd27, 0x25dfdbfe, {}, [{{0x8, 0x1, r7}, {0xdc, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r6}}}, {0x64, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x34, 0x4, [{0x8, 0x9, 0x3, 0x91}, {0x48, 0x2d, 0x29, 0x7fff}, {0xfff7, 0x0, 0x0, 0x6}, {0x2, 0x4, 0xd, 0x8}, {0x0, 0x90, 0x9, 0x7fff}, {0x1, 0x0, 0x3, 0x2}]}}}]}}, {{0x8, 0x1, r7}, {0x184, 0x2, 0x0, 0x1, [{0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r7}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r7}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r7}}}, {0x5c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x2c, 0x4, [{0x4, 0x4, 0x6, 0xd}, {0x3, 0x7f, 0x0, 0x9}, {0x8c, 0x9, 0x7, 0x7fff}, {0x9, 0x2e, 0x7, 0x7}, {0x5, 0x4, 0x1, 0x1}]}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}]}}, {{0x8, 0x1, r7}, {0xd0, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8, 0x6, r13}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r7}}, {0x8}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}]}}, {{0x8, 0x1, r7}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r14}}}]}}, {{0x8, 0x1, r7}, {0x1b4, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r6}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8, 0x6, r15}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x2}}, {0x8, 0x6, r6}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r7}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r6}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xc01}}}]}}, {{0x8, 0x1, r7}, {0x12c, 0x2, 0x0, 0x1, [{0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r6}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r7}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}]}}, {{0x8, 0x1, r7}, {0x50, 0x2, 0x0, 0x1, [{0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}]}}]}, 0x6e8}, 0x1, 0x0, 0x0, 0x44}, 0x200000c4)
setsockopt$MRT6_FLUSH(r1, 0x29, 0xd4, &(0x7f00000053c0)=0x5, 0x4) (async)
setsockopt$MRT6_FLUSH(r1, 0x29, 0xd4, &(0x7f00000053c0)=0x5, 0x4)
socket(0x3a, 0xa, 0x5c)
preadv(r1, &(0x7f0000006400)=[{&(0x7f0000005400)=""/4096, 0x1000}], 0x1, 0x4, 0x8)
syz_init_net_socket$llc(0x1a, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000006480), 0xffffffffffffffff) (async)
r16 = syz_genetlink_get_family_id$nl80211(&(0x7f0000006480), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000006640)={&(0x7f0000006440)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000006600)={&(0x7f00000064c0)={0x11c, r16, 0x400, 0x70bd29, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x41e8, 0x5}}}}, [@NL80211_ATTR_TID_CONFIG={0xfc, 0x11d, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xf2}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x72}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xdf}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x92}]}, {0x28, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x8d}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x6}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}]}, {0x30, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xe4}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x86}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x98}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x9}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x29385b18}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}]}]}]}, 0x11c}, 0x1, 0x0, 0x0, 0x8001}, 0x20008000)
add_key$user(&(0x7f0000006680), &(0x7f00000066c0)={'syz', 0x1}, &(0x7f0000006700)="29580e06cd2cf01a616ba45969367e88e0e3041ba006939b75d96cd4280cc1c96365e2271a65496bc50ade50503ee9f0514223239cecca96a18c3b0acc82e5407d5251ba38bbe0413d06677f6ae4e2c16b1acecb922d09bdaebde983349924b7ab93c5fdf97f330a89c84c5a54f5ccc6c2354d9e0c96720f72f2d75c3aa9f221ac27ef31705234652399d06eab0c7171394aabc75dce69709e41f6f4cbc0e6a02f88850219fb9cca59d47369f468096ef7b98a71", 0xb4, 0x0)

2.801252047s ago: executing program 5 (id=4392):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = eventfd(0x5)
write$eventfd(r1, &(0x7f0000000240)=0xfffffffffffffffa, 0x8)
read$eventfd(r1, &(0x7f0000000200), 0x8)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0xfffc, @broadcast}, 0x2}}, 0x2e)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x1000000a, 0x8b}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c20000000180c200000208004500002c0000e7000011907800000000000000000000000000189078a20c0001000000009dc6f94df642dfe3"], 0x0)
syz_emit_ethernet(0xa2, &(0x7f0000001b00)={@broadcast, @multicast, @void, {@ipv4={0x800, @tipc={{0x14, 0x4, 0x1, 0x3b, 0x94, 0x67, 0x0, 0x8, 0x6, 0x0, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ssrr={0x89, 0x7, 0xa3, [@loopback]}, @generic={0x83, 0x7, "85c89df7c8"}, @generic={0x86, 0xc, "bf76c3c2d0cafbb7b79a"}, @timestamp={0x44, 0x8, 0x8b, 0x0, 0x5, [0x1]}, @lsrr={0x83, 0xb, 0xfb, [@dev={0xac, 0x14, 0x14, 0x3f}, @multicast2]}, @timestamp={0x44, 0xc, 0xa6, 0x0, 0x4, [0xd7, 0x9]}]}}, @name_distributor={{0x44, 0x0, 0x0, 0x0, 0x1, 0xa, 0xb, 0x2, 0x81, 0x0, 0x0, 0x8, 0x48, 0x4, 0x4e22, 0x4e21}, [{0xfffffff8, 0x5, 0x7, 0x3, 0x8000000, 0x2, 0xe, 0x6}]}}}}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
migrate_pages(0x0, 0x1ef9, &(0x7f0000000140)=0x6067, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x79af, 0x8, 0x0, 0x272}, &(0x7f0000000340)=<r6=>0x0, &(0x7f0000000040)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
r8 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r8, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(r8, &(0x7f00000001c0)='O', 0x1, 0x80, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @private2}, 0x1c)
shutdown(r8, 0x1)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r8, 0x0, 0x0, 0x0, 0x10, 0x1})
io_uring_enter(r5, 0x627, 0x4c1, 0x43, 0x0, 0x0)
write(r0, 0x0, 0x0)

2.591078298s ago: executing program 2 (id=4393):
r0 = socket$unix(0x1, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f0000000180)=0x4, 0x4)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e)
r2 = socket$kcm(0x2, 0x3, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x1d8)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000a40)=ANY=[@ANYBLOB="1801000000050000000000000000ea0485000000d000000095"], &(0x7f0000000a00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
socket(0x22, 0x2, 0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r4 = syz_io_uring_setup(0x24f6, &(0x7f0000000b80)={0x0, 0x0, 0x800, 0x3, 0x33a}, &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000480)=<r6=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r7 = socket$can_bcm(0x1d, 0x2, 0x2)
r8 = syz_io_uring_setup(0x835, &(0x7f00000000c0)={0x0, 0x679d, 0x400, 0x2000003, 0x3ce}, &(0x7f0000000040)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r9, r10, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x0, 0x0})
io_uring_enter(r8, 0x3516, 0xfe, 0x41, 0x0, 0x0)
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r11, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r11, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x8})
socket$inet6_sctp(0xa, 0x1, 0x84)
io_uring_enter(r4, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a09040000000000000000020000000900010073797a30000000000900020073797a3200000000380000001c0a050000000000000000000200000a0c00034000000000000000420900020073797a32000000000900010073797a30"], 0x8c}}, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0xc0189436, &(0x7f0000000000)={'virt_wifi0\x00', @random="8dffffff0600"})

2.491428612s ago: executing program 2 (id=4394):
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip6_flowlabel\x00')
r1 = fsopen(&(0x7f0000000280)='hfsplus\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(0xffffffffffffffff, 0x0, 0x84)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x442, 0x1ff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], 0x0, 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
recvmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f00000006c0)=""/83, 0x53}, 0x4}, {{&(0x7f0000000740)=@in={0x2, 0x0, @multicast1}, 0x80, &(0x7f0000000800), 0x0, &(0x7f0000000b40)=""/99, 0x63}, 0x2}, {{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000003300)=""/4100, 0x1004}, {&(0x7f0000000c80)=""/80, 0x50}], 0x2, &(0x7f0000000480)=""/234, 0xea}, 0x4}, {{0x0, 0x0, 0x0}, 0x7fffffff}, {{0x0, 0x0, 0x0}, 0x8}, {{&(0x7f0000001480)=@phonet, 0x80, &(0x7f0000001980)=[{&(0x7f0000001500)=""/171, 0xab}, {&(0x7f00000015c0)=""/231, 0xe7}, {&(0x7f00000016c0)=""/150, 0x96}, {&(0x7f0000001800)=""/26, 0x1a}, {0x0}, {&(0x7f0000001940)=""/49, 0x31}, {0x0}], 0x7, &(0x7f0000002b40)=""/195, 0xc3}, 0xa}, {{&(0x7f0000002c40)=@nfc_llcp, 0x80, &(0x7f0000002f80)=[{&(0x7f0000002cc0)=""/72, 0x48}, {&(0x7f00000019c0)=""/32, 0x20}, {&(0x7f0000002e40)=""/94, 0x5e}, {&(0x7f0000002ec0)=""/49, 0x31}, {&(0x7f00000003c0)=""/128, 0x80}], 0x5, &(0x7f0000002fc0)=""/211, 0xd3}, 0xf}], 0x7, 0x2163, &(0x7f0000000300)={0x0, 0x989680})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r6 = userfaultfd(0x801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
inotify_add_watch(r0, 0x0, 0x100)
ioctl$UFFDIO_CONTINUE(r6, 0x8010aa01, &(0x7f0000000000)={{&(0x7f0000600000/0x3000)=nil, 0x3000}})
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r7 = socket(0x1e, 0x1, 0x0)
connect$tipc(r7, &(0x7f0000000000)=@name={0x1e, 0x2, 0x2, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r7, &(0x7f0000000340), 0x2000011a)
close(r3)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)
pread64(r0, &(0x7f0000001480)=""/4122, 0x101a, 0x99)

1.464003594s ago: executing program 5 (id=4395):
fsopen(&(0x7f00000003c0)='hpfs\x00', 0x1) (fail_nth: 8)

1.463386715s ago: executing program 2 (id=4397):
syz_genetlink_get_family_id$batadv(&(0x7f0000000280), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000100))
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x14, r1, 0x303, 0x70bd28, 0x0, {0xa}}, 0x14}}, 0x0)

1.461185342s ago: executing program 5 (id=4398):
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0600000004000000040000000100000000000000", @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="17fa00000000090000000400000000001c110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000280)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x37, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000000002)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000e00)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, 0x0}, 0x0)
r3 = syz_open_dev$media(&(0x7f0000000380), 0x0, 0x0)
ioctl$MEDIA_IOC_G_TOPOLOGY(r3, 0xc0487c04, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1.377181345s ago: executing program 2 (id=4399):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
mount(&(0x7f0000000140)=@md0, &(0x7f0000000040)='./cgroup\x00', &(0x7f00000000c0)='minix\x00', 0x200401, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010026bd70000000000021040000180001801400020064756d6d7930"], 0x2c}, 0x1, 0x0, 0x0, 0x851}, 0x880)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f00000001c0)={'wpan1\x00', <r5=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="3f9d00000000000000001700000008000300", @ANYRES32=r5, @ANYBLOB="60003080050002000000000014000400403a050c5bae9c544ef2b6d713459a7a1c00018005000200000000000800040005000000080001000200"], 0x7c}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r7, 0x8933, &(0x7f0000000340)={'wpan0\x00', <r8=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)={0x1c, r6, 0x1, 0x70bd25, 0x25dfdbfa, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40880)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x1c, r4, 0x300, 0x70bd27, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008044}, 0x40090)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000100)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xffffffffffffff1b)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000000c0)=r9, 0x4)
sendmsg$unix(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
syz_usb_connect(0x2, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000ec31f8104c1302007eec0102030109021b0001000000000904000001098b7500090583", @ANYRESDEC], 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x101000)
prlimit64(0x0, 0xe, 0x0, 0x0)
r10 = epoll_create1(0x0)
ioctl$FS_IOC_SETFLAGS(r10, 0x40088a01, 0x0)
socket$packet(0x11, 0x2, 0x300)

515.112834ms ago: executing program 5 (id=4400):
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x2188ca0, &(0x7f0000000000)=ANY=[])
read$FUSE(r0, &(0x7f0000006180)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x1, {0x6, 0x2, 0xffffffffffffeffe, 0xfffffffffffffffd, 0x0, 0x0, {0x3c, 0x8, 0xb, 0xffff, 0x0, 0x1, 0x0, 0x0, 0x120, 0x2000, 0x0, r2, r3, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0d000003005a"], 0x50)
r4 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r4, 0x8916, &(0x7f0000000000)={'team_slave_0\x00', {0x2, 0x4e24, @rand_addr=0xdffefc13}})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x1086cce0, 0x40, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
setresuid(0x0, 0xee01, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, &(0x7f00000001c0)={{r5}, 0x4, 0x1000, 0x6})
r7 = getpgid(0x0)
r8 = syz_open_procfs(0x0, &(0x7f00000001c0)='net\x00')
getdents(r8, &(0x7f0000001fc0)=""/184, 0xb8)
write$snddsp(r8, &(0x7f0000000340)="de2a760bdff5a65d1f5849c3f280c910af777ccba664d05521b019e408bc230015d3217faad46dfba5576e3f3660efe17ba0f2a6d98033ab80faf3ee3819e595bc5a6f7a7bcc4360c3678941297117928ca922c591bd4c39c64e3a115a48edd05d2c7fd38bc6a54e43670d68c4177f3ce733b67cae5611d60921e6d4d062bfc901e532555eaf1e3bda1c286ac699ea8b2b8c213dd87b9f8eb0a5b09247c2", 0x9e)
fcntl$setownex(r6, 0xf, &(0x7f0000000140)={0x2, r7})
sendmmsg$unix(r5, &(0x7f0000006c40)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="11", 0x1}], 0x1}}], 0x1, 0x40015)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x300000d, 0x1)
ioctl$BLKPG(r9, 0xc00c4d04, &(0x7f0000000180)={0x1, 0x300, 0x0, 0x0})

401.232492ms ago: executing program 2 (id=4401):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000000), 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000003c0)={'vxcan0\x00', <r1=>0x0})
sendmsg$can_bcm(r0, &(0x7f0000000480)={&(0x7f0000000340)={0x1d, r1}, 0x10, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="01000000d7fe68ca0000000000000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000004"], 0x20000600}}, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{0xffffffffffffffff, <r2=>0xffffffffffffffff}, &(0x7f0000000580)=0x2, 0x0}, 0x20)
sendmsg$can_bcm(r0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x4044001)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[])
read$FUSE(r3, &(0x7f0000004180)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_OPEN(r3, &(0x7f0000000140)={0x20, 0x0, r4, {0x0, 0x12}}, 0x20)
read$FUSE(r3, &(0x7f0000002140)={0x2020, 0x0, <r5=>0x0, <r6=>0x0}, 0x2020)
syz_fuse_handle_req(r3, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x10000, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1000000, 0x0, 0x6000, 0x0, r6, 0x0, 0x800}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = socket$netlink(0x10, 0x3, 0xc)
r8 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r8, &(0x7f0000000400)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r8, 0x0, 0x0, 0x4000, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
setsockopt$SO_TIMESTAMPING(r8, 0x1, 0x41, &(0x7f0000000040)=0x1b32, 0x4)
sendto$inet(r8, &(0x7f0000000540)='v', 0x1, 0x4040, 0x0, 0x0)
recvmmsg(r8, &(0x7f0000000a00)=[{{0x0, 0x0, 0x0}, 0x8000}], 0x1, 0x2100, 0x0)
bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)={0x98, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa, 0x0, 0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_LABELS={0x4}]}, 0x98}}, 0x0)
syz_genetlink_get_family_id$gtp(&(0x7f0000000040), r7)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
preadv(r2, &(0x7f00000005c0)=[{&(0x7f00000002c0)=""/19, 0x13}, {&(0x7f0000000640)=""/245, 0xf5}, {&(0x7f00000004c0)=""/171, 0xab}, {&(0x7f0000000740)=""/170, 0xaa}, {&(0x7f0000000440)=""/37, 0x25}], 0x5, 0xa, 0x45f0)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="050000001000000000000600000008000300", @ANYRES32=r11, @ANYBLOB="0800050008000000"], 0x24}}, 0x48000)
sendmsg$NL80211_CMD_CONNECT(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="05002ebd7000000000000800000008000300", @ANYRES32=r11], 0x2c}, 0x1, 0x0, 0x0, 0x44840}, 0x0)
write$FUSE_INIT(r3, &(0x7f0000000340)={0x50, 0x7fffffffffffffc2, r5, {0x7, 0x2d, 0x0, 0x0, 0x3}}, 0x50)

772.781µs ago: executing program 5 (id=4402):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="10000000040000000800000008"], 0x50)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'sit0\x00', <r4=>0x0})
openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x140, 0x0)
r5 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$CDROM_LOCKDOOR(r5, 0x5329, 0x70)
sendmsg$nl_route(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x401, 0x8000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8007}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipoib={{0xa}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r4}]}, 0x3c}}, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x0, 0x0)
epoll_pwait(r6, &(0x7f0000000340)=[{}, {}, {}], 0x3, 0x7fffffff, &(0x7f0000000380)={[0x8, 0x9]}, 0x8)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000034c0)={0x24, 0x36, 0x107, 0x3, 0x0, {0x1, 0x7c}, [@nested={0x10, 0x3, 0x0, 0x1, [@typed={0xc, 0x8, 0x0, 0x0, @u64=0x1000}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000003000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x5, 0xe, 0x11, &(0x7f00000003c0)="7993ff01190000e5ffa53b00008f", 0x0, 0x400, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe, 0x4}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x15, 0x10, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000008f0000000000003646e6cbdd000b0000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000086000000bf09000000000000550901000000000095000000000000001d09000000000000bf91000000000000b702000003000000850000002a000000b7000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x7, 0x0, 0x0, 0x41100, 0x47}, 0x94)
r8 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r9=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000580)=ANY=[@ANYBLOB="48000000100005ff00000000000000000000004a", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32=r9, @ANYBLOB="0a0001"], 0x48}, 0x1, 0x0, 0x0, 0x45844}, 0x4000080)

0s ago: executing program 2 (id=4403):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x3)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = eventfd(0x5)
write$eventfd(r1, &(0x7f0000000240)=0xfffffffffffffffa, 0x8)
read$eventfd(r1, &(0x7f0000000200), 0x8)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0xfffc, @broadcast}, 0x2}}, 0x2e)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x1000000a, 0x8b}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c20000000180c200000208004500002c0000e7000011907800000000000000000000000000189078a20c0001000000009dc6f94df642dfe3"], 0x0)
syz_emit_ethernet(0xa2, &(0x7f0000001b00)={@broadcast, @multicast, @void, {@ipv4={0x800, @tipc={{0x14, 0x4, 0x1, 0x3b, 0x94, 0x67, 0x0, 0x8, 0x6, 0x0, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ssrr={0x89, 0x7, 0xa3, [@loopback]}, @generic={0x83, 0x7, "85c89df7c8"}, @generic={0x86, 0xc, "bf76c3c2d0cafbb7b79a"}, @timestamp={0x44, 0x8, 0x8b, 0x0, 0x5, [0x1]}, @lsrr={0x83, 0xb, 0xfb, [@dev={0xac, 0x14, 0x14, 0x3f}, @multicast2]}, @timestamp={0x44, 0xc, 0xa6, 0x0, 0x4, [0xd7, 0x9]}]}}, @name_distributor={{0x44, 0x0, 0x0, 0x0, 0x1, 0xa, 0xb, 0x2, 0x81, 0x0, 0x0, 0x8, 0x48, 0x4, 0x4e22, 0x4e21}, [{0xfffffff8, 0x5, 0x7, 0x3, 0x8000000, 0x2, 0xe, 0x6}]}}}}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
migrate_pages(0x0, 0x1ef9, &(0x7f0000000140)=0x6067, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x79af, 0x8, 0x0, 0x272}, &(0x7f0000000340)=<r6=>0x0, &(0x7f0000000040)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
r8 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r8, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(r8, &(0x7f00000001c0)='O', 0x1, 0x80, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @private2}, 0x1c)
shutdown(r8, 0x1)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r8, 0x0, 0x0, 0x0, 0x10, 0x1})
io_uring_enter(r5, 0x627, 0x4c1, 0x43, 0x0, 0x0)
write(r0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

ved
[  866.361588][T15020] lo speed is unknown, defaulting to 1000
[  866.363854][T15020] infiniband syz0: ib_query_port failed (-19)
[  866.553715][T18085] fuse: Unknown parameter 'vxcan0'
[  866.760721][T18085] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3339'.
[  867.039261][ T5297] Bluetooth: hci3: hcon ffff888029cc8000 sent 0 < count 8
[  867.042537][ T5297] Bluetooth: hci3: SCO packet for unknown connection handle 1
[  867.234219][T18106] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3344'.
[  868.119555][ T7854] IPVS: stop unused estimator thread 0...
[  869.258116][T18140] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  869.547400][T18140] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  870.017280][T18140] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  870.363705][T18140] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  870.432227][T18152] fuse: Unknown parameter 'vxcan0'
[  870.643324][T15717] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  870.648052][T15717] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  870.651579][T15717] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  870.675077][T18152] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3352'.
[  870.684363][T16998] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  870.798666][ T5297] Bluetooth: hci1: hcon ffff888064390000 sent 0 < count 8
[  870.818470][ T5297] Bluetooth: hci1: SCO packet for unknown connection handle 1
[  871.807714][T18174] netlink: 'syz.5.3358': attribute type 1 has an invalid length.
[  871.829859][T18174] netlink: 280 bytes leftover after parsing attributes in process `syz.5.3358'.
[  872.543040][   T40] audit: type=1326 audit(1770193362.831:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18179 comm="syz.4.3360" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  872.594545][   T40] audit: type=1326 audit(1770193362.831:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18179 comm="syz.4.3360" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  872.623623][   T40] audit: type=1326 audit(1770193362.861:1289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18179 comm="syz.4.3360" exe="/syz-executor" sig=0 arch=40000003 syscall=136 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  872.633477][   T40] audit: type=1326 audit(1770193362.871:1290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18179 comm="syz.4.3360" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  872.661810][   T40] audit: type=1326 audit(1770193362.871:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18179 comm="syz.4.3360" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  872.665806][T18183] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3360'.
[  872.670596][   T40] audit: type=1326 audit(1770193362.881:1292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18179 comm="syz.4.3360" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  872.670640][   T40] audit: type=1326 audit(1770193362.881:1293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18179 comm="syz.4.3360" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  872.670677][   T40] audit: type=1326 audit(1770193362.881:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18179 comm="syz.4.3360" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  872.670714][   T40] audit: type=1326 audit(1770193362.881:1295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18179 comm="syz.4.3360" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  872.670751][   T40] audit: type=1326 audit(1770193362.881:1296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18179 comm="syz.4.3360" exe="/syz-executor" sig=0 arch=40000003 syscall=228 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  872.843763][T18172] netlink: 'syz.0.3357': attribute type 4 has an invalid length.
[  872.849085][T18172] netlink: 'syz.0.3357': attribute type 4 has an invalid length.
[  873.081732][T15020] libceph: connect (1)[c::]:6789 error -101
[  873.092777][T15020] libceph: mon0 (1)[c::]:6789 connect error
[  873.302478][T18176] ceph: No mds server is up or the cluster is laggy
[  873.393453][T15020] libceph: connect (1)[c::]:6789 error -101
[  873.407907][T15020] libceph: mon0 (1)[c::]:6789 connect error
[  873.533455][T18193] fuse: Unknown parameter 'vxcan0'
[  873.643086][T18196] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3362'.
[  873.941943][T18212] netlink: 'syz.2.3367': attribute type 1 has an invalid length.
[  873.949230][T18212] netlink: 280 bytes leftover after parsing attributes in process `syz.2.3367'.
[  874.127552][T18210] tmpfs: Bad value for 'mpol'
[  874.691499][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  875.393986][T18233] serio: Serial port ptm0
[  875.729045][T18236] netlink: zone id is out of range
[  877.155194][T18253] netlink: 'syz.5.3378': attribute type 1 has an invalid length.
[  877.158681][T18253] netlink: 280 bytes leftover after parsing attributes in process `syz.5.3378'.
[  877.837408][ T5297] Bluetooth: hci1: hcon ffff888064390000 sent 0 < count 8
[  877.866461][ T5297] Bluetooth: hci1: SCO packet for unknown connection handle 1
[  878.119906][T18268] fuse: Unknown parameter 'vxcan0'
[  878.271056][T18268] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3385'.
[  878.867788][T18278] netlink: 'syz.2.3387': attribute type 9 has an invalid length.
[  878.962150][T18279] comedi comedi4: bad chanlist[0]=0x00000009 chan=9 range length=2
[  879.907314][   T40] kauditd_printk_skb: 31 callbacks suppressed
[  879.907334][   T40] audit: type=1326 audit(1770193370.191:1328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18285 comm="syz.2.3390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[  880.026707][T18291] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3390'.
[  880.202211][ T5297] Bluetooth: hci2: hcon ffff888066da0000 sent 0 < count 8
[  880.209115][ T5297] Bluetooth: hci2: SCO packet for unknown connection handle 1
[  880.326174][   T40] audit: type=1326 audit(1770193370.191:1329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18285 comm="syz.2.3390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[  880.364801][   T40] audit: type=1326 audit(1770193370.311:1330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18285 comm="syz.2.3390" exe="/syz-executor" sig=0 arch=40000003 syscall=351 compat=1 ip=0xf739d579 code=0x7ffc0000
[  880.386106][   T40] audit: type=1326 audit(1770193370.311:1331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18285 comm="syz.2.3390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[  880.402104][   T40] audit: type=1326 audit(1770193370.311:1332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18285 comm="syz.2.3390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[  880.411499][   T40] audit: type=1326 audit(1770193370.311:1333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18285 comm="syz.2.3390" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf739d579 code=0x7ffc0000
[  880.446196][   T40] audit: type=1326 audit(1770193370.311:1334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18285 comm="syz.2.3390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[  880.465658][   T40] audit: type=1326 audit(1770193370.311:1335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18285 comm="syz.2.3390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[  880.478718][   T40] audit: type=1326 audit(1770193370.311:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18285 comm="syz.2.3390" exe="/syz-executor" sig=0 arch=40000003 syscall=228 compat=1 ip=0xf739d579 code=0x7ffc0000
[  880.492212][   T40] audit: type=1326 audit(1770193370.311:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18285 comm="syz.2.3390" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[  880.806547][T18304] fuse: Unknown parameter 'vxcan0'
[  880.968393][T18308] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3396'.
[  881.567206][T18318] FAULT_INJECTION: forcing a failure.
[  881.567206][T18318] name failslab, interval 1, probability 0, space 0, times 0
[  881.590350][T18318] CPU: 2 UID: 0 PID: 18318 Comm: syz.4.3399 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  881.590378][T18318] Tainted: [L]=SOFTLOCKUP
[  881.590384][T18318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  881.590393][T18318] Call Trace:
[  881.590399][T18318]  <TASK>
[  881.590405][T18318]  dump_stack_lvl+0x100/0x190
[  881.590428][T18318]  should_fail_ex.cold+0x5/0xa
[  881.590455][T18318]  should_failslab+0xc2/0x120
[  881.590477][T18318]  kmem_cache_alloc_noprof+0x83/0x780
[  881.590498][T18318]  ? dst_alloc+0x99/0x1a0
[  881.590522][T18318]  ? dst_alloc+0x99/0x1a0
[  881.590540][T18318]  dst_alloc+0x99/0x1a0
[  881.590562][T18318]  rt_dst_alloc+0x35/0x3a0
[  881.590579][T18318]  ip_route_output_key_hash_rcu+0x87a/0x2870
[  881.590608][T18318]  ip_route_output_key_hash+0x118/0x2b0
[  881.590630][T18318]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  881.590648][T18318]  ? ns_capable+0xd2/0xf0
[  881.590695][T18318]  ? find_held_lock+0x2b/0x80
[  881.590717][T18318]  ip_route_output_flow+0x27/0x150
[  881.590739][T18318]  udp_sendmsg+0x1ad5/0x2880
[  881.590767][T18318]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  881.590794][T18318]  ? __pfx_udp_sendmsg+0x10/0x10
[  881.590818][T18318]  ? vsnprintf+0x4ee/0x1240
[  881.590842][T18318]  ? __pfx_vsnprintf+0x10/0x10
[  881.590870][T18318]  ? look_up_lock_class+0x64/0x120
[  881.590899][T18318]  ? __lock_acquire+0x4a5/0x2630
[  881.590925][T18318]  udpv6_sendmsg+0x146b/0x2d20
[  881.590957][T18318]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  881.590990][T18318]  ? __lock_acquire+0x4a5/0x2630
[  881.591021][T18318]  ? reacquire_held_locks+0xce/0x1e0
[  881.591054][T18318]  ? rcu_is_watching+0x12/0xc0
[  881.591071][T18318]  ? __local_bh_enable_ip+0x9e/0x120
[  881.591091][T18318]  ? lockdep_hardirqs_on+0x78/0x100
[  881.591110][T18318]  ? inet_autobind+0x145/0x1a0
[  881.591126][T18318]  ? __local_bh_enable_ip+0x9e/0x120
[  881.591146][T18318]  ? inet_autobind+0x14a/0x1a0
[  881.591160][T18318]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  881.591184][T18318]  ? inet6_sendmsg+0x105/0x140
[  881.591206][T18318]  inet6_sendmsg+0x105/0x140
[  881.591230][T18318]  ____sys_sendmsg+0x704/0xc30
[  881.591251][T18318]  ? __pfx_____sys_sendmsg+0x10/0x10
[  881.591281][T18318]  ___sys_sendmsg+0x190/0x1e0
[  881.591303][T18318]  ? __pfx____sys_sendmsg+0x10/0x10
[  881.591371][T18318]  __sys_sendmsg+0x170/0x220
[  881.591397][T18318]  ? __pfx___sys_sendmsg+0x10/0x10
[  881.591430][T18318]  ? __pfx_ksys_write+0x10/0x10
[  881.591456][T18318]  __do_fast_syscall_32+0xde/0x660
[  881.591480][T18318]  do_fast_syscall_32+0x32/0x70
[  881.591501][T18318]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  881.591522][T18318] RIP: 0023:0xf7fa1579
[  881.591536][T18318] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[  881.591552][T18318] RSP: 002b:00000000f546650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[  881.591569][T18318] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000400
[  881.591579][T18318] RDX: 0000000000040004 RSI: 0000000000000000 RDI: 0000000000000000
[  881.591589][T18318] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  881.591596][T18318] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  881.591605][T18318] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  881.591626][T18318]  </TASK>
[  882.429460][T18325] tmpfs: Bad value for 'mpol'
[  882.781666][ T5297] Bluetooth: hci4: hcon ffff888052230000 sent 0 < count 8
[  882.785013][ T5297] Bluetooth: hci4: SCO packet for unknown connection handle 1
[  883.784249][T18339] team0 (unregistering): Port device team_slave_0 removed
[  884.201236][T18339] team0 (unregistering): Port device team_slave_1 removed
[  886.199431][T18346] netlink: 'syz.0.3408': attribute type 1 has an invalid length.
[  887.026869][T18366] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3413'.
[  887.640512][T18371] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3415'.
[  887.648944][T18371] digital: digital_start_poll: Unknown protocol
[  887.772328][T18376] netlink: 'syz.2.3417': attribute type 1 has an invalid length.
[  887.785673][T18376] netlink: 280 bytes leftover after parsing attributes in process `syz.2.3417'.
[  888.169588][T18391] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3425'.
[  888.287614][T18393] netlink: 'syz.0.3422': attribute type 21 has an invalid length.
[  888.621550][T18399] netlink: 'syz.0.3427': attribute type 1 has an invalid length.
[  888.626496][T18399] netlink: 280 bytes leftover after parsing attributes in process `syz.0.3427'.
[  891.757845][T18421] loop9: detected capacity change from 0 to 7
[  891.764399][T18383] Dev loop9: unable to read RDB block 7
[  891.766411][T18383]  loop9: unable to read partition table
[  891.768476][T18383] loop9: partition table beyond EOD, truncated
[  892.370729][T18421] Dev loop9: unable to read RDB block 7
[  892.373249][T18421]  loop9: unable to read partition table
[  892.376400][T18421] loop9: partition table beyond EOD, truncated
[  892.385616][T18421] loop_reread_partitions: partition scan of loop9 (�被x�������� ) failed (rc=-5)
[  893.125191][T18428] netlink: 'syz.2.3436': attribute type 1 has an invalid length.
[  893.143607][T18428] netlink: 280 bytes leftover after parsing attributes in process `syz.2.3436'.
[  893.509275][T18435] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3439'.
[  893.752330][T18448] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3444'.
[  894.438309][T18465] syz.2.3447: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  894.447625][T18465] CPU: 3 UID: 0 PID: 18465 Comm: syz.2.3447 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  894.447654][T18465] Tainted: [L]=SOFTLOCKUP
[  894.447660][T18465] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  894.447670][T18465] Call Trace:
[  894.447677][T18465]  <TASK>
[  894.447684][T18465]  dump_stack_lvl+0x100/0x190
[  894.447713][T18465]  warn_alloc.cold+0x95/0x1c1
[  894.447739][T18465]  ? __pfx_warn_alloc+0x10/0x10
[  894.447769][T18465]  ? kasan_save_stack+0x3f/0x50
[  894.447789][T18465]  ? kasan_save_stack+0x30/0x50
[  894.447808][T18465]  ? kasan_save_track+0x14/0x30
[  894.447830][T18465]  ? xskq_create+0xfb/0x1d0
[  894.447848][T18465]  __vmalloc_node_range_noprof+0x1252/0x1530
[  894.447881][T18465]  ? xskq_create+0xfb/0x1d0
[  894.447907][T18465]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  894.447936][T18465]  ? xskq_create+0xfb/0x1d0
[  894.447954][T18465]  vmalloc_user_noprof+0x9e/0xe0
[  894.447971][T18465]  ? xskq_create+0xfb/0x1d0
[  894.447987][T18465]  xskq_create+0xfb/0x1d0
[  894.448005][T18465]  xsk_setsockopt+0x725/0xa90
[  894.448022][T18465]  ? __pfx_xsk_setsockopt+0x10/0x10
[  894.448047][T18465]  ? find_held_lock+0x2b/0x80
[  894.448066][T18465]  ? aa_sock_opt_perm+0xfe/0x1b0
[  894.448088][T18465]  ? __pfx_xsk_setsockopt+0x10/0x10
[  894.448116][T18465]  do_sock_setsockopt+0xf3/0x1d0
[  894.448138][T18465]  __sys_setsockopt+0x119/0x190
[  894.448168][T18465]  __ia32_sys_setsockopt+0xbc/0x160
[  894.448190][T18465]  ? __do_fast_syscall_32+0x97/0x660
[  894.448209][T18465]  ? lockdep_hardirqs_on+0x78/0x100
[  894.448229][T18465]  __do_fast_syscall_32+0xde/0x660
[  894.448253][T18465]  do_fast_syscall_32+0x32/0x70
[  894.448275][T18465]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  894.448297][T18465] RIP: 0023:0xf739d579
[  894.448312][T18465] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[  894.448329][T18465] RSP: 002b:00000000f53a550c EFLAGS: 00000292 ORIG_RAX: 000000000000016e
[  894.448348][T18465] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000011b
[  894.448359][T18465] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  894.448369][T18465] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  894.448378][T18465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  894.448387][T18465] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  894.448411][T18465]  </TASK>
[  894.448417][T18465] Mem-Info:
[  894.600699][T18465] active_anon:7189 inactive_anon:4096 isolated_anon:0
[  894.600699][T18465]  active_file:4764 inactive_file:15554 isolated_file:0
[  894.600699][T18465]  unevictable:1768 dirty:212 writeback:0
[  894.600699][T18465]  slab_reclaimable:6894 slab_unreclaimable:62190
[  894.600699][T18465]  mapped:28688 shmem:7720 pagetables:1259
[  894.600699][T18465]  sec_pagetables:328 bounce:0
[  894.600699][T18465]  kernel_misc_reclaimable:0
[  894.600699][T18465]  free:58572 free_pcp:13011 free_cma:0
[  895.484045][T18465] Node 0 active_anon:92kB inactive_anon:68kB active_file:4kB inactive_file:20kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:16kB dirty:4kB writeback:0kB shmem:3828kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9696kB pagetables:1856kB sec_pagetables:1148kB all_unreclaimable? yes Balloon:0kB
[  895.523371][T18465] Node 1 active_anon:28716kB inactive_anon:16316kB active_file:19052kB inactive_file:62196kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:122932kB dirty:924kB writeback:0kB shmem:27112kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4504kB pagetables:3196kB sec_pagetables:164kB all_unreclaimable? no Balloon:0kB
[  895.616241][T18465] Node 0 DMA free:2428kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:404kB local_pcp:128kB free_cma:0kB
[  895.668621][T18465] lowmem_reserve[]: 0 288 288 288 288
[  895.670593][T18465] Node 0 DMA32 free:19656kB boost:2048kB min:15268kB low:18572kB high:21876kB reserved_highatomic:0KB free_highatomic:0KB active_anon:160kB inactive_anon:64kB active_file:4kB inactive_file:20kB unevictable:3536kB writepending:4kB zspages:0kB present:1032196kB managed:295104kB mlocked:0kB bounce:0kB free_pcp:11860kB local_pcp:2776kB free_cma:0kB
[  895.721803][T18465] lowmem_reserve[]: 0 0 0 0 0
[  895.723889][T18465] Node 1 DMA32 free:212080kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:28764kB inactive_anon:16316kB active_file:19052kB inactive_file:62196kB unevictable:3536kB writepending:932kB zspages:2724kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:40056kB local_pcp:6176kB free_cma:0kB
[  895.737585][T18465] lowmem_reserve[]: 0 0 0 0 0
[  895.745071][T18465] Node 0 DMA: 45*4kB (U) 19*8kB (U) 13*16kB (U) 5*32kB (U) 3*64kB (U) 2*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 0*2048kB 0*4096kB = 2428kB
[  895.760702][T18465] Node 0 DMA32: 182*4kB (UME) 422*8kB (UME) 144*16kB (UME) 118*32kB (UME) 54*64kB (UME) 27*128kB (UME) 10*256kB (UME) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 19656kB
[  895.824386][T18465] Node 1 DMA32: 3036*4kB (UE) 2956*8kB (UE) 1988*16kB (UME) 353*32kB (UME) 186*64kB (UME) 88*128kB (UME) 60*256kB (UME) 63*512kB (UM) 43*1024kB (UM) 7*2048kB (UM) 1*4096kB (U) = 212144kB
[  895.841941][T18465] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  895.854386][T18465] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  895.858352][T18465] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  895.874410][T18465] Node 1 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  895.878389][T18465] 28414 total pagecache pages
[  895.880496][T18465] 385 pages in swap cache
[  895.882477][T18465] Free swap  = 117068kB
[  895.885083][T18465] Total swap = 124996kB
[  895.887376][T18465] 524155 pages RAM
[  895.893634][T18465] 0 pages HighMem/MovableOnly
[  895.911457][T18465] 209486 pages reserved
[  895.913629][T18465] 0 pages cma reserved
[  898.025960][T18483] faux_driver vkms: [drm] Unknown color mode 6; guessing buffer size.
[  898.030151][T18483] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[  898.154141][T18484] netlink: 212336 bytes leftover after parsing attributes in process `syz.0.3453'.
[  898.318648][T18487] fuse: Unknown parameter 'vxcan0'
[  898.353780][T18490] FAULT_INJECTION: forcing a failure.
[  898.353780][T18490] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  898.359719][T18490] CPU: 1 UID: 0 PID: 18490 Comm: syz.4.3454 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  898.359747][T18490] Tainted: [L]=SOFTLOCKUP
[  898.359761][T18490] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  898.359771][T18490] Call Trace:
[  898.359778][T18490]  <TASK>
[  898.359785][T18490]  dump_stack_lvl+0x100/0x190
[  898.359810][T18490]  should_fail_ex.cold+0x5/0xa
[  898.359833][T18490]  ? prepare_alloc_pages+0x16d/0x5f0
[  898.359859][T18490]  should_fail_alloc_page+0xeb/0x140
[  898.359882][T18490]  prepare_alloc_pages+0x1f0/0x5f0
[  898.359908][T18490]  __alloc_frozen_pages_noprof+0x193/0x2410
[  898.359928][T18490]  ? mark_held_locks+0x40/0x70
[  898.359949][T18490]  ? smp_call_function_many_cond+0x11ad/0x14a0
[  898.359968][T18490]  ? lockdep_hardirqs_on+0x78/0x100
[  898.359987][T18490]  ? __pfx_flush_tlb_func+0x10/0x10
[  898.360002][T18490]  ? smp_call_function_many_cond+0x5cb/0x14a0
[  898.360021][T18490]  ? __pfx_should_flush_tlb+0x10/0x10
[  898.360042][T18490]  ? __pfx_flush_tlb_func+0x10/0x10
[  898.360061][T18490]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  898.360082][T18490]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  898.360106][T18490]  ? __lock_acquire+0x4a5/0x2630
[  898.360127][T18490]  ? __lock_acquire+0x4a5/0x2630
[  898.360148][T18490]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  898.360168][T18490]  ? policy_nodemask+0xed/0x4f0
[  898.360193][T18490]  alloc_pages_mpol+0x1fb/0x550
[  898.360217][T18490]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  898.360246][T18490]  folio_alloc_mpol_noprof+0x36/0x340
[  898.360274][T18490]  vma_alloc_folio_noprof+0xed/0x1d0
[  898.360299][T18490]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  898.360322][T18490]  ? rcu_read_unlock+0x2d/0xb0
[  898.360340][T18490]  ? rcu_read_unlock+0x2d/0xb0
[  898.360358][T18490]  ? __lock_acquire+0x4a5/0x2630
[  898.360383][T18490]  do_wp_page+0xf09/0x4c10
[  898.360416][T18490]  ? __pfx_do_wp_page+0x10/0x10
[  898.360443][T18490]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  898.360474][T18490]  __handle_mm_fault+0x1ac0/0x2b50
[  898.360499][T18490]  ? __pfx___handle_mm_fault+0x10/0x10
[  898.360519][T18490]  ? __pte_offset_map_lock+0x174/0x320
[  898.360542][T18490]  ? find_held_lock+0x2b/0x80
[  898.360567][T18490]  ? follow_page_pte+0x5b4/0x1410
[  898.360595][T18490]  handle_mm_fault+0x36d/0xa20
[  898.360619][T18490]  __get_user_pages+0xf9c/0x34d0
[  898.360650][T18490]  ? down_read_killable+0x30e/0x4c0
[  898.360671][T18490]  ? __lock_acquire+0x4a5/0x2630
[  898.360691][T18490]  ? __pfx___get_user_pages+0x10/0x10
[  898.360723][T18490]  __gup_longterm_locked+0x87d/0x16f0
[  898.360764][T18490]  ? __pfx___gup_longterm_locked+0x10/0x10
[  898.360824][T18490]  ? try_get_folio+0x262/0x750
[  898.360846][T18490]  ? find_held_lock+0x2b/0x80
[  898.360868][T18490]  ? sanity_check_pinned_pages+0x5f6/0x1250
[  898.360897][T18490]  gup_fast_fallback+0x18c6/0x2460
[  898.360945][T18490]  ? __pfx_gup_fast_fallback+0x10/0x10
[  898.360970][T18490]  ? is_bpf_text_address+0x94/0x1a0
[  898.360996][T18490]  ? kernel_text_address+0x8d/0x100
[  898.361020][T18490]  ? __lock_acquire+0x4a5/0x2630
[  898.361039][T18490]  ? unwind_get_return_address+0x59/0xa0
[  898.361060][T18490]  ? arch_stack_walk+0xa6/0xf0
[  898.361082][T18490]  pin_user_pages_fast+0xa7/0xf0
[  898.361106][T18490]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  898.361131][T18490]  ? iov_iter_advance+0xac/0x6d0
[  898.361154][T18490]  ? stack_trace_save+0x8e/0xc0
[  898.361174][T18490]  iov_iter_extract_pages+0xa0d/0x1ef0
[  898.361202][T18490]  ? kasan_save_stack+0x3f/0x50
[  898.361221][T18490]  ? kasan_save_stack+0x30/0x50
[  898.361239][T18490]  ? kasan_save_track+0x14/0x30
[  898.361257][T18490]  ? __kasan_kmalloc+0xaa/0xb0
[  898.361275][T18490]  ? __kmalloc_noprof+0x347/0x9c0
[  898.361293][T18490]  ? sock_kmalloc+0x111/0x170
[  898.361311][T18490]  ? __pfx_iov_iter_extract_pages+0x10/0x10
[  898.361334][T18490]  ? ____sys_recvmsg+0x218/0x6b0
[  898.361351][T18490]  ? ___sys_recvmsg+0x16a/0x1a0
[  898.361367][T18490]  ? __sys_recvmsg+0x16d/0x220
[  898.361388][T18490]  ? __do_fast_syscall_32+0xde/0x660
[  898.361406][T18490]  ? do_fast_syscall_32+0x32/0x70
[  898.361424][T18490]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  898.361455][T18490]  extract_iter_to_sg+0x638/0x21d0
[  898.361486][T18490]  ? __pfx_extract_iter_to_sg+0x10/0x10
[  898.361514][T18490]  ? sock_kmalloc+0x111/0x170
[  898.361531][T18490]  ? rcu_is_watching+0x12/0xc0
[  898.361544][T18490]  ? sock_kmalloc+0x111/0x170
[  898.361566][T18490]  af_alg_get_rsgl+0x2b3/0x7f0
[  898.361598][T18490]  skcipher_recvmsg+0x375/0x1020
[  898.361632][T18490]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  898.361657][T18490]  ? aa_sock_msg_perm.isra.0+0x100/0x1b0
[  898.361682][T18490]  sock_recvmsg+0x1f9/0x250
[  898.361700][T18490]  ____sys_recvmsg+0x218/0x6b0
[  898.361723][T18490]  ? __pfx_____sys_recvmsg+0x10/0x10
[  898.361752][T18490]  ? __lock_acquire+0x4a5/0x2630
[  898.361786][T18490]  ___sys_recvmsg+0x16a/0x1a0
[  898.361806][T18490]  ? __pfx____sys_recvmsg+0x10/0x10
[  898.361847][T18490]  __sys_recvmsg+0x16d/0x220
[  898.361873][T18490]  ? __pfx___sys_recvmsg+0x10/0x10
[  898.361906][T18490]  ? __pfx_ksys_write+0x10/0x10
[  898.361931][T18490]  __do_fast_syscall_32+0xde/0x660
[  898.361955][T18490]  do_fast_syscall_32+0x32/0x70
[  898.361976][T18490]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  898.361996][T18490] RIP: 0023:0xf7fa1579
[  898.362011][T18490] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[  898.362027][T18490] RSP: 002b:00000000f546650c EFLAGS: 00000292 ORIG_RAX: 0000000000000174
[  898.362043][T18490] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800005c0
[  898.362054][T18490] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  898.362063][T18490] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  898.362072][T18490] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  898.362081][T18490] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  898.362104][T18490]  </TASK>
[  898.571860][T18495] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3455'.
[  899.036557][T18508] loop6: detected capacity change from 0 to 7
[  899.040017][    C0] blk_print_req_error: 12 callbacks suppressed
[  899.040035][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  899.054986][    C0] buffer_io_error: 11 callbacks suppressed
[  899.055002][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  899.061420][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  899.064965][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  899.071438][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  899.075299][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  899.080520][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  899.084314][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  899.091155][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  899.095411][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  899.120959][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  899.125050][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  899.130660][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  899.134305][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  899.192619][T18508] ldm_validate_partition_table(): Disk read failed.
[  899.192658][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  899.198969][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  899.303927][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  899.308236][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[  899.322831][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  899.327503][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[  899.332107][T18508] Dev loop6: unable to read RDB block 0
[  899.350893][T18508]  loop6: unable to read partition table
[  899.355122][T18508] loop6: partition table beyond EOD, truncated
[  899.362346][T18508] loop_reread_partitions: partition scan of loop6 (���������S�j̖�P=ý?�}X���	���%��`��ր����5) failed (rc=-5)
[  899.915255][T18528] netlink: 'syz.0.3465': attribute type 1 has an invalid length.
[  899.918650][T18528] netlink: 280 bytes leftover after parsing attributes in process `syz.0.3465'.
[  899.962696][T13779] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  900.001082][T18532] fuse: Unknown parameter 'vxcan0'
[  900.068405][T18532] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3466'.
[  900.793452][T13779] usb 9-1: Using ep0 maxpacket: 8
[  900.797366][T13779] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  900.800918][T13779] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  900.805323][T13779] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  900.809530][T13779] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  900.822525][T13779] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  900.828097][T13779] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  900.832036][T13779] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  901.170390][T13779] usb 9-1: usb_control_msg returned -32
[  901.179532][T13779] usbtmc 9-1:16.0: can't read capabilities
[  902.725911][T15020] usb 9-1: USB disconnect, device number 8
[  902.981202][T18574] netlink: 'syz.5.3476': attribute type 1 has an invalid length.
[  902.986140][T18574] netlink: 280 bytes leftover after parsing attributes in process `syz.5.3476'.
[  904.590275][T18591] fuse: Unknown parameter 'vxcan0'
[  905.066547][T18598] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3480'.
[  905.135895][T18600] FAULT_INJECTION: forcing a failure.
[  905.135895][T18600] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  905.141694][T18600] CPU: 3 UID: 0 PID: 18600 Comm: syz.2.3482 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  905.141722][T18600] Tainted: [L]=SOFTLOCKUP
[  905.141728][T18600] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  905.141739][T18600] Call Trace:
[  905.141745][T18600]  <TASK>
[  905.141752][T18600]  dump_stack_lvl+0x100/0x190
[  905.141778][T18600]  should_fail_ex.cold+0x5/0xa
[  905.141817][T18600]  _copy_to_user+0x32/0xd0
[  905.141845][T18600]  simple_read_from_buffer+0xcb/0x170
[  905.141867][T18600]  proc_fail_nth_read+0x1af/0x230
[  905.141889][T18600]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  905.141912][T18600]  ? rw_verify_area+0xce/0x6d0
[  905.141929][T18600]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  905.141950][T18600]  vfs_read+0x1e4/0xb30
[  905.141973][T18600]  ? __pfx_vfs_read+0x10/0x10
[  905.141990][T18600]  ? find_held_lock+0x2b/0x80
[  905.142008][T18600]  ? __fget_files+0x215/0x3d0
[  905.142037][T18600]  ? __fget_files+0x21f/0x3d0
[  905.142062][T18600]  ksys_read+0x12a/0x250
[  905.142079][T18600]  ? __pfx_ksys_read+0x10/0x10
[  905.142104][T18600]  do_int80_emulation+0x101/0x470
[  905.142128][T18600]  asm_int80_emulation+0x1a/0x20
[  905.142145][T18600] RIP: 0023:0xf710572b
[  905.142159][T18600] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[  905.142175][T18600] RSP: 002b:00000000f53c64bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  905.142191][T18600] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f53c65d0
[  905.142202][T18600] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  905.142211][T18600] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  905.142220][T18600] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  905.142230][T18600] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  905.142252][T18600]  </TASK>
[  905.847232][T18624] netlink: 128 bytes leftover after parsing attributes in process `syz.4.3488'.
[  907.647338][T18638] netlink: 'syz.2.3492': attribute type 1 has an invalid length.
[  907.651249][T18638] netlink: 280 bytes leftover after parsing attributes in process `syz.2.3492'.
[  907.836601][T18645] fuse: Unknown parameter 'vxcan0'
[  907.943962][T18651] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3495'.
[  908.245404][T18656] netlink: 192 bytes leftover after parsing attributes in process `syz.2.3497'.
[  908.248354][T18656] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3497'.
[  908.879469][T18672] netlink: 'syz.4.3502': attribute type 1 has an invalid length.
[  908.885839][T18672] netlink: 280 bytes leftover after parsing attributes in process `syz.4.3502'.
[  909.193901][T18680] fuse: Unknown parameter 'vxcan0'
[  909.261870][T18680] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3505'.
[  909.677292][T18688] loop6: detected capacity change from 0 to 7
[  909.683152][    C3] blk_print_req_error: 11 callbacks suppressed
[  909.683183][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  909.688368][    C3] buffer_io_error: 11 callbacks suppressed
[  909.688380][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  909.712624][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  909.716243][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  909.741213][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  909.744297][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  909.748404][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  909.751371][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  909.777297][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  909.780278][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  909.787292][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  909.790308][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  909.794718][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  909.797691][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  909.808536][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  909.811588][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  909.814102][T18688] ldm_validate_partition_table(): Disk read failed.
[  909.827081][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  909.830070][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  909.833291][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  909.836255][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  909.852188][T18688] Dev loop6: unable to read RDB block 0
[  909.889718][T18688]  loop6: unable to read partition table
[  909.891809][T18688] loop6: partition table beyond EOD, truncated
[  909.894034][T18688] loop_reread_partitions: partition scan of loop6 (���������S�j̖�P=ý?�}X���	���%��`��ր����5) failed (rc=-5)
[  910.044817][T18687] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3507'.
[  911.191629][T18709] netlink: 'syz.2.3511': attribute type 1 has an invalid length.
[  911.194247][T18709] netlink: 'syz.2.3511': attribute type 2 has an invalid length.
[  911.196657][T18709] netlink: 268 bytes leftover after parsing attributes in process `syz.2.3511'.
[  912.109631][T18721] fuse: Unknown parameter 'vxcan0'
[  912.149418][T18723] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3515'.
[  912.250947][T18727] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3516'.
[  912.442420][T18738] FAULT_INJECTION: forcing a failure.
[  912.442420][T18738] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  912.446511][T18738] CPU: 1 UID: 0 PID: 18738 Comm: syz.4.3520 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  912.446528][T18738] Tainted: [L]=SOFTLOCKUP
[  912.446532][T18738] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  912.446538][T18738] Call Trace:
[  912.446542][T18738]  <TASK>
[  912.446547][T18738]  dump_stack_lvl+0x100/0x190
[  912.446565][T18738]  should_fail_ex.cold+0x5/0xa
[  912.446584][T18738]  _copy_from_iter+0x1f4/0x1690
[  912.446604][T18738]  ? __pfx__copy_from_iter+0x10/0x10
[  912.446624][T18738]  ? __pfx___might_resched+0x10/0x10
[  912.446644][T18738]  file_tty_write.isra.0+0x45b/0x890
[  912.446666][T18738]  vfs_write+0x6ac/0x1070
[  912.446680][T18738]  ? __pfx_tty_write+0x10/0x10
[  912.446697][T18738]  ? __pfx_vfs_write+0x10/0x10
[  912.446708][T18738]  ? find_held_lock+0x2b/0x80
[  912.446728][T18738]  ksys_write+0x12a/0x250
[  912.446740][T18738]  ? __pfx_ksys_write+0x10/0x10
[  912.446752][T18738]  ? __pfx_ksys_write+0x10/0x10
[  912.446768][T18738]  __do_fast_syscall_32+0xde/0x660
[  912.446784][T18738]  do_fast_syscall_32+0x32/0x70
[  912.446798][T18738]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  912.446813][T18738] RIP: 0023:0xf7fa1579
[  912.446822][T18738] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[  912.446833][T18738] RSP: 002b:00000000f546650c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[  912.446844][T18738] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000000
[  912.446851][T18738] RDX: 00000000fffffedf RSI: 0000000000000000 RDI: 0000000000000000
[  912.446857][T18738] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  912.446866][T18738] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  912.446872][T18738] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  912.446886][T18738]  </TASK>
[  912.578500][T18745] syzkaller0: entered promiscuous mode
[  912.580763][T18745] syzkaller0: entered allmulticast mode
[  912.594279][T18745] tipc: Started in network mode
[  912.596017][T18745] tipc: Node identity 86b2dabaeae3, cluster identity 4711
[  912.598453][T18745] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  912.601575][T18744] tipc: Resetting bearer <eth:syzkaller0>
[  912.613601][T18744] tipc: Disabling bearer <eth:syzkaller0>
[  914.484556][T18769] fuse: Unknown parameter 'vxcan0'
[  914.548530][T18769] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3527'.
[  915.363052][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  915.363246][   T40] audit: type=1326 audit(1770193405.661:1347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18790 comm="syz.2.3531" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x0
[  916.292226][T18822] netlink: 'syz.0.3544': attribute type 1 has an invalid length.
[  916.303720][T18822] 8021q: adding VLAN 0 to HW filter on device bond4
[  916.323449][T18822] bond4: (slave bridge2): making interface the new active one
[  916.326216][T18822] bond4: (slave bridge2): Enslaving as an active interface with an up link
[  916.783185][T18829] FAULT_INJECTION: forcing a failure.
[  916.783185][T18829] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  916.787317][T18829] CPU: 0 UID: 0 PID: 18829 Comm: syz.2.3543 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  916.787334][T18829] Tainted: [L]=SOFTLOCKUP
[  916.787338][T18829] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  916.787345][T18829] Call Trace:
[  916.787349][T18829]  <TASK>
[  916.787353][T18829]  dump_stack_lvl+0x100/0x190
[  916.787384][T18829]  should_fail_ex.cold+0x5/0xa
[  916.787403][T18829]  _copy_from_user+0x2e/0xd0
[  916.787425][T18829]  compat_wext_handle_ioctl+0xc4/0x220
[  916.787448][T18829]  ? __pfx_compat_wext_handle_ioctl+0x10/0x10
[  916.787464][T18829]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  916.787478][T18829]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  916.787490][T18829]  ? __pfx_unix_compat_ioctl+0x10/0x10
[  916.787507][T18829]  ? unix_ioctl+0x9c/0x510
[  916.787524][T18829]  compat_sock_ioctl+0x381/0x760
[  916.787540][T18829]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  916.787556][T18829]  ? __fget_files+0x21f/0x3d0
[  916.787572][T18829]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  916.787585][T18829]  __ia32_compat_sys_ioctl+0x2cf/0x360
[  916.787605][T18829]  __do_fast_syscall_32+0xde/0x660
[  916.787622][T18829]  do_fast_syscall_32+0x32/0x70
[  916.787636][T18829]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  916.787650][T18829] RIP: 0023:0xf739d579
[  916.787658][T18829] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[  916.787669][T18829] RSP: 002b:00000000f53c650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  916.787680][T18829] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000008b1b
[  916.787690][T18829] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  916.787696][T18829] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  916.787702][T18829] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  916.787708][T18829] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  916.787722][T18829]  </TASK>
[  917.296015][T18840] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  917.363730][T18846] FAULT_INJECTION: forcing a failure.
[  917.363730][T18846] name failslab, interval 1, probability 0, space 0, times 0
[  917.367671][T18846] CPU: 0 UID: 0 PID: 18846 Comm: syz.2.3552 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  917.367691][T18846] Tainted: [L]=SOFTLOCKUP
[  917.367695][T18846] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  917.367702][T18846] Call Trace:
[  917.367705][T18846]  <TASK>
[  917.367709][T18846]  dump_stack_lvl+0x100/0x190
[  917.367726][T18846]  should_fail_ex.cold+0x5/0xa
[  917.367744][T18846]  should_failslab+0xc2/0x120
[  917.367759][T18846]  ? tomoyo_encode2+0xfb/0x3c0
[  917.367769][T18846]  __kmalloc_noprof+0xf6/0x9c0
[  917.367784][T18846]  ? tomoyo_encode2+0xfb/0x3c0
[  917.367794][T18846]  tomoyo_encode2+0xfb/0x3c0
[  917.367806][T18846]  tomoyo_encode+0x29/0x50
[  917.367816][T18846]  tomoyo_realpath_from_path+0x18c/0x690
[  917.367830][T18846]  tomoyo_path_number_perm+0x23c/0x580
[  917.367846][T18846]  ? tomoyo_path_number_perm+0x22e/0x580
[  917.367863][T18846]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  917.367893][T18846]  ? find_held_lock+0x2b/0x80
[  917.367903][T18846]  ? hook_file_ioctl_common+0x146/0x410
[  917.367920][T18846]  ? __fget_files+0x215/0x3d0
[  917.367935][T18846]  ? __fget_files+0x21f/0x3d0
[  917.367949][T18846]  security_file_ioctl_compat+0xd3/0x230
[  917.367967][T18846]  __ia32_compat_sys_ioctl+0xc2/0x360
[  917.367987][T18846]  __do_fast_syscall_32+0xde/0x660
[  917.368003][T18846]  do_fast_syscall_32+0x32/0x70
[  917.368018][T18846]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  917.368031][T18846] RIP: 0023:0xf739d579
[  917.368040][T18846] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[  917.368051][T18846] RSP: 002b:00000000f53c650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  917.368062][T18846] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000000000ae80
[  917.368069][T18846] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  917.368075][T18846] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  917.368081][T18846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  917.368087][T18846] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  917.368101][T18846]  </TASK>
[  917.368111][T18846] ERROR: Out of memory at tomoyo_realpath_from_path.
[  917.440526][T18848] netlink: 'syz.4.3551': attribute type 8 has an invalid length.
[  917.671329][T18853] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3554'.
[  917.819780][T18855] netlink: 'syz.5.3555': attribute type 1 has an invalid length.
[  917.822304][T18855] netlink: 'syz.5.3555': attribute type 3 has an invalid length.
[  917.825380][T18855] netlink: 224 bytes leftover after parsing attributes in process `syz.5.3555'.
[  919.337539][   T40] audit: type=1326 audit(1770193409.631:1348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18897 comm="syz.2.3568" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf739d579 code=0x0
[  920.498110][T18927] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (148514 ns). Using initial count to start timer.
[  921.611116][T16997] bond2 (unregistering): (slave geneve2): Releasing active interface
[  921.745710][T18952] fuse: Unknown parameter 'vxcan0'
[  921.863062][T16997] bond0 (unregistering): (slave veth0_to_hsr): Releasing backup interface
[  921.874291][T16997] bond0 (unregistering): Released all slaves
[  921.877188][T18957] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3581'.
[  921.878915][T16997] bond1 (unregistering): Released all slaves
[  921.978149][T16997] bond2 (unregistering): Released all slaves
[  922.039873][T18959] binder: 18958:18959 ioctl c0306201 0 returned -14
[  922.096458][T16997] bond3 (unregistering): Released all slaves
[  922.219987][T16997] bond4 (unregistering): Released all slaves
[  922.237372][T16997] bond5 (unregistering): Released all slaves
[  922.346385][T16997] bond6 (unregistering): Released all slaves
[  922.664238][T18977] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3586'.
[  922.676357][T18971] vivid-007: disconnect
[  922.679750][T18969] vivid-007: reconnect
[  922.706457][T18981] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3585'.
[  923.767335][T16997] hsr_slave_0: left promiscuous mode
[  923.780572][T16997] hsr_slave_1: left promiscuous mode
[  924.011741][T16997] pimreg (unregistering): left allmulticast mode
[  924.074841][T19014] fuse: Unknown parameter 'vxcan0'
[  924.324463][T19019] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3596'.
[  924.809120][T19032] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3599'.
[  925.037135][T19047] xt_CONNSECMARK: invalid mode: 5
[  925.195007][T19058] netlink: 'syz.2.3604': attribute type 1 has an invalid length.
[  925.197624][T19058] netlink: 'syz.2.3604': attribute type 2 has an invalid length.
[  925.200188][T19058] netlink: 268 bytes leftover after parsing attributes in process `syz.2.3604'.
[  925.244277][T19062] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  925.409886][T16997] IPVS: stop unused estimator thread 0...
[  925.539626][T19067] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  926.050090][T19082] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3610'.
[  926.209371][T19088] netlink: 204 bytes leftover after parsing attributes in process `syz.0.3611'.
[  926.428814][T19092] netlink: 52 bytes leftover after parsing attributes in process `syz.0.3612'.
[  926.579095][T19100] netlink: 'syz.5.3614': attribute type 1 has an invalid length.
[  926.582034][T19100] netlink: 'syz.5.3614': attribute type 2 has an invalid length.
[  926.611789][T19100] netlink: 268 bytes leftover after parsing attributes in process `syz.5.3614'.
[  926.774298][T19113] fuse: Unknown parameter 'vxcan0'
[  926.830860][T19113] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3619'.
[  926.917296][T19125] netlink: 128 bytes leftover after parsing attributes in process `syz.5.3618'.
[  929.557949][T19146] IPVS: set_ctl: invalid protocol: 109 172.20.20.52:20001
[  929.630826][T19149] netlink: 'syz.4.3626': attribute type 1 has an invalid length.
[  929.634409][T19149] netlink: 'syz.4.3626': attribute type 2 has an invalid length.
[  929.636861][T19149] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3626'.
[  929.795150][T19156] fuse: Unknown parameter 'vxcan0'
[  929.866531][T19156] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3629'.
[  930.859009][T19190] fuse: Unknown parameter 'vxcan0'
[  930.944113][T19190] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3638'.
[  930.954068][   T40] audit: type=1804 audit(1770193421.251:1349): pid=19188 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.3639" name="/newroot/266/file1" dev="fuse" ino=1 res=1 errno=0
[  931.101102][   T40] audit: type=1326 audit(1770193421.391:1350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19202 comm="syz.2.3642" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x0
[  931.201897][    C1] vcan0: j1939_tp_rxtimer: 0xffff888013313400: rx timeout, send abort
[  931.312597][   T10] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  931.462544][   T10] usb 5-1: Using ep0 maxpacket: 8
[  931.475085][   T10] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  931.479112][   T10] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  931.483569][   T10] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  931.487841][   T10] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  931.492162][   T10] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  931.497727][   T10] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  931.500815][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  931.705493][    C1] vcan0: j1939_tp_rxtimer: 0xffff888013313400: abort rx timeout. Force session deactivation
[  932.265898][T19218] netlink: 'syz.4.3645': attribute type 1 has an invalid length.
[  932.269642][T19218] netlink: 'syz.4.3645': attribute type 2 has an invalid length.
[  932.290939][T19218] netlink: 268 bytes leftover after parsing attributes in process `syz.4.3645'.
[  932.314685][T19219] usbtmc 5-1:16.0: simple control status returned 0
[  933.100618][T19227] xt_connbytes: Forcing CT accounting to be enabled
[  934.022739][T19233] sctp: [Deprecated]: syz.4.3650 (pid 19233) Use of int in max_burst socket option deprecated.
[  934.022739][T19233] Use struct sctp_assoc_value instead
[  934.030010][ T6235] usb 5-1: USB disconnect, device number 15
[  934.086107][T19235] fuse: Unknown parameter 'vxcan0'
[  934.144204][T19235] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3649'.
[  934.173384][T19244] syzkaller0: entered promiscuous mode
[  934.175909][T19244] syzkaller0: entered allmulticast mode
[  934.666020][T19257] xt_connbytes: Forcing CT accounting to be enabled
[  935.456210][T19268] FAULT_INJECTION: forcing a failure.
[  935.456210][T19268] name failslab, interval 1, probability 0, space 0, times 0
[  935.461359][T19268] CPU: 1 UID: 0 PID: 19268 Comm: syz.0.3659 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  935.461398][T19268] Tainted: [L]=SOFTLOCKUP
[  935.461404][T19268] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  935.461412][T19268] Call Trace:
[  935.461419][T19268]  <TASK>
[  935.461426][T19268]  dump_stack_lvl+0x100/0x190
[  935.461451][T19268]  should_fail_ex.cold+0x5/0xa
[  935.461477][T19268]  should_failslab+0xc2/0x120
[  935.461505][T19268]  kmem_cache_alloc_noprof+0x83/0x780
[  935.461526][T19268]  ? getname_flags.part.0+0x4c/0x540
[  935.461553][T19268]  ? getname_flags.part.0+0x4c/0x540
[  935.461574][T19268]  getname_flags.part.0+0x4c/0x540
[  935.461595][T19268]  ? __io_openat_prep+0xce/0x410
[  935.461618][T19268]  getname_flags+0x93/0xf0
[  935.461635][T19268]  __io_openat_prep+0x16d/0x410
[  935.461657][T19268]  io_submit_sqes+0xa4b/0x21c0
[  935.461688][T19268]  __do_sys_io_uring_enter+0x6b4/0x15b0
[  935.461712][T19268]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  935.461732][T19268]  ? count_memcg_events_mm.constprop.0+0x109/0x2a0
[  935.461758][T19268]  ? __pfx___schedule+0x10/0x10
[  935.461784][T19268]  __do_fast_syscall_32+0xde/0x660
[  935.461807][T19268]  do_fast_syscall_32+0x32/0x70
[  935.461827][T19268]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  935.461847][T19268] RIP: 0023:0xf739d579
[  935.461860][T19268] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[  935.461874][T19268] RSP: 002b:00000000f538450c EFLAGS: 00000292 ORIG_RAX: 00000000000001aa
[  935.461890][T19268] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000003516
[  935.461900][T19268] RDX: 000000000000addf RSI: 0000000000000002 RDI: 0000000000000000
[  935.461909][T19268] RBP: 000000000001517f R08: 0000000000000000 R09: 0000000000000000
[  935.461918][T19268] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  935.461927][T19268] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  935.461950][T19268]  </TASK>
[  935.746296][T19284] fuse: Unknown parameter 'vxcan0'
[  935.808235][T19284] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3662'.
[  936.105170][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  938.997522][T19317] netlink: 'syz.2.3667': attribute type 1 has an invalid length.
[  939.000157][T19317] netlink: 'syz.2.3667': attribute type 2 has an invalid length.
[  939.002626][T19317] netlink: 268 bytes leftover after parsing attributes in process `syz.2.3667'.
[  939.315459][T19327] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  939.563057][T19334] fuse: Unknown parameter 'vxcan0'
[  939.638954][T19334] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3671'.
[  939.682266][T19340] netlink: 'syz.2.3672': attribute type 1 has an invalid length.
[  939.685401][T19340] netlink: 'syz.2.3672': attribute type 3 has an invalid length.
[  939.688143][T19340] netlink: 224 bytes leftover after parsing attributes in process `syz.2.3672'.
[  939.709554][T19341] xt_connbytes: Forcing CT accounting to be enabled
[  940.174789][T19351] netlink: 'syz.2.3677': attribute type 1 has an invalid length.
[  940.178397][T19351] netlink: 'syz.2.3677': attribute type 2 has an invalid length.
[  940.181706][T19351] netlink: 268 bytes leftover after parsing attributes in process `syz.2.3677'.
[  940.641414][T19368] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3682'.
[  941.167576][T19384] netlink: 'syz.2.3687': attribute type 1 has an invalid length.
[  941.170070][T19384] netlink: 'syz.2.3687': attribute type 2 has an invalid length.
[  941.172596][T19384] netlink: 268 bytes leftover after parsing attributes in process `syz.2.3687'.
[  941.420953][T19395] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3692'.
[  941.625772][T19402] netlink: 'syz.5.3694': attribute type 2 has an invalid length.
[  941.817594][   T40] audit: type=1326 audit(1770193432.111:1351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19410 comm="syz.2.3697" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf739d579 code=0x0
[  942.050016][T19423] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3701'.
[  942.785648][T19456] xt_SECMARK: invalid mode: 0
[  943.111105][T19475] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3717'.
[  943.114129][T19475] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3717'.
[  943.116998][T19475] netlink: 'syz.4.3717': attribute type 20 has an invalid length.
[  943.232521][T15020] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  944.317920][T15020] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  944.321488][T15020] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  944.324848][T15020] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  944.329067][T15020] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  944.332055][T15020] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  944.337127][T15020] usb 10-1: config 0 descriptor??
[  944.352544][   T10] usb 9-1: new low-speed USB device number 9 using dummy_hcd
[  944.502431][   T10] usb 9-1: Invalid ep0 maxpacket: 32
[  944.632494][   T10] usb 9-1: new low-speed USB device number 10 using dummy_hcd
[  944.763522][T15020] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  944.782433][   T10] usb 9-1: Invalid ep0 maxpacket: 32
[  944.784664][   T10] usb usb9-port1: attempt power cycle
[  945.116222][T15718] usb 10-1: USB disconnect, device number 6
[  945.118605][T19489] plantronics 0003:047F:FFFF.0005: usb_submit_urb(ctrl) failed: -19
[  945.132467][   T10] usb 9-1: new low-speed USB device number 11 using dummy_hcd
[  945.153116][   T10] usb 9-1: Invalid ep0 maxpacket: 32
[  945.292723][   T10] usb 9-1: new low-speed USB device number 12 using dummy_hcd
[  945.314107][   T10] usb 9-1: Invalid ep0 maxpacket: 32
[  945.316268][   T10] usb usb9-port1: unable to enumerate USB device
[  945.922471][T15718] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  946.072456][T15718] usb 10-1: Using ep0 maxpacket: 8
[  946.075488][T15718] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  946.079120][T15718] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  946.082054][T15718] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  946.086464][T15718] usb 10-1: config 0 descriptor??
[  946.316991][T15718] iowarrior 10-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  946.780210][T15454] usb 10-1: USB disconnect, device number 7
[  948.611282][T19543] sp0: Synchronizing with TNC
[  950.356389][ T5297] Bluetooth: hci4: unexpected event for opcode 0x9f22
[  950.408354][T19574] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(8)
[  950.410452][T19574] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  950.413017][T19574] vhci_hcd vhci_hcd.0: Device attached
[  950.554100][T19571] netlink: 72 bytes leftover after parsing attributes in process `syz.4.3739'.
[  950.572095][T19571] bridge0: port 2(bridge_slave_1) entered disabled state
[  950.575209][T19571] bridge0: port 1(bridge_slave_0) entered disabled state
[  950.602338][T19571] bridge_slave_1: left allmulticast mode
[  950.604753][T19571] bridge_slave_1: left promiscuous mode
[  950.623448][T19576] vhci_hcd: connection closed
[  950.623729][T17003] vhci_hcd vhci_hcd.5: stop threads
[  950.627409][T17003] vhci_hcd vhci_hcd.5: release socket
[  950.629208][T17003] vhci_hcd vhci_hcd.5: disconnect device
[  950.633330][T19571] bridge0: port 2(bridge_slave_1) entered disabled state
[  950.654656][   T10] usb 47-1: new low-speed USB device number 3 using vhci_hcd
[  950.659939][   T10] usb 47-1: enqueue for inactive port 0
[  950.675584][T19571] bridge_slave_0: left allmulticast mode
[  950.692557][T19571] bridge_slave_0: left promiscuous mode
[  950.695283][T19571] bridge0: port 1(bridge_slave_0) entered disabled state
[  950.722577][   T10] vhci_hcd vhci_hcd.5: vhci_device speed not set
[  951.118332][T19583] fuse: Unknown parameter 'vxcan0'
[  951.245716][T19593] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3742'.
[  951.457962][T19597] fuse: Bad value for 'rootmode'
[  957.724408][T19647] tmpfs: Unknown parameter 'usr	'
[  958.194387][T19663] /dev/nullb0: Can't open blockdev
[  960.289823][T19686] netlink: 'syz.0.3772': attribute type 1 has an invalid length.
[  961.199498][   T40] audit: type=1326 audit(1770193451.491:1352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19689 comm="syz.0.3774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7fc00000
[  961.206533][   T40] audit: type=1326 audit(1770193451.491:1353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19689 comm="syz.0.3774" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf739d579 code=0x7fc00000
[  961.232598][   T40] audit: type=1326 audit(1770193451.491:1354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19689 comm="syz.0.3774" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7fc00000
[  963.253569][ T5297] Bluetooth: hci2: unexpected event for opcode 0x9f22
[  965.103143][T19759] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3791'.
[  965.115049][T19759] gre0: Master is either lo or non-ether device
[  965.422972][T19761] netlink: 72 bytes leftover after parsing attributes in process `syz.0.3796'.
[  965.517220][T19761] bridge0: port 3(erspan0) entered disabled state
[  965.519457][T19761] bridge0: port 2(bridge_slave_1) entered disabled state
[  965.521966][T19761] bridge0: port 1(bridge_slave_0) entered disabled state
[  966.255384][T19782] fuse: Unknown parameter '0x0000000000000003'
[  966.333853][T19783] netlink: 'syz.5.3794': attribute type 10 has an invalid length.
[  966.347186][T19783] team0: Port device netdevsim0 added
[  966.350191][T19790] fuse: Unknown parameter 'vxcan0'
[  966.352268][T19783] netlink: 'syz.5.3794': attribute type 10 has an invalid length.
[  966.361739][T19783] team0: Port device netdevsim0 removed
[  966.366440][T19783] bond0: (slave netdevsim0): Enslaving as an active interface with a down link
[  966.446510][T19796] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3800'.
[  969.214775][T19856] IPVS: set_ctl: invalid protocol: 92 127.0.0.1:20001
[  969.500823][T19878] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3828'.
[  969.505252][T19878] IPv6: NLM_F_CREATE should be specified when creating new route
[  969.507728][T19878] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  969.510005][T19878] IPv6: NLM_F_CREATE should be set when creating new route
[  969.521421][T19881] netlink: 212368 bytes leftover after parsing attributes in process `syz.4.3829'.
[  969.530965][T19881] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3829'.
[  969.635271][T19887] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  969.646768][T19887] CIFS mount error: No usable UNC path provided in device string!
[  969.646768][T19887] 
[  969.650068][T19887] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  970.369463][T19917] netlink: 'syz.5.3840': attribute type 1 has an invalid length.
[  970.414102][T19917] 8021q: adding VLAN 0 to HW filter on device bond4
[  970.576742][T19925] 9pnet: Found fid 0 not clunked
[  971.385128][T19950] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.3852'.
[  971.390705][T19948] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.3852'.
[  972.067767][T19968] netlink: 304 bytes leftover after parsing attributes in process `syz.5.3857'.
[  972.112992][T19970] fuse: Unknown parameter 'vxcan0'
[  972.167276][T19970] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3858'.
[  972.326695][T19965] serio: Serial port ptm0
[  973.426405][T19992] bridge3: entered allmulticast mode
[  973.436451][T19992] ������: renamed from hsr0 (while UP)
[  973.992067][T19995] netlink: 304 bytes leftover after parsing attributes in process `syz.5.3866'.
[  974.034712][T19997] fuse: Unknown parameter 'vxcan0'
[  974.106560][T19997] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3867'.
[  974.300698][T20012] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3870'.
[  975.892899][T20041] sp0: Synchronizing with TNC
[  976.016459][T20041] mkiss: ax0: crc mode is auto.
[  976.031960][T20048] netlink: 19 bytes leftover after parsing attributes in process `syz.2.3881'.
[  976.573468][T20062] netlink: 'syz.4.3886': attribute type 12 has an invalid length.
[  976.576542][T20060] netlink: 'syz.2.3885': attribute type 2 has an invalid length.
[  976.581492][T20060] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3885'.
[  976.585383][T20060] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3885'.
[  976.631726][T20060] IPv6: sit1: Disabled Multicast RS
[  976.634015][T20060] sit1: entered allmulticast mode
[  978.659184][T20099] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(12)
[  978.661950][T20099] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  978.680759][T20099] vhci_hcd vhci_hcd.0: Device attached
[  978.880641][T20104] fuse: Unknown parameter 'vxcan0'
[  978.906798][T20104] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3898'.
[  978.922458][T15718] usb 47-1: new low-speed USB device number 4 using vhci_hcd
[  979.348255][T20100] vhci_hcd: connection reset by peer
[  979.350728][T17004] vhci_hcd vhci_hcd.5: stop threads
[  979.354119][T17004] vhci_hcd vhci_hcd.5: release socket
[  979.356510][T17004] vhci_hcd vhci_hcd.5: disconnect device
[  981.241760][T20134] netlink: 'syz.0.3907': attribute type 1 has an invalid length.
[  981.405438][T20138] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  981.407522][T20138] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  981.409986][T20138] vhci_hcd vhci_hcd.0: Device attached
[  981.592438][ T6067] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  981.652631][ T6067] usb 37-1: new full-speed USB device number 9 using vhci_hcd
[  981.691872][T20149] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3913'.
[  981.696118][T20149] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  982.019748][ T5297] Bluetooth: hci3: Invalid connection link type handle 0x00c9
[  982.138514][T20139] vhci_hcd: connection reset by peer
[  982.141367][T16997] vhci_hcd vhci_hcd.0: stop threads
[  982.143108][T16997] vhci_hcd vhci_hcd.0: release socket
[  982.145516][T16997] vhci_hcd vhci_hcd.0: disconnect device
[  982.194586][T20162] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3916'.
[  982.516449][T20164] netlink: 'syz.2.3917': attribute type 1 has an invalid length.
[  982.518887][T20164] netlink: 'syz.2.3917': attribute type 1 has an invalid length.
[  982.521428][T20164] netlink: 256 bytes leftover after parsing attributes in process `syz.2.3917'.
[  982.747997][T20168] fuse: Bad value for 'fd'
[  984.072559][T15718] vhci_hcd vhci_hcd.5: vhci_device speed not set
[  984.482447][ T6237] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  984.528714][T20188] bridge0: port 2(bridge_slave_1) entered disabled state
[  984.645578][ T6237] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  984.649459][ T6237] usb 9-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  984.656835][ T6237] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  984.665288][ T6237] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  984.672508][ T6237] usb 9-1: Product: syz
[  984.674032][ T6237] usb 9-1: Manufacturer: syz
[  984.682467][ T6237] usb 9-1: SerialNumber: syz
[  984.687427][ T6237] usb 9-1: config 0 descriptor??
[  986.131116][T20200] fuse: Unknown parameter 'vxcan0'
[  986.197269][T20200] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3928'.
[  986.422338][T20207] fuse: Bad value for 'fd'
[  986.732626][ T6067] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  987.304696][   T10] usb 9-1: USB disconnect, device number 13
[  987.731243][T20231] fuse: Unknown parameter 'vxcan0'
[  987.822046][T20236] bridge0: port 1(bridge_slave_0) entered disabled state
[  987.853119][T20243] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3935'.
[  987.864683][T20231] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3937'.
[  987.909484][T20236] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  987.920672][T20236] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  988.091396][T20236] bond2: left promiscuous mode
[  988.094329][T20236] xfrm1: left promiscuous mode
[  988.102427][T20236] sit1: left allmulticast mode
[  988.108454][T16998] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  988.111911][T16998] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  988.117979][T16998] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  988.121299][T16998] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  988.364702][T20267] fuse: Unknown parameter 'ff'
[  988.384578][T20269] fuse: Unknown parameter 'vxcan0'
[  988.429031][T20273] fuse: Bad value for 'fd'
[  988.453059][T20269] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3948'.
[  988.511716][T20279] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3952'.
[  988.529615][T20279] overlayfs: failed to clone upperpath
[  989.761909][T20286] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  989.766789][T20286] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  989.905090][ T7854] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  989.908255][ T7854] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  989.911197][ T7854] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  989.931547][ T7854] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  989.968711][T20326] netlink: 'syz.4.3958': attribute type 1 has an invalid length.
[  989.975012][T20326] netlink: 'syz.4.3958': attribute type 2 has an invalid length.
[  989.979259][T20328] fuse: Unknown parameter 'vxcan0'
[  989.980984][T20326] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3958'.
[  990.043591][T20328] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3959'.
[  990.164635][T20340] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3963'.
[  990.540703][T20345] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3964'.
[  991.426490][T20359] fuse: Unknown parameter 'vxcan0'
[  991.500557][T20359] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3969'.
[  991.556249][T20370] netlink: 'syz.2.3973': attribute type 1 has an invalid length.
[  991.573282][T20370] 8021q: adding VLAN 0 to HW filter on device bond3
[  991.691756][T20379] FAULT_INJECTION: forcing a failure.
[  991.691756][T20379] name failslab, interval 1, probability 0, space 0, times 0
[  991.699884][T20379] CPU: 0 UID: 0 PID: 20379 Comm: syz.0.3974 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  991.699923][T20379] Tainted: [L]=SOFTLOCKUP
[  991.699928][T20379] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  991.699951][T20379] Call Trace:
[  991.699955][T20379]  <TASK>
[  991.699960][T20379]  dump_stack_lvl+0x100/0x190
[  991.699977][T20379]  should_fail_ex.cold+0x5/0xa
[  991.699996][T20379]  should_failslab+0xc2/0x120
[  991.700012][T20379]  ? tomoyo_realpath_from_path+0xb6/0x690
[  991.700024][T20379]  __kmalloc_noprof+0xf6/0x9c0
[  991.700040][T20379]  ? tomoyo_realpath_from_path+0xb6/0x690
[  991.700050][T20379]  tomoyo_realpath_from_path+0xb6/0x690
[  991.700065][T20379]  tomoyo_path_number_perm+0x23c/0x580
[  991.700082][T20379]  ? tomoyo_path_number_perm+0x22e/0x580
[  991.700099][T20379]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  991.700130][T20379]  ? find_held_lock+0x2b/0x80
[  991.700141][T20379]  ? hook_file_ioctl_common+0x146/0x410
[  991.700157][T20379]  ? __fget_files+0x215/0x3d0
[  991.700172][T20379]  ? __fget_files+0x21f/0x3d0
[  991.700186][T20379]  security_file_ioctl_compat+0xd3/0x230
[  991.700210][T20379]  __ia32_compat_sys_ioctl+0xc2/0x360
[  991.700230][T20379]  __do_fast_syscall_32+0xde/0x660
[  991.700246][T20379]  do_fast_syscall_32+0x32/0x70
[  991.700261][T20379]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  991.700276][T20379] RIP: 0023:0xf739d579
[  991.700285][T20379] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[  991.700296][T20379] RSP: 002b:00000000f53c650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  991.700307][T20379] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000000089e0
[  991.700314][T20379] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[  991.700321][T20379] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  991.700327][T20379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  991.700333][T20379] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  991.700348][T20379]  </TASK>
[  991.700406][T20379] ERROR: Out of memory at tomoyo_realpath_from_path.
[  991.751427][T20313] libceph: connect (1)[c::]:6789 error -101
[  991.772576][T20313] libceph: mon0 (1)[c::]:6789 connect error
[  992.014286][T20402] fuse: Unknown parameter 'vxcan0'
[  992.037488][   T34] libceph: connect (1)[c::]:6789 error -101
[  992.040127][   T34] libceph: mon0 (1)[c::]:6789 connect error
[  992.090980][T20408] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3981'.
[  992.563217][   T34] libceph: connect (1)[c::]:6789 error -101
[  992.565267][   T34] libceph: mon0 (1)[c::]:6789 connect error
[  992.579640][T20384] ceph: No mds server is up or the cluster is laggy
[  992.732648][   T40] audit: type=1326 audit(992.601:1355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20399 comm="syz.4.3980" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa1598 code=0x7ffc0000
[  992.739218][   T40] audit: type=1326 audit(992.601:1356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20399 comm="syz.4.3980" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa1598 code=0x7ffc0000
[  992.746211][   T40] audit: type=1326 audit(992.601:1357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20399 comm="syz.4.3980" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa1598 code=0x7ffc0000
[  992.752801][   T40] audit: type=1326 audit(992.601:1358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20399 comm="syz.4.3980" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa1598 code=0x7ffc0000
[  992.759528][   T40] audit: type=1326 audit(992.601:1359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20399 comm="syz.4.3980" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  992.774602][   T40] audit: type=1326 audit(992.601:1360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20399 comm="syz.4.3980" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa1598 code=0x7ffc0000
[  992.781243][   T40] audit: type=1326 audit(992.601:1361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20399 comm="syz.4.3980" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  992.788073][   T40] audit: type=1326 audit(992.601:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20399 comm="syz.4.3980" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa1598 code=0x7ffc0000
[  992.795120][   T40] audit: type=1326 audit(992.601:1363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20399 comm="syz.4.3980" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x7ffc0000
[  992.804214][   T40] audit: type=1326 audit(992.611:1364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20399 comm="syz.4.3980" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa1598 code=0x7ffc0000
[  992.924226][T20451] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3996'.
[  993.055994][T20456] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3997'.
[  994.267955][T20473] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4004'.
[  994.398119][T20483] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4007'.
[  994.680416][T20493] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4010'.
[  995.584933][T20513] netlink: 'syz.5.4014': attribute type 10 has an invalid length.
[  995.596868][T20513] 8021q: adding VLAN 0 to HW filter on device team0
[  995.614586][T20513] bond0: (slave team0): Enslaving as an active interface with a down link
[  995.634709][T20514] program syz.0.4017 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  995.642994][T20513] netlink: 'syz.5.4014': attribute type 10 has an invalid length.
[  995.660998][T20513] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  995.674230][T20513] netlink: 40 bytes leftover after parsing attributes in process `syz.5.4014'.
[  995.797099][T20519] mkiss: ax1: crc mode is auto.
[  996.424651][T20530] netlink: 'syz.4.4020': attribute type 10 has an invalid length.
[  996.433164][T20530] 8021q: adding VLAN 0 to HW filter on device team0
[  996.437239][T20530] bond0: (slave team0): Enslaving as an active interface with an up link
[  996.451595][T20530] netlink: 'syz.4.4020': attribute type 10 has an invalid length.
[  996.457086][T20530] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  996.518613][T20523] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  997.545671][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[ 1000.957499][T20585] pim6reg: entered allmulticast mode
[ 1001.019965][T20587] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4038'.
[ 1001.283120][T20606] netlink: 'syz.2.4045': attribute type 10 has an invalid length.
[ 1001.286818][T20606] 8021q: adding VLAN 0 to HW filter on device team0
[ 1001.327656][T20606] netlink: 'syz.2.4045': attribute type 10 has an invalid length.
[ 1001.369840][T20606] siw: device registration error -23
[ 1003.103284][T20633] raw_sendmsg: syz.5.4052 forgot to set AF_INET. Fix it!
[ 1003.979714][T20659] fuse: Unknown parameter 'vxcan0'
[ 1003.982897][T20658] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[ 1003.985660][T20658] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1003.989525][T20658] vhci_hcd vhci_hcd.0: Device attached
[ 1004.006508][T20658] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4057'.
[ 1004.036006][T20659] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4059'.
[ 1004.262490][T15718] usb 46-1: SetAddress Request (6) to port 0
[ 1004.264570][T15718] usb 46-1: new SuperSpeed USB device number 6 using vhci_hcd
[ 1004.577463][T20660] vhci_hcd: connection reset by peer
[ 1004.579396][ T7854] vhci_hcd vhci_hcd.4: stop threads
[ 1004.581119][ T7854] vhci_hcd vhci_hcd.4: release socket
[ 1004.583022][ T7854] vhci_hcd vhci_hcd.4: disconnect device
[ 1005.164671][T20683] netlink: 'syz.4.4064': attribute type 4 has an invalid length.
[ 1005.169489][T20683] netlink: 'syz.4.4064': attribute type 4 has an invalid length.
[ 1005.347847][T20692] fuse: Unknown parameter 'vxcan0'
[ 1005.401548][T20692] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4068'.
[ 1007.202387][T20717] FAULT_INJECTION: forcing a failure.
[ 1007.202387][T20717] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1007.209184][T20717] CPU: 0 UID: 0 PID: 20717 Comm: syz.5.4074 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1007.209202][T20717] Tainted: [L]=SOFTLOCKUP
[ 1007.209206][T20717] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1007.209213][T20717] Call Trace:
[ 1007.209219][T20717]  <TASK>
[ 1007.209224][T20717]  dump_stack_lvl+0x100/0x190
[ 1007.209241][T20717]  should_fail_ex.cold+0x5/0xa
[ 1007.209260][T20717]  _copy_to_user+0x32/0xd0
[ 1007.209278][T20717]  simple_read_from_buffer+0xcb/0x170
[ 1007.209291][T20717]  proc_fail_nth_read+0x1af/0x230
[ 1007.209306][T20717]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1007.209320][T20717]  ? rw_verify_area+0xce/0x6d0
[ 1007.209331][T20717]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1007.209344][T20717]  vfs_read+0x1e4/0xb30
[ 1007.209358][T20717]  ? __pfx_vfs_read+0x10/0x10
[ 1007.209369][T20717]  ? find_held_lock+0x2b/0x80
[ 1007.209381][T20717]  ? __fget_files+0x215/0x3d0
[ 1007.209396][T20717]  ? __fget_files+0x21f/0x3d0
[ 1007.209412][T20717]  ksys_read+0x12a/0x250
[ 1007.209424][T20717]  ? __pfx_ksys_read+0x10/0x10
[ 1007.209438][T20717]  ? __pfx___sanitizer_cov_trace_pc+0x10/0x10
[ 1007.209453][T20717]  do_int80_emulation+0x101/0x470
[ 1007.209470][T20717]  asm_int80_emulation+0x1a/0x20
[ 1007.209482][T20717] RIP: 0023:0xf71a572b
[ 1007.209491][T20717] Code: 57 56 53 8b 44 24 14 f6 00 08 75 23 8b 44 24 18 8b 5c 24 1c 8b 4c 24 20 8b 54 24 24 8b 74 24 28 8b 7c 24 2c 8b 6c 24 30 cd 80 <5b> 5e 5f 5d c3 5b 5e 5f 5d e9 f7 a1 ff ff 66 90 66 90 66 90 90 53
[ 1007.209502][T20717] RSP: 002b:00000000f54664bc EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 1007.209513][T20717] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f54665d0
[ 1007.209520][T20717] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[ 1007.209527][T20717] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1007.209533][T20717] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1007.209539][T20717] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1007.209554][T20717]  </TASK>
[ 1007.618416][T20723] netlink: 1371 bytes leftover after parsing attributes in process `syz.5.4076'.
[ 1007.648668][T20725] fuse: Unknown parameter 'vxcan0'
[ 1007.706248][T20725] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4077'.
[ 1009.872624][T15718] usb 46-1: device descriptor read/8, error -110
[ 1010.380796][T20757] fuse: Unknown parameter 'vxcan0'
[ 1010.437085][T20757] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4086'.
[ 1010.476882][T15718] usb usb46-port1: attempt power cycle
[ 1011.042877][T15718] usb usb46-port1: unable to enumerate USB device
[ 1011.727459][T20789] fuse: Unknown parameter 'vxcan0'
[ 1011.783891][T20789] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4096'.
[ 1012.073280][T20809] 9pnet_fd: p9_fd_create_unix (20809): address too long: ./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[ 1012.084456][T20809] sp0: Synchronizing with TNC
[ 1012.187197][T20814] FAULT_INJECTION: forcing a failure.
[ 1012.187197][T20814] name failslab, interval 1, probability 0, space 0, times 0
[ 1012.191317][T20814] CPU: 1 UID: 0 PID: 20814 Comm: syz.4.4103 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1012.191335][T20814] Tainted: [L]=SOFTLOCKUP
[ 1012.191339][T20814] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1012.191345][T20814] Call Trace:
[ 1012.191356][T20814]  <TASK>
[ 1012.191373][T20814]  dump_stack_lvl+0x100/0x190
[ 1012.191401][T20814]  should_fail_ex.cold+0x5/0xa
[ 1012.191419][T20814]  should_failslab+0xc2/0x120
[ 1012.191436][T20814]  __kmalloc_cache_noprof+0x80/0x810
[ 1012.191448][T20814]  ? __request_module+0x2b7/0x650
[ 1012.191465][T20814]  ? lockdep_hardirqs_on+0x78/0x100
[ 1012.191485][T20814]  ? __request_module+0x2b7/0x650
[ 1012.191501][T20814]  __request_module+0x2b7/0x650
[ 1012.191518][T20814]  ? __pfx___request_module+0x10/0x10
[ 1012.191536][T20814]  ? __lock_acquire+0x4a5/0x2630
[ 1012.191560][T20814]  ? kasan_quarantine_put+0x104/0x240
[ 1012.191580][T20814]  ? apparmor_capable+0x1d7/0x4e0
[ 1012.191601][T20814]  ? dev_load+0x1c5/0x240
[ 1012.191617][T20814]  ? __pfx_compat_standard_call+0x10/0x10
[ 1012.191633][T20814]  dev_load+0x22b/0x240
[ 1012.191648][T20814]  wext_ioctl_dispatch.constprop.0+0x9e/0x3e0
[ 1012.191667][T20814]  compat_wext_handle_ioctl+0x15d/0x220
[ 1012.191683][T20814]  ? __pfx_compat_wext_handle_ioctl+0x10/0x10
[ 1012.191700][T20814]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1012.191714][T20814]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1012.191759][T20814]  compat_sock_ioctl+0x381/0x760
[ 1012.191790][T20814]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1012.191814][T20814]  ? __fget_files+0x21f/0x3d0
[ 1012.191831][T20814]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 1012.191845][T20814]  __ia32_compat_sys_ioctl+0x2cf/0x360
[ 1012.191865][T20814]  __do_fast_syscall_32+0xde/0x660
[ 1012.191880][T20814]  do_fast_syscall_32+0x32/0x70
[ 1012.191895][T20814]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1012.191909][T20814] RIP: 0023:0xf7fa1579
[ 1012.191918][T20814] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[ 1012.191928][T20814] RSP: 002b:00000000f546650c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 1012.191940][T20814] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008b2a
[ 1012.191947][T20814] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[ 1012.191954][T20814] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1012.191960][T20814] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1012.191966][T20814] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1012.191980][T20814]  </TASK>
[ 1012.354608][T20808] [U] �
[ 1012.364006][T20819] fuse: Unknown parameter 'vxcan0'
[ 1012.782541][T20819] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4105'.
[ 1012.827667][T20833] genirq: Flags mismatch irq 4. 00200000 (aio_iiro_16) vs. 00200080 (ttyS0)
[ 1013.654094][T20861] fuse: Unknown parameter 'vxcan0'
[ 1013.736066][T20867] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4120'.
[ 1013.746332][   T40] kauditd_printk_skb: 172 callbacks suppressed
[ 1013.746348][   T40] audit: type=1804 audit(1013.631:1537): pid=20865 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.4116" name="/newroot/393/bus/bus" dev="overlay" ino=2179 res=1 errno=0
[ 1013.746896][T20866] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7)
[ 1013.759469][T20866] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1013.763009][T20866] vhci_hcd vhci_hcd.0: Device attached
[ 1013.783502][T20866] random: crng reseeded on system resumption
[ 1014.019431][T20874] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4122'.
[ 1014.043194][T20874] netlink: 'syz.4.4122': attribute type 1 has an invalid length.
[ 1014.047394][T20874] netlink: 'syz.4.4122': attribute type 1 has an invalid length.
[ 1014.063450][   T34] usb 48-1: SetAddress Request (3) to port 0
[ 1014.065418][   T34] usb 48-1: new SuperSpeed USB device number 3 using vhci_hcd
[ 1014.443214][T20882] FAULT_INJECTION: forcing a failure.
[ 1014.443214][T20882] name failslab, interval 1, probability 0, space 0, times 0
[ 1014.447152][T20882] CPU: 2 UID: 0 PID: 20882 Comm: syz.0.4125 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1014.447182][T20882] Tainted: [L]=SOFTLOCKUP
[ 1014.447187][T20882] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1014.447194][T20882] Call Trace:
[ 1014.447198][T20882]  <TASK>
[ 1014.447202][T20882]  dump_stack_lvl+0x100/0x190
[ 1014.447220][T20882]  should_fail_ex.cold+0x5/0xa
[ 1014.447239][T20882]  should_failslab+0xc2/0x120
[ 1014.447256][T20882]  ? tomoyo_encode2+0xfb/0x3c0
[ 1014.447266][T20882]  __kmalloc_noprof+0xf6/0x9c0
[ 1014.447282][T20882]  ? tomoyo_encode2+0xfb/0x3c0
[ 1014.447292][T20882]  tomoyo_encode2+0xfb/0x3c0
[ 1014.447302][T20882]  ? find_held_lock+0x2b/0x80
[ 1014.447315][T20882]  tomoyo_encode+0x29/0x50
[ 1014.447325][T20882]  tomoyo_mount_acl+0x14c/0x8b0
[ 1014.447342][T20882]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1014.447357][T20882]  ? kernel_text_address+0x8d/0x100
[ 1014.447375][T20882]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[ 1014.447392][T20882]  ? arch_stack_walk+0xa6/0xf0
[ 1014.447420][T20882]  ? tomoyo_domain+0xb2/0x150
[ 1014.447433][T20882]  ? tomoyo_profile+0x47/0x60
[ 1014.447447][T20882]  tomoyo_mount_permission+0x214/0x460
[ 1014.447464][T20882]  ? tomoyo_mount_permission+0x1f6/0x460
[ 1014.447482][T20882]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[ 1014.447508][T20882]  security_sb_mount+0xdd/0x270
[ 1014.447525][T20882]  path_mount+0x158/0x23c0
[ 1014.447540][T20882]  ? rcu_is_watching+0x12/0xc0
[ 1014.447550][T20882]  ? kasan_quarantine_put+0x104/0x240
[ 1014.447576][T20882]  ? __pfx_path_mount+0x10/0x10
[ 1014.447591][T20882]  ? kmem_cache_free+0x143/0x720
[ 1014.447603][T20882]  ? putname+0xf5/0x1a0
[ 1014.447620][T20882]  ? putname+0xf5/0x1a0
[ 1014.447633][T20882]  ? putname+0xfa/0x1a0
[ 1014.447649][T20882]  ? __ia32_sys_mount+0x292/0x310
[ 1014.447663][T20882]  __ia32_sys_mount+0x292/0x310
[ 1014.447678][T20882]  ? __pfx___ia32_sys_mount+0x10/0x10
[ 1014.447698][T20882]  __do_fast_syscall_32+0xde/0x660
[ 1014.447719][T20882]  do_fast_syscall_32+0x32/0x70
[ 1014.447752][T20882]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1014.447766][T20882] RIP: 0023:0xf739d579
[ 1014.447776][T20882] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[ 1014.447787][T20882] RSP: 002b:00000000f53a550c EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[ 1014.447798][T20882] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000040
[ 1014.447805][T20882] RDX: 0000000000000000 RSI: 0000000000208000 RDI: 0000000000000000
[ 1014.447811][T20882] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1014.447818][T20882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1014.447824][T20882] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1014.447839][T20882]  </TASK>
[ 1014.767358][T15718] kernel write not supported for file /uhid (pid: 15718 comm: kworker/2:2)
[ 1015.343221][T20897] fuse: Unknown parameter 'vxcan0'
[ 1015.353117][T20866] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1015.359533][T20868] vhci_hcd: connection reset by peer
[ 1015.363265][ T7832] vhci_hcd vhci_hcd.5: stop threads
[ 1015.365143][ T7832] vhci_hcd vhci_hcd.5: release socket
[ 1015.368507][ T7832] vhci_hcd vhci_hcd.5: disconnect device
[ 1015.458830][T20899] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4129'.
[ 1016.144432][T20923] FAULT_INJECTION: forcing a failure.
[ 1016.144432][T20923] name failslab, interval 1, probability 0, space 0, times 0
[ 1016.148178][T20923] CPU: 1 UID: 0 PID: 20923 Comm: syz.4.4131 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1016.148208][T20923] Tainted: [L]=SOFTLOCKUP
[ 1016.148212][T20923] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1016.148219][T20923] Call Trace:
[ 1016.148224][T20923]  <TASK>
[ 1016.148229][T20923]  dump_stack_lvl+0x100/0x190
[ 1016.148247][T20923]  should_fail_ex.cold+0x5/0xa
[ 1016.148266][T20923]  should_failslab+0xc2/0x120
[ 1016.148282][T20923]  kmem_cache_alloc_noprof+0x83/0x780
[ 1016.148297][T20923]  ? getname_flags.part.0+0x4c/0x540
[ 1016.148317][T20923]  ? getname_flags.part.0+0x4c/0x540
[ 1016.148333][T20923]  getname_flags.part.0+0x4c/0x540
[ 1016.148349][T20923]  ? build_open_how+0x4b/0x120
[ 1016.148367][T20923]  getname_flags+0x93/0xf0
[ 1016.148378][T20923]  __io_openat_prep+0x16d/0x410
[ 1016.148395][T20923]  io_submit_sqes+0xa4b/0x21c0
[ 1016.148416][T20923]  __do_sys_io_uring_enter+0x6b4/0x15b0
[ 1016.148433][T20923]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[ 1016.148450][T20923]  ? fput+0x79/0x100
[ 1016.148465][T20923]  ? ksys_write+0x1ac/0x250
[ 1016.148477][T20923]  ? __pfx_ksys_write+0x10/0x10
[ 1016.148493][T20923]  __do_fast_syscall_32+0xde/0x660
[ 1016.148509][T20923]  do_fast_syscall_32+0x32/0x70
[ 1016.148524][T20923]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1016.148538][T20923] RIP: 0023:0xf7fa1579
[ 1016.148547][T20923] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[ 1016.148558][T20923] RSP: 002b:00000000f542450c EFLAGS: 00000292 ORIG_RAX: 00000000000001aa
[ 1016.148569][T20923] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000000003516
[ 1016.148576][T20923] RDX: 000000000000addf RSI: 0000000000000002 RDI: 0000000000000000
[ 1016.148583][T20923] RBP: 000000000001517f R08: 0000000000000000 R09: 0000000000000000
[ 1016.148589][T20923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1016.148595][T20923] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1016.148610][T20923]  </TASK>
[ 1016.596080][T20932] fuse: Unknown parameter 'vxcan0'
[ 1016.702806][T20935] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4139'.
[ 1018.725848][T20979] tmpfs: Bad value for 'usrquota_block_hardlimit'
[ 1019.144327][   T34] usb 48-1: device descriptor read/8, error -110
[ 1019.540372][   T34] usb usb48-port1: attempt power cycle
[ 1019.627557][T20986] fuse: Unknown parameter 'vxcan0'
[ 1019.685342][T20986] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4152'.
[ 1020.103468][   T34] usb usb48-port1: unable to enumerate USB device
[ 1020.137807][T20999] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[ 1021.442772][T21016] bridge0: port 1(erspan0) entered blocking state
[ 1021.445133][T21016] bridge0: port 1(erspan0) entered disabled state
[ 1021.447383][T21016] erspan0: entered allmulticast mode
[ 1021.452207][T21016] erspan0: entered promiscuous mode
[ 1022.465229][T21030] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[ 1023.300334][T21045] trusted_key: syz.4.4170 sent an empty control message without MSG_MORE.
[ 1023.313207][T21045] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4170'.
[ 1023.450649][T21050] tmpfs: Bad value for 'usrquota_block_hardlimit'
[ 1026.135099][T21075] netlink: 'syz.5.4180': attribute type 4 has an invalid length.
[ 1026.162526][T21075] tipc: Started in network mode
[ 1026.172661][T21075] tipc: Node identity 76191bd23104, cluster identity 4711
[ 1026.205024][T21075] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1026.215221][T21075] syzkaller0: entered promiscuous mode
[ 1026.217718][T21075] syzkaller0: entered allmulticast mode
[ 1026.241437][T21072] tipc: Resetting bearer <eth:syzkaller0>
[ 1026.263358][T21072] tipc: Disabling bearer <eth:syzkaller0>
[ 1026.278470][T21079] bond4: option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[ 1026.282757][T21079] bond4 (unregistering): Released all slaves
[ 1026.755753][T21097] io-wq is not configured for unbound workers
[ 1027.338860][T21103] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4188'.
[ 1027.700818][T21112] tmpfs: Bad value for 'usrquota_block_hardlimit'
[ 1028.425988][T21114] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4192'.
[ 1028.508782][T21118] ptrace attach of "/syz-executor exec"[15482] was attempted by "/syz-executor exec"[21118]
[ 1028.626548][T21125] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4197'.
[ 1028.802187][T21123] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1028.964708][T21132] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4194'.
[ 1029.079748][T21135] FAULT_INJECTION: forcing a failure.
[ 1029.079748][T21135] name failslab, interval 1, probability 0, space 0, times 0
[ 1029.084604][T21135] CPU: 1 UID: 0 PID: 21135 Comm: syz.5.4199 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1029.084634][T21135] Tainted: [L]=SOFTLOCKUP
[ 1029.084639][T21135] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1029.084645][T21135] Call Trace:
[ 1029.084650][T21135]  <TASK>
[ 1029.084654][T21135]  dump_stack_lvl+0x100/0x190
[ 1029.084672][T21135]  should_fail_ex.cold+0x5/0xa
[ 1029.084690][T21135]  should_failslab+0xc2/0x120
[ 1029.084707][T21135]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1029.084719][T21135]  __kmalloc_noprof+0xf6/0x9c0
[ 1029.084734][T21135]  ? tomoyo_realpath_from_path+0xb6/0x690
[ 1029.084745][T21135]  tomoyo_realpath_from_path+0xb6/0x690
[ 1029.084760][T21135]  tomoyo_path_number_perm+0x23c/0x580
[ 1029.084775][T21135]  ? tomoyo_path_number_perm+0x22e/0x580
[ 1029.084793][T21135]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1029.084808][T21135]  ? lockdep_hardirqs_on+0x78/0x100
[ 1029.084823][T21135]  ? irqentry_exit+0x180/0x670
[ 1029.084849][T21135]  ? find_held_lock+0x2b/0x80
[ 1029.084864][T21135]  ? hook_file_ioctl_common+0x146/0x410
[ 1029.084881][T21135]  ? __fget_files+0x215/0x3d0
[ 1029.084896][T21135]  ? __fget_files+0x21f/0x3d0
[ 1029.084910][T21135]  security_file_ioctl_compat+0xd3/0x230
[ 1029.084929][T21135]  __ia32_compat_sys_ioctl+0xc2/0x360
[ 1029.084949][T21135]  __do_fast_syscall_32+0xde/0x660
[ 1029.084965][T21135]  do_fast_syscall_32+0x32/0x70
[ 1029.084980][T21135]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1029.084994][T21135] RIP: 0023:0xf7fa3579
[ 1029.085003][T21135] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[ 1029.085013][T21135] RSP: 002b:00000000f544550c EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[ 1029.085024][T21135] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000c0045520
[ 1029.085031][T21135] RDX: 0000000080001000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1029.085038][T21135] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1029.085044][T21135] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1029.085050][T21135] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1029.085065][T21135]  </TASK>
[ 1029.085083][T21135] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1029.307272][T21139] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4200'.
[ 1029.568634][T21153] 9p: Bad value for 'wfdno'
[ 1029.828898][T21168] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4208'.
[ 1030.009578][T21074] udevd[21074]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[ 1030.023870][T21163] Bluetooth: MGMT ver 1.23
[ 1031.120670][T21194] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4214'.
[ 1031.685085][T21202] afs: Unknown parameter 'dy�$K2n'
[ 1031.794374][T21208] netlink: 'syz.4.4219': attribute type 4 has an invalid length.
[ 1031.819665][T21208] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1031.831924][T21208] syzkaller0: entered promiscuous mode
[ 1031.834000][T21208] syzkaller0: entered allmulticast mode
[ 1031.954895][T21207] tipc: Resetting bearer <eth:syzkaller0>
[ 1031.969159][T21207] tipc: Disabling bearer <eth:syzkaller0>
[ 1032.411724][T21234] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4223'.
[ 1033.026258][T21245] FAULT_INJECTION: forcing a failure.
[ 1033.026258][T21245] name failslab, interval 1, probability 0, space 0, times 0
[ 1033.031225][T21245] CPU: 3 UID: 0 PID: 21245 Comm: syz.4.4228 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1033.031244][T21245] Tainted: [L]=SOFTLOCKUP
[ 1033.031248][T21245] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1033.031255][T21245] Call Trace:
[ 1033.031260][T21245]  <TASK>
[ 1033.031265][T21245]  dump_stack_lvl+0x100/0x190
[ 1033.031281][T21245]  should_fail_ex.cold+0x5/0xa
[ 1033.031301][T21245]  should_failslab+0xc2/0x120
[ 1033.031318][T21245]  __kmalloc_cache_noprof+0x80/0x810
[ 1033.031331][T21245]  ? ufs_init_fs_context+0x47/0x310
[ 1033.031345][T21245]  ? __pfx_ufs_init_fs_context+0x10/0x10
[ 1033.031356][T21245]  ? ufs_init_fs_context+0x47/0x310
[ 1033.031367][T21245]  ufs_init_fs_context+0x47/0x310
[ 1033.031378][T21245]  ? __pfx_ufs_init_fs_context+0x10/0x10
[ 1033.031390][T21245]  alloc_fs_context+0x61f/0xf50
[ 1033.031408][T21245]  __ia32_sys_fsopen+0xef/0x230
[ 1033.031426][T21245]  __do_fast_syscall_32+0xde/0x660
[ 1033.031442][T21245]  do_fast_syscall_32+0x32/0x70
[ 1033.031457][T21245]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1033.031471][T21245] RIP: 0023:0xf7fa1579
[ 1033.031480][T21245] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[ 1033.031492][T21245] RSP: 002b:00000000f546650c EFLAGS: 00000292 ORIG_RAX: 00000000000001ae
[ 1033.031504][T21245] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000000000000
[ 1033.031511][T21245] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1033.031517][T21245] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1033.031523][T21245] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1033.031530][T21245] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1033.031544][T21245]  </TASK>
[ 1033.909978][T21259] netlink: 'syz.5.4234': attribute type 10 has an invalid length.
[ 1033.942592][ T5297] Bluetooth: hci3: command 0x0405 tx timeout
[ 1034.234348][T21264] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4233'.
[ 1035.079418][T21280] netlink: 'syz.0.4241': attribute type 4 has an invalid length.
[ 1035.088154][T21280] netlink: 'syz.0.4241': attribute type 4 has an invalid length.
[ 1035.115665][T21285] netlink: 'syz.0.4242': attribute type 2 has an invalid length.
[ 1035.204117][T21282] can0: slcan on ttyS3.
[ 1035.213200][T21290] syz_tun: entered allmulticast mode
[ 1035.215729][T21290] syz_tun: left allmulticast mode
[ 1035.264359][T21289] can0 (unregistered): slcan off ttyS3.
[ 1036.115905][T21304] netlink: 'syz.2.4248': attribute type 1 has an invalid length.
[ 1036.692952][   T40] audit: type=1326 audit(1036.571:1538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.2.4253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1036.699748][   T40] audit: type=1326 audit(1036.571:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.2.4253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1036.709104][   T40] audit: type=1326 audit(1036.591:1540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.2.4253" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf710572b code=0x7ffc0000
[ 1036.737004][   T40] audit: type=1326 audit(1036.611:1541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.2.4253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1036.743843][   T40] audit: type=1326 audit(1036.611:1542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.2.4253" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1036.750488][   T40] audit: type=1326 audit(1036.611:1543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.2.4253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1036.757970][   T40] audit: type=1326 audit(1036.611:1544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.2.4253" exe="/syz-executor" sig=0 arch=40000003 syscall=14 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1036.765046][   T40] audit: type=1326 audit(1036.611:1545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.2.4253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1036.778453][   T40] audit: type=1326 audit(1036.611:1546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.2.4253" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1036.785366][   T40] audit: type=1326 audit(1036.611:1547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.2.4253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf739d579 code=0x7ffc0000
[ 1036.885561][T21327] MTD: Couldn't look up '': -22
[ 1036.955277][T21332] ubi31: attaching mtd0
[ 1036.959202][T21332] ubi31: scanning is finished
[ 1037.145417][T21332] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[ 1037.155979][T21332] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[ 1037.165232][T21332] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[ 1037.173223][T21332] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[ 1037.183836][T21332] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[ 1037.191860][T21332] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[ 1037.204814][T21332] ubi31: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 3074103287
[ 1037.220372][T21332] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[ 1037.240168][T21339] ubi31: background thread "ubi_bgt31d" started, PID 21339
[ 1038.622418][T21375] serio: Serial port ptm1
[ 1038.966079][T21382] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[ 1038.968329][T21382] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1038.971016][T21382] vhci_hcd vhci_hcd.0: Device attached
[ 1038.985412][T21382] binder: Bad value for 'max'
[ 1039.017691][T21388] FAULT_INJECTION: forcing a failure.
[ 1039.017691][T21388] name failslab, interval 1, probability 0, space 0, times 0
[ 1039.023147][T21388] CPU: 0 UID: 0 PID: 21388 Comm: syz.4.4271 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1039.023173][T21388] Tainted: [L]=SOFTLOCKUP
[ 1039.023179][T21388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1039.023190][T21388] Call Trace:
[ 1039.023196][T21388]  <TASK>
[ 1039.023203][T21388]  dump_stack_lvl+0x100/0x190
[ 1039.023228][T21388]  should_fail_ex.cold+0x5/0xa
[ 1039.023255][T21388]  should_failslab+0xc2/0x120
[ 1039.023278][T21388]  __kmalloc_cache_noprof+0x80/0x810
[ 1039.023294][T21388]  ? net_generic+0xea/0x2a0
[ 1039.023313][T21388]  ? rxrpc_lookup_local+0x3f7/0x1220
[ 1039.023334][T21388]  ? rxrpc_lookup_local+0x3f7/0x1220
[ 1039.023350][T21388]  rxrpc_lookup_local+0x3f7/0x1220
[ 1039.023370][T21388]  ? __pfx_rxrpc_lookup_local+0x10/0x10
[ 1039.023387][T21388]  ? __local_bh_enable_ip+0x9e/0x120
[ 1039.023403][T21388]  rxrpc_sendmsg+0x34a/0x680
[ 1039.023419][T21388]  ____sys_sendmsg+0xa54/0xc30
[ 1039.023433][T21388]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1039.023452][T21388]  ___sys_sendmsg+0x190/0x1e0
[ 1039.023466][T21388]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1039.023496][T21388]  __sys_sendmsg+0x170/0x220
[ 1039.023542][T21388]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1039.023579][T21388]  ? __pfx_ksys_write+0x10/0x10
[ 1039.023597][T21388]  __do_fast_syscall_32+0xde/0x660
[ 1039.023614][T21388]  do_fast_syscall_32+0x32/0x70
[ 1039.023628][T21388]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1039.023643][T21388] RIP: 0023:0xf7fa1579
[ 1039.023652][T21388] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[ 1039.023663][T21388] RSP: 002b:00000000f546650c EFLAGS: 00000292 ORIG_RAX: 0000000000000172
[ 1039.023674][T21388] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[ 1039.023682][T21388] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1039.023688][T21388] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1039.023694][T21388] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1039.023700][T21388] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1039.023715][T21388]  </TASK>
[ 1039.164570][T20313] vhci_hcd vhci_hcd.5: vhci_device speed not set
[ 1039.223108][T20313] usb 47-1: new full-speed USB device number 5 using vhci_hcd
[ 1039.494575][T21383] vhci_hcd: connection reset by peer
[ 1039.496718][T15163] vhci_hcd vhci_hcd.5: stop threads
[ 1039.498538][T15163] vhci_hcd vhci_hcd.5: release socket
[ 1039.500483][T15163] vhci_hcd vhci_hcd.5: disconnect device
[ 1039.784957][T21396] ubi: mtd0 is already attached to ubi31
[ 1040.321132][T21408] FAULT_INJECTION: forcing a failure.
[ 1040.321132][T21408] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1040.326396][T21408] CPU: 3 UID: 0 PID: 21408 Comm: syz.5.4277 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1040.326415][T21408] Tainted: [L]=SOFTLOCKUP
[ 1040.326419][T21408] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1040.326439][T21408] Call Trace:
[ 1040.326443][T21408]  <TASK>
[ 1040.326448][T21408]  dump_stack_lvl+0x100/0x190
[ 1040.326465][T21408]  should_fail_ex.cold+0x5/0xa
[ 1040.326488][T21408]  _copy_from_iter+0x1f4/0x1690
[ 1040.326509][T21408]  ? __pfx__copy_from_iter+0x10/0x10
[ 1040.326529][T21408]  ? find_held_lock+0x2b/0x80
[ 1040.326541][T21408]  ? aa_file_perm+0x268/0x1540
[ 1040.326554][T21408]  tun_get_user+0x3ba/0x3e10
[ 1040.326579][T21408]  ? __pfx_tun_get_user+0x10/0x10
[ 1040.326597][T21408]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 1040.326612][T21408]  ? find_held_lock+0x2b/0x80
[ 1040.326623][T21408]  ? tun_get+0x191/0x370
[ 1040.326638][T21408]  ? tun_get+0x191/0x370
[ 1040.326658][T21408]  tun_chr_write_iter+0xdc/0x200
[ 1040.326678][T21408]  vfs_write+0x6ac/0x1070
[ 1040.326692][T21408]  ? __pfx_tun_chr_write_iter+0x10/0x10
[ 1040.326712][T21408]  ? __pfx_vfs_write+0x10/0x10
[ 1040.326723][T21408]  ? find_held_lock+0x2b/0x80
[ 1040.326743][T21408]  ksys_write+0x12a/0x250
[ 1040.326755][T21408]  ? __pfx_ksys_write+0x10/0x10
[ 1040.326767][T21408]  ? __pfx_ksys_write+0x10/0x10
[ 1040.326779][T21408]  ? fput+0x79/0x100
[ 1040.326796][T21408]  __do_fast_syscall_32+0xde/0x660
[ 1040.326813][T21408]  do_fast_syscall_32+0x32/0x70
[ 1040.326827][T21408]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1040.326842][T21408] RIP: 0023:0xf7fa3579
[ 1040.326851][T21408] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[ 1040.326861][T21408] RSP: 002b:00000000f546650c EFLAGS: 00000292 ORIG_RAX: 0000000000000004
[ 1040.326873][T21408] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[ 1040.326880][T21408] RDX: 000000000000004e RSI: 0000000000000000 RDI: 0000000000000000
[ 1040.326886][T21408] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1040.326893][T21408] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[ 1040.326899][T21408] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1040.326913][T21408]  </TASK>
[ 1040.992805][   T60] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[ 1041.144138][   T60] usb 5-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad
[ 1041.147937][   T60] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1041.156534][   T60] usb 5-1: config 0 descriptor??
[ 1041.161428][   T60] gspca_main: spca508-2.14.0 probing 8086:0110
[ 1041.481059][T21430] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4282'.
[ 1041.683228][   T60] gspca_spca508: reg_read err -71
[ 1041.687873][   T60] gspca_spca508: reg_read err -71
[ 1041.690069][   T60] gspca_spca508: reg_read err -71
[ 1041.692722][   T60] gspca_spca508: reg_read err -71
[ 1041.697437][   T60] gspca_spca508: reg_read err -71
[ 1041.700134][   T60] gspca_spca508: reg write: error -71
[ 1041.701953][   T60] spca508 5-1:0.0: probe with driver spca508 failed with error -71
[ 1041.720802][   T60] usb 5-1: USB disconnect, device number 16
[ 1041.772034][T21074] udevd[21074]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[ 1041.779531][T21435] udevd[21435]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[ 1042.289110][T21446] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4285'.
[ 1042.292058][T21446] netlink: 60 bytes leftover after parsing attributes in process `syz.2.4285'.
[ 1042.295338][T21446] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4285'.
[ 1042.335732][T21457] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4290'.
[ 1042.380529][T21462] fuse: Unknown parameter 'vxcan0'
[ 1042.475189][T21472] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4291'.
[ 1043.018930][T21496] 9pnet_virtio: no channels available for device syz
[ 1043.523701][T21499] fuse: Unknown parameter 'vxcan0'
[ 1043.598061][T21499] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4301'.
[ 1043.899811][T21515] syzkaller0: entered promiscuous mode
[ 1043.901688][T21515] syzkaller0: entered allmulticast mode
[ 1044.178475][T21533] fuse: Unknown parameter 'vxcan0'
[ 1044.213529][T21533] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4310'.
[ 1044.349300][T20313] vhci_hcd vhci_hcd.5: vhci_device speed not set
[ 1044.457496][T21541] binder: 21540:21541 ioctl c0686611 80000000 returned -22
[ 1044.792466][T15718] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[ 1044.942463][T15718] usb 5-1: Using ep0 maxpacket: 16
[ 1044.949728][T15718] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1044.954872][T15718] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1044.992126][T15718] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1044.995208][T15718] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1045.005092][T15718] usb 5-1: config 0 descriptor??
[ 1045.067192][T21560] fuse: Unknown parameter 'vxcan0'
[ 1045.137673][T21560] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4319'.
[ 1045.262857][T21545] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1045.266651][T21545] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1046.534195][T21597] fuse: Unknown parameter 'vxcan0'
[ 1046.596178][T21597] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4330'.
[ 1046.787505][T21616] bond4: entered promiscuous mode
[ 1046.790110][T21616] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1047.138162][T21625] trusted_key: encrypted_key: insufficient parameters specified
[ 1047.644834][T21627] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4338'.
[ 1048.026689][T15718] usbhid 5-1:0.0: can't add hid device: -71
[ 1048.032981][T15718] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1048.042706][T15718] usb 5-1: USB disconnect, device number 17
[ 1048.110652][T21631] fuse: Unknown parameter 'vxcan0'
[ 1048.180387][T21631] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4339'.
[ 1051.735177][T21664] fuse: Unknown parameter 'vxcan0'
[ 1051.866459][T21664] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4348'.
[ 1052.155738][T21671] syz2: rxe_newlink: already configured on ipvlan0
[ 1056.115390][T21732] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[ 1056.224951][T21738] fuse: Unknown parameter 'vxcan0'
[ 1056.290843][T21738] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4373'.
[ 1057.313692][   T40] kauditd_printk_skb: 21 callbacks suppressed
[ 1057.313705][   T40] audit: type=1800 audit(1057.191:1569): pid=21753 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4378" name="nullb0" dev="tmpfs" ino=2394 res=0 errno=0
[ 1058.556097][T21764] syz_tun: entered allmulticast mode
[ 1058.593409][T21763] syz_tun: left allmulticast mode
[ 1058.623910][T21766] fuse: Unknown parameter 'vxcan0'
[ 1058.687215][T21766] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4382'.
[ 1058.717687][T21771] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4383'.
[ 1058.773296][T21771] bond5 (unregistering): Released all slaves
[ 1059.280039][T21787] xt_TCPMSS: Only works on TCP SYN packets
[ 1062.085949][ T5943] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1062.090650][ T5943] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1062.095438][ T5943] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1062.110065][ T5943] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1062.120825][ T5943] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1062.139947][T19546] bond0: (slave syz_tun): Releasing backup interface
[ 1062.316484][T21804] chnl_net:caif_netlink_parms(): no params data found
[ 1062.374880][T21804] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1062.377565][T21804] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1062.380016][T21804] bridge_slave_0: entered allmulticast mode
[ 1062.382638][T21804] bridge_slave_0: entered promiscuous mode
[ 1062.386214][T21804] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1062.388359][T21804] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1062.390688][T21804] bridge_slave_1: entered allmulticast mode
[ 1062.393872][T21804] bridge_slave_1: entered promiscuous mode
[ 1062.413294][T21804] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1062.417947][T21804] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1062.433653][T21804] team0: Port device team_slave_0 added
[ 1062.436753][T21804] team0: Port device team_slave_1 added
[ 1062.449497][T21804] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1062.451636][T21804] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1062.459622][T21804] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1062.464207][T21804] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1062.466511][T21804] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1062.474791][T21804] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1062.480688][T21816] fuse: Unknown parameter 'vxcan0'
[ 1062.508565][T21804] hsr_slave_0: entered promiscuous mode
[ 1062.510741][T21804] hsr_slave_1: entered promiscuous mode
[ 1062.513054][T21804] debugfs: 'hsr0' already exists in 'hsr'
[ 1062.515019][T21804] Cannot create hsr debugfs directory
[ 1062.562544][T21816] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4391'.
[ 1062.764314][T21804] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1062.775459][T21804] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1062.836689][T21804] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1062.877996][T21804] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1062.976319][T21804] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1062.979099][T21804] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1062.982027][T21804] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1062.984877][T21804] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1063.075490][T21804] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1063.120077][T17001] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1063.124205][T17001] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1063.155074][T21804] 8021q: adding VLAN 0 to HW filter on device team0
[ 1063.234280][T17001] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1063.237413][T17001] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1063.248535][T17001] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1063.250980][T17001] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1063.256153][ T7832] erspan0: left allmulticast mode
[ 1063.257923][ T7832] erspan0: left promiscuous mode
[ 1063.260624][ T7832] bridge0: port 1(erspan0) entered disabled state
[ 1063.792131][T21854] FAULT_INJECTION: forcing a failure.
[ 1063.792131][T21854] name failslab, interval 1, probability 0, space 0, times 0
[ 1063.797088][T21854] CPU: 2 UID: 0 PID: 21854 Comm: syz.5.4395 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1063.797111][T21854] Tainted: [L]=SOFTLOCKUP
[ 1063.797116][T21854] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1063.797125][T21854] Call Trace:
[ 1063.797131][T21854]  <TASK>
[ 1063.797137][T21854]  dump_stack_lvl+0x100/0x190
[ 1063.797176][T21854]  should_fail_ex.cold+0x5/0xa
[ 1063.797200][T21854]  should_failslab+0xc2/0x120
[ 1063.797220][T21854]  kmem_cache_alloc_noprof+0x83/0x780
[ 1063.797239][T21854]  ? security_file_alloc+0x34/0x2c0
[ 1063.797273][T21854]  ? security_file_alloc+0x34/0x2c0
[ 1063.797294][T21854]  security_file_alloc+0x34/0x2c0
[ 1063.797317][T21854]  init_file+0x93/0x4c0
[ 1063.797336][T21854]  alloc_empty_file+0x73/0x1c0
[ 1063.797357][T21854]  alloc_file_pseudo+0x13a/0x230
[ 1063.797379][T21854]  ? __pfx_alloc_file_pseudo+0x10/0x10
[ 1063.797401][T21854]  ? _raw_spin_unlock+0x28/0x50
[ 1063.797424][T21854]  ? alloc_fd+0x476/0x790
[ 1063.797441][T21854]  __anon_inode_getfile+0xe8/0x280
[ 1063.797463][T21854]  __anon_inode_getfd+0x5c/0xe0
[ 1063.797485][T21854]  __ia32_sys_fsopen+0x192/0x230
[ 1063.797511][T21854]  __do_fast_syscall_32+0xde/0x660
[ 1063.797532][T21854]  do_fast_syscall_32+0x32/0x70
[ 1063.797551][T21854]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1063.797570][T21854] RIP: 0023:0xf7fa3579
[ 1063.797582][T21854] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[ 1063.797596][T21854] RSP: 002b:00000000f546650c EFLAGS: 00000292 ORIG_RAX: 00000000000001ae
[ 1063.797612][T21854] RAX: ffffffffffffffda RBX: 00000000800003c0 RCX: 0000000000000001
[ 1063.797622][T21854] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1063.797631][T21854] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1063.797640][T21854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1063.797648][T21854] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1063.797668][T21854]  </TASK>
[ 1064.183519][ T5943] Bluetooth: hci0: command tx timeout
[ 1064.368481][ T7832] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1064.375527][ T7832] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1064.379100][ T7832] bond0 (unregistering): (slave team0): Releasing backup interface
[ 1064.383456][ T7832] bond0 (unregistering): Released all slaves
[ 1064.457480][ T7832] tipc: Left network mode
[ 1064.536678][T21804] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1064.639310][ T7832] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1064.642039][ T7832] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1064.921553][T21889] fuse: Unknown parameter 'vxcan0'
[ 1065.006379][ T7832] team0 (unregistering): Port device team_slave_1 removed
[ 1065.029072][T21893] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4401'.
[ 1065.034483][ T7832] team0 (unregistering): Port device team_slave_0 removed
[ 1065.340437][T21899] netlink: 'syz.5.4402': attribute type 3 has an invalid length.
[ 1065.348117][T21899] BUG: unable to handle page fault for address: ffff8880973e3000
[ 1065.350548][T21899] #PF: supervisor write access in kernel mode
[ 1065.352759][T21899] #PF: error_code(0x0002) - not-present page
[ 1065.356192][T21899] PGD 1b401067 P4D 1b401067 PUD 0 
[ 1065.357811][T21899] Oops: Oops: 0002 [#1] SMP KASAN NOPTI
[ 1065.359554][T21899] CPU: 0 UID: 0 PID: 21899 Comm: syz.5.4402 Tainted: G             L      syzkaller #0 PREEMPT(full) 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1065.362864][T21899] Tainted: [L]=SOFTLOCKUP
[ 1065.364298][T21899] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 1065.367491][T21899] RIP: 0010:bond_rr_gen_slave_id+0x92/0x250
[ 1065.368517][T21804] veth0_vlan: entered promiscuous mode
[ 1065.369355][T21899] Code: 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 bd 01 00 00 49 8b 84 24 f0 00 00 00 bb 01 00 00 00 <65> 0f c1 18 e8 45 a7 85 fb 83 c3 01 89 d8 5b 5d 41 5c 41 5d 41 5e
[ 1065.375153][T21804] veth1_vlan: entered promiscuous mode
[ 1065.377040][T21899] RSP: 0000:ffffc90007ed7598 EFLAGS: 00010246
[ 1065.380684][T21899] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffc9000ce92000
[ 1065.383160][T21899] RDX: 1ffff1100d4ea9ce RSI: ffffffff8680a342 RDI: ffff88806a754e70
[ 1065.385637][T21899] RBP: ffff88804a575170 R08: 0000000000000005 R09: 0000000000000001
[ 1065.388135][T21899] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88806a754d80
[ 1065.389578][T21804] veth0_macvtap: entered promiscuous mode
[ 1065.390600][T21899] R13: 0000000000008f00 R14: ffff88806a754d80 R15: dffffc0000000000
[ 1065.393983][T21804] veth1_macvtap: entered promiscuous mode
[ 1065.394933][T21899] FS:  0000000000000000(0000) GS:ffff8880973e3000(0063) knlGS:00000000f5466b40
[ 1065.399509][T21899] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1065.400992][T21804] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1065.401569][T21899] CR2: ffff8880973e3000 CR3: 0000000052da8000 CR4: 0000000000352ef0
[ 1065.406312][T21899] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1065.406551][T21804] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1065.408799][T21899] DR3: 00000000e08e000e DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1065.413286][T17001] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1065.413528][T21899] Call Trace:
[ 1065.413535][T21899]  <TASK>
[ 1065.413540][T21899]  bond_xdp_get_xmit_slave+0x296/0x660
[ 1065.416814][T17001] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1065.417655][T21899]  xdp_master_redirect+0x161/0x330
[ 1065.418673][T17001] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1065.420335][T21899]  xdp_test_run_batch.constprop.0+0xc60/0x1ca0
[ 1065.425134][T17001] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1065.425407][T21899]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[ 1065.436541][T21899]  ? find_held_lock+0x2b/0x80
[ 1065.438412][T21899]  ? ktime_get+0x1a7/0x300
[ 1065.440205][T21899]  bpf_test_run_xdp_live+0x367/0x760
[ 1065.442298][T21899]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[ 1065.444627][T21899]  ? __mutex_unlock_slowpath+0x15c/0x790
[ 1065.446825][T21899]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1065.449218][T21899]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[ 1065.451554][T21899]  ? bpf_dispatcher_change_prog+0x2d7/0xa60
[ 1065.453894][T21899]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[ 1065.455999][T21899]  ? 0xffffffffa0206200
[ 1065.457644][T21899]  ? 0xffffffffa0206200
[ 1065.459288][T21899]  ? 0xffffffffa0206200
[ 1065.460935][T21899]  ? bpf_dispatcher_change_prog+0x2dc/0xa60
[ 1065.463279][T21899]  bpf_prog_test_run_xdp+0xd7d/0x1670
[ 1065.465391][T21899]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1065.467709][T21899]  ? fput+0x79/0x100
[ 1065.469280][T21899]  ? __bpf_prog_get+0x97/0x2a0
[ 1065.471172][T21899]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[ 1065.473518][T21899]  __sys_bpf+0x1e56/0x5050
[ 1065.475306][T21899]  ? futex_private_hash_put+0x107/0x1c0
[ 1065.477479][T21899]  ? __pfx___sys_bpf+0x10/0x10
[ 1065.479392][T21899]  ? __pfx_futex_wake+0x10/0x10
[ 1065.481328][T21899]  ? do_futex+0x192/0x350
[ 1065.483066][T21899]  ? xfd_validate_state+0x129/0x190
[ 1065.485132][T21899]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[ 1065.487512][T21899]  __ia32_sys_bpf+0x79/0xf0
[ 1065.489319][T21899]  ? lockdep_hardirqs_on+0x78/0x100
[ 1065.491369][T21899]  __do_fast_syscall_32+0xde/0x660
[ 1065.493392][T21899]  do_fast_syscall_32+0x32/0x70
[ 1065.495330][T21899]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1065.497822][T21899] RIP: 0023:0xf7fa3579
[ 1065.499426][T21899] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 2e 8d b4 26 00 00 00 00 8d b4 26 00 00 00
[ 1065.506762][T21899] RSP: 002b:00000000f546650c EFLAGS: 00000292 ORIG_RAX: 0000000000000165
[ 1065.510052][T21899] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[ 1065.513167][T21899] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[ 1065.516273][T21899] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1065.519394][T21899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1065.522496][T21899] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1065.525616][T21899]  </TASK>
[ 1065.526861][T21899] Modules linked in:
[ 1065.528444][T21899] CR2: ffff8880973e3000
[ 1065.530080][T21899] ---[ end trace 0000000000000000 ]---
[ 1065.532228][T21899] RIP: 0010:bond_rr_gen_slave_id+0x92/0x250
[ 1065.534547][T21899] Code: 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 bd 01 00 00 49 8b 84 24 f0 00 00 00 bb 01 00 00 00 <65> 0f c1 18 e8 45 a7 85 fb 83 c3 01 89 d8 5b 5d 41 5c 41 5d 41 5e
[ 1065.542070][T21899] RSP: 0000:ffffc90007ed7598 EFLAGS: 00010246
[ 1065.544500][T21899] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffc9000ce92000
[ 1065.547615][T21899] RDX: 1ffff1100d4ea9ce RSI: ffffffff8680a342 RDI: ffff88806a754e70
[ 1065.550708][T21899] RBP: ffff88804a575170 R08: 0000000000000005 R09: 0000000000000001
[ 1065.553839][T21899] R10: 0000000000000001 R11: 0000000000000000 R12: ffff88806a754d80
[ 1065.556934][T21899] R13: 0000000000008f00 R14: ffff88806a754d80 R15: dffffc0000000000
[ 1065.560036][T21899] FS:  0000000000000000(0000) GS:ffff8880973e3000(0063) knlGS:00000000f5466b40
[ 1065.563534][T21899] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1065.566106][T21899] CR2: ffff8880973e3000 CR3: 0000000052da8000 CR4: 0000000000352ef0
[ 1065.569195][T21899] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1065.572305][T21899] DR3: 00000000e08e000e DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1065.575414][T21899] Kernel panic - not syncing: Fatal exception in interrupt
[ 1065.578733][T21899] Kernel Offset: disabled
[ 1065.580419][T21899] Rebooting in 86400 seconds..

VM DIAGNOSIS:
08:25:55  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000005b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85673cb5 RDI=ffffffff9b1f2260 RBP=ffffffff9b1f2220 RSP=ffffc90007ed6de8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=727265203a465023
R12=0000000000000000 R13=000000000000005b R14=0000000000000010 R15=ffffffff85673c50
RIP=ffffffff85673cdf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880973e3000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=ffff8880973e3000 CR3=0000000052da8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000e08e000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffffc90007fafed0 RCX=ffffffff9161bd01 RDX=ffffc90007fafed8
RSI=ffffc90007fafea0 RDI=ffffc90007faece8 RBP=0000000000000001 RSP=ffffc90007faec68
R8 =0000000000000001 R9 =0000000000000000 R10=ffffc90007faecd8 R11=000000000001577f
R12=ffffc90007faed28 R13=ffffc90007faecd8 R14=ffffc90007fafed0 R15=ffffc90007faed0c
RIP=ffffffff81b64378 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880974e3000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffca3cfeec0 CR3=000000005205c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f62797375626269 6c2f343662696c2f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000002f10 00000000000be0f0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 ffffffffffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001da0 0000000000033260
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=ffff888078886b8c RBX=ffffc90003ddf2e0 RCX=0000000000000003 RDX=0000000000000004
RSI=ffff888078886b85 RDI=ffff888078886b8d RBP=ffff888078886b8c RSP=ffffc90003ddf0d8
R8 =0000000000000001 R9 =ffffed100f110d71 R10=ffff888078886b8f R11=0000000000000000
R12=0000000000000b88 R13=0000000000000004 R14=0000000000000b84 R15=0000000000000000
RIP=ffffffff8b74246c RFL=00010202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007feb0193e300 ffffffff 00c00000
GS =0000 ffff8880975e3000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000557e53210000 CR3=000000004bae0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000003bf12 0000003000000012 0004000000080024 0000000000280034
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001139 0000001800000000 0000000000000000 0000000000000017
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0004000000040000 000628080b800324 0000061c00000011 0000000100000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 f84c682b636f380e 14618716b771a084 f4a6531c8cea92b2 7caa5c3e02e84c23
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 275e0e6168c80593 c14cdb6337362fc3 4b5177329241c1fa c6d83add21c05d94
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 195374a3f1f9293b 686cf80dc4a61fdb 23829942fa4c0000 00000000682c1335
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 9b898eef0000ffff fff904e2080bb003 0108000ba8030000 0000000000010000
ZMM24=f05a7a77f05a7a77 f05a7a77f05a7a77 f05a7a77f05a7a77 f05a7a77f05a7a77 f05a7a77f05a7a77 f05a7a77f05a7a77 f05a7a77f05a7a77 f05a7a77f05a7a77
ZMM25=0fb706470fb70647 0fb706470fb70647 0fb706470fb70647 0fb706470fb70647 0fb706470fb70647 0fb706470fb70647 0fb706470fb70647 0fb706470fb70647
ZMM26=c7823188c7823188 c7823188c7823188 c7823188c7823188 c7823188c7823188 c7823188c7823188 c7823188c7823188 c7823188c7823188 c7823188c7823188
ZMM27=039e2e6e039e2e6e 039e2e6e039e2e6e 039e2e6e039e2e6e 039e2e6e039e2e6e 039e2e6e039e2e6e 039e2e6e039e2e6e 039e2e6e039e2e6e 039e2e6e039e2e6e
ZMM28=000000b0000000af 000000ae000000ad 000000ac000000ab 000000aa000000a9 000000a8000000a7 000000a6000000a5 000000a4000000a3 000000a2000000a1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=dc1c0000dc1c0000 dc1c0000dc1c0000 dc1c0000dc1c0000 dc1c0000dc1c0000 dc1c0000dc1c0000 dc1c0000dc1c0000 dc1c0000dc1c0000 dc1c0000dc1c0000
info registers vcpu 3

CPU#3
RAX=00000000008d872c RBX=ffff88801dea8000 RCX=ffffffff8b7414b5 RDX=0000000000000001
RSI=ffffffff8bfa32a0 RDI=ffffffff81dc352b RBP=0000000000000003 RSP=ffffc9000048fdf0
R8 =0000000000000000 R9 =ffffed10056a673d R10=ffff88802b5339eb R11=0000000000000003
R12=ffffed1003bd5000 R13=0000000000000003 R14=ffffffff90b76fd0 R15=0000000000000000
RIP=ffffffff8b73fe1f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880976e3000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7383c88 CR3=0000000028f25000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004040101 Opmask01=0000000000407fff Opmask02=00000000ffff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c5bf6aded19de091 bb6724a3bef28df8
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 34cc1bc79b7fafca 05cc27f0cf5a7def
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ce7d11abb557aab5 175f1377a03b7e6d
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2dcbb1887e2df22e 85974483b5233007
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000081c0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0002862600028626 8001000000028626
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 72c75e0085d20c00 8fc67e0000028626
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 800100008009b200 0002862680010000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 892c280080010000 8001000072037c00
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 dcb0bbe2d3eec6c3 4ccc7765c7569d08
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 23f4a26e8b8abb4c 6a89a2499c908e78
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 79786f7270206465 67656c6976697270 002f74656e2f7373 616c632f7379732f
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e69626572004d52 4c4147495300676e 697361656c657200 4d52455447495300
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4b4c474057004d52 4c4147495300424b 4c56444049405700 4d52455447495300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6474656e0002000f 0000006d69737665 6474656e0001000e 803e002c0000006d
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8041000400000002 000300080000326d 697376656474656e 0002000f0000006d
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 697376656474656e 0001000e803e002c 0000006d69737665 6474656e0039000e
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000326d69737665 6474656e0038000f 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000e002400000000 0008000500000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a2063200a64610a 6464203661642036 2031206120322061 002020350a366500
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbff52532232d20
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000