last executing test programs:

2m20.882150821s ago: executing program 0 (id=56):
r0 = syz_open_dev$swradio(&(0x7f0000000f80), 0x1, 0x2)
read(r0, &(0x7f0000000fc0)=""/4, 0x4)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r1)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x800000}, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000140))
syz_io_uring_submit(r3, 0x0, &(0x7f0000000040)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000500)={&(0x7f00000005c0)=@x25={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x2}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000300)="b8e863ffa5aeb6a7", 0x8}, {&(0x7f00000007c0)="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", 0x149}], 0x2, &(0x7f00000021c0)=ANY=[@ANYBLOB="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"], 0x114c}, 0x0, 0x8841})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x3)
io_submit(0x0, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
sendmsg$key(0xffffffffffffffff, 0x0, 0x18)
r4 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
syz_open_dev$MSR(&(0x7f0000000240), 0xb, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r6, 0x8914, &(0x7f0000000000))
ioctl$sock_netrom_SIOCADDRT(r4, 0x890b, &(0x7f0000000280)={0x1, @bcast, @bpq0, 0xfff4, 'syz0\x00', @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x3ff, 0x2, [@null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast]})
r7 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
accept4$x25(r7, 0x0, &(0x7f0000000100)=0xffffffffffffffd1, 0x800)
r8 = syz_init_net_socket$ax25(0x3, 0x3, 0xcb)
bind$ax25(r8, &(0x7f0000000540)={{0x3, @bcast, 0x1}, [@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
connect$ax25(r8, &(0x7f00000001c0)={{0x3, @default, 0x5}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x48)
ioctl$sock_ifreq(r7, 0x8990, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'})
openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0xa2602, 0x0)

2m20.776577505s ago: executing program 0 (id=58):
setrlimit(0x7, &(0x7f0000000640))
mlockall(0x1)
r0 = openat$btrfs_control(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x14, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0, 0x3}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7fffffff}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x7fffffff}]}, &(0x7f00000003c0)='GPL\x00', 0xfffffffd, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mlockall(0x7)

2m20.451082989s ago: executing program 0 (id=60):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000140)=ANY=[@ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="02"], 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x2c, r2, 0x801, 0x70bd28, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_KEY={0x10, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5, 0x2, 0x4}, @NL80211_KEY_DEFAULT_MGMT={0x4}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4091}, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)

2m20.450889739s ago: executing program 0 (id=61):
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f00000008c0), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-des3_ede-asm\x00'}, 0x58)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x1e)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000011c0)='/proc/cpuinfo\x00', 0x0, 0x0)
preadv(r3, &(0x7f0000001280)=[{&(0x7f0000000180)=""/4096, 0x1000}], 0x1, 0x4, 0x0)
mount$bind(&(0x7f0000000140)='./file0/file0\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2b2004, 0x0)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000080)=0x1b)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0x1)
r5 = getpid()
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
prlimit64(r5, 0x2, &(0x7f0000001180)={0x6, 0x4}, &(0x7f0000001200))
syz_open_procfs(0xffffffffffffffff, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x2081c80, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r6 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r6, 0xc0045627, &(0x7f0000000100)=0x3)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r6, 0xc0845657, &(0x7f0000000580)={0x0, @bt={0xe10, 0x870, 0x1, 0x3, 0xd59f80, 0x19f2, 0x0, 0x19ef, 0x3, 0x3, 0x2800, 0x2800, 0x2, 0xd1, 0xc, 0x30, {0x8, 0xffffffff}, 0xd0, 0x9}})
r7 = accept4(r2, 0x0, 0x0, 0x80800)
sendmmsg$alg(r7, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10}], 0x1, 0x40800)
recvmsg$can_j1939(r7, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000280)=""/3, 0x3}], 0x1}, 0x1)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r1, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000001880)={&(0x7f0000001240)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES64=r0, @ANYBLOB="010226bd7000ffdbdf25210000000c003decbb0d6320d6162d8005000d00f80000000c030600"], 0x2c}, 0x1, 0x0, 0x0, 0x4004080}, 0x40c0)

2m20.286031357s ago: executing program 0 (id=62):
r0 = socket(0x1d, 0x6, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84) (async)
socket$inet6_sctp(0xa, 0x801, 0x84)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000001c0)={{{@in6=@private1={0xfc, 0x1, '\x00', 0x1}, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x180}, {0x0, 0x0, 0x1000, 0x1, 0x0, 0x7fffffffffffffff, 0x0, 0x5}, {0x0, 0x0, 0x200}, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1}, {{@in6=@mcast1}, 0x0, @in=@multicast1, 0x3507, 0x0, 0x0, 0x0, 0xfffffffe, 0x4000000, 0xb9}}, 0xe4) (async)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000001c0)={{{@in6=@private1={0xfc, 0x1, '\x00', 0x1}, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x180}, {0x0, 0x0, 0x1000, 0x1, 0x0, 0x7fffffffffffffff, 0x0, 0x5}, {0x0, 0x0, 0x200}, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1}, {{@in6=@mcast1}, 0x0, @in=@multicast1, 0x3507, 0x0, 0x0, 0x0, 0xfffffffe, 0x4000000, 0xb9}}, 0xe4)
ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000280)={0x2, 0x0, @ioapic={0x0, 0x3, 0x4006, 0xe944, 0x0, [{0x80, 0x8, 0x0, '\x00', 0x2}, {0x0, 0xff, 0x0, '\x00', 0x2}, {0x12, 0x6, 0x4, '\x00', 0x7}, {0xf4, 0x2, 0x4, '\x00', 0x5}, {0xd, 0x8, 0x5, '\x00', 0xd}, {0x4, 0x0, 0x20, '\x00', 0x4}, {0x3, 0x65, 0x10, '\x00', 0x4}, {0x5, 0xea, 0x9, '\x00', 0xfd}, {0x7, 0xd, 0x8, '\x00', 0xd}, {0xb0, 0x8, 0x6b, '\x00', 0x81}, {0x8, 0xa, 0x5, '\x00', 0x8}, {0x5, 0x4, 0xb, '\x00', 0x2}, {0x81, 0x0, 0x3, '\x00', 0x9}, {0x4, 0x3, 0x1, '\x00', 0x8}, {0x8, 0xf0, 0x48, '\x00', 0xd}, {0x4, 0x7, 0xf7, '\x00', 0x4}, {0xbb, 0xd, 0x3, '\x00', 0x4}, {0x2, 0x5, 0x81, '\x00', 0x1}, {0x7, 0x3, 0x4, '\x00', 0x8}, {0x4, 0x7, 0x5, '\x00', 0x71}, {0x50, 0x3, 0x1, '\x00', 0x9}, {0x51, 0xfd, 0x1, '\x00', 0x6}, {0x5, 0x6, 0x9}, {0x1, 0x2, 0x1, '\x00', 0xd5}]}}) (async)
ioctl$KVM_SET_IRQCHIP(r5, 0x8208ae63, &(0x7f0000000280)={0x2, 0x0, @ioapic={0x0, 0x3, 0x4006, 0xe944, 0x0, [{0x80, 0x8, 0x0, '\x00', 0x2}, {0x0, 0xff, 0x0, '\x00', 0x2}, {0x12, 0x6, 0x4, '\x00', 0x7}, {0xf4, 0x2, 0x4, '\x00', 0x5}, {0xd, 0x8, 0x5, '\x00', 0xd}, {0x4, 0x0, 0x20, '\x00', 0x4}, {0x3, 0x65, 0x10, '\x00', 0x4}, {0x5, 0xea, 0x9, '\x00', 0xfd}, {0x7, 0xd, 0x8, '\x00', 0xd}, {0xb0, 0x8, 0x6b, '\x00', 0x81}, {0x8, 0xa, 0x5, '\x00', 0x8}, {0x5, 0x4, 0xb, '\x00', 0x2}, {0x81, 0x0, 0x3, '\x00', 0x9}, {0x4, 0x3, 0x1, '\x00', 0x8}, {0x8, 0xf0, 0x48, '\x00', 0xd}, {0x4, 0x7, 0xf7, '\x00', 0x4}, {0xbb, 0xd, 0x3, '\x00', 0x4}, {0x2, 0x5, 0x81, '\x00', 0x1}, {0x7, 0x3, 0x4, '\x00', 0x8}, {0x4, 0x7, 0x5, '\x00', 0x71}, {0x50, 0x3, 0x1, '\x00', 0x9}, {0x51, 0xfd, 0x1, '\x00', 0x6}, {0x5, 0x6, 0x9}, {0x1, 0x2, 0x1, '\x00', 0xd5}]}})
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10) (async)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
mknod$loop(0x0, 0x0, 0x1) (async)
mknod$loop(0x0, 0x0, 0x1)
mount$nfs4(0x0, 0x0, &(0x7f0000000440), 0x0, &(0x7f00000001c0)=ANY=[]) (async)
mount$nfs4(0x0, 0x0, &(0x7f0000000440), 0x0, &(0x7f00000001c0)=ANY=[])
setsockopt$SO_BINDTODEVICE_wg(r6, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
sendto$inet(r6, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081046881f782db44b904021d080b01000000e8fe55a11800150006001400000000120800040043000000a80016000a00014006000d00036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a9d7c7c0b7a196e6f66112c88ac417898516277ce06bbace80177ccbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d0080000000000000b57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb14feb9f5588a63644caf1ce1bd6c769ad809d52a9ecbee", 0xd8}], 0x1}, 0x481e)

2m19.90061268s ago: executing program 0 (id=64):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r1 = openat$uhid(0xffffff9c, &(0x7f0000000000), 0x802, 0x0)
write$UHID_INPUT(r1, &(0x7f0000000580)={0x8, {"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", 0x1000}}, 0x1006)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGREP(r2, 0x80084522, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x12140, 0x0)
sysfs$1(0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/wakeup_count', 0x101a02, 0x0)
sendfile(r5, r5, 0x0, 0x101)
fdatasync(r4)
mount(0x0, 0x0, &(0x7f0000000080)='proc\x00', 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
pselect6(0x40, &(0x7f00000001c0)={0x40, 0x6, 0x6, 0xfffffffffffffff3, 0x7, 0x3, 0xfffffffffffffff8, 0x8}, 0x0, &(0x7f0000000380)={0xfdd, 0x0, 0x7, 0x8, 0x20, 0x1, 0x5, 0x2}, &(0x7f0000000440)={0x0, 0x3938700}, &(0x7f00000004c0)={&(0x7f0000000480)={[0x40, 0xc3c]}, 0x8})
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
getsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x28, 0x0, &(0x7f00000002c0))
r7 = memfd_create(&(0x7f0000000300)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xae\xd1md\xc8\x85\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;2\xb5\xe1jS\xeb\xbf%||\xa0\x8e\x01\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x4)
execveat(r7, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
symlink(&(0x7f00000049c0)='.\x00', &(0x7f00000059c0)='./file0\x00')

2m19.900410953s ago: executing program 32 (id=64):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r1 = openat$uhid(0xffffff9c, &(0x7f0000000000), 0x802, 0x0)
write$UHID_INPUT(r1, &(0x7f0000000580)={0x8, {"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", 0x1000}}, 0x1006)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGREP(r2, 0x80084522, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x12140, 0x0)
sysfs$1(0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/wakeup_count', 0x101a02, 0x0)
sendfile(r5, r5, 0x0, 0x101)
fdatasync(r4)
mount(0x0, 0x0, &(0x7f0000000080)='proc\x00', 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
pselect6(0x40, &(0x7f00000001c0)={0x40, 0x6, 0x6, 0xfffffffffffffff3, 0x7, 0x3, 0xfffffffffffffff8, 0x8}, 0x0, &(0x7f0000000380)={0xfdd, 0x0, 0x7, 0x8, 0x20, 0x1, 0x5, 0x2}, &(0x7f0000000440)={0x0, 0x3938700}, &(0x7f00000004c0)={&(0x7f0000000480)={[0x40, 0xc3c]}, 0x8})
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
getsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x28, 0x0, &(0x7f00000002c0))
r7 = memfd_create(&(0x7f0000000300)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xae\xd1md\xc8\x85\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;2\xb5\xe1jS\xeb\xbf%||\xa0\x8e\x01\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x4)
execveat(r7, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
symlink(&(0x7f00000049c0)='.\x00', &(0x7f00000059c0)='./file0\x00')

3.549805294s ago: executing program 4 (id=886):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x82001)
ioctl$DRM_IOCTL_MODE_GETGAMMA(r2, 0xc02064a4, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$netlink(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
socket$kcm(0x2b, 0x1, 0x0)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e130100c900"], 0x16)

3.459970135s ago: executing program 4 (id=887):
open$dir(&(0x7f0000000000)='./file1\x00', 0x5c1, 0x0)
io_setup(0x2, &(0x7f00000000c0))
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
sigaltstack(&(0x7f0000000200)={0x0, 0x0, 0xfffffca4}, 0x0)
syz_open_dev$vcsn(0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040))
lchown(&(0x7f0000000080)='./file1\x00', 0xee01, 0xffffffffffffffff)

3.379715199s ago: executing program 1 (id=890):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000280)=0x1, r1, 0x0, 0x2, 0x4}}, 0x20) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SAVE(r3, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000a80)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000000806010300ffff000000000007000003277919cfe7999fb763a27eb6e7e450c254a3d7f06889d1c859d17429c73233cdd69136bcb95cfc8733a0ea7b1eb7c5b4ac03834433ac3d4d71594218f029b8615018154db9df9f5b0814867bfb5a2a3f35665d7a2ac79fa26e901b9f694fca31b36c33489ef45d642e6805580475b77e01773df156a94634c244b9794bea9a835e5ec931da12ed1035ced04ff63166917fc31eda000af3d4176721ab493ef11e6eb4c5"], 0x14}, 0x1, 0x0, 0x0, 0x8804}, 0x4000000) (async)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = getpgid(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r6, 0x0, 0x0) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r7, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x3c) (async)
ioctl$PPPIOCGFLAGS1(r5, 0x8004745a, &(0x7f0000000140)) (async)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x38}}, 0x0) (async)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) (async)
r10 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r10, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x3, 0x9}, 0x20)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r10, 0x29, 0x37, &(0x7f0000000280)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x8)
setsockopt$inet6_int(r10, 0x29, 0x1000000000021, &(0x7f0000000000)=0xffffffc3, 0x4) (async)
ioctl$sock_ifreq(r9, 0x8910, &(0x7f0000000000)={'vlan0\x00', @ifru_ivalue=0x8})
ioctl$sock_netdev_private(r9, 0x8914, &(0x7f0000000000)) (async)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)

3.249858685s ago: executing program 4 (id=891):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$uhid(0xffffff9c, &(0x7f0000000680), 0x2, 0x0)
write$UHID_GET_REPORT_REPLY(r1, &(0x7f00000006c0)={0xa, {0xa, 0xd2, 0xe0}}, 0xa)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x4000)
r3 = dup(r2)
r4 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
r7 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r7, 0x5423, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
sendmsg$NL80211_CMD_FRAME(r8, 0x0, 0x10)
ioctl$TCSETA(r7, 0x8925, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r9 = socket$tipc(0x1e, 0x2, 0x0)
r10 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r10, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0xfffffffd}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r9, 0x10f, 0x87, &(0x7f0000000100)={0x42, 0x2, 0x2}, 0x10)
sendmsg$tipc(r9, &(0x7f0000002340)={0x0, 0x0, 0x0}, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f0000000080)=0x2bd, 0x4)

3.050021963s ago: executing program 1 (id=892):
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000001c0)=0x14)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x6a)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r2, &(0x7f0000000440)={0x0, 0x48000000, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="ad43000000f45400000009"], 0x14}}, 0x0)

2.369497028s ago: executing program 4 (id=894):
connect(0xffffffffffffffff, &(0x7f0000000340)=@phonet={0x23, 0x9, 0xc3, 0x3}, 0x80)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xfffffffffffffe29, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000001f00)=[{{&(0x7f0000000540)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000300)=[{&(0x7f0000000680)="be643d2f4afea817bd32e9d938cf567bf0e53258a8b2f605ea869d2d15a9e56c24e1a143325fb4852609442cc8bb36605392c402d7c71478a9bf61ce7e92a8ddf739ce36f37f57ea000d947a91d46766d10604a5c8474f29cc3253019bd54bac67976f9d35f8753959d3c9c640a272fdb573a9ad6d8cbd579d6e93dc40c7f934b5f71bbd0363ff82ddd29bcad35638745353e4b94daf73233b481264244d2ec83bba877af88c4668a4abb71d2808090e1ece14996f30aab08bbb4cc28e9337e9f696a05eca6d27db6949e5", 0xcb}, {&(0x7f0000000780)="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", 0x1000}, {&(0x7f0000000180)="8a0862ac630d", 0x6}, {&(0x7f0000001780)="95111d29983ce69dc5a7a302d703cc2a2ef8eb31c151a6c11bcc639323eb12e318d6baab001876348f27ecc27e65b9b7639222bb5b0e7456bc084d95bdd44ec6589458e7953f032def80f5d549a50650b5cc5dd105f292a43b3ad534d96c9cce1fc73f2b7da8b2bc377fdf8af8aec873bfdce675cf7e02f0687cf8e466b12549eb44d0674e4bcba4d3f4e59341601db21f9dd53178c33971b870a2e842157245c61e3166cc9f2fe1afe049574917b0284319f773a78abb2c46900533c7262fc440d4aa57592d79e4301f202884bcd32a512a68f181adc0f0", 0xd8}], 0x4, 0x0, 0x0, 0x200c4014}}, {{&(0x7f0000001880)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000400)=[{&(0x7f0000001900)="7b556e97628ea99c1729b285af04b61c325658931d3890e0367fa4de2c7a8f746fc2a186c21928dfb2b8b418360ce19851806de5c2a5bdd4e738b15838f1f8927726e0799e1fd2cc1abb0f9921d82cc857f5a0670df082e4d0cd6de91852eecac48728db7ba02eaac1d9683130b1fe72931480362776687f256818640b53b8175c8fd328afe9847594aa4d280769520b5b215ace25a68bdbb126349feb356c831411f8439c3a54ad95c474c329ceac9360675264c6", 0xb5}, {&(0x7f00000019c0)="bfd59452950ee98b02ba014742a12360a1c00c2fcc4284918574aed1cb5817d219c933e042fbe01ea14ba6225864f43d7fcc28e6bfc5b58205cfaf3f0d1b0da006e16d511d430f669a145aa00871cb1533741baa33c1f588f1149ac03401b9257738b6469f44cdc51c77047ce4ca8235a90e50d410f6bb2dfdee701fd9159545110389397f060bbaee3f349ef1fd8e39d74497cb2652ac31947eb1e9dc4a82dfbaf693a5ab3f02c4053d92660fb1f259e89df79ce20384b01c6a4843a7de335195d3bc8008ea5dff8a09490f5e1338", 0xcf}, {&(0x7f0000001ac0)="207cf62d0e1325d1e68f30fc7e424ae270a5bd5f51e74a5f4f494e1a7cd480b877ea6b49077276a6b5337d726e2d193192948b68fa2a3b122389e4a6e9817d8848532e7b83b80a04aa6ac33a868912c609f8749caad2dc511881c5b0ec5932367b527e182d59e1dabc5f92fb4c3753f211ef04f12c822235b15e1f567257b8b60ab16a14b6b6f15641a0310ea5923b63385c7ede194fb56bf9cbdf54293ee14b63087108354f73dd688c659aca5ed23cc41e15e79a633601dfd67f9518a409d13f3fa5e2981fd5fb17ad9596788f12902cb49eb30727870316137785e79a09", 0xdf}, {&(0x7f0000001bc0)="a9625b341a5dd1b09f9f9228d98d7b23167178f373bef00b5dd0bde60a4aecf38de983ae7ff8ee0cb51be71f1f9638586defbf853a064b84af03c899fd597c927eea28", 0x43}], 0x4, &(0x7f0000001e40)=[@rights={{0x10, 0x1, 0x1, [r2]}}, @cred={{0x18, 0x1, 0x2, {r0}}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [r1, 0xffffffffffffffff, r2, r1, r1, r1, r1]}}, @cred={{0x18, 0x1, 0x2, {r0}}}, @rights={{0x24, 0x1, 0x1, [r1, r2, r1, r2, r1, r2]}}, @cred={{0x18, 0x1, 0x2, {r0, 0x0, 0xee01}}}], 0xb4}}], 0x2, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
r3 = gettid()
tkill(r3, 0xb)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r3])
chdir(0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
io_uring_setup(0x192, 0x0)
r4 = openat$drirender128(0xffffff9c, &(0x7f0000000080), 0x800, 0x0)
ioctl$DRM_IOCTL_VERSION(r4, 0xc0246400, &(0x7f00000002c0)={0x5, 0x6, 0x10, 0xfffffffffffffd32, 0x0, 0xfffffffffffffffd, 0x0, 0xdd, &(0x7f00000005c0)=""/185})
r5 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc}, 0x10)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, &(0x7f0000000000)={0x401, 0x4, 0x7fff, 0xb}, 0x10)
r6 = socket(0x1e, 0x4, 0x0)
recvmmsg(r5, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000480)=""/160, 0xa0}], 0x1}, 0x2174eda0}], 0x1, 0x1, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000001f80), r7)

2.260157318s ago: executing program 2 (id=897):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
syz_io_uring_setup(0x495, &(0x7f0000000400)={0x0, 0x7079, 0x0, 0x6, 0x1cd}, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r1, &(0x7f0000000500)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x24, r2, 0x8, 0x70bd2c, 0x25dfdbfd, {{}, {}, {0x8, 0x11, 0x8}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r3 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SG_IO(r3, 0x2285, &(0x7f00000000c0)={0x53, 0xfffffffe, 0x6, 0x1, @buffer={0x300, 0x49, &(0x7f0000000440)=""/73}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x8356, 0x30, 0x0, 0x0})
socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xea20}, [@call={0x85, 0x0, 0x0, 0x7b}, @printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xc}, {0x85, 0x0, 0x0, 0x9b}}]}, &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x401, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x240, 0x0)
renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x6)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r5, 0x400455c8, 0x4)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000040)=0x30)
openat$sysfs(0xffffff9c, 0x0, 0x18002, 0x20)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000008d80)={0x2020}, 0x2020)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, 0x0, 0x40000)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000000000000000000000000009507000000000000a7ab71b5d2a870c366ca31e1ead727db9387e4eed4754f7a8b49e5d0d4fff5e51852ee0d5b7b79f3e837606b1d9fd05a65989c66a23a290bea3da4301472d039a377f4de653b392a376e4c56e5c6a0a7e0c2cde1870b4cb3c0e9f7da4add454f03963120c06673346030f18bc0e5e858ee962282b1a43307aa96a61a7ffb0c256b306f"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r6}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043e751d"], 0x24)

2.105587291s ago: executing program 1 (id=898):
socket$inet_udp(0x2, 0x2, 0x0) (async)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_netdev_private(r0, 0x89f5, &(0x7f0000000000)="c4a67cb9") (async)
ioctl$sock_netdev_private(r0, 0x89f5, &(0x7f0000000000)="c4a67cb9")
r1 = accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0xffffffff, @host}, 0x10, 0x0)
bind$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x2711, @local}, 0x10)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f00000000c0)=0x4, 0x4)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22, 0x8, @private2={0xfc, 0x2, '\x00', 0x1}, 0x2}, 0x1c)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x3) (async)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x3)
syz_open_dev$vim2m(&(0x7f0000000140), 0x1, 0x2) (async)
r3 = syz_open_dev$vim2m(&(0x7f0000000140), 0x1, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0cc5605, &(0x7f0000000180)={0x1, @sdr={0x35315258, 0x7}})
recvfrom$inet(r0, &(0x7f0000000280)=""/246, 0xf6, 0x10100, &(0x7f0000000380)={0x2, 0x4e24, @multicast1}, 0x10)
close_range(r2, r0, 0x2) (async)
close_range(r2, r0, 0x2)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000004c0)={@map, 0x22, 0x0, 0x7, &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7, 0x0, &(0x7f0000000400)=[0x0, 0x0, 0x0], &(0x7f0000000440), &(0x7f0000000480)=[0x0, 0x0, 0x0, 0x0]}, 0x40)
io_uring_enter(0xffffffffffffffff, 0x15f, 0xd2b1, 0x71, &(0x7f0000000500)={[0xfffffffe, 0x3]}, 0x8)
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0) (async)
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
fcntl$getownex(r2, 0x10, &(0x7f0000000540)={0x0, <r4=>0x0})
sched_setscheduler(r4, 0x5, &(0x7f0000000580)=0x1695)
madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x9) (async)
madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x9)
r5 = openat$binfmt(0xffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_aout(r5, &(0x7f00000005c0)={{0x107, 0xff, 0x80, 0x109, 0x3a9, 0x6a, 0xe3, 0x6}, "b24764cc964fdac8d4fbe305a064dad4785fd65866e897ff660caa64617ac5ec5e84b2233f8da1d0d7e0985e56e8094e3bce92b6b3f47f3568fc5ce9fa2be7230f50e88b9cf85ae3af96473389f06d760d6ffe8cd0014b58efa7620081ca1699224c9f081ba3f73ed380a7706de7e85d486d9271cfec3e39811bd7b389f35f31c311fa218089c035828e3b37068c2629291cf743671a3a1d37e2895eeb8f36bb44bfdb6cc5a9ae0a1859df03670dd33c3388ece95722", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xad6) (async)
write$binfmt_aout(r5, &(0x7f00000005c0)={{0x107, 0xff, 0x80, 0x109, 0x3a9, 0x6a, 0xe3, 0x6}, "b24764cc964fdac8d4fbe305a064dad4785fd65866e897ff660caa64617ac5ec5e84b2233f8da1d0d7e0985e56e8094e3bce92b6b3f47f3568fc5ce9fa2be7230f50e88b9cf85ae3af96473389f06d760d6ffe8cd0014b58efa7620081ca1699224c9f081ba3f73ed380a7706de7e85d486d9271cfec3e39811bd7b389f35f31c311fa218089c035828e3b37068c2629291cf743671a3a1d37e2895eeb8f36bb44bfdb6cc5a9ae0a1859df03670dd33c3388ece95722", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xad6)
mknod$loop(&(0x7f00000010c0)='./file0\x00', 0x400, 0x0)
mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000001100)=""/254) (async)
mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000001100)=""/254)
r6 = syz_open_dev$MSR(&(0x7f0000001200), 0xb28c, 0x0)
ppoll(&(0x7f0000001240)=[{r1, 0x4021}, {r1, 0x10a4}, {r5, 0x2}, {r3, 0x8100}], 0x4, &(0x7f0000001280)={0x77359400}, &(0x7f00000012c0)={[0x80000001, 0x1]}, 0x8)
r7 = fcntl$dupfd(r6, 0x0, r1)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000001300), 0x10) (async)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000001300), 0x10)
ppoll(&(0x7f0000001340)=[{r2, 0x4000}, {r2, 0x81}, {r1, 0x2640}, {r8, 0x4001}, {r7}, {r3, 0x42}, {r5, 0x32b3}, {r2, 0x50}, {r3, 0x2600}], 0x9, &(0x7f00000013c0), &(0x7f0000001400)={[0x8b, 0x80000001]}, 0x8)
socket(0x1e, 0x2, 0x28)
statx(r7, &(0x7f0000001500)='./file0\x00', 0x100, 0x2, &(0x7f0000001540)={0x0, 0x0, 0x0, 0x0, <r9=>0x0})
mount$9p_virtio(&(0x7f0000001440), &(0x7f0000001480)='./file0\x00', &(0x7f00000014c0), 0x804c00, &(0x7f0000001640)={'trans=virtio,', {[{@access_client}, {@afid={'afid', 0x3d, 0x8f}}, {@posixacl}], [{@permit_directio}, {@seclabel}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@fsuuid={'fsuuid', 0x3d, {[0x31, 0x35, 0x0, 0x33, 0x63, 0x32, 0x62, 0x35], 0x2d, [0x63, 0x34, 0x33, 0x31], 0x2d, [0x35, 0x61, 0x39, 0x65], 0x2d, [0x66, 0x64, 0x63, 0x31], 0x2d, [0x33, 0x65, 0x30, 0x39, 0x31, 0x31, 0x31, 0x35]}}}, {@subj_type={'subj_type', 0x3d, '/dev/video#\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, ':'}}, {@audit}, {@fowner_gt={'fowner>', r9}}]}})

1.460090532s ago: executing program 4 (id=900):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80000)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000080)={0x0, &(0x7f0000000300)=[0x0], 0x0, 0x0, 0x0, 0x1})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@newtaction={0xb8, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0xa4, 0x1, [@m_ct={0x58, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xdd, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x15, 0x6, "82e9a0a82db415107d723e5cbe35c1c52c"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x10, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x1}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket(0x10, 0x3, 0x0)
write(r7, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bond0\x00'})
r8 = socket$packet(0x11, 0x2, 0x300)
creat(&(0x7f0000000300)='./file1\x00', 0x0)
mount(&(0x7f00000000c0)=@sr0, &(0x7f0000000040)='./file1\x00', &(0x7f0000000000)='efs\x00', 0x9, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, 0x0, 0x0)
setsockopt$packet_int(r8, 0x107, 0x8, 0x0, 0x0)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r2, 0xc00c643c, &(0x7f0000000300)={0x0, 0x300, r2})
openat$fuse(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)

1.269019442s ago: executing program 1 (id=901):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=@newtaction={0x190, 0x30, 0x1, 0x0, 0x25dfdbfd, {}, [{0x17c, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x1e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}, @m_vlan={0x134, 0x20, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PRIORITY={0x5, 0x6, 0x4}, @TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0xe66}, @TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0x69d}]}, {0xee, 0x6, "482680d06dc014fc2c74e03ea8cddd80cc66d7e9de70d18ea9734bd6055f95f48d2fc8a6c8a67b4512e32bc94a1d4a17d75d998bc8dfce6016c0c1f76a178bf9c21e8ca334625446327d4ded8c81bdd47dffe3ed992a94f595acbfabad644cdc6f802854565daba0a4e23538a96d7ab19eae06a31b9d0afb16403dc0b81d5a5386ea382324a1edc7507703d70f3bd7a517f0a550ca28d95f46a1db5499c0fc7ee7a764139fee61e7056430b94639fbae30939a95ef1a453d1f7679135e8b17999886fec816ab454dee9d18715e33be0f7c1fd72056aba8e500e605811439cedd088e24538fa60074b282"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x190}, 0x1, 0x0, 0x0, 0x10}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x1, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, 0x0, 0x0)
r4 = syz_open_dev$vcsu(&(0x7f0000000000), 0x800, 0x40)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x8000)
syz_io_uring_setup(0x4f6a, &(0x7f0000000480)={0x0, 0x354d, 0x2, 0x0, 0xc5, 0x0, r4}, &(0x7f0000000500), &(0x7f0000000540))
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, 0x0)
syz_io_uring_setup(0x117, &(0x7f0000000300)={0x0, 0xf993, 0x0, 0x0, 0x155}, &(0x7f0000000280)=<r5=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
add_key$fscrypt_v1(0x0, &(0x7f0000000040)={'fscrypt:', @desc4}, 0x0, 0xfffffffffffffdce, 0xfffffffffffffffd)
creat(&(0x7f0000000140)='./file0\x00', 0x8)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000040)={0x15, 0x65, 0xffff, 0x1000, 0x8, '9P2000.u'}, 0x15)
r7 = dup(r6)
write$FUSE_BMAP(r7, &(0x7f0000000100)={0x18}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x6, 0x5, 0x2f, 0xfffffffa}]})
write$FUSE_INIT(r7, &(0x7f0000001740)={0x50, 0x0, 0x0, {0x7, 0x21, 0x0, 0x0, 0x6f, 0x0, 0x0, 0x803}}, 0x50)
lstat(&(0x7f0000000180)='./file0\x00', 0x0)

1.070386945s ago: executing program 3 (id=903):
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x1c0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0xa7)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x40)
getdents(r0, &(0x7f0000000480)=""/40, 0x28)

1.05546315s ago: executing program 3 (id=904):
r0 = socket$netlink(0x10, 0x3, 0xc)
unshare(0x22020600)
r1 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/mnt\x00')
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, <r3=>0x0}, &(0x7f0000000280)=0x5)
setuid(r3)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180), 0x10000, &(0x7f0000000340)={[{@redirect_dir_on}, {@verity_require}, {@index_on}, {@default_permissions}], [{@func={'func', 0x3d, 'FIRMWARE_CHECK'}}, {@subj_role}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@euid_lt={'euid<', r3}}, {@dont_hash}, {@smackfshat={'smackfshat', 0x3d, '&\\!'}}, {@smackfshat={'smackfshat', 0x3d, 'ns/mnt\x00'}}]})
chdir(&(0x7f0000000080)='./file1\x00')
r4 = open(&(0x7f0000000140)='./file0\x00', 0x80, 0x0)
quotactl_fd$Q_SETINFO(r4, 0xffffffff80000600, 0x0, &(0x7f0000000040)={0x1, 0xfffffffffffffffc, 0x0, 0x4})
setns(r1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.000271405s ago: executing program 3 (id=905):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'veth0_to_bond\x00', <r0=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000001080)=ANY=[@ANYBLOB="4000000068000100000000000000000002000000000000000600070008000000180008801400011ccfe86b379302fd00000004000f00030008000500", @ANYRES32=r0], 0x40}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=@ipv6_getaddr={0x18, 0x16, 0x400, 0x70bd2b, 0x25dfdbfc, {0xa, 0x20, 0x6, 0xfe, r0}}, 0x18}, 0x1, 0x0, 0x0, 0x20040810}, 0x15)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, 0x0)
ioctl$SNDRV_TIMER_IOCTL_INFO(r1, 0x40605414, &(0x7f0000000000)=""/30)
syz_open_dev$evdev(&(0x7f0000000180), 0x2c, 0x2)

1.000017485s ago: executing program 3 (id=906):
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0186405, &(0x7f0000000000)={0x5, 0x4cff, {<r0=>0xffffffffffffffff}, {0xee01}, 0x9, 0x2})
r1 = syz_open_procfs(r0, &(0x7f0000000180)='autogroup\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000100)='proc\x00', 0x0, 0x0)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r2, 0xc008561c, &(0x7f0000000040)={0xf0f002, 0x1})
r3 = gettid()
r4 = syz_open_procfs(r3, &(0x7f0000000040)='timerslack_ns\x00')
write$tun(r4, &(0x7f0000000140)=ANY=[@ANYRESDEC=r3], 0xfce)

940.211784ms ago: executing program 3 (id=907):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0) (async)
close(0x3) (async, rerun: 64)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xa, 0x7, 0x6, 0x8c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) (async, rerun: 64)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000008c0)=@security={'security\x00', 0xe, 0x4, 0x334, 0xffffffff, 0x0, 0xb8, 0x0, 0xffffffff, 0xffffffff, 0x2a0, 0x2a0, 0x2a0, 0xffffffff, 0x4, &(0x7f0000000180), {[{{@uncond, 0x0, 0x70, 0xb8}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@empty, 'veth0_to_bridge\x00'}}}, {{@uncond, 0x0, 0x90, 0xf0, 0x0, {}, [@common=@socket0={{0x20}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x4, [0x0, 0x0, 0x4, 0x6, 0x1, 0x3], 0x0, 0x6}, {0x0, [0x1, 0x2, 0x6, 0x1, 0x5, 0x2], 0x1, 0x2}}}}, {{@uncond, 0x0, 0x9c, 0xf8, 0x0, {}, [@common=@ah={{0x2c}, {[0x55d]}}]}, @common=@CLUSTERIP={0x5c, 'CLUSTERIP\x00', 0x0, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 0x4, 0xa, [0x10, 0x12, 0x34, 0x1b, 0x4, 0x36, 0x30, 0xc, 0x17, 0x1b, 0xe629, 0x39, 0x2a, 0x2f, 0x2c, 0x2d], 0x1, 0x3, 0x6}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x390) (async)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='net/psched\x00')
pread64(r2, &(0x7f0000000080)=""/108, 0x6c, 0x2) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r3}, 0x10) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000080), &(0x7f00000001c0)=r3}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x3, &(0x7f0000000400)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000007}}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

840.001462ms ago: executing program 3 (id=908):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, 0x0, 0x44080)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f0000000000)=0x1ac, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x88, 0x30, 0x1, 0x0, 0x0, {}, [{0x74, 0x1, [@m_ct={0x44, 0x4, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x1, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000280)={'wlan0\x00'})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = syz_open_dev$vim2m(&(0x7f0000000280), 0x7fff, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r2, 0xc0405602, &(0x7f0000000040)={0x38, 0x6, 0x3, "000000010034b52ba75066c27891ca55e21f0000000000e7ffffff000200", 0x30323950})
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r6, 0xc0045006, &(0x7f0000000080)=0x7f)
read$dsp(r6, &(0x7f0000000000)=""/40, 0x28)
openat$vnet(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f0000000100)={0x0, 0x1c, &(0x7f00000001c0)=[@in6={0xa, 0x4e22, 0xdc05, @private0, 0xffe4}]}, &(0x7f0000000000)=0xc)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)

378.904782ms ago: executing program 4 (id=909):
socket(0x1d, 0x1, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = fspick(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0)
fsmount(r1, 0x0, 0x8c)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x0, 0x1)
mount$nfs4(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='fsc'])
setsockopt$SO_BINDTODEVICE_wg(r4, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
sendto$inet(r4, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
unshare(0x10000)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)
inotify_init1(0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x854bc19281c1f3ae)
io_submit(0x0, 0x0, 0x0)

378.439157ms ago: executing program 1 (id=910):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0xfbc6, 0x10100, 0x8000003}, &(0x7f0000000080)=<r2=>0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r1, 0x0, 0x0, 0x0, {0x230}})
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write(r3, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x153243, 0x0)
openat$fb0(0xffffffffffffff9c, &(0x7f0000000540), 0x40, 0x0)
ioctl$FBIOPUTCMAP(0xffffffffffffffff, 0x4605, &(0x7f00000001c0)={0xc, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff})
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
setxattr$system_posix_acl(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='system.posix_acl_default\x00', &(0x7f0000000440)=ANY=[@ANYBLOB="0200110003000005b19d42eb0400000000080053304cef7334a60744466d952869da4dc4c581954f7531d84db98a6025a48fb982aa74fe1612d51b10a1924d094c842459000000000000000000"], 0x24, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
openat$dir(0xffffffffffffff9c, 0x0, 0xc8800, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
renameat2(r4, 0x0, r4, &(0x7f0000000180)='./file1\x00', 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0xffffffffffffffa1)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x18)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000080)='configfs\x00', 0x0, 0x0)
lchown(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x81)
syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)

168.019786ms ago: executing program 1 (id=911):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x3, 0x0, 0x7fffffff}]})
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000001cc0), 0xffffffffffffffff)
sendmsg$NFC_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000000340)=ANY=[@ANYBLOB="967fc14dbcb869225c6f499ddb03132d7dd8caddb468a7d5372ce8152271b732e6be4ff02563c957485c153b71663943e4652b95350d1f0697892ae1d250278bcd53c99f575acfc4fc959de1c11f909e0045f777b18b649bdd1ceee5dcaa59ba166bbcfe44", @ANYRES16=r1, @ANYBLOB="4ddf2bbd7000fedbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0xc894}, 0x4000000)
prlimit64(0x0, 0xe, 0x0, 0x0)
r2 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="c14a8cf012b79241197fa55c95cb78c868dc7f4065db6a1f55fdb9b3b620905db1150adbd5a48a5968dce0ca0c3b439a84136af4f91b835cf51a0b762c624ee970f63316960a1c5a1e36e766cf0fbb9676e41671fbe2c846cae88f54cd08de9d971d8205b0f52c3dc829935ceb9b6f73bf7cacade0e52ab90b160f562cc866b026c1261b336312bd662d41d1b80d8141466b9092866d89534e4425d9f046c0f047516825d6671ed32c121c5aa880c9759fb464a544c710dec4bd5b3663332c9310983127de7a7c3e9253a76a0a63a3c692fb2c07fdbae7c2", 0xd8}, {&(0x7f0000000280)="3a9956c64df7c66b7f95b69c46eaa813c943d5cf148b90b62a361ebcd78b041aa5705bbb03fb487eb5ee8d7464c339590ca1bc4edae6b783479647008d27ca60cf62d4f8af4a72242cc21788f5e80bdc43060e1491c8c6c0501cf6f7962c0e5d8c3b1671b17d9fbc2d5e1ea19b7bc33ecd73205071acedce4aae8de86f40aa49727d75ac8ddd6ae8029efcf50cb3bf19", 0x90}, {0x0}, {&(0x7f0000000180)="1cc013eee619095f71f1d359c6b292b0d4d08ddd3e89b55cb66c5d204454453507af7a6c563bd1140150c223c25c8188", 0x30}], 0x4, 0x0, 0x0, 0x4024814}}], 0x1, 0x48044)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x1, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000b40)=[{{&(0x7f0000000500)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000000580)="d9b48e76265641307f75bcf3197ab70686bee350ca5a6c5920426dcd5b0fc9e67918273d6e860a50a9d7845dcb0c948b57fb4c415df277e790af08e6a9eb10d061e7f3a9a305cddde923311088df34aece384a6bc814952b4271cdb5df26be2e26b60128f7b97c18422bb0ac877dee4b981b420a0d55793a5d9d814bd44991eb781714ec03dfb24354971b2d2470fbc7486c930c535d37656f0a39634e25843de7b1e4e03f02b2f6c0f77c5f5a4b0859dd6ae60df597b2415b8ec57b2ef85bb372a00469d0770d74ebc374567d16a88162cda89baa8f0e7e0dde9d010961610c976343", 0xe3}, {&(0x7f0000000680)="2768e09253fc8ce96113e7243cfe1349cd528ca3ca8298765fbd7a5ceff8b01cd80b0d49cf4c57d880170dba87de9eb22395fa1fcd17c2dd774da4688003e1685ab25097f3f931f6ede5d45ef5d297299d760da71b140f27b3cdeab0edcccec9a7d63608715404912c6af0f48a5e17d794229af8c039109beb960941206fa9", 0x7f}, {&(0x7f0000000700)}, {&(0x7f00000009c0)="726347ebdd0b5ff5d0aad0d87c75f0d5c6a1efeec01ac46a2d5192ce8b36be31db8e7610168f216aede242a4d4d7afbaa55d95502a42ad4b4995b013ad23ff367c313af9724e09e6445f89a5484c6c796164f00ace41740a1ebaf9cc5d82dd29770744595b3fdab82e6279970f5122fadac547d6813945c4f3c3aa0a21e8a62786021016dd0896d65c58da5aff2dcb188ef5492cca399ee62f196244eeed33255334d3133849298417fd39dfb77e232c5a6af2caf41fb97ec5569efeb47642bf0b1c5f2b3db58126d2ad727d0f52e37c082218f5fb0061bb0db92b65", 0xdc}], 0x4, &(0x7f0000000bc0)=ANY=[@ANYRES8=r1, @ANYRESDEC=r0, @ANYBLOB="d859dbb80c64fd4b3cecf1365980da448163c201fb5f9db20e4651f818c60704539cafb3ff38b8a8e18a3dfab563b6abc4c368840daaf3a713f196ac9b05345d8da053013016db40b178fb9e6e267654a0cf9670636ed7ad9f4d198e36871ef0e42d4116360bcfed9603d5fecc095723c1e6821932", @ANYRESDEC=r3, @ANYBLOB="180000000100000002000000", @ANYRES32=r3, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYRESOCT=r0, @ANYRES32=r5, @ANYRES32=r5, @ANYRES8=r1, @ANYRES32=r0, @ANYBLOB="def48a3f673564d0ab2cd35b4e534d0f09c6318047f7bbf7551b0b99ff5ed012627eef86f05b5237e104e0eacd88d20e1d34143a0b160bfc58", @ANYBLOB="6eb43c883385e813feacc0bd7ea87e35d4e3d3f7d77dc668cf5c0a662e1bb9e0e1ab83a14d", @ANYRES32=r5, @ANYRES32=r5], 0x5c, 0x4000}}], 0x1, 0x0)
syz_open_dev$vim2m(&(0x7f0000000040), 0x7f, 0x2)
sched_setaffinity(r3, 0x8, &(0x7f0000000b80)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="2c00000020000113000000000000000002000000000000040000000008000100e0000001080004002f080000d1ce2b4fea47847811fb61725942a1c684a3a952d9163fc521945b228a2f70e02e7a64deb6885cb576be902b42ceecd3ed112234607e4aa39656ac81e50596bfc6e897a037ac0435ab41819bb28c1660ff8c681729f8a82002d8b8e3f64b27007a136a9848e80006b57bfbff73197708dad7c400000000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000021000100"], 0x28}}, 0x0)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r8, 0x0, 0x48b, &(0x7f00000003c0)={0x0, 'bond_slave_1\x00', 0x9}, 0x18)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r8, 0x0, 0x48c, &(0x7f00000002c0)={0x2, 'veth1_virt_wifi\x00'}, 0x18)
syz_emit_ethernet(0x132, &(0x7f0000000780)=ANY=[], 0x0)
close_range(r0, 0xffffffffffffffff, 0x100000000000000)

167.5861ms ago: executing program 2 (id=912):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x4000001, 0x13, r0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
syz_open_dev$vim2m(&(0x7f0000000000), 0x2000, 0x2)

167.352927ms ago: executing program 2 (id=913):
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x1c0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0xa7)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x40)
getdents(r0, &(0x7f0000000480)=""/40, 0x28)

80.273273ms ago: executing program 2 (id=914):
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="151800001000000002"], 0x50)

80.039565ms ago: executing program 2 (id=915):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'veth0_to_bond\x00', <r0=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000001080)=ANY=[@ANYBLOB="4000000068000100000000000000000002000000000000000600070008000000180008801400011ccfe86b379302fd00000004000f00030008000500", @ANYRES32=r0], 0x40}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=@ipv6_getaddr={0x18, 0x16, 0x400, 0x70bd2b, 0x25dfdbfc, {0xa, 0x20, 0x6, 0xfe, r0}}, 0x18}, 0x1, 0x0, 0x0, 0x20040810}, 0x15)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000080)={{0x3, 0x1}})
ioctl$SNDRV_TIMER_IOCTL_INFO(r1, 0x40605414, 0x0)
syz_open_dev$evdev(&(0x7f0000000180), 0x2c, 0x2)

0s ago: executing program 2 (id=916):
r0 = socket(0x1d, 0x1, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94)
r1 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$inet(r1, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@ip_pktinfo={{0x18, 0x110, 0xd, {0x0, @multicast2, @loopback}}}], 0x18}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
ioctl$VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(0xffffffffffffffff, &(0x7f0000000480)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000006500)=[{{&(0x7f0000000240)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000300)="fadcb93660830a350bd8c8d97f60751b0bfb70dafc1065c63503ced1b44d39a9f639bdbac662b17d1ee937b4c997981e7b9e56ea102110517faf587b6cec363a12494c38e7fc363ddc8f9e6aad5fc51efd4e0edb6271c3b75090a7c357fa21353464c52c8e3d67f11ecd5eb8e7d0eab39378de467a7fe7aa7840f5bdf3217796f82c4794d1558be5f6e1644d2c89bc617162bc044d91df92365ad94591533e6540268879e05e686f7c08e44c1217bd0aa7f7e1b9d0b568e6ccf3b6de8d50209b", 0xc0}], 0x1, &(0x7f00000005c0)=[@cred={{0x18, 0x1, 0x2, {r2}}}, @cred={{0x18}}, @cred={{0x18, 0x1, 0x2, {r2}}}], 0x48}}, {{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000640)="40bf8b39860495b996319cea5f951736d1", 0x11}], 0x1, &(0x7f00000007c0)=ANY=[@ANYBLOB="180000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="280000000100000001000000", @ANYRES32, @ANYRES32=r3, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32, @ANYRES32, @ANYRES32=r4, @ANYBLOB="100000000100000001000000", @ANYRES32, @ANYBLOB="180000000100000002000000", @ANYRES32=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="180008000100927500000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], 0x80, 0x20044800}}, {{&(0x7f0000006200)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000006480)=[{&(0x7f0000006280)="d2268457782d139db78ddc0046afa6706129d141146aa7187a0e99a6b5f85c4f2c3aa7e02670eda10f0404032be6902f17ec379c712a1e672b8c50a4c83edd61affdf3dbd40db127a95215435b94e993b94efa25f49364993a98e953b103ab8e6a89e6974fb27b12397eea2c106010af66056adbeb02327596bfe7369c181ea73b5d340236cb94be929181fb1a", 0x8d}, {&(0x7f0000006340)="e7debc03d50099c3ee3807d5ed469739b386072ad11945a9b85fb2b24f2826a7c7b33cac01a9779ecd3a8c18471ba5f6fe80800cb5c593185777aea4227beb737f7420414544f45a01aa8f5dd366780e9a164bdf4a6733b4668bea9e9d81e3f01e5ccf879532fe1beb77856874c926ca6254a5de9b6129be0352ec5a6fa4ae085075", 0x82}, {&(0x7f0000008680)="545da2d588c973b1696d2240e992df2d322c0a1b93abba476bd8ace6919eb4a4214faa89159dca601419b24194d317254cc8442018d687bdfc7a74f7f905aa3d52ab6de41505bcc976eccbccbf6addb1a157269c7c16913a02cda06492b8be694c8717de06bb1a77ec0ddcfe1ee1869950b3b56bdba7e41a61932abac3e379f8ef0debc74ce6e933e0eb8f0625b36ae2133799ebcfdb9183adaed2b99f4fab07c88024e269972c3a7002acdefcdd582e58d56b900e816ac844547412c04e348664ccc44e11cce32ea0c81d650a31d1271416d32f1a6c39cfca076b1bcdcf9caae67c5d9a7f02c3e51f3f30045dad87354d249f44ca6602826e012e9f203a7b57861451e38974b6903ebadf074169e9cd17105f34c830b33ff43aff9e544e98cb297c8579686622495e9d50d61fe15d1a91ec5fd5fa8ee4058066d53df2329f0420b0e9ac0d994d74028a4d9b7c517ed750ef63fac1154b6b6fe74ef59d007f4859bad1343623cb8a9752fadb0c73de2e57ed971be309e601071b25c835bb52b1b8b8df41bc7f6f23f8c34327ad9fb886aa17b73ddd8f427e1c74a4dd004aa8fe46ad7232d5238d952f3c185ba0369e5e82dab9a2cc96a88d4b1f68b249d8c85b61ce6c2a77441d83e6eb90d146c284001b235e56d00de6bc7923b0fc210d07d2c1d8050c36f05a7f6604baf123f7a1b6ef9035bc4c3151eb0bc706e34109af30acecf1d9d0e2ad1d2865ffaf1f2df040eb9e6bc9922d97317cb23a542783af2ec2711109c4260419b802d515e93499fffedde310630704a42d4ebbada6a6779018acd8d75a6202ae2c4bc82ae2d0cd012ddfb33b986808f2220adbc35a4a57d235f3c5ebc334c7b5d8922838887c2eb17464d564e0f06b376243388b7ac117007d0176acb8ad6afb1aba5db99c4de09e79fcd8f818433d6c9e6dbb3d2d58dc0a3217fbcc439958b96be8406347defc49556d4aee49675d8f63cfa0aa145ea0ebe69ab9c05ee70d949b271e8794d071190f163947d15c5f7f1611a653b4c0bb740d06ebaa3cb940c7a7092ad5b08cef1b0a5ac4d5e8c873082d39be5941cffe693613729f54796cc2eeb8a503c19a380806187c005a3baaf1729c77c0fd54b3550cb0ed7d95765c38f99a174486f9abc34595a02b76fef5cf20231da2e586df7f7c5b78631227ec23e45d53195a2ddcc5b4b7f1a23d5de471b05bebe8655d2854157fc33db04ff946ad01111c2c44176ee294288e1c7674bbefd8307d872147572ef9dd3dcb033acad4b319586dd8dba8eddcd7713a9db3eb61f0f750ec3b52014f62a9e69165b73ff7eb08378eab2f2dfa9512bde28e04c7a0b9dddd64c626550326a2801215f1f4e15eabad1df38cf8d87db59dca45e814b0c1ef5442e68229d1ef57f5c7417f58425a3954f26c47668bc443c8397e385d3b4ce62b1f588a36c97c8d99f8755ea24446945e90e02d8144f0b63f35fd06b8e2566aefdb89f599d67242f44578be91dd026dbe838154cf786b06bd8a7c33d65ba99638518dcb6c9c4ba1d71bd07d5cd3db154199873ccf0fb218c4956412f7eaeb419423095e89b1a691c184eb7b0cd7af0a0a15559e13f38148556b478076f9e755399fdb72dae0f39decb421902dbdc5ed1ab120204535120a4144d0a767199061bffee468f454c5b331d33d4cdf362a1ada20ba3d80e1039e424f9958da4ad2ae6282e67d6520bf80d6f2a943dd59c8f2665a92789bbad88b82717e4c54371ae9256e34f309fa4f2a6e4b344103cf0e7a8ba12385fc26aae7703904ae1ec5fe9766adcf77797e869186619238a3457cb02e091ca1dfa3136bd6015605c172e5f0a9bc30cb141bfeb015264291a2df00defebf4da305af10ba1451a5f7d5a38456227f3ef561d563164277cb43dadf867e46c441a8d5c660208a9f8fd8ab959234561098f073e281516c3e022600af90ef022e5b1264a12ea7ebfd2fddeda94f70075fc9aaabc3e0fedeccc87f7910102bdb324b9fb86f811f14eaaaf0b150db67d3a1919f9da0ad761d6831f38cc56ca9bceddba91dac4567f18eb8affc3b21127f37490e53ffa5404e9148e005db5cefdba7995560f9494e9d4d676433b58a457987a1eaa69497165786ab482008517256fd4adde0e6d1c0650cfe1fa3f3c75e67c7f325d45fcf9178d6f144a509cd352612dcfc710e904473156559d85d235a15f53072a40645947debf34ae61f1d920e9c4928a492d19b7a5a0f574263ce5420e5427774f407058155d1fd3a2fdcd9498fc6a48026192b50c1af287f27c6b19e9e4e77725254f919fffd311df12af0c5373d19356399c1876945ba08571a7fca8c24f5e8d7e322ed63bcc0bbf0160df388b3982216c99e895aff9edb23a6487d69feb73b0311583be46807c48c661c005add60af4fb8720b817a28de780701ccc64b645bc33d07ecdc09c586ac452c28d5d65c01d447faac9611bed9ed31968eb71a743554973503bede9422f8a3a5f79aa8e720b99fd85b282e1361b16911713b653f31a6990294a258de56cd0ea17f21057406d8fd12e0122ecb8f78b82fb80c90421d308f67361c5943b3a14f89b4a86ecc2c7d92c805fc37478201094200438f5222f4bc3fe6af9c122750de5af6436a3e9d1fdb773f8604efc339c7438618063f2207b7a08ce2f9526efbd7f5bbba3f2e1b85bd2afb7004bfa302e2d3adf50251353314aee7c9fbe7990935193f182f29a4f891f774925b91633f46388d317e146e852d0c15559eda7d62a2ec0dbe12d47e9b249bf8cabd149d56c1bd2c984b504231a125b00ea87bd86f670a2f28d8af05896b29051bbaf76ed51c4d8bf27f8120e2d326c774168bcfea180dc8d956d2e4b773ab20adae8fe5fd607646883a4588cd2fbc408c1cbad9ce5b25fe4ce582eb770e8b914d51551978e08ed9c82f5873ac194ca329f334a7eb6794d75262f03c667e2cb49d818df83ee7c91156921560c394ea4eb1445850d473603f4b207039f3b4214ce5cf3f06eeae4522ea693f9d6db0544d30caa9f9906eed566315774eb34b2ab5f23bd2b09155eceaec2ce435611a3b16eebaebdfc094f16ff61ea6e406ce8f09f7213e4a685e56ff828fa41eacfe134d469096c140198fc853d6fe3a87b17dcdc57e1e014413408b5b368426d2953e9bf6fbda06c74786f46ab280b4dcf2288ff6c9b1d3f3ee3296531dc087e9ac598dc1dc75e785e30fd63f8ba297ea805c80c612f2ae75329576c79192d5f50faf9089b5731c4b1960d124e8e99541403b3dbbb5fa32e0cf28eb49b04046297ffa679b12d8015fa50963af25312cbba7c5e3b5e8cc21d881f64bf1c69744d39c81eb9231a3869be3de63ba3db2ceff9bef127cc5a60ab9e6e49ba58a5217d2f649c4a5c4250d148f2d66275e70189b7f90667cfc5921b1c027fae6a533a8dd1a81460f35ef73ff1b0a9458b85862c7291f374e353dece9039534ff49419aa046b53ea509488e28c2549a69c02dc3f9243e99513553cf88849fa8ce92f905f2273e5fc718ec1ad839cffbca8a510ae3fc90ae9fb69fdce89bf57cf7bce7b4c88adaf28bdd62ba090d2e4ac67dc2b918e021ebe85240b52ebe70415454f928c5f696b21fa0905450623f54889b0f2efa9108794e9d52c9dd0946f91c752b1a3667f149e6378e6999ebfe50c4f9b6cab2538416229281ad1eac31fbe3304614ffe16e3af940b7b63ae64ad0a2c3aa4fb87fbd2f992216a0e6112a679d00c680fdbcdc7c2e379e7465dfe430802776ca255d889616fadd9eeda368f6957fd21c31e823ba59b0a345894697795cd6e19a260acf1fc79c2e2d5ac82d60276e191cf6b278d17ca686125f4943e0557082354fc2929b0de50f373d6de53f03a95e9b734d726f64fb2ee43e76da02bd45e1ad501cdd319b99c87d6fc524bb28afbfb3241f127f698b955f71da0bec9a9da0ee835794d114c927cb195f0cb0da6a9b6eb82b2e677c7e1480cebe86c418538f81d942c45b303da2d56891ed9b8a0cc1e1c4382dfe7529a41a1164fdb0ac9d29070c5ff6e712970a8258cb82526e84809f760be045f2987a06912d83708685c830945c62344cebef2ce9d05c11613599a05e671046e50d3e62ba47e34e4f869507c038f9973229697f438dcb2ee1c16e9f4920c523a8eefc3d43f606181bc7ab8dc3f7cbd8a226d27cc77f91883ff41bb537a8f562516b23c911392be79dd93c19b8e6c4f59622b040f844e5e86aa787552c9886375f33f224c76bd30c9d73c2f91a04b4ee6bbe1de0a46570c0a7f0edbec7d263ed678b0dc7997a597c74811287dd435660b5a6787e62060e0b35dc38403438963ada5c584f8e6dfa7671072e9593f6c5809cd04e9c056e665457115881a818a28c731c577a0e378cb825dc17a4de55e6cdb414058db606e0f46d9451f292e75182c47552138f871648d0303e998097f7c898334da9c4016fd7c480ae8d272a0e81d5dd3f408e2924e4ac7063943266e15ee438d61c6b004100c37ba1cc6eb182e0cec193036a41dd8f28978b20f3ce36e8b6299b1aea74f2ea4861dbab6f3131c51959dd0c62114f344ce943d334f4d88f84680b09db3ba0c9e763593ad59463f32c3496161fdd746610e072adb3b42f9c323cd1e0c82f61698b6f90f3e23ebe0d9f0f03a6263bdecd97898b14c997f22a8a95b96890c6da80eb8d9d09395515d2073bb9d8c8a5e7637bb8118802c7d4a420ea9496bd73acfe1fcfa2a1e30565297bcbb48c12df70249a38bea99d86493d253b9ac73f32f2b468e58f3bc3f1d44f584a747767c1f27b920d82d54a27b8654ceb406b739b37f0b36b9ff6c5aeff7347acb31c674ac5872b530187cfec863fbf77b3a7d17cc4aef16d5227cc5f6557878853e88169b1ed9ded83ae2b65989477d943ebcfec944b14a936022bd313298030302c486de4797010927007d2667eb10986c6ddbf23b069e58aa23b453bbe9cc3cac651be8af0507d6b1a72cf2b951c96b4d9a3eb0b56277e80bbcd79d7d88a2e7a14d7cf487c3136fd53eaae166034718cca25b8c41ec1b23ec2bdbef94396ad5ecaa1bcad785a27a655effe4aabf5b87bb11cad8e510b030e3d2089ff33d7120f5b01917f4a71e1c9bda697f3d1e799ac58f1829f181488f6867c0073b0c93203334199af66357a6c6c7f1a5189f6d1c9d77e75cc2858cb4eb70de06193c2a43bcfd86e11a8f7e10132ec8a2e9b449549b88ace9f1c9983d4aaa07278f95c16f2c1df5e34ea8a0812307db32c196c8d1609ee625e1f82efdf15957de75c0ac9edd272e535647c5242b69a239bac5ccddaf42eb745a9f91e9eb99b16543c5bf14915ef01a4d021cc79bc091ca320f673df36c792be4d6cf149d9cbf5affa56af9a1e1b807b34edb39f738903618d0126496489c9b990de0ce26d851b7330ba117eefdc74ec1008058673b6964e7daba1b73a06428595dcb4617be953f177e08bce9b8e91139e327db0c2f250263170a9f3d78b62fa0bb901d5abfb64a592e0eb3fd394d05037a1a09cc01d6e2bfe45829a93f91b1a9af4d383a6c294ed59c4b0a9917d65d948e16a53517fe185827e563af942856c31789a83e43752b4aa67f8225b98faf23954582d7230e9b09d35f6dd32f4d2129ccf1a44d62151038563e0047dcbe1ddf12c05c42a3d4de333484a34616daad5e8d01b4807659996e35910ea413ef43f70fdfaa66ea5215613b40f981b91b4b0963e74f4461c6e732ba9495c609f78805c3aefa0753f648926d39a9b690bb0cc8fdd24b5cb", 0x1000}, {&(0x7f0000006400)="e1be325391d16d4229a1707de93feb99243940d75bae002555f692a7c1b8f254eb40766808f89033d61247ce", 0x2c}, {&(0x7f0000006440)="e90e0d946571869ae73b1db3387e3cc928b160eabe", 0x15}], 0x5, &(0x7f00000064c0)=[@cred={{0x18}}], 0x18}}], 0x3, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000100)=0x400000000002)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
mknod$loop(0x0, 0x0, 0x1)
mount$nfs4(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440), 0x10a9024, &(0x7f00000001c0)=ANY=[@ANYBLOB="6673633d8f"])
setsockopt$SO_BINDTODEVICE_wg(r5, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
sendto$inet(r5, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)
unshare(0x40020000)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2}}, 0x20)
inotify_init1(0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x854bc19281c1f3ae)
io_submit(0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

compat=1 ip=0xf702e579 code=0x7ffc0000
[   56.290512][   T40] audit: type=1326 audit(1744916323.819:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6140 comm="syz.3.24" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   56.669499][ T6150] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   56.823178][   T67] Bluetooth: hci1: command tx timeout
[   57.496681][ T6163] netlink: 'syz.1.28': attribute type 32 has an invalid length.
[   57.499415][ T6163] netlink: 4 bytes leftover after parsing attributes in process `syz.1.28'.
[   57.502593][ T6163] netlink: 'syz.1.28': attribute type 32 has an invalid length.
[   57.741120][ T6162] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.748191][ T6162] bond0: (slave rose0): Enslaving as an active interface with an up link
[   58.438606][ T6198] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[   60.619427][ T6227] team0 (unregistering): Port device team_slave_0 removed
[   60.629596][ T6227] team0 (unregistering): Port device team_slave_1 removed
[   61.118542][ T6240] netlink: 'syz.1.41': attribute type 7 has an invalid length.
[   61.132111][ T6240] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   62.913126][   T67] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   62.914974][ T5946] Bluetooth: hci4: command 0x1003 tx timeout
[   65.032662][ T6310] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[   65.884193][ T1242] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.004014][ T1242] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.108902][ T1242] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.114086][ T5946] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   66.118127][ T5946] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   66.120838][ T5946] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   66.124049][ T5946] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   66.127749][ T5946] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   66.163951][ T6341] lo speed is unknown, defaulting to 1000
[   66.188468][ T1242] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.266036][ T6341] chnl_net:caif_netlink_parms(): no params data found
[   66.340834][ T1242] bridge_slave_1: left allmulticast mode
[   66.342671][ T1242] bridge_slave_1: left promiscuous mode
[   66.346085][ T1242] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.351750][ T1242] bridge_slave_0: left allmulticast mode
[   66.355401][ T1242] bridge_slave_0: left promiscuous mode
[   66.357328][ T1242] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.585696][ T1242] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   66.590674][ T1242] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   66.594785][ T1242] bond0 (unregistering): Released all slaves
[   66.616893][ T6341] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.619138][ T6341] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.621397][ T6341] bridge_slave_0: entered allmulticast mode
[   66.624223][ T6341] bridge_slave_0: entered promiscuous mode
[   66.627261][ T6341] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.629524][ T6341] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.634687][ T6341] bridge_slave_1: entered allmulticast mode
[   66.639497][ T6341] bridge_slave_1: entered promiscuous mode
[   66.684972][ T6341] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.689516][ T6341] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.702647][ T6368] loop6: detected capacity change from 0 to 63
[   66.711978][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 2 prio class 0
[   66.715811][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 0
[   66.719215][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[   66.722056][    C2] Buffer I/O error on dev loop6, logical block 1, async page read
[   66.724557][    C2] Buffer I/O error on dev loop6, logical block 2, async page read
[   66.727066][    C2] Buffer I/O error on dev loop6, logical block 3, async page read
[   66.731964][    C2] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 0
[   66.734841][    C2] Buffer I/O error on dev loop6, logical block 0, async page read
[   66.737309][    C2] Buffer I/O error on dev loop6, logical block 1, async page read
[   66.739870][    C2] Buffer I/O error on dev loop6, logical block 2, async page read
[   66.742328][    C2] Buffer I/O error on dev loop6, logical block 3, async page read
[   66.748401][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   66.748957][ T6341] team0: Port device team_slave_0 added
[   66.752230][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[   66.757363][    C0] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   66.761150][    C0] Buffer I/O error on dev loop6, logical block 1, async page read
[   66.764507][    C0] I/O error, dev loop6, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   66.768256][    C0] I/O error, dev loop6, sector 24 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   66.772940][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   66.773220][    C2] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   66.778730][    C2] I/O error, dev loop6, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   66.803662][ T6341] team0: Port device team_slave_1 added
[   66.892130][ T6341] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.894867][ T6341] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.904537][ T6341] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.921504][ T6341] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.925079][ T6341] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.935842][ T6341] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   67.009239][ T6341] hsr_slave_0: entered promiscuous mode
[   67.014283][ T6341] hsr_slave_1: entered promiscuous mode
[   67.016365][ T6341] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   67.019202][ T6341] Cannot create hsr debugfs directory
[   67.076866][ T1242] hsr_slave_0: left promiscuous mode
[   67.079258][ T1242] hsr_slave_1: left promiscuous mode
[   67.081422][ T1242] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.085889][ T1242] batman_adv: batadv0: Removing interface: batadv_slave_0
[   67.089249][ T1242] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   67.091664][ T1242] batman_adv: batadv0: Removing interface: batadv_slave_1
[   67.109992][ T1242] veth1_macvtap: left promiscuous mode
[   67.111852][ T1242] veth0_macvtap: left promiscuous mode
[   67.113984][ T1242] veth1_vlan: left promiscuous mode
[   67.116290][ T1242] veth0_vlan: left promiscuous mode
[   67.927838][ T6396] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[   67.930095][ T6396] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   67.936140][ T6396] vhci_hcd vhci_hcd.0: Device attached
[   67.949885][ T6396] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(11)
[   67.952304][ T6396] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   67.956810][ T6396] vhci_hcd vhci_hcd.0: Device attached
[   67.960084][ T6396] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   67.966946][ T6396] vhci_hcd vhci_hcd.0: pdev(1) rhport(3) sockfd(15)
[   67.969027][ T6396] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   67.971468][ T6396] vhci_hcd vhci_hcd.0: Device attached
[   67.984424][ T6396] vhci_hcd vhci_hcd.0: pdev(1) rhport(4) sockfd(22)
[   67.986571][ T6396] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   67.989048][ T6396] vhci_hcd vhci_hcd.0: Device attached
[   67.991526][ T6396] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   67.995568][ T6396] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   67.999239][ T6396] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   68.006635][ T6396] vhci_hcd vhci_hcd.0: port 0 already used
[   68.010701][ T6401] vhci_hcd: connection closed
[   68.011128][ T6403] vhci_hcd: connection closed
[   68.011994][ T6397] vhci_hcd: connection closed
[   68.012747][ T6399] vhci_hcd: connection closed
[   68.015923][   T13] vhci_hcd: stop threads
[   68.020204][   T13] vhci_hcd: release socket
[   68.022580][   T13] vhci_hcd: disconnect device
[   68.024221][   T13] vhci_hcd: stop threads
[   68.025657][   T13] vhci_hcd: release socket
[   68.027082][   T13] vhci_hcd: disconnect device
[   68.028728][   T13] vhci_hcd: stop threads
[   68.030096][   T13] vhci_hcd: release socket
[   68.031514][   T13] vhci_hcd: disconnect device
[   68.035006][   T13] vhci_hcd: stop threads
[   68.036432][   T13] vhci_hcd: release socket
[   68.037920][   T13] vhci_hcd: disconnect device
[   68.193012][ T5946] Bluetooth: hci3: command tx timeout
[   68.332702][ T6341] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   68.338264][ T6341] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   68.346762][ T6341] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   68.364718][ T6341] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   68.397242][ T6416] FAULT_INJECTION: forcing a failure.
[   68.397242][ T6416] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   68.402357][ T6416] CPU: 2 UID: 0 PID: 6416 Comm: syz.3.79 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[   68.402371][ T6416] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.402377][ T6416] Call Trace:
[   68.402381][ T6416]  <TASK>
[   68.402386][ T6416]  dump_stack_lvl+0x16c/0x1f0
[   68.402406][ T6416]  should_fail_ex+0x512/0x640
[   68.402420][ T6416]  _copy_from_user+0x2e/0xd0
[   68.402439][ T6416]  __sys_bpf+0x21d/0x4d80
[   68.402454][ T6416]  ? __pfx___sys_bpf+0x10/0x10
[   68.402466][ T6416]  ? ksys_write+0x190/0x240
[   68.402490][ T6416]  ? __mutex_unlock_slowpath+0x161/0x6a0
[   68.402515][ T6416]  ? fput+0x70/0xf0
[   68.402524][ T6416]  ? ksys_write+0x1b9/0x240
[   68.402538][ T6416]  ? __pfx_ksys_write+0x10/0x10
[   68.402555][ T6416]  __ia32_sys_bpf+0x76/0xe0
[   68.402574][ T6416]  __do_fast_syscall_32+0x73/0x120
[   68.402595][ T6416]  do_fast_syscall_32+0x32/0x80
[   68.402611][ T6416]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   68.402625][ T6416] RIP: 0023:0xf702e579
[   68.402633][ T6416] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   68.402643][ T6416] RSP: 002b:00000000f501e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   68.402653][ T6416] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000600
[   68.402659][ T6416] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[   68.402665][ T6416] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   68.402670][ T6416] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   68.402676][ T6416] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   68.402689][ T6416]  </TASK>
[   68.438169][ T6341] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.440187][    C2] vkms_vblank_simulate: vblank timer overrun
[   68.456497][ T6341] 8021q: adding VLAN 0 to HW filter on device team0
[   68.480017][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.482541][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.497057][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.499407][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.661518][ T6435] syz.3.82 uses obsolete (PF_INET,SOCK_PACKET)
[   68.672214][ T6435] netlink: 36 bytes leftover after parsing attributes in process `syz.3.82'.
[   68.720938][ T6341] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.282294][ T6341] veth0_vlan: entered promiscuous mode
[   69.290030][ T6341] veth1_vlan: entered promiscuous mode
[   69.363766][ T6341] veth0_macvtap: entered promiscuous mode
[   69.369996][ T6341] veth1_macvtap: entered promiscuous mode
[   69.394067][ T6341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.406223][ T6341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.409517][ T6341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.413069][ T6341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.416037][ T6341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.419131][ T6341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.432817][ T6341] batman_adv: batadv0: Interface activated: batadv_slave_0
[   69.443445][ T6341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   69.446798][ T6341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.449837][ T6341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   69.454779][ T6341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.458955][ T6341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   69.463033][ T6341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.467154][ T6341] batman_adv: batadv0: Interface activated: batadv_slave_1
[   69.472527][ T6341] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.477140][ T6341] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.480139][ T6341] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.483082][ T6341] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.506888][ T6480] FAULT_INJECTION: forcing a failure.
[   69.506888][ T6480] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   69.511132][ T6480] CPU: 1 UID: 0 PID: 6480 Comm: syz.3.87 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[   69.511146][ T6480] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.511153][ T6480] Call Trace:
[   69.511157][ T6480]  <TASK>
[   69.511161][ T6480]  dump_stack_lvl+0x16c/0x1f0
[   69.511179][ T6480]  should_fail_ex+0x512/0x640
[   69.511195][ T6480]  should_fail_alloc_page+0xe7/0x130
[   69.511207][ T6480]  prepare_alloc_pages+0x3c2/0x610
[   69.511220][ T6480]  ? __lock_acquire+0x5ca/0x1ba0
[   69.511231][ T6480]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[   69.511248][ T6480]  ? __lock_acquire+0x5ca/0x1ba0
[   69.511261][ T6480]  ? __lock_acquire+0x5ca/0x1ba0
[   69.511271][ T6480]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   69.511300][ T6480]  ? __lock_acquire+0x5ca/0x1ba0
[   69.511316][ T6480]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   69.511329][ T6480]  ? policy_nodemask+0xea/0x4e0
[   69.511339][ T6480]  alloc_pages_mpol+0x1fb/0x550
[   69.511350][ T6480]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   69.511360][ T6480]  ? __lock_acquire+0x5ca/0x1ba0
[   69.511371][ T6480]  folio_alloc_mpol_noprof+0x36/0x2f0
[   69.511384][ T6480]  vma_alloc_folio_noprof+0xed/0x1e0
[   69.511395][ T6480]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   69.511411][ T6480]  do_pte_missing+0x223d/0x3fb0
[   69.511431][ T6480]  __handle_mm_fault+0x103d/0x2a40
[   69.511449][ T6480]  ? __pfx___handle_mm_fault+0x10/0x10
[   69.511463][ T6480]  ? __pte_offset_map_lock+0x155/0x2f0
[   69.511475][ T6480]  ? find_held_lock+0x2b/0x80
[   69.511487][ T6480]  ? find_held_lock+0x2b/0x80
[   69.511508][ T6480]  handle_mm_fault+0x3fe/0xad0
[   69.511525][ T6480]  __get_user_pages+0x771/0x36f0
[   69.511543][ T6480]  ? __pfx___get_user_pages+0x10/0x10
[   69.511556][ T6480]  ? __pfx_down_read_killable+0x10/0x10
[   69.511568][ T6480]  ? __lock_acquire+0x5ca/0x1ba0
[   69.511579][ T6480]  __gup_longterm_locked+0x20d/0x1850
[   69.511596][ T6480]  ? try_get_folio+0x1d2/0x730
[   69.511607][ T6480]  ? __pfx___gup_longterm_locked+0x10/0x10
[   69.511622][ T6480]  ? try_get_folio+0x255/0x730
[   69.511633][ T6480]  ? find_held_lock+0x2b/0x80
[   69.511646][ T6480]  ? sanity_check_pinned_pages+0x3ac/0x11e0
[   69.511661][ T6480]  gup_fast_fallback+0x183d/0x2650
[   69.511683][ T6480]  ? __pfx_gup_fast_fallback+0x10/0x10
[   69.511706][ T6480]  pin_user_pages_fast+0xa7/0xf0
[   69.511720][ T6480]  ? __pfx_pin_user_pages_fast+0x10/0x10
[   69.511733][ T6480]  ? __kmalloc_noprof+0x242/0x510
[   69.511752][ T6480]  rds_info_getsockopt+0x39f/0x4f0
[   69.511770][ T6480]  ? __pfx_rds_info_getsockopt+0x10/0x10
[   69.511787][ T6480]  ? find_held_lock+0x2b/0x80
[   69.511801][ T6480]  ? __might_fault+0x13b/0x190
[   69.511820][ T6480]  rds_getsockopt+0x173/0x2d0
[   69.511832][ T6480]  ? __pfx_rds_getsockopt+0x10/0x10
[   69.511845][ T6480]  do_sock_getsockopt+0x3fc/0x800
[   69.511864][ T6480]  ? __pfx_do_sock_getsockopt+0x10/0x10
[   69.511879][ T6480]  ? __fget_files+0x204/0x3c0
[   69.511901][ T6480]  __sys_getsockopt+0x12f/0x260
[   69.511917][ T6480]  __ia32_sys_getsockopt+0xbc/0x160
[   69.511930][ T6480]  ? lockdep_hardirqs_on+0x7c/0x110
[   69.511944][ T6480]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   69.511960][ T6480]  __do_fast_syscall_32+0x73/0x120
[   69.511977][ T6480]  do_fast_syscall_32+0x32/0x80
[   69.511993][ T6480]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   69.512006][ T6480] RIP: 0023:0xf702e579
[   69.512014][ T6480] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   69.512024][ T6480] RSP: 002b:00000000f501e55c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[   69.512035][ T6480] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000114
[   69.512041][ T6480] RDX: 000000000000271e RSI: 0000000080000580 RDI: 0000000080000040
[   69.512047][ T6480] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   69.512053][ T6480] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   69.512058][ T6480] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   69.512071][ T6480]  </TASK>
[   69.675301][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.677759][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.706574][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.709754][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.781969][ T6500] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[   70.265048][ T5946] Bluetooth: hci3: command tx timeout
[   70.290487][ T6529] usb usb8: usbfs: process 6529 (syz.3.93) did not claim interface 0 before use
[   70.464157][ T6539] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[   70.466610][ T6539] UDF-fs: Scanning with blocksize 2048 failed
[   70.469879][ T6539] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[   70.472774][ T6539] UDF-fs: Scanning with blocksize 4096 failed
[   70.479230][ T6539] netlink: 'syz.3.94': attribute type 16 has an invalid length.
[   70.482706][ T6539] netlink: 'syz.3.94': attribute type 3 has an invalid length.
[   70.485982][ T6539] netlink: 132 bytes leftover after parsing attributes in process `syz.3.94'.
[   70.526305][ T6541] tipc: Started in network mode
[   70.528529][ T6541] tipc: Node identity 0635df938661, cluster identity 4711
[   70.531428][ T6541] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   70.536986][ T6541] syzkaller0: MTU too low for tipc bearer
[   70.539263][ T6541] tipc: Disabling bearer <eth:syzkaller0>
[   70.826263][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[   70.828836][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[   70.921839][ T6565] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[   71.078114][ T6572] netlink: 8 bytes leftover after parsing attributes in process `syz.1.104'.
[   71.162226][ T6580] netlink: 8 bytes leftover after parsing attributes in process `syz.2.106'.
[   71.179595][ T6580] rtc_cmos 00:05: Alarms can be up to one day in the future
[   71.475484][   T40] kauditd_printk_skb: 25 callbacks suppressed
[   71.475495][   T40] audit: type=1326 audit(1744916339.059:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6591 comm="syz.3.110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.487102][   T40] audit: type=1326 audit(1744916339.059:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6591 comm="syz.3.110" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.494094][   T40] audit: type=1326 audit(1744916339.059:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6591 comm="syz.3.110" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.502499][   T40] audit: type=1326 audit(1744916339.059:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6591 comm="syz.3.110" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.512724][   T40] audit: type=1326 audit(1744916339.059:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6591 comm="syz.3.110" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.519273][   T40] audit: type=1326 audit(1744916339.059:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6591 comm="syz.3.110" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.519296][   T40] audit: type=1326 audit(1744916339.059:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6591 comm="syz.3.110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.519317][   T40] audit: type=1326 audit(1744916339.059:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6591 comm="syz.3.110" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.519338][   T40] audit: type=1326 audit(1744916339.059:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6591 comm="syz.3.110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.519359][   T40] audit: type=1326 audit(1744916339.059:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6591 comm="syz.3.110" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf702e579 code=0x7ffc0000
[   71.587951][ T6603] netlink: 24 bytes leftover after parsing attributes in process `syz.1.113'.
[   71.599402][ T6603] netlink: 8 bytes leftover after parsing attributes in process `syz.1.113'.
[   71.609465][ T6602] netlink: 'syz.1.113': attribute type 4 has an invalid length.
[   71.616237][    T9] lo speed is unknown, defaulting to 1000
[   71.618086][    T9] syz0: Port: 1 Link DOWN
[   71.670360][ T6608] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[   72.343082][ T5946] Bluetooth: hci3: command tx timeout
[   72.451667][ T6624] netlink: 'syz.3.117': attribute type 29 has an invalid length.
[   72.573800][ T6629] 9pnet_fd: p9_fd_create_tcp (6629): problem connecting socket to 127.0.0.1
[   72.832912][ T6104] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   73.018040][ T6104] usb 6-1: config index 0 descriptor too short (expected 23569, got 27)
[   73.021603][ T6104] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   73.029590][ T6104] usb 6-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[   73.033414][ T6104] usb 6-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[   73.036649][ T6104] usb 6-1: Manufacturer: syz
[   73.042560][ T6104] usb 6-1: config 0 descriptor??
[   73.093008][ T6104] rc_core: IR keymap rc-hauppauge not found
[   73.095708][ T6104] Registered IR keymap rc-empty
[   73.099719][ T6104] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0
[   73.107931][ T6104] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/rc/rc0/input5
[   73.253680][   T57] usb 6-1: USB disconnect, device number 2
[   73.527367][ T6645] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[   73.684280][ T6651] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[   73.787999][ T6651] Zero length message leads to an empty skb
[   74.383537][ T6657] lo speed is unknown, defaulting to 1000
[   74.423336][ T5946] Bluetooth: hci3: command tx timeout
[   74.684400][ T6425] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   74.832913][ T6425] usb 7-1: Using ep0 maxpacket: 8
[   74.837531][ T6425] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[   74.841090][ T6425] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   74.845259][ T6425] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   74.849322][ T6425] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   74.853476][ T6425] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   74.858727][ T6425] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   74.862429][ T6425] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.108877][ T6425] usb 7-1: usb_control_msg returned -32
[   75.110754][ T6425] usbtmc 7-1:16.0: can't read capabilities
[   75.620202][ T6690] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[   75.659596][ T6693] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[   75.661881][ T6693] UDF-fs: Scanning with blocksize 2048 failed
[   75.664767][ T6693] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[   75.667043][ T6693] UDF-fs: Scanning with blocksize 4096 failed
[   75.955883][ T6694] infiniband syz2: set down
[   75.957880][ T6694] infiniband syz2: added ipvlan1
[   75.986663][ T6694] RDS/IB: syz2: added
[   75.988317][ T6694] smc: adding ib device syz2 with port count 1
[   75.990428][ T6694] smc:    ib device syz2 port 1 has pnetid 
[   76.720289][ T6425] usb 7-1: USB disconnect, device number 2
[   76.750401][ T6703] team0 (unregistering): Port device team_slave_0 removed
[   76.767049][ T6703] team0 (unregistering): Port device team_slave_1 removed
[   77.446947][ T6724] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[   79.552967][ T5990] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   79.715070][ T5990] usb 9-1: too many configurations: 80, using maximum allowed: 8
[   79.725269][ T5990] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   79.728188][ T5990] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   79.730823][ T5990] usb 9-1: Product: syz
[   79.732262][ T5990] usb 9-1: Manufacturer: syz
[   79.734240][ T5990] usb 9-1: SerialNumber: syz
[   79.744603][ T5990] usb 9-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[   79.764051][   T63] usb 9-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[   79.860562][ T6772] 9pnet_fd: Insufficient options for proto=fd
[   79.868651][ T6772] warning: `syz.3.156' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   80.096732][ T6781] netdevsim netdevsim2 : renamed from netdevsim0 (while UP)
[   80.823515][   T63] ath9k_htc 9-1:1.0: ath9k_htc: Target is unresponsive
[   80.827562][   T63] ath9k_htc: Failed to initialize the device
[   80.850786][   T63] usb 9-1: ath9k_htc: USB layer deinitialized
[   81.066203][   T75] cfg80211: failed to load regulatory.db
[   81.567440][ T6838] kernel read not supported for file /!s���h;��el (pid: 6838 comm: syz.1.166)
[   81.571485][   T40] kauditd_printk_skb: 7 callbacks suppressed
[   81.571498][   T40] audit: type=1800 audit(1744916349.149:54): pid=6838 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.166" name=2173AC83B0683B8FFF656C dev="mqueue" ino=12511 res=0 errno=0
[   81.688699][ T6842] random: crng reseeded on system resumption
[   81.714522][ T6842] Restarting kernel threads ... done.
[   82.016078][   T40] audit: type=1326 audit(1744916349.599:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6854 comm="syz.3.170" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   82.022704][   T40] audit: type=1326 audit(1744916349.599:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6854 comm="syz.3.170" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf702e579 code=0x7ffc0000
[   82.022965][ T5946] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   82.030345][   T40] audit: type=1326 audit(1744916349.599:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6854 comm="syz.3.170" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   82.033699][   T67] Bluetooth: hci4: command 0x1003 tx timeout
[   82.039287][   T40] audit: type=1326 audit(1744916349.599:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6854 comm="syz.3.170" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   82.039314][   T40] audit: type=1326 audit(1744916349.599:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6854 comm="syz.3.170" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf702e579 code=0x7ffc0000
[   82.039335][   T40] audit: type=1326 audit(1744916349.599:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6854 comm="syz.3.170" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   82.066460][   T40] audit: type=1326 audit(1744916349.619:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6854 comm="syz.3.170" exe="/syz-executor" sig=0 arch=40000003 syscall=55 compat=1 ip=0xf702e579 code=0x7ffc0000
[   82.074531][   T40] audit: type=1326 audit(1744916349.619:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6854 comm="syz.3.170" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   82.081165][   T40] audit: type=1326 audit(1744916349.619:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6854 comm="syz.3.170" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[   82.087934][ T6860] netlink: 'syz.3.170': attribute type 4 has an invalid length.
[   82.093517][    T9] usb 9-1: USB disconnect, device number 2
[   82.094254][ T6860] netlink: 17 bytes leftover after parsing attributes in process `syz.3.170'.
[   82.215932][ T6872] netlink: 'syz.3.173': attribute type 1 has an invalid length.
[   82.234347][ T6872] 8021q: adding VLAN 0 to HW filter on device bond1
[   82.779440][ T6899] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9)
[   82.782182][ T6899] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   82.789102][ T6899] vhci_hcd vhci_hcd.0: Device attached
[   83.016014][ T6908] overlay: filesystem on ./bus not supported as upperdir
[   83.042988][   T75] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[   83.053047][ T6425] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   83.234118][ T6925] netlink: 156 bytes leftover after parsing attributes in process `syz.2.185'.
[   83.252930][ T6425] usb 6-1: Using ep0 maxpacket: 16
[   83.263930][ T6425] usb 6-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[   83.266819][ T6425] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   83.269048][ T6425] usb 6-1: Product: syz
[   83.270644][ T6425] usb 6-1: Manufacturer: syz
[   83.274210][ T6425] usb 6-1: SerialNumber: syz
[   83.294055][ T6425] usb 6-1: config 0 descriptor??
[   83.410013][ T6425] ftdi_sio 6-1:0.0: FTDI USB Serial Device converter detected
[   83.434590][ T6425] usb 6-1: Detected FT232H
[   83.504916][ T6931] netlink: 12 bytes leftover after parsing attributes in process `syz.2.186'.
[   83.626198][ T6900] usb 39-1: recv xbuf, 0
[   83.630558][ T6425] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[   83.631447][   T13] vhci_hcd: stop threads
[   83.635299][ T6425] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[   83.643871][   T13] vhci_hcd: release socket
[   83.647081][ T6425] ftdi_sio 6-1:0.0: GPIO initialisation failed: -71
[   83.647364][   T13] vhci_hcd: disconnect device
[   83.693575][   T75] vhci_hcd: vhci_device speed not set
[   83.811900][ T6425] usb 6-1: FTDI USB Serial Device converter now attached to ttyUSB0
[   83.819000][ T6425] usb 6-1: USB disconnect, device number 3
[   83.822473][ T6425] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[   83.823266][ T6425] ftdi_sio 6-1:0.0: device disconnected
[   84.175846][ T6942] netlink: 24 bytes leftover after parsing attributes in process `syz.1.191'.
[   84.288740][ T6947] netlink: 'syz.2.193': attribute type 7 has an invalid length.
[   84.291177][ T6947] netlink: 8 bytes leftover after parsing attributes in process `syz.2.193'.
[   84.427385][ T6951] wireguard0: entered promiscuous mode
[   84.429279][ T6951] wireguard0: entered allmulticast mode
[   85.048243][ T6969] macsec1: entered promiscuous mode
[   85.485543][ T6981] netlink: 12 bytes leftover after parsing attributes in process `syz.3.200'.
[   86.193212][ T6997] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[   86.226900][ T7000] netlink: 'syz.1.205': attribute type 32 has an invalid length.
[   86.229815][ T7000] netlink: 4 bytes leftover after parsing attributes in process `syz.1.205'.
[   86.232600][ T7000] netlink: 'syz.1.205': attribute type 32 has an invalid length.
[   88.271195][ T7043] netlink: 'syz.3.216': attribute type 32 has an invalid length.
[   88.275112][ T7043] netlink: 4 bytes leftover after parsing attributes in process `syz.3.216'.
[   88.278026][ T7043] netlink: 'syz.3.216': attribute type 32 has an invalid length.
[   89.993102][   T63] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   90.153067][   T63] usb 6-1: Using ep0 maxpacket: 8
[   90.156107][   T63] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[   90.158734][   T63] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   90.162697][   T63] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   90.166768][   T63] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   90.170836][   T63] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   90.176247][   T63] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   90.180020][   T63] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   90.394083][   T63] usb 6-1: usb_control_msg returned -32
[   90.395897][   T63] usbtmc 6-1:16.0: can't read capabilities
[   91.362778][ T7082] netlink: 'syz.3.225': attribute type 32 has an invalid length.
[   91.366396][ T7082] netlink: 4 bytes leftover after parsing attributes in process `syz.3.225'.
[   91.371636][ T7082] netlink: 'syz.3.225': attribute type 32 has an invalid length.
[   91.407117][ T7085] cifs: Unknown parameter 'mountinfo'
[   91.452110][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.454680][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.457053][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.459473][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.461939][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.464798][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.467280][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.469572][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.471920][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.474260][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.476528][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.478855][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.481169][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.483694][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.486050][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.488321][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.490613][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.493031][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.495306][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.497587][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.499852][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.502172][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.504503][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.506786][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.509064][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.511591][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.514441][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.516741][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.519063][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.521383][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.523731][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.526006][ T5988] hid-generic 0007:0000:0000.0002: unknown main item tag 0x0
[   91.530969][ T5988] hid-generic 0007:0000:0000.0002: hidraw1: <UNKNOWN> HID vffffff.ff Device [syz0] on syz0
[   91.691063][   T75] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   91.708532][ T7095] Bluetooth: MGMT ver 1.23
[   91.844292][   T75] usb 7-1: config 0 has no interfaces?
[   91.846599][   T75] usb 7-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[   91.849946][   T75] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.856964][   T75] usb 7-1: config 0 descriptor??
[   92.010926][ T7105] capability: warning: `syz.3.232' uses 32-bit capabilities (legacy support in use)
[   92.071072][   T63] usb 7-1: USB disconnect, device number 3
[   92.668956][ T7113] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   92.671108][ T7113] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   92.708676][ T7113] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   92.711906][ T7113] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   92.714355][ T7113] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   92.718048][ T7113] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   92.721313][ T7113] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   92.725013][ T7113] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   92.727292][ T7113] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   92.729969][ T7113] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   92.732632][ T7113] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   92.737793][ T7113] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   92.739759][ T7113] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   92.743855][ T7113] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   93.153187][ T7120] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[   93.913014][ T6104] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[   94.064409][ T6104] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   94.067867][ T6104] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   94.070924][ T6104] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   94.074932][ T6104] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   94.077754][ T6104] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   94.082712][ T6104] usb 9-1: config 0 descriptor??
[   94.493577][ T6104] plantronics 0003:047F:FFFF.0003: reserved main item tag 0xd
[   94.496711][ T6104] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[   94.506565][ T6104] plantronics 0003:047F:FFFF.0003: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[   94.743106][ T5946] Bluetooth: hci3: command 0x0c1a tx timeout
[   94.743167][ T5961] Bluetooth: hci1: command 0x0c1a tx timeout
[   94.743187][ T5959] Bluetooth: hci0: command 0x0c1a tx timeout
[   94.751457][   T67] Bluetooth: hci2: command 0x0c1a tx timeout
[   95.164595][    T9] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   95.322934][    T9] usb 8-1: Using ep0 maxpacket: 16
[   95.326972][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[   95.335957][    T9] usb 8-1: New USB device found, idVendor=06cd, idProduct=0115, bcdDevice=1a.1e
[   95.338824][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.341436][    T9] usb 8-1: Product: syz
[   95.353217][    T9] usb 8-1: Manufacturer: syz
[   95.355749][    T9] usb 8-1: SerialNumber: syz
[   95.363955][    T9] usb 8-1: config 0 descriptor??
[   95.375421][    T9] keyspan 8-1:0.0: Keyspan 2 port adapter converter detected
[   95.379526][    T9] keyspan 8-1:0.0: found no endpoint descriptor for endpoint 87
[   95.383906][    T9] keyspan 8-1:0.0: found no endpoint descriptor for endpoint 7
[   95.391025][    T9] keyspan 8-1:0.0: found no endpoint descriptor for endpoint 81
[   95.395724][    T9] keyspan 8-1:0.0: found no endpoint descriptor for endpoint 1
[   95.400075][    T9] keyspan 8-1:0.0: found no endpoint descriptor for endpoint 2
[   95.405269][    T9] keyspan 8-1:0.0: found no endpoint descriptor for endpoint 85
[   95.410418][    T9] keyspan 8-1:0.0: found no endpoint descriptor for endpoint 5
[   95.426601][    T9] usb 8-1: Keyspan 2 port adapter converter now attached to ttyUSB0
[   95.438028][    T9] keyspan 8-1:0.0: found no endpoint descriptor for endpoint 83
[   95.440681][    T9] keyspan 8-1:0.0: found no endpoint descriptor for endpoint 3
[   95.444730][    T9] keyspan 8-1:0.0: found no endpoint descriptor for endpoint 4
[   95.447325][    T9] keyspan 8-1:0.0: found no endpoint descriptor for endpoint 86
[   95.450358][    T9] keyspan 8-1:0.0: found no endpoint descriptor for endpoint 6
[   95.459094][    T9] usb 8-1: Keyspan 2 port adapter converter now attached to ttyUSB1
[   96.344186][ T7080] usbtmc 6-1:16.0: usb_control_msg returned -110
[   96.360161][ T6104] usb 6-1: USB disconnect, device number 4
[   96.790308][ T7165] netlink: 'syz.1.247': attribute type 32 has an invalid length.
[   96.792594][ T7165] netlink: 4 bytes leftover after parsing attributes in process `syz.1.247'.
[   96.795591][ T7165] netlink: 'syz.1.247': attribute type 32 has an invalid length.
[   96.822967][ T5961] Bluetooth: hci2: command 0x0c1a tx timeout
[   96.823158][ T5959] Bluetooth: hci3: command 0x0c1a tx timeout
[   96.824915][ T5961] Bluetooth: hci1: command 0x0c1a tx timeout
[   96.831056][ T5946] Bluetooth: hci0: command 0x0c1a tx timeout
[   97.268182][ T6104] usb 9-1: USB disconnect, device number 3
[   97.805318][ T6104] usb 8-1: USB disconnect, device number 2
[   97.811056][ T6104] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0
[   97.822147][ T6104] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1
[   97.826648][ T6104] keyspan 8-1:0.0: device disconnected
[   97.937463][ T7180] FAULT_INJECTION: forcing a failure.
[   97.937463][ T7180] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.941774][ T7180] CPU: 2 UID: 0 PID: 7180 Comm: syz.3.253 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[   97.941788][ T7180] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   97.941795][ T7180] Call Trace:
[   97.941800][ T7180]  <TASK>
[   97.941804][ T7180]  dump_stack_lvl+0x16c/0x1f0
[   97.941823][ T7180]  should_fail_ex+0x512/0x640
[   97.941837][ T7180]  _copy_to_user+0x32/0xd0
[   97.941852][ T7180]  simple_read_from_buffer+0xcb/0x170
[   97.941867][ T7180]  proc_fail_nth_read+0x197/0x270
[   97.941883][ T7180]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   97.941898][ T7180]  ? rw_verify_area+0xcf/0x680
[   97.941910][ T7180]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   97.941924][ T7180]  vfs_read+0x1de/0xc70
[   97.941940][ T7180]  ? __pfx___mutex_lock+0x10/0x10
[   97.941955][ T7180]  ? __pfx_vfs_read+0x10/0x10
[   97.941973][ T7180]  ? __fget_files+0x20e/0x3c0
[   97.941991][ T7180]  ksys_read+0x12a/0x240
[   97.942005][ T7180]  ? __pfx_ksys_read+0x10/0x10
[   97.942020][ T7180]  ? rcu_is_watching+0x12/0xc0
[   97.942036][ T7180]  __do_fast_syscall_32+0x73/0x120
[   97.942053][ T7180]  do_fast_syscall_32+0x32/0x80
[   97.942069][ T7180]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   97.942082][ T7180] RIP: 0023:0xf702e579
[   97.942091][ T7180] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   97.942100][ T7180] RSP: 002b:00000000f501e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   97.942111][ T7180] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f501e620
[   97.942117][ T7180] RDX: 000000000000000f RSI: 00000000f7392ff4 RDI: 0000000000000000
[   97.942123][ T7180] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   97.942129][ T7180] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   97.942134][ T7180] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   97.942146][ T7180]  </TASK>
[   98.118748][ T7187] netlink: 136 bytes leftover after parsing attributes in process `syz.3.256'.
[   98.123504][ T7187] A link change request failed with some changes committed already. Interface ip6_vti0 may have been left with an inconsistent configuration, please check.
[   98.903020][   T67] Bluetooth: hci1: command 0x0c1a tx timeout
[   98.905043][   T67] Bluetooth: hci2: command 0x0c1a tx timeout
[   98.912990][ T5946] Bluetooth: hci3: command 0x0c1a tx timeout
[   98.914975][   T67] Bluetooth: hci0: command 0x0c1a tx timeout
[   99.423716][ T7221] random: crng reseeded on system resumption
[   99.441362][ T7221] Restarting kernel threads ... done.
[   99.558160][ T7227] 9pnet_fd: Insufficient options for proto=fd
[   99.612474][ T7230] random: crng reseeded on system resumption
[   99.639539][ T7230] Restarting kernel threads ... done.
[  100.146209][ T7245] openvswitch: netlink: IPv4 tun info is not correct
[  100.223750][ T7252] random: crng reseeded on system resumption
[  100.229917][ T7252] Restarting kernel threads ... done.
[  100.342350][ T7259] random: crng reseeded on system resumption
[  100.357934][ T7259] Restarting kernel threads ... 
[  100.364577][ T7260] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  100.370348][ T7259] done.
[  100.667741][ T7263] bpf: Bad value for 'mode'
[  100.856064][ T7277] netlink: 'syz.1.285': attribute type 10 has an invalid length.
[  100.889438][ T7277] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  100.982963][ T5959] Bluetooth: hci1: command 0x0c1a tx timeout
[  100.985165][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[  100.987056][   T67] Bluetooth: hci3: command 0x0c1a tx timeout
[  101.214356][ T7289] netlink: 4 bytes leftover after parsing attributes in process `syz.4.290'.
[  101.510266][ T7296] FAULT_INJECTION: forcing a failure.
[  101.510266][ T7296] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  101.514423][ T7296] CPU: 1 UID: 0 PID: 7296 Comm: syz.2.288 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[  101.514452][ T7296] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  101.514459][ T7296] Call Trace:
[  101.514463][ T7296]  <TASK>
[  101.514467][ T7296]  dump_stack_lvl+0x16c/0x1f0
[  101.514486][ T7296]  should_fail_ex+0x512/0x640
[  101.514501][ T7296]  _copy_from_user+0x2e/0xd0
[  101.514515][ T7296]  get_compat_msghdr+0xa7/0x170
[  101.514529][ T7296]  ? __pfx_get_compat_msghdr+0x10/0x10
[  101.514544][ T7296]  ? __lock_acquire+0x5ca/0x1ba0
[  101.514556][ T7296]  ___sys_recvmsg+0x191/0x1a0
[  101.514570][ T7296]  ? __pfx____sys_recvmsg+0x10/0x10
[  101.514590][ T7296]  ? get_pid_task+0xe0/0x250
[  101.514600][ T7296]  ? __pfx___might_resched+0x10/0x10
[  101.514618][ T7296]  do_recvmmsg+0x568/0x740
[  101.514633][ T7296]  ? __pfx_do_recvmmsg+0x10/0x10
[  101.514656][ T7296]  ? __fget_files+0x20e/0x3c0
[  101.514673][ T7296]  __sys_recvmmsg+0x21c/0x280
[  101.514687][ T7296]  ? __pfx___sys_recvmmsg+0x10/0x10
[  101.514701][ T7296]  ? __pfx_ksys_write+0x10/0x10
[  101.514718][ T7296]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  101.514732][ T7296]  ? lockdep_hardirqs_on+0x7c/0x110
[  101.514747][ T7296]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  101.514763][ T7296]  __do_fast_syscall_32+0x73/0x120
[  101.514780][ T7296]  do_fast_syscall_32+0x32/0x80
[  101.514796][ T7296]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  101.514809][ T7296] RIP: 0023:0xf7f93579
[  101.514817][ T7296] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  101.514827][ T7296] RSP: 002b:00000000f507455c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  101.514837][ T7296] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080003700
[  101.514843][ T7296] RDX: 0000000000000600 RSI: 0000000000000000 RDI: 0000000000000000
[  101.514849][ T7296] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  101.514854][ T7296] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  101.514860][ T7296] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  101.514872][ T7296]  </TASK>
[  101.517731][ T7297] lo speed is unknown, defaulting to 1000
[  102.011564][ T7317] trusted_key: syz.3.298 sent an empty control message without MSG_MORE.
[  102.083404][ T7315] netlink: 4 bytes leftover after parsing attributes in process `syz.2.295'.
[  102.189110][ T7322] netlink: 4 bytes leftover after parsing attributes in process `syz.2.295'.
[  102.724864][   T67] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  102.728009][   T67] CPU: 0 UID: 0 PID: 67 Comm: kworker/u33:0 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[  102.728035][   T67] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  102.728044][   T67] Workqueue: hci3 hci_rx_work
[  102.728060][   T67] Call Trace:
[  102.728064][   T67]  <TASK>
[  102.728069][   T67]  dump_stack_lvl+0x16c/0x1f0
[  102.728086][   T67]  sysfs_warn_dup+0x7f/0xa0
[  102.728102][   T67]  sysfs_create_dir_ns+0x24b/0x2b0
[  102.728119][   T67]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  102.728134][   T67]  ? find_held_lock+0x2b/0x80
[  102.728152][   T67]  ? do_raw_spin_unlock+0x172/0x230
[  102.728164][   T67]  kobject_add_internal+0x2c4/0x9b0
[  102.728184][   T67]  kobject_add+0x16e/0x240
[  102.728193][   T67]  ? __pfx_kobject_add+0x10/0x10
[  102.728204][   T67]  ? do_raw_spin_unlock+0x172/0x230
[  102.728221][   T67]  ? kobject_put+0xab/0x5a0
[  102.728240][   T67]  device_add+0x288/0x1a70
[  102.728252][   T67]  ? __pfx_dev_set_name+0x10/0x10
[  102.728264][   T67]  ? __pfx_device_add+0x10/0x10
[  102.728275][   T67]  ? mgmt_send_event_skb+0x2fb/0x460
[  102.728292][   T67]  hci_conn_add_sysfs+0x17e/0x230
[  102.728306][   T67]  le_conn_complete_evt+0x1075/0x1d70
[  102.728320][   T67]  ? rcu_is_watching+0x12/0xc0
[  102.728333][   T67]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  102.728344][   T67]  ? hci_event_packet+0x43c/0x1190
[  102.728359][   T67]  hci_le_conn_complete_evt+0x23c/0x370
[  102.728373][   T67]  hci_le_meta_evt+0x2f3/0x5e0
[  102.728385][   T67]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  102.728398][   T67]  hci_event_packet+0x669/0x1190
[  102.728409][   T67]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  102.728421][   T67]  ? __pfx_hci_event_packet+0x10/0x10
[  102.728434][   T67]  ? kcov_remote_start+0x3c9/0x6d0
[  102.728444][   T67]  ? lockdep_hardirqs_on+0x7c/0x110
[  102.728462][   T67]  hci_rx_work+0x2c5/0x16b0
[  102.728474][   T67]  ? rcu_is_watching+0x12/0xc0
[  102.728488][   T67]  process_one_work+0x9cc/0x1b70
[  102.728506][   T67]  ? __pfx_process_one_work+0x10/0x10
[  102.728521][   T67]  ? assign_work+0x1a0/0x250
[  102.728534][   T67]  worker_thread+0x6c8/0xf10
[  102.728551][   T67]  ? __pfx_worker_thread+0x10/0x10
[  102.728563][   T67]  kthread+0x3c2/0x780
[  102.728573][   T67]  ? __pfx_kthread+0x10/0x10
[  102.728583][   T67]  ? __pfx_kthread+0x10/0x10
[  102.728592][   T67]  ? __pfx_kthread+0x10/0x10
[  102.728601][   T67]  ? __pfx_kthread+0x10/0x10
[  102.728611][   T67]  ? rcu_is_watching+0x12/0xc0
[  102.728623][   T67]  ? __pfx_kthread+0x10/0x10
[  102.728634][   T67]  ret_from_fork+0x45/0x80
[  102.728645][   T67]  ? __pfx_kthread+0x10/0x10
[  102.728655][   T67]  ret_from_fork_asm+0x1a/0x30
[  102.728678][   T67]  </TASK>
[  102.728704][   T67] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  102.818516][   T67] Bluetooth: hci3: failed to register connection device
[  103.105412][ T7339] random: crng reseeded on system resumption
[  103.155417][ T7339] Restarting kernel threads ... done.
[  103.841604][ T7365] input: syz1 as /devices/virtual/input/input6
[  103.878127][ T7368] input: syz1 as /devices/virtual/input/input7
[  103.883519][ T7361] batman_adv: batadv0: Adding interface: macvlan2
[  103.885601][ T7361] batman_adv: batadv0: The MTU of interface macvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.893505][ T7361] batman_adv: batadv0: Not using interface macvlan2 (retrying later): interface not active
[  104.601183][ T7361] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  104.603886][ T7361] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  104.607062][ T7361] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  104.609242][ T7361] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  104.613006][ T7361] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  104.615075][ T7361] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  104.617309][ T7361] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  104.621496][ T7361] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  104.723517][ T7393] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  104.892539][ T7399] FAULT_INJECTION: forcing a failure.
[  104.892539][ T7399] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  104.896635][ T7399] CPU: 2 UID: 0 PID: 7399 Comm: syz.1.323 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[  104.896649][ T7399] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  104.896657][ T7399] Call Trace:
[  104.896661][ T7399]  <TASK>
[  104.896665][ T7399]  dump_stack_lvl+0x16c/0x1f0
[  104.896684][ T7399]  should_fail_ex+0x512/0x640
[  104.896699][ T7399]  _copy_to_user+0x32/0xd0
[  104.896713][ T7399]  simple_read_from_buffer+0xcb/0x170
[  104.896729][ T7399]  proc_fail_nth_read+0x197/0x270
[  104.896745][ T7399]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  104.896760][ T7399]  ? rw_verify_area+0xcf/0x680
[  104.896789][ T7399]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  104.896804][ T7399]  vfs_read+0x1de/0xc70
[  104.896820][ T7399]  ? __pfx___mutex_lock+0x10/0x10
[  104.896836][ T7399]  ? __pfx_vfs_read+0x10/0x10
[  104.896853][ T7399]  ? __fget_files+0x20e/0x3c0
[  104.896872][ T7399]  ksys_read+0x12a/0x240
[  104.896886][ T7399]  ? __pfx_ksys_read+0x10/0x10
[  104.896901][ T7399]  ? rcu_is_watching+0x12/0xc0
[  104.896917][ T7399]  __do_fast_syscall_32+0x73/0x120
[  104.896933][ T7399]  do_fast_syscall_32+0x32/0x80
[  104.896949][ T7399]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  104.896962][ T7399] RIP: 0023:0xf7f43579
[  104.896970][ T7399] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  104.896980][ T7399] RSP: 002b:00000000f5066590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  104.896991][ T7399] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5066620
[  104.896997][ T7399] RDX: 000000000000000f RSI: 00000000f73d2ff4 RDI: 0000000000000000
[  104.897003][ T7399] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  104.897008][ T7399] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  104.897014][ T7399] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  104.897026][ T7399]  </TASK>
[  105.822407][   T67] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  105.826194][   T67] CPU: 0 UID: 0 PID: 67 Comm: kworker/u33:0 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[  105.826220][   T67] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.826228][   T67] Workqueue: hci3 hci_rx_work
[  105.826244][   T67] Call Trace:
[  105.826249][   T67]  <TASK>
[  105.826253][   T67]  dump_stack_lvl+0x16c/0x1f0
[  105.826271][   T67]  sysfs_warn_dup+0x7f/0xa0
[  105.826288][   T67]  sysfs_create_dir_ns+0x24b/0x2b0
[  105.826304][   T67]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  105.826320][   T67]  ? find_held_lock+0x2b/0x80
[  105.826336][   T67]  ? do_raw_spin_unlock+0x172/0x230
[  105.826348][   T67]  kobject_add_internal+0x2c4/0x9b0
[  105.826373][   T67]  kobject_add+0x16e/0x240
[  105.826386][   T67]  ? __pfx_kobject_add+0x10/0x10
[  105.826403][   T67]  ? kobject_put+0xab/0x5a0
[  105.826432][   T67]  device_add+0x288/0x1a70
[  105.826444][   T67]  ? __pfx_dev_set_name+0x10/0x10
[  105.826457][   T67]  ? __pfx_device_add+0x10/0x10
[  105.826467][   T67]  ? mgmt_send_event_skb+0x2fb/0x460
[  105.826483][   T67]  hci_conn_add_sysfs+0x17e/0x230
[  105.826497][   T67]  le_conn_complete_evt+0x1075/0x1d70
[  105.826512][   T67]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  105.826523][   T67]  ? hci_event_packet+0x43c/0x1190
[  105.826544][   T67]  hci_le_conn_complete_evt+0x23c/0x370
[  105.826567][   T67]  hci_le_meta_evt+0x2f3/0x5e0
[  105.826581][   T67]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  105.826594][   T67]  hci_event_packet+0x669/0x1190
[  105.826605][   T67]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  105.826618][   T67]  ? __pfx_hci_event_packet+0x10/0x10
[  105.826630][   T67]  ? kcov_remote_start+0x3c9/0x6d0
[  105.826641][   T67]  ? lockdep_hardirqs_on+0x7c/0x110
[  105.826665][   T67]  hci_rx_work+0x2c5/0x16b0
[  105.826685][   T67]  ? rcu_is_watching+0x12/0xc0
[  105.826704][   T67]  process_one_work+0x9cc/0x1b70
[  105.826722][   T67]  ? __pfx_process_one_work+0x10/0x10
[  105.826738][   T67]  ? assign_work+0x1a0/0x250
[  105.826750][   T67]  worker_thread+0x6c8/0xf10
[  105.826768][   T67]  ? __pfx_worker_thread+0x10/0x10
[  105.826779][   T67]  kthread+0x3c2/0x780
[  105.826790][   T67]  ? __pfx_kthread+0x10/0x10
[  105.826799][   T67]  ? __pfx_kthread+0x10/0x10
[  105.826809][   T67]  ? __pfx_kthread+0x10/0x10
[  105.826818][   T67]  ? __pfx_kthread+0x10/0x10
[  105.826827][   T67]  ? rcu_is_watching+0x12/0xc0
[  105.826840][   T67]  ? __pfx_kthread+0x10/0x10
[  105.826851][   T67]  ret_from_fork+0x45/0x80
[  105.826862][   T67]  ? __pfx_kthread+0x10/0x10
[  105.826872][   T67]  ret_from_fork_asm+0x1a/0x30
[  105.826895][   T67]  </TASK>
[  105.828393][   T67] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  105.913333][   T67] Bluetooth: hci3: failed to register connection device
[  106.023112][ T5946] Bluetooth: hci0: command 0x0c1a tx timeout
[  106.663322][ T5946] Bluetooth: hci3: command 0x0c1a tx timeout
[  106.665914][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[  106.668511][   T67] Bluetooth: hci1: command 0x0c1a tx timeout
[  107.268694][ T5946] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  107.590640][ T7466] netlink: 4 bytes leftover after parsing attributes in process `syz.1.341'.
[  108.042716][ T7472] netlink: 'syz.2.342': attribute type 32 has an invalid length.
[  108.045247][ T7472] netlink: 4 bytes leftover after parsing attributes in process `syz.2.342'.
[  108.047941][ T7472] netlink: 'syz.2.342': attribute type 32 has an invalid length.
[  108.104066][ T5946] Bluetooth: hci0: command 0x0c1a tx timeout
[  108.113567][   T63] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  108.266096][   T63] usb 8-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  108.268828][   T63] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  108.271908][   T63] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  108.276300][   T63] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  108.279132][   T63] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.281617][   T63] usb 8-1: Product: syz
[  108.283082][   T63] usb 8-1: Manufacturer: syz
[  108.284587][   T63] usb 8-1: SerialNumber: syz
[  108.742922][   T67] Bluetooth: hci3: command 0x0c1a tx timeout
[  108.745277][ T5946] Bluetooth: hci1: command 0x0c1a tx timeout
[  109.111458][ T5946] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  109.384052][ T7506] netlink: 44 bytes leftover after parsing attributes in process `syz.4.353'.
[  110.162032][ T7504] Bluetooth: hci3: Opcode 0x0401 failed: -4
[  110.823020][   T67] Bluetooth: hci3: command 0x0c1a tx timeout
[  110.902958][   T63] usb 8-1: 0:2 : does not exist
[  110.914349][   T63] usb 8-1: USB disconnect, device number 3
[  111.343035][   T63] usb 8-1: new full-speed USB device number 4 using dummy_hcd
[  111.500331][   T63] usb 8-1: config 0 has no interfaces?
[  111.505488][   T63] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  111.508918][   T63] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  111.511955][   T63] usb 8-1: Product: syz
[  111.514768][   T63] usb 8-1: Manufacturer: syz
[  111.516369][   T63] usb 8-1: SerialNumber: syz
[  111.519252][   T63] usb 8-1: config 0 descriptor??
[  111.523623][ T5949] udevd[5949]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  111.731936][ T7525] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  111.804781][ T6104] usb 8-1: USB disconnect, device number 4
[  112.902969][   T67] Bluetooth: hci3: command 0x0c1a tx timeout
[  114.985474][   T67] Bluetooth: hci3: command 0x0c1a tx timeout
[  118.503533][   T57] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  118.567835][ T7624] kAFS: No cell specified
[  118.602260][ T7624] syzkaller0: entered promiscuous mode
[  118.604102][ T7624] syzkaller0: entered allmulticast mode
[  118.613179][ T7624] netlink: 'syz.2.385': attribute type 1 has an invalid length.
[  118.673448][   T57] usb 6-1: Using ep0 maxpacket: 16
[  118.686385][   T57] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  118.692427][   T57] usb 6-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  118.698355][   T57] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.704931][   T57] usb 6-1: config 0 descriptor??
[  118.714607][   T57] input: bcm5974 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input8
[  118.919321][ T7619] input: syz1 as /devices/virtual/input/input9
[  119.563329][   T67] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  120.868576][ T5946] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  121.171890][ T5344] bcm5974 6-1:0.0: could not read from device
[  121.180409][   T57] usb 6-1: USB disconnect, device number 5
[  122.466433][ T7690] random: crng reseeded on system resumption
[  122.491133][ T7690] Restarting kernel threads ... done.
[  123.668667][ T7702] overlayfs: missing 'workdir'
[  123.789101][ T7705] netlink: 4 bytes leftover after parsing attributes in process `syz.1.404'.
[  123.826190][ T7707] 9pnet: p9_errstr2errno: server reported unknown error 9����T9CN�2��=�g���2�-����Mf��P��}��!����g�q0O����gX<ž�|���x�N��ݥn��ܟ௘~��׬��1�f��J^jd/I6Oe���
[  125.137062][ T7729] 9pnet: p9_errstr2errno: server reported unknown error �@00000000000000000006
[  125.799371][ T7738] random: crng reseeded on system resumption
[  125.810177][ T7738] Driver unsupported XDP return value 0 on prog  (id 51) dev N/A, expect packet loss!
[  125.889453][ T7744] FAULT_INJECTION: forcing a failure.
[  125.889453][ T7744] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.893749][ T7744] CPU: 3 UID: 0 PID: 7744 Comm: syz.2.415 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[  125.893763][ T7744] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.893769][ T7744] Call Trace:
[  125.893773][ T7744]  <TASK>
[  125.893777][ T7744]  dump_stack_lvl+0x16c/0x1f0
[  125.893796][ T7744]  should_fail_ex+0x512/0x640
[  125.893811][ T7744]  _copy_from_iter+0x2a4/0x15b0
[  125.893826][ T7744]  ? __pfx__copy_from_iter+0x10/0x10
[  125.893839][ T7744]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  125.893857][ T7744]  skb_copy_datagram_from_iter+0x124/0x740
[  125.893870][ T7744]  ? dev_get_by_index+0x17c/0x380
[  125.893887][ T7744]  packet_sendmsg+0x2232/0x56f0
[  125.893909][ T7744]  ? __pfx___might_resched+0x10/0x10
[  125.893925][ T7744]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  125.893938][ T7744]  ? __pfx_packet_sendmsg+0x10/0x10
[  125.893948][ T7744]  ? find_held_lock+0x2b/0x80
[  125.893961][ T7744]  ? __aa_labelset_update_subtree+0x10d0/0x16e0
[  125.893976][ T7744]  ? __import_iovec+0x1c8/0x660
[  125.893992][ T7744]  ____sys_sendmsg+0xa95/0xc70
[  125.894000][ T7744]  ? pgd_free+0x218/0x4b0
[  125.894015][ T7744]  ? __pfx_____sys_sendmsg+0x10/0x10
[  125.894024][ T7744]  ? get_compat_msghdr+0x11a/0x170
[  125.894043][ T7744]  ___sys_sendmsg+0x134/0x1d0
[  125.894057][ T7744]  ? __pfx____sys_sendmsg+0x10/0x10
[  125.894086][ T7744]  __sys_sendmsg+0x16d/0x220
[  125.894099][ T7744]  ? __pfx___sys_sendmsg+0x10/0x10
[  125.894118][ T7744]  ? rcu_is_watching+0x12/0xc0
[  125.894133][ T7744]  __do_fast_syscall_32+0x73/0x120
[  125.894150][ T7744]  do_fast_syscall_32+0x32/0x80
[  125.894171][ T7744]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  125.894188][ T7744] RIP: 0023:0xf7f93579
[  125.894201][ T7744] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  125.894211][ T7744] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  125.894221][ T7744] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[  125.894227][ T7744] RDX: 00000000016b48f8 RSI: 0000000000000000 RDI: 0000000000000000
[  125.894233][ T7744] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  125.894239][ T7744] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  125.894244][ T7744] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  125.894256][ T7744]  </TASK>
[  126.322968][   T63] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  126.472983][   T63] usb 6-1: Using ep0 maxpacket: 8
[  126.476175][   T63] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  126.480050][   T63] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  126.483548][   T63] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  126.486767][   T63] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  126.490935][   T63] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  126.494536][   T63] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.704502][   T63] usb 6-1: GET_CAPABILITIES returned 0
[  126.706882][   T63] usbtmc 6-1:16.0: can't read capabilities
[  126.941965][ T7752] dns_resolver: Unsupported content type (240)
[  126.950244][ T7752] bond_slave_0: entered promiscuous mode
[  126.952206][ T7752] bond_slave_1: entered promiscuous mode
[  126.954154][ T7752] mac80211_hwsim hwsim3 wlan1: entered promiscuous mode
[  126.957869][ T7752] vlan2: entered promiscuous mode
[  126.959627][ T7752] bond0: entered promiscuous mode
[  127.080137][   T63] usb 6-1: USB disconnect, device number 6
[  127.790266][ T7771] lo speed is unknown, defaulting to 1000
[  128.249155][ T7788] random: crng reseeded on system resumption
[  128.265345][ T7789] batman_adv: batadv0: Adding interface: vxlan0
[  128.267346][ T7789] batman_adv: batadv0: The MTU of interface vxlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  128.268659][ T7788] Restarting kernel threads ... done.
[  128.276916][ T7789] batman_adv: batadv0: Not using interface vxlan0 (retrying later): interface not active
[  128.374575][ T7795] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.668670][ T7795] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.714218][ T7801] random: crng reseeded on system resumption
[  128.721880][ T7801] Restarting kernel threads ... done.
[  128.958913][ T7795] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.067027][ T7795] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.481206][ T7795] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  129.488828][ T7795] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  129.499099][ T7795] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  129.507221][ T7795] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  129.870229][ T7828] hugetlbfs: Unknown parameter '0'
[  129.892949][ T6104] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  130.013522][ T7833] random: crng reseeded on system resumption
[  130.017579][ T7833] Restarting kernel threads ... done.
[  130.044351][ T6104] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  130.050845][ T6104] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  130.054208][ T6104] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  130.057176][ T6104] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.065465][ T7822] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  130.072165][ T6104] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  130.282796][ T7822] (syz.1.437,7822,2):dlmfs_mkdir:421 ERROR: invalid domain name for directory.
[  130.417270][   T65] libceph: connect (1)[c::]:6789 error -101
[  130.419512][   T65] libceph: mon0 (1)[c::]:6789 connect error
[  130.422987][   T65] libceph: connect (1)[c::]:6789 error -101
[  130.424933][   T65] libceph: mon0 (1)[c::]:6789 connect error
[  130.511535][   T65] usb 6-1: USB disconnect, device number 7
[  130.748014][   T29] libceph: connect (1)[c::]:6789 error -101
[  130.751744][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  130.768572][ T7827] delete_channel: no stack
[  131.148887][ T7839] ceph: No mds server is up or the cluster is laggy
[  131.183791][ T7859] xt_CT: You must specify a L4 protocol and not use inversions on it
[  131.604724][   T57] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  131.766145][   T57] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  131.769270][   T57] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  131.772922][   T57] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  131.789555][   T57] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  131.793520][   T57] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  131.797328][   T57] usb 6-1: Product: syz
[  131.799310][   T57] usb 6-1: Manufacturer: syz
[  131.801312][   T57] usb 6-1: SerialNumber: syz
[  132.023577][   T57] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 8 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  132.185720][ T7876] overlayfs: failed to resolve './file0': -2
[  132.221495][   T57] usb 6-1: USB disconnect, device number 8
[  132.266352][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  132.268615][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  132.426146][ T7858] usblp0: removed
[  133.010300][ T7899] pim6reg: entered allmulticast mode
[  133.312506][ T7904] netlink: 8 bytes leftover after parsing attributes in process `syz.3.458'.
[  133.338295][ T7904] can0: slcan on ptm0.
[  133.518280][   T67] Bluetooth: hci3: Malformed Event: 0x13
[  133.845616][ T7926] random: crng reseeded on system resumption
[  133.853811][ T7926] Restarting kernel threads ... done.
[  133.944162][ T7898] can0 (unregistered): slcan off ptm0.
[  135.393659][ T5946] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  135.827347][ T7990] netlink: 28 bytes leftover after parsing attributes in process `syz.4.478'.
[  136.776144][ T8007] netlink: 'syz.4.481': attribute type 32 has an invalid length.
[  136.779735][ T8007] netlink: 4 bytes leftover after parsing attributes in process `syz.4.481'.
[  136.783024][ T8007] netlink: 'syz.4.481': attribute type 32 has an invalid length.
[  137.028802][ T8009] lo speed is unknown, defaulting to 1000
[  140.430137][ T8070] No control pipe specified
[  140.749427][ T8074] nbd2: detected capacity change from 0 to 510
[  140.761284][ T8078] block nbd2: shutting down sockets
[  140.762561][ T5949] blk_print_req_error: 53 callbacks suppressed
[  140.762571][ T5949] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.769055][ T5949] buffer_io_error: 58 callbacks suppressed
[  140.769063][ T5949] Buffer I/O error on dev nbd2, logical block 0, async page read
[  140.774543][ T5949] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.777739][ T5949] Buffer I/O error on dev nbd2, logical block 0, async page read
[  140.780372][ T5949] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.784085][ T5949] Buffer I/O error on dev nbd2, logical block 0, async page read
[  140.787162][ T5949] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.790955][ T5949] Buffer I/O error on dev nbd2, logical block 0, async page read
[  140.793874][ T5949] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.796600][ T5949] Buffer I/O error on dev nbd2, logical block 0, async page read
[  140.799137][ T5949] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.801999][ T5949] Buffer I/O error on dev nbd2, logical block 0, async page read
[  140.807191][ T5949] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.810620][ T8080] random: crng reseeded on system resumption
[  140.812972][ T5949] Buffer I/O error on dev nbd2, logical block 0, async page read
[  140.820525][ T5949] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.823659][ T5949] Buffer I/O error on dev nbd2, logical block 0, async page read
[  140.826507][ T5949] ldm_validate_partition_table(): Disk read failed.
[  140.829497][ T5949] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.833811][ T5949] Buffer I/O error on dev nbd2, logical block 0, async page read
[  140.836572][ T5949] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  140.843060][ T5949] Buffer I/O error on dev nbd2, logical block 0, async page read
[  140.843097][ T8080] Restarting kernel threads ... 
[  140.845753][ T5949] Dev nbd2: unable to read RDB block 0
[  140.845835][ T8080] done.
[  140.847926][ T5949]  nbd2: unable to read partition table
[  140.895407][ T8075] netlink: 'syz.1.501': attribute type 32 has an invalid length.
[  140.898320][ T8075] netlink: 4 bytes leftover after parsing attributes in process `syz.1.501'.
[  140.901723][ T8075] netlink: 'syz.1.501': attribute type 32 has an invalid length.
[  140.907414][ T5949] ldm_validate_partition_table(): Disk read failed.
[  140.909818][ T5949] Dev nbd2: unable to read RDB block 0
[  140.911838][ T5949]  nbd2: unable to read partition table
[  140.994256][ T8084] lo speed is unknown, defaulting to 1000
[  141.840960][   T67] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  141.990968][ T8108] random: crng reseeded on system resumption
[  142.008033][ T8108] Restarting kernel threads ... done.
[  142.818299][ T8114] netlink: 'syz.4.514': attribute type 32 has an invalid length.
[  142.820771][ T8114] netlink: 4 bytes leftover after parsing attributes in process `syz.4.514'.
[  142.823547][ T8114] netlink: 'syz.4.514': attribute type 32 has an invalid length.
[  143.122455][ T8121] netlink: 'syz.2.515': attribute type 32 has an invalid length.
[  143.124868][ T8121] netlink: 4 bytes leftover after parsing attributes in process `syz.2.515'.
[  143.127473][ T8121] netlink: 'syz.2.515': attribute type 32 has an invalid length.
[  145.665964][ T8181] team0 (unregistering): Port device team_slave_0 removed
[  145.670403][ T8181] team0 (unregistering): Port device team_slave_1 removed
[  146.169764][ T8187] Bluetooth: MGMT ver 1.23
[  146.386484][ T8197] input: syz0 as /devices/virtual/input/input11
[  146.553415][ T8200] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  147.410771][ T8215] random: crng reseeded on system resumption
[  147.415054][ T8215] Restarting kernel threads ... done.
[  149.349202][ T8263] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  149.523032][   T65] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  149.683986][   T65] usb 8-1: Using ep0 maxpacket: 8
[  149.688683][   T65] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  149.694305][   T65] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  149.698625][   T65] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  149.703004][   T65] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  149.708039][   T65] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  149.710914][   T65] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.809772][ T8272] block device autoloading is deprecated and will be removed.
[  149.917997][   T65] usb 8-1: GET_CAPABILITIES returned 0
[  149.920224][   T65] usbtmc 8-1:16.0: can't read capabilities
[  150.187321][ T8262] dns_resolver: Unsupported content type (240)
[  150.192120][ T5990] usb 8-1: USB disconnect, device number 5
[  150.499238][ T8298] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  150.709745][ T8301] random: crng reseeded on system resumption
[  150.717725][ T8301] Restarting kernel threads ... done.
[  151.370894][ T5946] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  151.435990][ T8337] random: crng reseeded on system resumption
[  151.450145][ T8337] Restarting kernel threads ... done.
[  151.874948][ T8341] netlink: 'syz.3.582': attribute type 3 has an invalid length.
[  152.104601][ T8356] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  152.123283][ T5990] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  152.180365][   T67] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  152.658063][ T8379] random: crng reseeded on system resumption
[  152.665740][ T8379] Restarting kernel threads ... done.
[  152.959858][ T8381] overlayfs: failed to resolve './file0': -2
[  153.142195][ T8388] batman_adv: batadv0: Adding interface: vxlan0
[  153.144852][ T8388] batman_adv: batadv0: The MTU of interface vxlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.153431][ T8388] batman_adv: batadv0: Not using interface vxlan0 (retrying later): interface not active
[  153.422956][   T63] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  153.740980][   T63] usb 8-1: Using ep0 maxpacket: 8
[  153.758317][   T63] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  153.767760][   T63] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  153.777768][   T63] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  153.783555][   T63] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  153.789074][   T63] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  153.792940][   T63] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.004908][   T63] usb 8-1: GET_CAPABILITIES returned 0
[  154.006684][   T63] usbtmc 8-1:16.0: can't read capabilities
[  154.020840][ T8415] random: crng reseeded on system resumption
[  154.032224][ T8415] Restarting kernel threads ... done.
[  154.265865][ T8422] dns_resolver: Unsupported content type (240)
[  154.311350][ T6104] usb 8-1: USB disconnect, device number 6
[  154.953127][ T8443] netlink: 8 bytes leftover after parsing attributes in process `syz.2.614'.
[  155.000174][ T8444] ceph: Path missing in source
[  155.646292][ T8450] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  155.830270][ T8456] random: crng reseeded on system resumption
[  155.839592][ T8456] Restarting kernel threads ... done.
[  155.969770][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  155.969782][   T40] audit: type=1326 audit(1744916423.549:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.3.620" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  155.980539][   T40] audit: type=1326 audit(1744916423.549:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.3.620" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  155.989550][   T40] audit: type=1326 audit(1744916423.549:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.3.620" exe="/syz-executor" sig=0 arch=40000003 syscall=132 compat=1 ip=0xf702e579 code=0x7ffc0000
[  156.011774][   T40] audit: type=1326 audit(1744916423.549:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.3.620" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  156.019531][   T40] audit: type=1326 audit(1744916423.549:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.3.620" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  156.029957][   T40] audit: type=1326 audit(1744916423.549:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.3.620" exe="/syz-executor" sig=0 arch=40000003 syscall=338 compat=1 ip=0xf702e579 code=0x7ffc0000
[  156.042298][   T40] audit: type=1326 audit(1744916423.549:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.3.620" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  156.062586][   T40] audit: type=1326 audit(1744916423.549:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.3.620" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf702e579 code=0x7ffc0000
[  156.076056][   T40] audit: type=1326 audit(1744916423.549:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.3.620" exe="/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf702e579 code=0x7ffc0000
[  156.084010][   T40] audit: type=1326 audit(1744916423.609:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.3.620" exe="/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf702e579 code=0x7ffc0000
[  156.561836][ T8477] fuse: Unknown parameter '��18446744073709551615��0xffffffffffffffff0x0000000000000004'
[  156.907559][   T63] Process accounting resumed
[  157.035568][ T8489] overlayfs: failed to resolve './bus': -2
[  157.715359][ T8503] random: crng reseeded on system resumption
[  158.474171][ T8518] =======================================================
[  158.474171][ T8518] WARNING: The mand mount option has been deprecated and
[  158.474171][ T8518]          and is ignored by this kernel. Remove the mand
[  158.474171][ T8518]          option from the mount to silence this warning.
[  158.474171][ T8518] =======================================================
[  161.290288][   T67] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  162.397799][ T8597] mkiss: ax0: crc mode is auto.
[  162.639602][ T8603] netlink: 88 bytes leftover after parsing attributes in process `syz.2.658'.
[  162.897945][ T8608] netlink: 4 bytes leftover after parsing attributes in process `syz.4.660'.
[  162.977803][ T8609] syzkaller1: entered promiscuous mode
[  162.979651][ T8609] syzkaller1: entered allmulticast mode
[  162.985080][ T8609] netlink: 4 bytes leftover after parsing attributes in process `syz.4.660'.
[  163.386255][ T8621] netlink: 8 bytes leftover after parsing attributes in process `syz.2.665'.
[  163.466442][ T8619] netlink: 88 bytes leftover after parsing attributes in process `syz.1.661'.
[  164.015617][ T8634] random: crng reseeded on system resumption
[  164.029835][ T8634] Restarting kernel threads ... done.
[  164.089521][ T8635] netlink: 'syz.3.666': attribute type 32 has an invalid length.
[  164.092733][ T8635] netlink: 4 bytes leftover after parsing attributes in process `syz.3.666'.
[  164.096075][ T8635] netlink: 'syz.3.666': attribute type 32 has an invalid length.
[  165.674813][ T8675] nr0: entered promiscuous mode
[  165.675669][   T40] kauditd_printk_skb: 45 callbacks suppressed
[  165.675678][   T40] audit: type=1326 audit(1744916433.259:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.4.678" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  165.678955][ T8675] netlink: 12 bytes leftover after parsing attributes in process `syz.1.680'.
[  165.687853][   T40] audit: type=1326 audit(1744916433.259:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.4.678" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  165.697197][   T40] audit: type=1326 audit(1744916433.269:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.4.678" exe="/syz-executor" sig=0 arch=40000003 syscall=163 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  165.708204][   T40] audit: type=1326 audit(1744916433.269:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.4.678" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  165.716180][   T40] audit: type=1326 audit(1744916433.269:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.4.678" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  165.724779][   T40] audit: type=1326 audit(1744916433.269:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.4.678" exe="/syz-executor" sig=0 arch=40000003 syscall=241 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  165.731750][   T40] audit: type=1326 audit(1744916433.269:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.4.678" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  165.739794][   T40] audit: type=1326 audit(1744916433.269:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.4.678" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  165.747417][   T40] audit: type=1326 audit(1744916433.269:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.4.678" exe="/syz-executor" sig=0 arch=40000003 syscall=156 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  165.756034][   T40] audit: type=1326 audit(1744916433.269:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.4.678" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[  166.039502][ T8673] RDS: rds_bind could not find a transport for 2001::1, load rds_tcp or rds_rdma?
[  166.180316][ T8687] netlink: 'syz.3.682': attribute type 32 has an invalid length.
[  166.180484][ T8687] netlink: 4 bytes leftover after parsing attributes in process `syz.3.682'.
[  166.180643][ T8687] netlink: 'syz.3.682': attribute type 32 has an invalid length.
[  166.517135][ T8685] xt_CT: You must specify a L4 protocol and not use inversions on it
[  166.798991][ T8696] lo speed is unknown, defaulting to 1000
[  166.853337][ T8694] xt_CT: You must specify a L4 protocol and not use inversions on it
[  167.180244][ T8705] netlink: 40 bytes leftover after parsing attributes in process `syz.1.688'.
[  167.308703][ T8712] overlayfs: failed to resolve './file1': -2
[  167.699509][ T8726] FAULT_INJECTION: forcing a failure.
[  167.699509][ T8726] name failslab, interval 1, probability 0, space 0, times 0
[  167.711999][ T8726] CPU: 3 UID: 0 PID: 8726 Comm: syz.3.696 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[  167.712026][ T8726] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.712033][ T8726] Call Trace:
[  167.712038][ T8726]  <TASK>
[  167.712042][ T8726]  dump_stack_lvl+0x16c/0x1f0
[  167.712061][ T8726]  should_fail_ex+0x512/0x640
[  167.712074][ T8726]  ? __kmalloc_noprof+0xbf/0x510
[  167.712092][ T8726]  ? memcg_list_lru_alloc+0x4e9/0x740
[  167.712101][ T8726]  should_failslab+0xc2/0x120
[  167.712111][ T8726]  __kmalloc_noprof+0xd2/0x510
[  167.712126][ T8726]  ? __lock_acquire+0x5ca/0x1ba0
[  167.712139][ T8726]  memcg_list_lru_alloc+0x4e9/0x740
[  167.712153][ T8726]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[  167.712168][ T8726]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  167.712184][ T8726]  __memcg_slab_post_alloc_hook+0x131/0x940
[  167.712214][ T8726]  ? kasan_save_track+0x14/0x30
[  167.712232][ T8726]  kmem_cache_alloc_lru_noprof+0x30f/0x3b0
[  167.712248][ T8726]  ? lockdep_init_map_type+0x5c/0x280
[  167.712258][ T8726]  ? bdev_alloc_inode+0x26/0x90
[  167.712275][ T8726]  ? lockdep_init_map_type+0x5c/0x280
[  167.712285][ T8726]  ? __pfx_pseudo_fs_fill_super+0x10/0x10
[  167.712301][ T8726]  ? __pfx_bdev_alloc_inode+0x10/0x10
[  167.712317][ T8726]  bdev_alloc_inode+0x26/0x90
[  167.712333][ T8726]  ? __pfx_bdev_alloc_inode+0x10/0x10
[  167.712349][ T8726]  alloc_inode+0x61/0x240
[  167.712361][ T8726]  new_inode+0x22/0x1c0
[  167.712373][ T8726]  ? __pfx_pseudo_fs_fill_super+0x10/0x10
[  167.712388][ T8726]  pseudo_fs_fill_super+0x235/0x4f0
[  167.712405][ T8726]  ? __pfx_pseudo_fs_fill_super+0x10/0x10
[  167.712421][ T8726]  get_tree_nodev+0xda/0x190
[  167.712437][ T8726]  vfs_get_tree+0x8b/0x340
[  167.712450][ T8726]  vfs_cmd_create+0xd7/0x2a0
[  167.712462][ T8726]  __do_sys_fsconfig+0x7b8/0xbe0
[  167.712474][ T8726]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  167.712496][ T8726]  ? fput+0x70/0xf0
[  167.712510][ T8726]  ? rcu_is_watching+0x12/0xc0
[  167.712525][ T8726]  __do_fast_syscall_32+0x73/0x120
[  167.712543][ T8726]  do_fast_syscall_32+0x32/0x80
[  167.712563][ T8726]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  167.712576][ T8726] RIP: 0023:0xf702e579
[  167.712585][ T8726] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  167.712595][ T8726] RSP: 002b:00000000f501e55c EFLAGS: 00000296 ORIG_RAX: 00000000000001af
[  167.712606][ T8726] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000006
[  167.712612][ T8726] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  167.712618][ T8726] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  167.712624][ T8726] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  167.712630][ T8726] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.712643][ T8726]  </TASK>
[  169.216533][ T8759] syzkaller0: entered promiscuous mode
[  169.218618][ T8759] syzkaller0: entered allmulticast mode
[  171.609502][ T8776] dvmrp8: entered allmulticast mode
[  171.612082][ T8776] dvmrp8: left allmulticast mode
[  171.928436][ T8796] vivid-007: =================  START STATUS  =================
[  171.931007][ T8796] vivid-007: Enable Output Cropping: true grabbed
[  171.931961][ T8798] netlink: 4 bytes leftover after parsing attributes in process `syz.1.710'.
[  171.945135][ T5946] Bluetooth: hci3: Malformed LE Event: 0x1d
[  171.956349][ T8796] vivid-007: Enable Output Composing: true grabbed
[  171.958384][ T8796] vivid-007: Enable Output Scaler: true grabbed
[  171.960351][ T8796] vivid-007: Tx RGB Quantization Range: Automatic grabbed
[  171.962513][ T8796] vivid-007: Transmit Mode: HDMI grabbed
[  171.989322][ T8795] netlink: 'syz.3.714': attribute type 11 has an invalid length.
[  171.991254][ T8796] vivid-007: Hotplug Present: 
[  171.991913][ T8795] netlink: 40 bytes leftover after parsing attributes in process `syz.3.714'.
[  171.991917][ T8796] 0x00000000
[  171.997770][ T8796] vivid-007: RxSense Present: 0x00000000
[  171.999629][ T8796] vivid-007: EDID Present: 0x00000000
[  172.001551][ T8796] vivid-007: ==================  END STATUS  ==================
[  172.130030][ T8804] Attempt to restore checkpoint with obsolete wellknown handles
[  172.893676][ T8824] netlink: 20 bytes leftover after parsing attributes in process `syz.3.721'.
[  172.899838][ T8824] program syz.3.721 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.248777][ T8841] random: crng reseeded on system resumption
[  173.271010][ T8841] Restarting kernel threads ... done.
[  173.697454][ T8845] netfs: Couldn't get user pages (rc=-14)
[  173.826849][ T8854] netlink: 12 bytes leftover after parsing attributes in process `syz.4.729'.
[  173.830889][ T8854] FAULT_INJECTION: forcing a failure.
[  173.830889][ T8854] name failslab, interval 1, probability 0, space 0, times 0
[  173.835281][ T8854] CPU: 2 UID: 0 PID: 8854 Comm: syz.4.729 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[  173.835307][ T8854] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.835315][ T8854] Call Trace:
[  173.835319][ T8854]  <TASK>
[  173.835323][ T8854]  dump_stack_lvl+0x16c/0x1f0
[  173.835343][ T8854]  should_fail_ex+0x512/0x640
[  173.835356][ T8854]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  173.835374][ T8854]  should_failslab+0xc2/0x120
[  173.835384][ T8854]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  173.835400][ T8854]  ? netlink_dump+0x9e7/0xd00
[  173.835415][ T8854]  ? ___sys_recvmsg+0x114/0x1a0
[  173.835427][ T8854]  ? __alloc_skb+0x2b2/0x380
[  173.835440][ T8854]  ? __pfx___mutex_lock+0x10/0x10
[  173.835458][ T8854]  __alloc_skb+0x2b2/0x380
[  173.835471][ T8854]  ? __pfx___alloc_skb+0x10/0x10
[  173.835493][ T8854]  netlink_dump+0x698/0xd00
[  173.835510][ T8854]  ? __pfx_netlink_dump+0x10/0x10
[  173.835530][ T8854]  ? kfree_skbmem+0x1a4/0x1f0
[  173.835543][ T8854]  ? kfree_skbmem+0x1a4/0x1f0
[  173.835554][ T8854]  netlink_recvmsg+0xa15/0xf20
[  173.835570][ T8854]  ? __pfx_netlink_recvmsg+0x10/0x10
[  173.835584][ T8854]  ? aa_sk_perm+0x2f4/0xb10
[  173.835598][ T8854]  ? __pfx_aa_sk_perm+0x10/0x10
[  173.835616][ T8854]  sock_recvmsg+0x1f6/0x250
[  173.835633][ T8854]  ____sys_recvmsg+0x218/0x6b0
[  173.835652][ T8854]  ? __pfx_____sys_recvmsg+0x10/0x10
[  173.835669][ T8854]  ? import_iovec+0x109/0x140
[  173.835687][ T8854]  ? __lock_acquire+0x5ca/0x1ba0
[  173.835700][ T8854]  ___sys_recvmsg+0x114/0x1a0
[  173.835714][ T8854]  ? __pfx____sys_recvmsg+0x10/0x10
[  173.835735][ T8854]  ? get_pid_task+0xe0/0x250
[  173.835750][ T8854]  do_recvmmsg+0x568/0x740
[  173.835765][ T8854]  ? __pfx_do_recvmmsg+0x10/0x10
[  173.835789][ T8854]  ? __fget_files+0x20e/0x3c0
[  173.835806][ T8854]  __sys_recvmmsg+0x21c/0x280
[  173.835821][ T8854]  ? __pfx___sys_recvmmsg+0x10/0x10
[  173.835836][ T8854]  ? __pfx_ksys_write+0x10/0x10
[  173.835853][ T8854]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  173.835869][ T8854]  ? lockdep_hardirqs_on+0x7c/0x110
[  173.835883][ T8854]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  173.835899][ T8854]  __do_fast_syscall_32+0x73/0x120
[  173.835917][ T8854]  do_fast_syscall_32+0x32/0x80
[  173.835933][ T8854]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  173.835946][ T8854] RIP: 0023:0xf70ae579
[  173.835955][ T8854] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  173.835965][ T8854] RSP: 002b:00000000f507d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  173.835975][ T8854] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000800047c0
[  173.835982][ T8854] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  173.835988][ T8854] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  173.835993][ T8854] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  173.835999][ T8854] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  173.836012][ T8854]  </TASK>
[  173.934148][    C2] vkms_vblank_simulate: vblank timer overrun
[  174.211740][ T8860] netlink: 'syz.1.731': attribute type 3 has an invalid length.
[  174.365859][ T8865] netlink: 12 bytes leftover after parsing attributes in process `syz.2.733'.
[  174.899268][ T8878] random: crng reseeded on system resumption
[  174.919445][ T8878] Restarting kernel threads ... done.
[  175.584078][ T8893] netlink: 20 bytes leftover after parsing attributes in process `syz.4.741'.
[  175.652970][ T1015] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  175.714168][ T8897] program syz.2.742 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  175.803046][ T1015] usb 6-1: Using ep0 maxpacket: 8
[  175.809614][ T1015] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  175.814401][ T1015] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  175.826753][ T1015] usb 6-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00
[  175.835719][ T8900] 8021q: adding VLAN 0 to HW filter on device bond1
[  175.841618][ T1015] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.845293][ T8902] netlink: 12 bytes leftover after parsing attributes in process `syz.2.743'.
[  175.852649][ T1015] usb 6-1: config 0 descriptor??
[  176.073642][ T8886] netlink: 136 bytes leftover after parsing attributes in process `syz.1.739'.
[  176.076834][ T8886] A link change request failed with some changes committed already. Interface erspan0 may have been left with an inconsistent configuration, please check.
[  176.090548][ T1015] usbhid 6-1:0.0: can't add hid device: -71
[  176.093333][ T1015] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  176.101236][ T1015] usb 6-1: USB disconnect, device number 9
[  176.539926][ T8923] netlink: 8 bytes leftover after parsing attributes in process `syz.4.751'.
[  176.579042][ T8923] tipc: Started in network mode
[  176.581012][ T8923] tipc: Node identity 4, cluster identity 4711
[  176.583189][ T8923] tipc: Node number set to 4
[  176.613437][ T1015] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  176.793228][ T1015] usb 8-1: device descriptor read/64, error -71
[  176.793627][ T8935] loop7: detected capacity change from 0 to 16384
[  176.910470][ T8938] blk_print_req_error: 27 callbacks suppressed
[  176.910482][ T8938] I/O error, dev loop7, sector 2048 op 0x1:(WRITE) flags 0x800 phys_seg 64 prio class 0
[  176.916151][ T8938] buffer_io_error: 27 callbacks suppressed
[  176.916160][ T8938] Buffer I/O error on dev loop7, logical block 256, lost async page write
[  176.920864][ T8938] Buffer I/O error on dev loop7, logical block 257, lost async page write
[  176.923909][ T8938] Buffer I/O error on dev loop7, logical block 258, lost async page write
[  176.926842][ T8938] Buffer I/O error on dev loop7, logical block 259, lost async page write
[  176.930219][ T8938] Buffer I/O error on dev loop7, logical block 260, lost async page write
[  176.933197][ T8938] Buffer I/O error on dev loop7, logical block 261, lost async page write
[  176.936141][ T8938] Buffer I/O error on dev loop7, logical block 262, lost async page write
[  176.939061][ T8938] Buffer I/O error on dev loop7, logical block 263, lost async page write
[  176.942044][ T8938] Buffer I/O error on dev loop7, logical block 264, lost async page write
[  176.945011][ T8938] Buffer I/O error on dev loop7, logical block 265, lost async page write
[  176.957710][ T8935] I/O error, dev loop7, sector 3840 op 0x0:(READ) flags 0x80700 phys_seg 2 prio class 0
[  176.966925][ T8935] I/O error, dev loop7, sector 4096 op 0x0:(READ) flags 0x80700 phys_seg 2 prio class 0
[  176.972234][ T8935] I/O error, dev loop7, sector 3840 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  176.975903][ T8935] I/O error, dev loop7, sector 3848 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  176.979718][ T8935] I/O error, dev loop7, sector 3856 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  176.981817][ T8938] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  176.983515][ T8935] I/O error, dev loop7, sector 3864 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  176.986038][ T8938] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  176.989647][ T8935] I/O error, dev loop7, sector 3872 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  176.992746][ T8938] ldm_validate_partition_table(): Disk read failed.
[  176.997998][ T8938] Dev loop7: unable to read RDB block 0
[  177.000297][ T8938]  loop7: unable to read partition table
[  177.002217][ T8938] loop_reread_partitions: partition scan of loop7 (�ݷ�U@�:�B$�{
W�ɴ�) failed (rc=-5)
[  177.063117][ T1015] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  177.263755][ T1015] usb 8-1: device descriptor read/64, error -71
[  177.384942][ T1015] usb usb8-port1: attempt power cycle
[  177.722972][ T1015] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  177.875730][ T1015] usb 8-1: device descriptor read/8, error -71
[  178.123158][ T1015] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  178.155887][ T1015] usb 8-1: device descriptor read/8, error -71
[  178.274224][ T1015] usb usb8-port1: unable to enumerate USB device
[  178.726025][ T8959] dvmrp8: entered allmulticast mode
[  179.402646][ T5946] Bluetooth: unknown link type 108
[  179.404450][ T5946] Bluetooth: hci3: connection err: -111
[  179.407748][ T8964] FAULT_INJECTION: forcing a failure.
[  179.407748][ T8964] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  179.412156][ T8964] CPU: 3 UID: 0 PID: 8964 Comm: syz.3.762 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[  179.412179][ T8964] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  179.412190][ T8964] Call Trace:
[  179.412196][ T8964]  <TASK>
[  179.412205][ T8964]  dump_stack_lvl+0x16c/0x1f0
[  179.412228][ T8964]  should_fail_ex+0x512/0x640
[  179.412242][ T8964]  _copy_to_user+0x32/0xd0
[  179.412257][ T8964]  simple_read_from_buffer+0xcb/0x170
[  179.412273][ T8964]  proc_fail_nth_read+0x197/0x270
[  179.412289][ T8964]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  179.412304][ T8964]  ? rw_verify_area+0xcf/0x680
[  179.412317][ T8964]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  179.412332][ T8964]  vfs_read+0x1de/0xc70
[  179.412348][ T8964]  ? __pfx___mutex_lock+0x10/0x10
[  179.412363][ T8964]  ? __pfx_vfs_read+0x10/0x10
[  179.412381][ T8964]  ? __fget_files+0x20e/0x3c0
[  179.412400][ T8964]  ksys_read+0x12a/0x240
[  179.412415][ T8964]  ? __pfx_ksys_read+0x10/0x10
[  179.412430][ T8964]  ? rcu_is_watching+0x12/0xc0
[  179.412450][ T8964]  __do_fast_syscall_32+0x73/0x120
[  179.412468][ T8964]  do_fast_syscall_32+0x32/0x80
[  179.412484][ T8964]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  179.412497][ T8964] RIP: 0023:0xf702e579
[  179.412506][ T8964] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  179.412516][ T8964] RSP: 002b:00000000f501e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  179.412527][ T8964] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f501e620
[  179.412533][ T8964] RDX: 000000000000000f RSI: 00000000f7392ff4 RDI: 0000000000000000
[  179.412539][ T8964] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  179.412545][ T8964] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  179.412551][ T8964] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  179.412563][ T8964]  </TASK>
[  179.460564][ T8956] dvmrp8: left allmulticast mode
[  180.839164][ T8997] random: crng reseeded on system resumption
[  180.859061][ T8997] Restarting kernel threads ... done.
[  181.218823][ T9002] lo speed is unknown, defaulting to 1000
[  181.981242][ T9021] overlayfs: missing 'lowerdir'
[  184.927912][   T67] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  185.147571][ T9075] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  185.223037][ T5946] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  185.322726][ T9077] overlayfs: missing 'lowerdir'
[  185.933865][ T9087] FAULT_INJECTION: forcing a failure.
[  185.933865][ T9087] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.938180][ T9087] CPU: 1 UID: 0 PID: 9087 Comm: syz.3.793 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[  185.938194][ T9087] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.938201][ T9087] Call Trace:
[  185.938205][ T9087]  <TASK>
[  185.938209][ T9087]  dump_stack_lvl+0x16c/0x1f0
[  185.938229][ T9087]  should_fail_ex+0x512/0x640
[  185.938243][ T9087]  _copy_to_iter+0x477/0x15a0
[  185.938260][ T9087]  ? __pfx__copy_to_iter+0x10/0x10
[  185.938276][ T9087]  ? __lock_acquire+0xaa4/0x1ba0
[  185.938288][ T9087]  simple_copy_to_iter+0x46/0x90
[  185.938301][ T9087]  __skb_datagram_iter+0x5a9/0x8c0
[  185.938311][ T9087]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  185.938326][ T9087]  skb_copy_datagram_iter+0x40/0x50
[  185.938338][ T9087]  unix_stream_read_actor+0x7b/0xc0
[  185.938355][ T9087]  unix_stream_read_generic+0xe15/0x28b0
[  185.938374][ T9087]  ? __pfx_unix_stream_read_generic+0x10/0x10
[  185.938390][ T9087]  ? __pfx_autoremove_wake_function+0x10/0x10
[  185.938411][ T9087]  unix_stream_recvmsg+0x190/0x1c0
[  185.938422][ T9087]  ? __pfx_unix_stream_recvmsg+0x10/0x10
[  185.938432][ T9087]  ? __pfx_aa_sk_perm+0x10/0x10
[  185.938444][ T9087]  ? __pfx_unix_stream_read_actor+0x10/0x10
[  185.938465][ T9087]  sock_recvmsg+0x1f6/0x250
[  185.938482][ T9087]  ____sys_recvmsg+0x218/0x6b0
[  185.938502][ T9087]  ? __pfx_____sys_recvmsg+0x10/0x10
[  185.938518][ T9087]  ? import_iovec+0x109/0x140
[  185.938536][ T9087]  ? __lock_acquire+0x5ca/0x1ba0
[  185.938547][ T9087]  ___sys_recvmsg+0x114/0x1a0
[  185.938561][ T9087]  ? __pfx____sys_recvmsg+0x10/0x10
[  185.938582][ T9087]  ? get_pid_task+0xe0/0x250
[  185.938596][ T9087]  do_recvmmsg+0x568/0x740
[  185.938612][ T9087]  ? __pfx_do_recvmmsg+0x10/0x10
[  185.938635][ T9087]  ? __fget_files+0x20e/0x3c0
[  185.938652][ T9087]  __sys_recvmmsg+0x21c/0x280
[  185.938667][ T9087]  ? __pfx___sys_recvmmsg+0x10/0x10
[  185.938682][ T9087]  ? __pfx_ksys_write+0x10/0x10
[  185.938698][ T9087]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  185.938721][ T9087]  ? lockdep_hardirqs_on+0x7c/0x110
[  185.938736][ T9087]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  185.938752][ T9087]  __do_fast_syscall_32+0x73/0x120
[  185.938769][ T9087]  do_fast_syscall_32+0x32/0x80
[  185.938785][ T9087]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.938799][ T9087] RIP: 0023:0xf702e579
[  185.938807][ T9087] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  185.938818][ T9087] RSP: 002b:00000000f501e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  185.938829][ T9087] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000800034c0
[  185.938836][ T9087] RDX: 000000000000013c RSI: 0000000000000700 RDI: 0000000000000000
[  185.938842][ T9087] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  185.938848][ T9087] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  185.938854][ T9087] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  185.938866][ T9087]  </TASK>
[  186.798880][ T9109] lo speed is unknown, defaulting to 1000
[  186.997241][   T40] kauditd_printk_skb: 54 callbacks suppressed
[  186.997252][   T40] audit: type=1326 audit(1744916454.559:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  187.009980][   T40] audit: type=1326 audit(1744916454.559:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  187.038480][   T40] audit: type=1326 audit(1744916454.559:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  187.063115][   T40] audit: type=1326 audit(1744916454.559:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  187.103092][   T40] audit: type=1326 audit(1744916454.559:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  187.117288][   T40] audit: type=1326 audit(1744916454.559:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  187.124582][   T40] audit: type=1326 audit(1744916454.559:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  187.131370][   T40] audit: type=1326 audit(1744916454.559:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  187.138286][   T40] audit: type=1326 audit(1744916454.559:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=361 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  187.145196][   T40] audit: type=1326 audit(1744916454.569:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9113 comm="syz.2.802" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  187.374181][ T9137] netlink: 'syz.4.805': attribute type 11 has an invalid length.
[  187.384918][ T9137] libceph: resolve '
[  187.384918][ T9137] -&���f�Y�ǝ�a���2i�
[  187.384918][ T9137] .���?��&�*��&' (ret=-3): failed
[  187.540979][ T9142] IPVS: set_ctl: invalid protocol: 59 172.20.20.187:20001
[  188.914376][ T9192] xt_TCPMSS: Only works on TCP SYN packets
[  189.805724][ T9217] bridge0: port 3(vlan2) entered blocking state
[  189.808068][ T9217] bridge0: port 3(vlan2) entered disabled state
[  189.810520][ T9217] vlan2: entered allmulticast mode
[  189.812238][ T9217] bridge0: entered allmulticast mode
[  189.818852][ T9217] vlan2: left allmulticast mode
[  189.820504][ T9217] bridge0: left allmulticast mode
[  191.467928][ T9250] netlink: 4 bytes leftover after parsing attributes in process `syz.2.825'.
[  192.274194][   T40] kauditd_printk_skb: 56 callbacks suppressed
[  192.274205][   T40] audit: type=1326 audit(1744916459.859:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  192.282625][   T40] audit: type=1326 audit(1744916459.859:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  192.289413][   T40] audit: type=1326 audit(1744916459.859:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.830" exe="/syz-executor" sig=0 arch=40000003 syscall=163 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  192.297003][   T40] audit: type=1326 audit(1744916459.859:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  192.308098][   T40] audit: type=1326 audit(1744916459.859:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  192.316787][   T40] audit: type=1326 audit(1744916459.859:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.830" exe="/syz-executor" sig=0 arch=40000003 syscall=241 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  192.323866][   T40] audit: type=1326 audit(1744916459.859:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  192.331640][   T40] audit: type=1326 audit(1744916459.859:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  192.338647][   T40] audit: type=1326 audit(1744916459.859:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.830" exe="/syz-executor" sig=0 arch=40000003 syscall=156 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  192.347353][   T40] audit: type=1326 audit(1744916459.859:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.2.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f93579 code=0x7ffc0000
[  192.801326][ T9270] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  192.804202][ T9270] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  193.529947][ T9301] FAULT_INJECTION: forcing a failure.
[  193.529947][ T9301] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  193.534443][ T9301] CPU: 0 UID: 0 PID: 9301 Comm: syz.2.837 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[  193.534457][ T9301] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  193.534464][ T9301] Call Trace:
[  193.534468][ T9301]  <TASK>
[  193.534472][ T9301]  dump_stack_lvl+0x16c/0x1f0
[  193.534491][ T9301]  should_fail_ex+0x512/0x640
[  193.534505][ T9301]  _copy_to_user+0x32/0xd0
[  193.534520][ T9301]  simple_read_from_buffer+0xcb/0x170
[  193.534536][ T9301]  proc_fail_nth_read+0x197/0x270
[  193.534550][ T9301]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  193.534566][ T9301]  ? rw_verify_area+0xcf/0x680
[  193.534578][ T9301]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  193.534597][ T9301]  vfs_read+0x1de/0xc70
[  193.534619][ T9301]  ? __pfx___mutex_lock+0x10/0x10
[  193.534642][ T9301]  ? __pfx_vfs_read+0x10/0x10
[  193.534671][ T9301]  ? __fget_files+0x20e/0x3c0
[  193.534701][ T9301]  ksys_read+0x12a/0x240
[  193.534722][ T9301]  ? __pfx_ksys_read+0x10/0x10
[  193.534740][ T9301]  ? rcu_is_watching+0x12/0xc0
[  193.534762][ T9301]  ? rcu_is_watching+0x12/0xc0
[  193.534785][ T9301]  __do_fast_syscall_32+0x73/0x120
[  193.534812][ T9301]  do_fast_syscall_32+0x32/0x80
[  193.534837][ T9301]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  193.534856][ T9301] RIP: 0023:0xf7f93579
[  193.534865][ T9301] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  193.534876][ T9301] RSP: 002b:00000000f50b6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  193.534886][ T9301] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50b6620
[  193.534893][ T9301] RDX: 000000000000000f RSI: 00000000f7422ff4 RDI: 0000000000000000
[  193.534899][ T9301] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  193.534918][ T9301] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  193.534925][ T9301] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  193.534938][ T9301]  </TASK>
[  193.714765][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[  193.716976][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  194.337897][ T9320] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  194.513364][ T5946] Bluetooth: hci0: unexpected cc 0x0c2d length: 5 > 4
[  194.516278][ T5946] Bluetooth: hci0: unexpected event for opcode 0x0c2d
[  196.913047][   T57] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  197.062912][   T57] usb 8-1: Using ep0 maxpacket: 8
[  197.067796][   T57] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  197.071272][   T57] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  197.074582][   T57] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  197.077943][   T57] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  197.081953][   T57] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  197.085611][   T57] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.217606][ T9368] lo speed is unknown, defaulting to 1000
[  197.304828][   T57] usb 8-1: GET_CAPABILITIES returned 0
[  197.307265][   T57] usbtmc 8-1:16.0: can't read capabilities
[  197.547013][ T9376] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null.
[  197.551381][ T9376] overlayfs: overlapping lowerdir path
[  197.565364][ T9365] dns_resolver: Unsupported content type (240)
[  197.571191][ T9365] bond_slave_0: entered promiscuous mode
[  197.573130][ T9365] bond_slave_1: entered promiscuous mode
[  197.576495][ T9365] vlan0: entered promiscuous mode
[  197.578179][ T9365] bond0: entered promiscuous mode
[  197.694880][ T5988] usb 8-1: USB disconnect, device number 11
[  198.164341][ T9387] netlink: 'syz.1.857': attribute type 32 has an invalid length.
[  198.167357][ T9387] netlink: 4 bytes leftover after parsing attributes in process `syz.1.857'.
[  198.170895][ T9387] netlink: 'syz.1.857': attribute type 32 has an invalid length.
[  198.445938][ T9398] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  198.720060][ T9400] netlink: 'syz.3.858': attribute type 32 has an invalid length.
[  198.723434][ T9400] netlink: 4 bytes leftover after parsing attributes in process `syz.3.858'.
[  198.727266][ T9400] netlink: 'syz.3.858': attribute type 32 has an invalid length.
[  199.493319][ T9414] overlayfs: missing 'workdir'
[  199.802954][   T63] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  199.867556][   T65] hid-generic C990:0003:0000.0004: unknown main item tag 0x0
[  199.870557][   T65] hid-generic C990:0003:0000.0004: unknown main item tag 0x0
[  199.881265][   T65] hid-generic C990:0003:0000.0004: hidraw1: <UNKNOWN> HID vc.00 Device [syz0] on syz1
[  199.973492][   T63] usb 6-1: Using ep0 maxpacket: 8
[  199.976479][   T63] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  199.979808][   T63] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  199.983288][   T63] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  199.986241][   T63] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  199.990146][   T63] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  199.993204][   T63] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.204238][   T63] usb 6-1: GET_CAPABILITIES returned 0
[  200.206055][   T63] usbtmc 6-1:16.0: can't read capabilities
[  200.207300][ T9429] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  200.451022][ T5946] Bluetooth: hci3: ISO packet for unknown connection handle 0
[  200.456675][ T9418] dns_resolver: Unsupported content type (240)
[  200.460098][ T9418] 8021q: VLANs not supported on vcan0
[  200.470551][ T5988] usb 6-1: USB disconnect, device number 10
[  200.470796][ T9437] fuse: Bad value for 'fd'
[  200.479961][ T9437] input: syz0 as /devices/virtual/input/input14
[  200.558851][ T9444] netlink: 4 bytes leftover after parsing attributes in process `syz.2.873'.
[  200.992320][ T9448] overlayfs: missing 'workdir'
[  201.047793][ T5946] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  201.272389][ T9465] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  201.316355][ T9444] Bluetooth: hci1: Opcode 0x0401 failed: -4
[  201.641049][ T9477] bridge_slave_0: left allmulticast mode
[  201.643829][ T9477] bridge_slave_0: left promiscuous mode
[  201.648270][ T9477] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.657523][ T9477] bridge_slave_1: left allmulticast mode
[  201.659416][ T9477] bridge_slave_1: left promiscuous mode
[  201.661481][ T9477] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.672266][ T9477] bond0: (slave bond_slave_0): Releasing backup interface
[  201.675934][ T9477] bond_slave_0: left promiscuous mode
[  201.680322][ T9477] bond0: (slave bond_slave_1): Releasing backup interface
[  201.683805][ T9477] bond_slave_1: left promiscuous mode
[  201.687568][ T9477] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  201.690288][ T9477] batman_adv: batadv0: Removing interface: batadv_slave_0
[  201.708159][ T9477] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  201.710729][ T9477] batman_adv: batadv0: Removing interface: batadv_slave_1
[  201.754831][ T9477] batman_adv: batadv0: Removing interface: vxlan0
[  201.873010][   T65] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  202.340777][   T67] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  202.423074][   T65] usb 7-1: Using ep0 maxpacket: 8
[  202.425973][   T65] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  202.429429][   T65] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  202.432678][   T65] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  202.436503][   T65] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  202.440536][   T65] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  202.444689][   T65] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.590310][ T5946] Bluetooth: hci1: command 0x0c1a tx timeout
[  202.651644][   T65] usb 7-1: GET_CAPABILITIES returned 0
[  202.654740][   T65] usbtmc 7-1:16.0: can't read capabilities
[  202.685654][ T9497] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  202.908227][ T9525] dns_resolver: Unsupported content type (240)
[  202.912283][ T9525] 8021q: VLANs not supported on vcan0
[  202.943129][   T57] usb 7-1: USB disconnect, device number 4
[  203.540616][ T5946] Bluetooth: hci2: Ignoring HCI_Connection_Complete for existing connection
[  203.619055][ T5959] Bluetooth: hci2: Unable to find connection for big 0x00
[  203.622000][   T64] Bluetooth: hci4: received HCILL_GO_TO_SLEEP_ACK in state 1
[  203.627800][   T13] Bluetooth: hci4: Frame reassembly failed (-84)
[  203.798030][ T9557] 9pnet_virtio: no channels available for device syz
[  204.734052][ T9574] efs: device does not support 512 byte blocks
[  204.736077][ T9574] device does not support 512 byte blocks
[  204.736077][ T9574] 
[  204.761101][   T40] kauditd_printk_skb: 31 callbacks suppressed
[  204.761111][   T40] audit: type=1326 audit(1744916472.339:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9568 comm="syz.1.901" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f43579 code=0x0
[  205.531561][ T9598] overlayfs: failed to resolve './file0': -2
[  205.622936][ T5946] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  205.978958][ T9618] 9pnet_virtio: no channels available for device ./file0/file0
[  205.987574][ T9610] 
[  205.988624][ T9610] ======================================================
[  205.991352][ T9610] WARNING: possible circular locking dependency detected
[  205.994056][ T9610] 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 Not tainted
[  205.998175][ T9610] ------------------------------------------------------
[  206.000680][ T9610] syz.1.911/9610 is trying to acquire lock:
[  206.002487][ T9610] ffffffff9012e7e8 (rtnl_mutex){+.+.}-{4:4}, at: start_sync_thread+0x120/0x28b0
[  206.005317][ T9610] 
[  206.005317][ T9610] but task is already holding lock:
[  206.007771][ T9610] ffff88806b25e6a8 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x100/0xa00
[  206.011406][ T9610] 
[  206.011406][ T9610] which lock already depends on the new lock.
[  206.011406][ T9610] 
[  206.015590][ T9610] 
[  206.015590][ T9610] the existing dependency chain (in reverse order) is:
[  206.019164][ T9610] 
[  206.019164][ T9610] -> #2 (&smc->clcsock_release_lock){+.+.}-{4:4}:
[  206.022570][ T9610]        __mutex_lock+0x199/0xb90
[  206.024623][ T9610]        smc_switch_to_fallback+0x2d/0x9f0
[  206.026995][ T9610]        smc_sendmsg+0x13d/0x520
[  206.029081][ T9610]        __sys_sendto+0x495/0x510
[  206.031131][ T9610]        __ia32_sys_sendto+0xdd/0x1b0
[  206.033404][ T9610]        __do_fast_syscall_32+0x73/0x120
[  206.035558][ T9610]        do_fast_syscall_32+0x32/0x80
[  206.037420][ T9610]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  206.039577][ T9610] 
[  206.039577][ T9610] -> #1 (sk_lock-AF_INET){+.+.}-{0:0}:
[  206.041975][ T9610]        lock_sock_nested+0x41/0xf0
[  206.043608][ T9610]        sockopt_lock_sock+0x54/0x70
[  206.045271][ T9610]        do_ip_setsockopt+0xfe/0x3240
[  206.047114][ T9610]        ip_setsockopt+0x59/0xf0
[  206.049191][ T9610]        udp_setsockopt+0x7d/0xd0
[  206.051293][ T9610]        do_sock_setsockopt+0x221/0x470
[  206.053264][ T9610]        __sys_setsockopt+0x1a0/0x230
[  206.055009][ T9610]        __ia32_sys_setsockopt+0xbc/0x160
[  206.056838][ T9610]        __do_fast_syscall_32+0x73/0x120
[  206.058606][ T9610]        do_fast_syscall_32+0x32/0x80
[  206.060302][ T9610]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  206.062432][ T9610] 
[  206.062432][ T9610] -> #0 (rtnl_mutex){+.+.}-{4:4}:
[  206.064704][ T9610]        __lock_acquire+0x1173/0x1ba0
[  206.066381][ T9610]        lock_acquire+0x179/0x350
[  206.068513][ T9610]        __mutex_lock+0x199/0xb90
[  206.070558][ T9610]        start_sync_thread+0x120/0x28b0
[  206.072487][ T9610]        do_ip_vs_set_ctl+0x451/0x11d0
[  206.074151][ T9610]        nf_setsockopt+0x8a/0xf0
[  206.075666][ T9610]        ip_setsockopt+0xcb/0xf0
[  206.077265][ T9610]        tcp_setsockopt+0xa4/0x100
[  206.078879][ T9610]        smc_setsockopt+0x1b3/0xa00
[  206.080463][ T9610]        do_sock_setsockopt+0x221/0x470
[  206.082191][ T9610]        __sys_setsockopt+0x1a0/0x230
[  206.083907][ T9610]        __ia32_sys_setsockopt+0xbc/0x160
[  206.085691][ T9610]        __do_fast_syscall_32+0x73/0x120
[  206.087482][ T9610]        do_fast_syscall_32+0x32/0x80
[  206.089148][ T9610]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  206.091243][ T9610] 
[  206.091243][ T9610] other info that might help us debug this:
[  206.091243][ T9610] 
[  206.094381][ T9610] Chain exists of:
[  206.094381][ T9610]   rtnl_mutex --> sk_lock-AF_INET --> &smc->clcsock_release_lock
[  206.094381][ T9610] 
[  206.098949][ T9610]  Possible unsafe locking scenario:
[  206.098949][ T9610] 
[  206.101371][ T9610]        CPU0                    CPU1
[  206.103083][ T9610]        ----                    ----
[  206.104772][ T9610]   lock(&smc->clcsock_release_lock);
[  206.106479][ T9610]                                lock(sk_lock-AF_INET);
[  206.107423][ T9619] lo speed is unknown, defaulting to 1000
[  206.108643][ T9610]                                lock(&smc->clcsock_release_lock);
[  206.108654][ T9610]   lock(rtnl_mutex);
[  206.108661][ T9610] 
[  206.108661][ T9610]  *** DEADLOCK ***
[  206.108661][ T9610] 
[  206.108664][ T9610] 1 lock held by syz.1.911/9610:
[  206.108671][ T9610]  #0: ffff88806b25e6a8 (&smc->clcsock_release_lock){+.+.}-{4:4}, at: smc_setsockopt+0x100/0xa00
[  206.122295][ T9610] 
[  206.122295][ T9610] stack backtrace:
[  206.124294][ T9610] CPU: 3 UID: 0 PID: 9610 Comm: syz.1.911 Not tainted 6.15.0-rc2-syzkaller-00087-gcfb2e2c57aef #0 PREEMPT(full) 
[  206.124319][ T9610] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  206.124330][ T9610] Call Trace:
[  206.124337][ T9610]  <TASK>
[  206.124344][ T9610]  dump_stack_lvl+0x116/0x1f0
[  206.124373][ T9610]  print_circular_bug+0x275/0x350
[  206.124401][ T9610]  check_noncircular+0x14c/0x170
[  206.124431][ T9610]  __lock_acquire+0x1173/0x1ba0
[  206.124451][ T9610]  lock_acquire+0x179/0x350
[  206.124465][ T9610]  ? start_sync_thread+0x120/0x28b0
[  206.124489][ T9610]  ? __pfx___might_resched+0x10/0x10
[  206.124512][ T9610]  ? __phys_addr+0xc6/0x150
[  206.124539][ T9610]  __mutex_lock+0x199/0xb90
[  206.124563][ T9610]  ? start_sync_thread+0x120/0x28b0
[  206.124586][ T9610]  ? start_sync_thread+0x120/0x28b0
[  206.124606][ T9610]  ? __pfx___mutex_lock+0x10/0x10
[  206.124630][ T9610]  ? find_held_lock+0x2b/0x80
[  206.124651][ T9610]  ? bpf_trace_run4+0x2be/0x5a0
[  206.124669][ T9610]  ? start_sync_thread+0x120/0x28b0
[  206.124689][ T9610]  ? rtnl_lock+0x9/0x20
[  206.124703][ T9610]  start_sync_thread+0x120/0x28b0
[  206.124726][ T9610]  ? __lock_acquire+0xaa4/0x1ba0
[  206.124742][ T9610]  ? __pfx_start_sync_thread+0x10/0x10
[  206.124767][ T9610]  ? find_held_lock+0x2b/0x80
[  206.124787][ T9610]  ? __might_fault+0xe3/0x190
[  206.124812][ T9610]  ? __might_fault+0xe3/0x190
[  206.124834][ T9610]  ? __might_fault+0x13b/0x190
[  206.124860][ T9610]  ? read_word_at_a_time+0xe/0x20
[  206.124877][ T9610]  ? do_ip_vs_set_ctl+0x451/0x11d0
[  206.124890][ T9610]  do_ip_vs_set_ctl+0x451/0x11d0
[  206.124903][ T9610]  ? __lock_acquire+0xaa4/0x1ba0
[  206.124920][ T9610]  ? __mutex_trylock_common+0x90/0x250
[  206.124935][ T9610]  ? __pfx_do_ip_vs_set_ctl+0x10/0x10
[  206.124950][ T9610]  ? __pfx___mutex_trylock_common+0x10/0x10
[  206.124967][ T9610]  ? __pfx___might_resched+0x10/0x10
[  206.124991][ T9610]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  206.125018][ T9610]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  206.125050][ T9610]  ? nf_setsockopt+0x8a/0xf0
[  206.125072][ T9610]  nf_setsockopt+0x8a/0xf0
[  206.125093][ T9610]  ip_setsockopt+0xcb/0xf0
[  206.125110][ T9610]  tcp_setsockopt+0xa4/0x100
[  206.125129][ T9610]  smc_setsockopt+0x1b3/0xa00
[  206.125147][ T9610]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  206.125174][ T9610]  ? __pfx_smc_setsockopt+0x10/0x10
[  206.125192][ T9610]  ? errseq_sample+0x53/0x70
[  206.125222][ T9610]  ? __pfx_smc_setsockopt+0x10/0x10
[  206.125239][ T9610]  do_sock_setsockopt+0x221/0x470
[  206.125265][ T9610]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  206.125297][ T9610]  __sys_setsockopt+0x1a0/0x230
[  206.125319][ T9610]  __ia32_sys_setsockopt+0xbc/0x160
[  206.125339][ T9610]  ? lockdep_hardirqs_on+0x7c/0x110
[  206.125360][ T9610]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  206.125382][ T9610]  __do_fast_syscall_32+0x73/0x120
[  206.125407][ T9610]  do_fast_syscall_32+0x32/0x80
[  206.125432][ T9610]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  206.125453][ T9610] RIP: 0023:0xf7f43579
[  206.125466][ T9610] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  206.125483][ T9610] RSP: 002b:00000000f504555c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  206.125500][ T9610] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000000000
[  206.125511][ T9610] RDX: 000000000000048b RSI: 00000000800003c0 RDI: 0000000000000018
[  206.125523][ T9610] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  206.125534][ T9610] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  206.125544][ T9610] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  206.125561][ T9610]  </TASK>
[  206.324325][ T9626] netlink: 8 bytes leftover after parsing attributes in process `syz.3.917'.
[  208.762887][ T1242] unregister_netdevice: waiting for batadv0 to become free. Usage count = 3

VM DIAGNOSIS:
19:01:13  Registers:
info registers vcpu 0

CPU#0
RAX=00000000005fa62c RBX=0000000000000000 RCX=ffffffff8b703439 RDX=ffffed10056465be
RSI=ffffffff8bf45080 RDI=ffffffff8191a751 RBP=fffffbfff1c12ee8 RSP=ffffffff8e007e10
R8 =0000000000000000 R9 =ffffed10056465bd R10=ffff88802b232deb R11=0000000000000001
R12=0000000000000000 R13=ffffffff8e097740 R14=ffffffff90868110 R15=0000000000000000
RIP=ffffffff8b701ccf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002fa09ffc CR3=000000006c0e2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000001 Opmask01=0000000000800000 Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd786feef0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a 0a0a0a0a0a0a0a0a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2874696475612036 3233313d65707974 203a746964756120 5d30345420202000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2274636475612036 3233313765707374 2030746364756120 5730345420202000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 205b5d3837362033 31200000306e303d 203a312d20203735 33205d3536542020
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2051203137202033 3120000022353037 203a312d20203720 3320223030302020
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 376269786b2a3337 6d63792a2878657e 7f696f726f277073 792528376f726f2a
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a5157323d3c3839 3e240a003a723a37 6f6e65692a333d3f 393e6c3d6c723a37
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000000006a9c04 RBX=0000000000000001 RCX=ffffffff8b703439 RDX=ffffed10056665be
RSI=ffffffff8bf45080 RDI=ffffffff8191a751 RBP=ffffed1003b55488 RSP=ffffc9000046fdf8
R8 =0000000000000000 R9 =ffffed10056665bd R10=ffff88802b332deb R11=0000000000000001
R12=0000000000000001 R13=ffff88801daaa440 R14=ffffffff90868110 R15=0000000000000000
RIP=ffffffff8b701ccf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880978b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080001000 CR3=00000000263f4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000289b4c RBX=0000000000000002 RCX=ffffffff8b703439 RDX=ffffed10056865be
RSI=ffffffff8bf45080 RDI=ffffffff8191a751 RBP=ffffed1003b55910 RSP=ffffc9000047fdf8
R8 =0000000000000000 R9 =ffffed10056865bd R10=ffff88802b432deb R11=ffffffff9adf1cc0
R12=0000000000000002 R13=ffff88801daac880 R14=ffffffff90868110 R15=0000000000000000
RIP=ffffffff8b701ccf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c2e1fa5 CR3=000000006d1f4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000037 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854bdb65 RDI=ffffffff9ae12b40 RBP=ffffffff9ae12b00 RSP=ffffc90007f46f28
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000037 R14=ffffffff9ae12b00 R15=ffffffff854bdb00
RIP=ffffffff854bdb8f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097ab9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000005789b4c0 CR3=0000000012036000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000