last executing test programs:

6m10.467397078s ago: executing program 2 (id=1032):
syz_open_dev$sndpcmc(&(0x7f0000000000), 0x1, 0x800)
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000480)='./file0/file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="66393beb1b01541117d809032a03d9ad357315b176", @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYRES64=0x0, @ANYRESDEC=0x0])
openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x42, 0x0)
r1 = openat$cuse(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
read$FUSE(r1, &(0x7f0000008280)={0x2020, 0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000006280)="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", 0x2037, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={0x90, 0xffffffffffffffda, 0xfffffffffffffffd, {0x4, 0x8000000000, 0x3, 0x9, 0x10000, 0x80, {0xfffffffffffffffd, 0x80000000000, 0x3, 0xb, 0x10, 0xdbf, 0x8, 0x0, 0x7, 0xa000, 0x6f, r3}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000380)={0x50, 0x0, r2, {0x7, 0x27, 0x0, 0x801001a, 0x66d, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x40}}, 0x50)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00')
lseek(r4, 0xffffffffffffffff, 0x1)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r6 = syz_open_dev$video(&(0x7f0000000040), 0x3f9, 0x141842)
ioctl$VIDIOC_DQEVENT(r6, 0x80885659, 0x0)
ioctl$TCSETS(r5, 0x40045431, &(0x7f0000000dc0)={0x0, 0x7fffffff, 0x372, 0x0, 0x19, "40b80000000000000000001c00"})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
mq_open(&(0x7f00000000c0), 0x80, 0x2, &(0x7f0000000240)={0x0, 0x5, 0x2, 0x5})
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0xffffffff, 0x0, 0xb49, 0x9, 0x8000000000000001, 0x0, 0x3}, 0x0)
r8 = socket(0x15, 0x80000, 0x2)
ioprio_set$pid(0x2, 0x0, 0x0)
r9 = memfd_create(&(0x7f0000000700)='v\xa6\xf5hj6,r\xaf\xe8\x10/\xecg\xed\xe3h\x80\xb8!\x10\x00\x00\x00\xdd\xb9\nR\xe8@\x99\xb9\x8a\x0fZ\t\x90\x8bp\x10\x84\x86t\x8a\xba\xc6\xfb\xd2\f\xef&\xad\xa8M\xe8\b\xb0#\xac)\x81\x1e\x8a\f\x11D\x90\xf5\xbb\x1c\xac\xc7\xad\xdc\\\x11\x95\xf8\xe6\xa7\xc3\xbc\x18+\x92\x92N\a\xa7\x7fN\x9bL\xf8\xebQs\x02\xf9\xadi\x8f\x0f\xff\x02n\x9d\x85\xea\x1a*\x1bC\xd8\x1c\xe8\x9bYSp\xa5\xfd\ny\xdfS\xdbU\xf8l\xb5b\x83\x00\x00\x00\x00\xfc\x83\x18\xe46\x8a\x029\x19\x8fjC\xce\xa7S\x81\xd5\xda\x84\xdf\xe3A_\x05XCk\x1d\x1cC\x97r\x93\xd6t\x81b\xc7x\xab\xa2\xf0\av\x88\x01\x92\xeaF\xa9!\xfc\x1c\xbf7q\xcf\xed&\x96\xa6\x1c_\xff\xb4\x00X\x1b\xedw\xc1\x00\x00\x00\x00\xe0T\x1f\xbc\x85\xd1Z\xa9\x01Z\xc2\xb0\f\x9a\x16\xa50\xf74\x88\xeez@)&\xb5\a\xc1\v\xe7\xdf\x80\xe4\x9c\xf5f\x94jC\xb1\xcfh\xc5g\x02\xc6 U\xe5\xcea\x88\xee\x0f\xf57*\xc6\xe8iWTav\xff\xd9\xb0C\x1e\xbe\x97\xc8$-\x8d)\xe8\\\x8e;I\xde\x8a\x8e\x0fq\x06\xee\xb9\xc1\xf1)\xa0\xd9T\xec\x8b\x85I\x87OZ\xd8\"4\x87\xb1\xed?:\x84S\xb9\xbf\xab#\xd0N\x8f\x1ey7\x9286p\x10uZ\xf0\xd7\xe5\xba\xe7~\xfb\x8b\xce+fL\x11\x8e\xec\xe3\x90w\f\xf1~\x9a\x95v6\xe5O9\xae\r\xed\xac\xb8\t\x8eD#\x8a\x93\xd0\xa7\x12F\t\x03\xa4\x8f*\x1a\x88\xffq\xf9\x03\xca\x97\x98\\\xcaN\x18\xce\x8a\xf3]\\<\x00\x97\x1a\xf6\xfbs\xe6A/\x1c\xe0\xdb\xad\xe7\x16K:6\x0fo\x9f\xe3\x9f\xd91\x10\xd6qoz\xcc\xee?PvF\xde\xf5&o)c\xb4\f*\x0e\xb9\x85\x95\x01\xf0`g\xb7\x03\b\xc41\x90\xa6\xafB\x1b]\x02U\xcb\\\x1fiR\xb7v\xddF\xa59P\xb9\x10\xab\x1c\x05$\xd3P\xba\x83\x1b\xb7\xb3\xf4_\xe1z\x95\x03J3\xf8\x8c;J\xad=\x0f\x98', 0x1)
write(r9, &(0x7f0000002140)='ic', 0xfffffffffffffd02)
r10 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0)
ppoll(&(0x7f00000000c0)=[{r10}], 0x1, 0x0, 0x0, 0x0)
write$vga_arbiter(r10, &(0x7f0000000040)=ANY=[@ANYBLOB='lock io+m%l\x00'], 0xc)
write$vga_arbiter(r10, &(0x7f0000000440)=ANY=[@ANYBLOB='un|ock io+mem\x00'], 0xe)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4, 0x11, r9, 0x0)
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000280)='./file0/file0\x00', &(0x7f00000002c0)='ecryptfs\x00', 0x42040, &(0x7f0000000300)=':-%\x00')
fsetxattr(r7, &(0x7f0000000180)=@known='trusted.overlay.upper\x00', 0x0, 0x0, 0x1)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r8, &(0x7f0000000200)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[], 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)

6m9.316526529s ago: executing program 2 (id=1039):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet_smc(0x2b, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0xc01, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20000080}, 0x8050)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IPT_SO_GET_REVISION_MATCH(r4, 0x0, 0x42, &(0x7f0000000040)={'TPROXY\x00'}, &(0x7f0000000140)=0x1e)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000003280)={0x0, 0x0, &(0x7f0000003240)={&(0x7f00000031c0)=ANY=[@ANYBLOB="58000000020601040000e0000000000005000003140007800500140080ff00000800084000000018050001000700000005000400040000000900020073797a300000000005000500020000000c000300686173683a6970"], 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x40)
r6 = socket$inet6(0xa, 0x80002, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000140)={0x0, 0x2000, &(0x7f0000001ac0)={&(0x7f0000000000)={0x20, 0x2e, 0x1, 0xf0bd26, 0x25dfdbfc, {0x4}, [@typed={0xc, 0xc, 0x0, 0x0, @u64=0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x4c0d9}, 0x20000000)
connect$inet6(r6, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @mcast2, 0x5}, 0x1c)
setsockopt$sock_linger(r6, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
preadv(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000180)=""/82, 0x52}], 0x1, 0xd651, 0x72b)
write$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000)={'nicvf0', 0x32, 0x30}, 0x9)
unshare(0x28040600)

6m8.306932533s ago: executing program 2 (id=1044):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.dequeue\x00', 0x26e1, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$unix(0x1, 0x2, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x4c, r3, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x60}, @val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x28, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}]}, 0x28}}, 0x0)
close(0xffffffffffffffff)
socket$inet_sctp(0x2, 0x1, 0x84)
r8 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r8, &(0x7f0000000080)={0x0, 0x1, 0x3, 0x1}, 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x1000089}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r9 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x8081)
writev(r9, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
userfaultfd(0x801)
r10 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r10, 0x84, 0xc, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r10, 0x84, 0x6f, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r10, 0x84, 0x6d, &(0x7f0000000a80), &(0x7f0000000180)=0x8)

6m7.450481223s ago: executing program 2 (id=1048):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@local})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f0000000540)={{@hyper, 0x2}, @hyper, 0x0, 0x0, 0x5e})
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000240)={@hyper})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r1, 0x7a8, &(0x7f0000000540)={{@hyper, 0xf0}, @my=0x1, 0x0, 0x0, 0x5e, 0xfffffffffffffff9})
close(0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r5 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r5, r5)
r6 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETTXFILTER(r6, 0x400454ca, &(0x7f0000000100)=ANY=[@ANYBLOB="2e2e000c371303ed6a33fe86890df2"])

6m5.668156223s ago: executing program 2 (id=1052):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet_smc(0x2b, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0xc01, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20000080}, 0x8050)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IPT_SO_GET_REVISION_MATCH(r4, 0x0, 0x42, &(0x7f0000000040)={'TPROXY\x00'}, &(0x7f0000000140)=0x1e)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000003280)={0x0, 0x0, &(0x7f0000003240)={&(0x7f00000031c0)=ANY=[@ANYBLOB="58000000020601040000e0000000000005000003140007800500140080ff00000800084000000018050001000700000005000400040000000900020073797a300000000005000500020000000c000300686173683a6970"], 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x40)
r6 = socket$inet6(0xa, 0x80002, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000140)={0x0, 0x2000, &(0x7f0000001ac0)={&(0x7f0000000000)={0x20, 0x2e, 0x1, 0xf0bd26, 0x25dfdbfc, {0x4}, [@typed={0xc, 0xc, 0x0, 0x0, @u64=0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x4c0d9}, 0x20000000)
connect$inet6(r6, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @mcast2, 0x5}, 0x1c)
setsockopt$sock_linger(r6, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
preadv(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f0000000180)=""/82, 0x52}], 0x1, 0xd651, 0x72b)
write$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000)={'nicvf0', 0x32, 0x30}, 0x9)
unshare(0x28040600)

6m5.138676116s ago: executing program 2 (id=1054):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8b36, &(0x7f0000000000)={'wlan0\x00'})
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[], 0x64}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010000d0423bd7000fcdbff2500000000", @ANYRES32=0x0, @ANYBLOB="1000000000000000240012800b00010062726964676500001400028008000a0006"], 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_WOL_SET(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="84000000", @ANYRES16=r3, @ANYBLOB="00022abd7000fddbdf7461703000000000000000000014000200766c616e30000000000000000000000008000300d4652a243a0003002e179bd39679d4ad710733d4327b25d358bc52294057271d0a1de5cb7a8fe202c8d0dbbecbd9674696a73420790e55af9694dfe7466300"/126], 0x84}, 0x1, 0x0, 0x0, 0x20008050}, 0x880)
sendmsg$NL80211_CMD_NEW_MPATH(r1, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4040889}, 0x40)
ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000040))

6m5.078883529s ago: executing program 32 (id=1054):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8b36, &(0x7f0000000000)={'wlan0\x00'})
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[], 0x64}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010000d0423bd7000fcdbff2500000000", @ANYRES32=0x0, @ANYBLOB="1000000000000000240012800b00010062726964676500001400028008000a0006"], 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_WOL_SET(r2, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="84000000", @ANYRES16=r3, @ANYBLOB="00022abd7000fddbdf7461703000000000000000000014000200766c616e30000000000000000000000008000300d4652a243a0003002e179bd39679d4ad710733d4327b25d358bc52294057271d0a1de5cb7a8fe202c8d0dbbecbd9674696a73420790e55af9694dfe7466300"/126], 0x84}, 0x1, 0x0, 0x0, 0x20008050}, 0x880)
sendmsg$NL80211_CMD_NEW_MPATH(r1, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4040889}, 0x40)
ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000040))

16.146953099s ago: executing program 3 (id=2604):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x5c, 0x2, 0x6, 0x801, 0x0, 0x1f000000, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x10}]}]}, 0x5c}}, 0x0)

16.034931934s ago: executing program 3 (id=2605):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet_smc(0x2b, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0xc01, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20000080}, 0x8050)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IPT_SO_GET_REVISION_MATCH(r4, 0x0, 0x42, &(0x7f0000000040)={'TPROXY\x00'}, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000003280)={0x0, 0x0, &(0x7f0000003240)={&(0x7f00000031c0)=ANY=[@ANYBLOB="58000000020601040000e0000000000005000003140007800500140080ff00000800084000000018050001000700000005000400040000000900020073797a300000"], 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x40)
r6 = socket$inet6(0xa, 0x80002, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000140)={0x0, 0x2000, &(0x7f0000001ac0)={&(0x7f0000000000)={0x20, 0x2e, 0x1, 0xf0bd26, 0x25dfdbfc, {0x4}, [@typed={0xc, 0xc, 0x0, 0x0, @u64=0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x4c0d9}, 0x20000000)
connect$inet6(r6, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @mcast2, 0x5}, 0x1c)
setsockopt$sock_linger(r6, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/timer_list\x00', 0x0, 0x0)
preadv(r8, &(0x7f0000000440)=[{&(0x7f0000000180)=""/82, 0x52}], 0x1, 0xd651, 0x72b)
write$cgroup_netprio_ifpriomap(r8, &(0x7f0000000000)={'nicvf0', 0x32, 0x30}, 0x9)
unshare(0x28040600)

5.532317774s ago: executing program 3 (id=2612):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000003c0)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
madvise(&(0x7f0000ff8000/0x8000)=nil, 0x8000, 0x9)
r1 = socket(0x840000000002, 0x3, 0xff)
sendmmsg$inet(r1, 0x0, 0x0, 0x4004040)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, 0x0, 0x4040080)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mmap(&(0x7f0000400000/0x3000)=nil, 0x3000, 0x2000009, 0x4d032, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x672, 0x200)
ioctl$EVIOCGMTSLOTS(r4, 0x8040450a, &(0x7f0000000640)=""/236)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
madvise(&(0x7f0000400000/0x3000)=nil, 0x3000, 0xb)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f00000004c0)={'vcan0\x00', <r6=>0x0})
connect$can_bcm(r5, &(0x7f00000000c0)={0x1d, r6}, 0x10)
sendmsg$can_bcm(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB="0100000040fc51c64400000000000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="0000000001"], 0x80}}, 0x0)
sendmsg$can_bcm(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="0100"/16, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="0000000001"], 0x48}}, 0x0)
r7 = syz_open_dev$dri(&(0x7f0000002580), 0x200, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r7, 0xc06864a2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, "427f4d0561864078b7f952fc7ebbfea1deee063e520cc38c6a002000"}})
read(0xffffffffffffffff, 0x0, 0x0)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r8, 0xffffffffffffffff, 0x0)

4.482741206s ago: executing program 4 (id=2617):
socket$inet6(0xa, 0x2, 0x0)
timerfd_create(0x1, 0x80000)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x844}, 0x4005)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x4000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000000)=[{0x0, 0x0, 0x7ffdd000, 0x8000}], 0x320000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c8)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x621c2, 0x0)
ftruncate(r3, 0x8800000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x207)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
setxattr$security_capability(&(0x7f0000000080)='./file0/file1\x00', &(0x7f00000001c0), 0x0, 0x0, 0x3)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x8, 0x3, 0x214, 0xf0, 0x11, 0x148, 0xf0, 0x0, 0x180, 0x2a8, 0x2a8, 0x180, 0x2a8, 0x3, 0x0, {[{{@ip={@broadcast, @multicast2, 0x0, 0xff000000, 'wg1\x00', 'dvmrp0\x00', {}, {}, 0x67, 0x3, 0x2}, 0x0, 0xd0, 0xf0, 0x0, {}, [@common=@ttl={{0x24}, {0x0, 0x9}}, @common=@unspec=@limit={{0x3c}, {0x10001, 0x2, 0xa, 0x8, 0x5, 0x4}}]}, @unspec=@TRACE={0x20}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @empty, 0x0, 0xffffffff, 'macvtap0\x00', 'netdevsim0\x00'}, 0x0, 0x70, 0x90}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x270)
r5 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000000)=@usbdevfs_driver={0x0, 0xfffffff7, 0x0})
r6 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000440)=@req={0x401, 0xfffffffe, 0x0, 0xffffffff}, 0x10)
close(r6)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0xfffffffd, @local, 0x2}, 0x1c)

4.482329731s ago: executing program 3 (id=2618):
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, 0x0)
r0 = openat$sndseq(0xffffff9c, &(0x7f0000000280), 0x42fe01)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2800, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040), 0x111, 0x4}}, 0xfffffffffffffdda)
syz_io_uring_setup(0x121d, &(0x7f0000000500)={0x0, 0x6d10, 0x10, 0x3, 0x1000034e}, &(0x7f0000000600)=<r2=>0x0, &(0x7f0000000580)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f00000005c0)=0xfffffffc, 0x0, 0x4)
r4 = socket(0x2a, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1342, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000480)={'vcan0\x00'})
setsockopt$sock_int(r5, 0x1, 0x6, &(0x7f00000000c0)=0xfffffffb, 0x4)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi5\x00', 0x600200, 0x0)
r8 = socket(0x15, 0x5, 0x0)
getsockopt(r8, 0x200000000114, 0x2710, &(0x7f0000000600)=""/102389, &(0x7f0000000000)=0x18ff5)
getsockname$packet(r4, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x23457})
ioctl$SNDRV_SEQ_IOCTL_PVERSION(r0, 0x80045300, &(0x7f0000000240))

3.664191104s ago: executing program 4 (id=2621):
r0 = open(0x0, 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x8000003d)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x8d40, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x82401, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x101121)
r2 = dup(r1)
mount(&(0x7f0000000080)=@nullb, &(0x7f00000003c0)='./cgroup\x00', &(0x7f0000000240)='vxfs\x00', 0xa08410, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x1c54, &(0x7f0000000300)={0x0, 0xd612, 0x10000, 0x2, 0x3f, 0x0, r2}, &(0x7f0000000180)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r1})
io_uring_enter(r3, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

3.588257988s ago: executing program 3 (id=2624):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x20800000000, 0xb, &(0x7f0000006680))
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000100), &(0x7f0000000140)=0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
sendto$inet6(r0, &(0x7f0000000040)="9e4aa4c0", 0x4, 0x41, &(0x7f0000000180)={0xa, 0x4e23, 0x8001, @loopback, 0xe}, 0x1c)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f00000003c0)={@loopback={0xff00000000000000}, 0x800, 0x0, 0x2, 0x3, 0x3, 0xffff}, 0x20)
openat$comedi(0xffffffffffffff9c, 0x0, 0x400, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom0\x00', 0x0, 0x0)
r5 = accept4$inet(0xffffffffffffffff, &(0x7f0000000780)={0x2, 0x0, @loopback}, &(0x7f00000007c0)=0x10, 0x80000)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000044c0)={0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000880)={0x1234, 0x1d, 0x100, 0x70bd25, 0x25dfdbfe, "", [@typed={0x8, 0x11f, 0x0, 0x0, @u32=0x1}, @typed={0x8, 0xf8, 0x0, 0x0, @pid}, @nested={0x121, 0x31, 0x0, 0x1, [@typed={0x8, 0xb6, 0x0, 0x0, @uid}, @nested={0x4, 0x94}, @typed={0x8, 0x4d, 0x0, 0x0, @ipv4=@multicast2}, @generic="e0eb98b54c59b07f4861104e247cc8e9e3571324388770780815468038ad7472a01d579ee3a000a38dc00ca4aa2c5a8d82ed811b8c974620b796ceb8b3b54448ad0295a44d1d72d802ecaabdac30e2a31ebf29394bfbfd47c238818e35dd5a796b78a50b5c4232606be5fe7559964d3a2b67742760fa062a06b709b24986e74a45fa", @nested={0x4, 0x13e}, @generic="928d863ea6b2f14c74ffc98dbb89b49598e1ecd381aec64cc1699d6a626c999c460a60707685a2ea5924f34b3c6b658cb79962419190b27dfb63f6fe6668fc18fcc833424d24785ece0c38f566c0b6a3f48cabdbfa0378db65d7902efbc0ff311a0c593c24017c035f76afb75a74f4ec48f0b1b833bf689bd044f829830b1d", @nested={0x4, 0x7b}]}, @generic="c397f870f792fa477ca65ec1d009dd5ec563ab74800dc9467dea816f4b5f356f8b0b3ec8b2705f5d00ac1129080189567f4a0ddbeb909a20b5886e53591f5107e9cdb4929ee8f5108a6b7aa9b9d35b140af736222d66e18b648648e2ad8a4b18b2df9b125e094fda6c691beb63c6b7e849f2f5be906f815338b56b03d6302ae552aa680387b27a88480d3a6ae39956ec036f96bbef811c6964039854c9953bbedaa49f8809e83d46c24de57a020278846f85e19c0819b3062dfd4ee91c84bc88d209333a8528e0000ac3804cadc25e25844a8dd3c77df834dae31c985752c57e08ffe37fb66c59eafc0c3b", @nested={0x1004, 0x2e, 0x0, 0x1, [@generic="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"]}]}, 0x1234}, {&(0x7f0000001ac0)={0x454, 0x1a, 0x400, 0x70bd29, 0x25dfdbfb, "", [@generic="cc24ca17bb7a1996e048a0bfbece3b6b96f17acb0300d9cb72bc9118d0faaace7e243ee966eacb9df81e270fc32f67ad245c6038869911c8885d140c40d2bb5a398a054d989478a7b237155bf13bc68401c71f3461801d4431efa93fe329ca043e1f5ce1fb72b57527fe2b04ceb6d66c5f5f8502d2b4d23f49776b1498fc9cd7065403bb6642ca1f5b0bbddfb42de8bc6f9eb56b6aa5c99ab717f69245528f6bdb7bbdcca866b51235e157cf14fb2628c3011c80243c86f599f87ac06786cf7131cc392d02fbdc6d8f3197e333343ce8c93699dc6889e93078291bfddfc765635e3f9ed3ade981a44bfbe6b9cde868175c396ece", @typed={0x8, 0x14c, 0x0, 0x0, @fd=r1}, @typed={0xc, 0xf3, 0x0, 0x0, @u64=0x55454c31}, @generic="ed89a3c51f9e58a86b49252e76b7184e8429706564f231d6410ffeb2df8dd4545d7b74486b8e0b9a88becdef177ef07de541be707cf5e6486aded08dd832d58cbbf1006af1f01ef8ba3d1f36566fde28de30ac7e183fb5daf5f2023157df1e122117db6e70ea700a2fbb627e459eda65416baa7dce299cb485088c57c3728603d483d0ba745e1d05a4a051593c8a22d42ead88", @nested={0x15b, 0x129, 0x0, 0x1, [@typed={0x8, 0x138, 0x0, 0x0, @pid}, @generic="c70f789e19ddb7abd195055b51f1633b6f9214af311b", @typed={0x8, 0x8f, 0x0, 0x0, @pid}, @generic="aed29edd830b12dde6aed14ba85f01c0c2893ec52132ce55e752a0f87e0843f8e076e3bc819e371265f6c69baa9fab5f5cb23da0bffe04e4f7666e20d3944a8a2c6c01e26be9fbba16eaa81200f6f8d8db7afc3c7e9e40e0bea02a75072dd5517e8992cc4ba890c8cc2a07a3b3e6a5142705b7592eea4c1a80330afb87e1f40f4955bc3b7d526725bd968a2b3461b858778c4428adc307994b13430283d007148545cacbe0005f2fb9d6163a574525526abf2338e77da5cab14f91a8e21543b4e55dc0527c07dfe93f3aa8ed88e27066df2c1bf2bf3949c6", @nested={0x4, 0x12}, @typed={0x14, 0x56, 0x0, 0x0, @ipv6=@remote}, @generic="b22cf823fbff34f7d328f4fee2a7b697ac77f1f6911308e8c3fb3d1230de7b57b8fc5e8afacc32612cea29dae57734f0d8c1a6f5d4ed25060c7346914c9f9c8e01"]}, @nested={0xdc, 0xda, 0x0, 0x1, [@nested={0x4, 0x7b}, @generic="8bd73321e98ca2c0608520693e3f6d2e13c0ad3e939d2effca64a94a9ae9179d66d4675eb8e4a9f72098276484a3fa9ea298c81ca85966df8743d3f5793a46da33388f865b14056953129265d68fccf902a3b50acba3f36114", @nested={0x4, 0x12a}, @typed={0x8, 0xe7, 0x0, 0x0, @pid}, @typed={0xc, 0xe6, 0x0, 0x0, @u64}, @generic="5c5634cf8c38bff7", @generic="b8cbe4bceb57e704a9c06b4784a221cfbc630663a285b27338429235ce5015477342345d6a4572f46294adae9537edaa1be43bd9a0f84b71784750331122ccbfbee6de55fc4137101686061f74764907ce8ad9ab2413f7", @nested={0x4, 0x68}]}, @generic="b3ad5d379e6e6cf20d4fe05c97ac44cc29a830e3f68ee1271cc72788466ba765a739f32d0fb134747491d5e505f8bde5d238cc592156f592186757c0609ad614f12bcd4fb501e108a0a78b6268b0f134444f1c5c40a9cd4b0029794b3b09", @typed={0x10, 0x78, 0x0, 0x0, @str='/dev/nullb0\x00'}]}, 0x454}, {&(0x7f0000001f40)={0x3d0, 0x28, 0x20, 0x70bd29, 0x25dfdbfc, "", [@generic="0f4bbaf7a12a859c5743df69cc8cb212cdbc9d48c604babc7eb6dc3df96af597eec81dd32d404b9b54c0cf5279ce269abcf6468b652b278f2d7710e44d74f4688d2ecc626a0fb8cf4a6673ad42e93a414913413dc8ef3ecd2e7b49881c5758ee64ba7e49f1439f2a9acf0880ff901fa18e57f803b28b2f007cad7ae4a8f830145aebba8ca2bc5ba3287882f60f3b5f3eaacf4358edad679fd74a4bb7cc9118776b88fef12f8d4fa98d2954a96752a668c99ebd7ec58a48c697626a7901bafd38eb1f38118f2feae0a0a7b33a788b1a2e9ddbf3910c56625c53130ee2638dd4", @nested={0x97, 0x2a, 0x0, 0x1, [@typed={0x17, 0x8b, 0x0, 0x0, @str='./binderfs/custom0\x00'}, @typed={0xe, 0x54, 0x0, 0x0, @binary="d653bf23e1f82f5cfcc2"}, @typed={0x8, 0x13a, 0x0, 0x0, @u32=0xc5ce}, @nested={0x4, 0xf5}, @nested={0x4, 0x57}, @generic="97c25c092fcc97f0df9a2c24d494edc96e9247950f86609dd5210abd061c4d589e0fcee3bc39a3d717638bb22fa1b0d6585fe48189b2ce69bd3def762ecaf41e2a71712219c2d7862d2efcffca32d3189f245853a51dca3f9e84f0"]}, @nested={0x8, 0x8f, 0x0, 0x1, [@nested={0x4, 0xe}]}, @nested={0xc, 0x7c, 0x0, 0x1, [@typed={0x8, 0xbd, 0x0, 0x0, @uid}]}, @nested={0x101, 0xe7, 0x0, 0x1, [@typed={0x8, 0x151, 0x0, 0x0, @u32=0x2}, @typed={0x8, 0x91, 0x0, 0x0, @fd=r4}, @nested={0x4, 0x68}, @nested={0x4, 0x146}, @generic="4857d680fb21f73081044be6bd5744d7cdbee91fee7e7e247b9c544e0bf27c252b2951439fb52a4458d6f86c74c21ec108d45a30e96db7b0250caffbab88c41ad82609c104ea99d7e85e2ba2da0f7eab722725158d66dbad78379a26b7d256f3052bbdae8bcd332be7c6e59ba4ed45a8ecf74ab6ee17795ab59bb5f1883b395c8e35c39492d480aba7cc07a920a90ca3dc5eb2af5115460fa3f52eca68b10d2aae1e1205ee283a4c62385971680b2d25b6f85206192eb930b5504f394a20fe89205c4f59f892ceed83a42f4c4355f85343510378daa9f46b32baf645d049d0e4f92fe767a8"]}, @generic="f80cfd2de20c3a806005d071268098038fed1dd83ecfe0d25c5bae76085d716f6b659e739da0d5f993db9f4a6fb377138645fb02131b26ac97878e55c96f3269e666825d0423", @generic="9249425499023e4b12dc8cbd7f8799e478b0051a1a9e0e69f9e474e352eab638abe58a408a22d7b6bd09ad5a9e03337b78eabaeebb5b9b27fba30a53359897fe643e50231e5c7ec2e72d29c0e1c6eb255637e5c5aa16702ac4774610b04d58a48dc2317c6d99b5e2e37cfed788491fce8ad514316dc0d8b5e297c45ffcc41874b877fdc2947b5a8007661985b5e49f2aa139ac99a15cb72227383a6b1b74c03964c9f5e8cceb84f94a9b775f64c81d7c67a56d80ce717095863e5ba630fa6453223d63a203aebaba3668965208d20814c574b66ffdecbb88d27ff7a828fd", @typed={0xc, 0x3c, 0x0, 0x0, @u64=0x2}]}, 0x3d0}, {&(0x7f0000000580)={0x188, 0x2f, 0x100, 0x70bd2a, 0x25dfdbfd, "", [@generic="4e934182ffb5eac15a5799d0b995fab4", @typed={0x8, 0x13d, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @nested={0x8c, 0x10a, 0x0, 0x1, [@generic="2322f9f60e358b10a9a71978c8367d87db37b38f83a9fa16c8f38506ee32953bf6d5920ee70ad159121cb389921f37b90e5d8f269919da983c8ff1612770fead5fad3565838d6907e78f88398bca8bb972a341eba3e5897917fe6e4c0f067c009b8d421b946235574e405d6195c8a0de09530de4749db4d495a4a2573e54be17786f92adb51175fd"]}, @nested={0xca, 0x4, 0x0, 0x1, [@generic="db5c2023c6638e4c4b5bd922427fa46bc04c2605a8d10818057756aa68ccc0a5da1a8304b2cfdd59b33981d17d314d92121a55dd65defbac231af9379ab950955b3908f274dc721c8914a287cf271142f25a29bdd66d398348afad0ff654dbf10350f83837f6486a9134bd4552a413c982585c4f901015fca0c51faab04fc07e67f4f6102a777dec53d6666e80f6e31cab3861dbd012c46db92e206e86972802a9dfc30c00276ce509edf1ba431967243cb14ffa989ebbc6743229d797ef543ee8042ee33292"]}, @typed={0x8, 0xbd, 0x0, 0x0, @ipv4=@empty}]}, 0x188}, {&(0x7f0000004300)={0x188, 0x27, 0x300, 0x70bd2a, 0x25dfdbfb, "", [@generic="dde50344a7df22d24db31e700cf465cdddb7b8ca791f1f4235dd278adfe94330ea857b5cef1946c8786e4e3ee33c238dc5b0ba745db48d915e13cda02a2e4222d0b6e877ebb11b0383afdb1cc0842ba7886e1c75fd5c534416f33f5a0a2f7aef922868fc85970e2eaee3fb3dce166181fa84aae2198bc527c4adcfc24d587f738808fb27b1fc36d890746a664304478e308131589c64b28e4d6ba59f3ac5", @generic="d51b5842513bb57cf1f7d6847aa1bd6d77fe411929098f7c7746b7cae4a70f739f4c5d5925acfa46465dfc7919d44f975422cea524df4f92ab485bfac909473e5a6c66653b09d80afbc2051acaa22bc23eb7ffac31b1978bc1349c4ac3a9fe255712bdaf583b7a73f9a8d948122d74fd8a1a69c834482abadc3b57fbd6801f4080f9a36d5fa99959334c7499e66644cb78c896f0514e9d17b8ccb0d3acdd029618be9fe8fb69612603b624de7fed599b3f48962cfd26183f5bf67086ca496ea7dbea7900c437b0643ab9a3e9567ad5c9b46be7a0f157", @typed={0x4, 0xd0}]}, 0x188}], 0x5, &(0x7f0000000800)=ANY=[@ANYBLOB='\x00'/12, @ANYRES32=r0, @ANYBLOB="180000000100000001000000", @ANYRES32=r0, @ANYRES32=r5, @ANYRES32=r0], 0x28, 0x40000}, 0x40005)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x1)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$comedi(0xffffffffffffff9c, 0x0, 0x406402, 0x0)
syz_io_uring_setup(0x114, &(0x7f00000003c0)={0x0, 0xdc13, 0x20, 0x1, 0x800008b}, 0x0, 0x0)
r7 = openat$kvm(0x0, &(0x7f00000002c0), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r8, 0x4068aea3, &(0x7f00000000c0)={0x79, 0x0, 0x2})
ioctl$KVM_IRQFD(r8, 0x4020ae76, &(0x7f0000000080)={0xffffffffffffffff, 0x4})
r9 = dup(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x28011, r9, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x30241)
socket$unix(0x1, 0x2, 0x0)

2.609294167s ago: executing program 4 (id=2626):
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket(0x1d, 0x2, 0x6)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@RTM_NEWMDB={0x78, 0x55, 0x2e5, 0x70bd2c, 0x0, {}, [@MDBA_SET_ENTRY={0xd, 0x1, {0x0, 0x0, 0x0, 0xfe0f, {@ip4=@empty}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x0, 0x0, {@ip4=@rand_addr=0x3ff, 0x800}}}, @MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x0, 0x1, 0x0, {@ip4=@broadcast, 0x436e}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x44}, 0x20000100)
futex(0x0, 0x8, 0x1, &(0x7f0000000500), &(0x7f0000000540)=0x1, 0x2)
bind$can_j1939(r3, &(0x7f0000000040)={0x1d, 0x0, 0x8000000000000003}, 0x18)
prlimit64(r0, 0x4, &(0x7f00000001c0)={0x6, 0x6400}, &(0x7f0000000280))
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x1ff)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x8f0, &(0x7f0000002400)=<r7=>0x0)
io_submit(r7, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r6, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}])

2.399623411s ago: executing program 3 (id=2627):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002040)={0x18, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x3}, 0x94)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c09425, &(0x7f0000000380)={"b8e50a31a002b94fcd8fc4db3056309d", 0x0, 0x0, {0x7, 0x100}, {0xffffffffffffff7b, 0x5}, 0x51, [0x7, 0x33d, 0xe, 0x2, 0x9, 0x8, 0xd8e, 0x7fc0000, 0x5, 0x0, 0x6, 0x3, 0x5, 0x800000000049, 0x1, 0xc]})
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r1, 0x7a5, &(0x7f0000000180)={{@my=0x0}, 0x0, 0x1})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r1, 0x7a5, &(0x7f00000000c0)={{@my=0x0, 0x1000}, 0x1, 0x2, 0x80})
openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff7c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0xfffffffffffffeef, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f00000003c0)={@in={{0x2, 0x4e20, @multicast2}}, 0x0, 0x0, 0x3a, 0x0, "33d080577968b3107694c2858f48c27f17ef54caf822abcfad9399c494d846140482c7e40195d5f034a72c69ed7330f3000f530ff9525fad6b3db9851a4354d70cc3734d319f852c370cbc9e69c75987"}, 0xd8)
r6 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000000000008d804dd0000000000000109022400010000a01aa30e08090400fe01030001000921fffffd012205020905810308000300fded7064185a9f5912d6418870427c799228815d542382d51a871891af402dc82b91072408c2fcea3d5296b6bd6a6a7a0713c321911006eb4da26187"], 0x0)
syz_usb_control_io$hid(r6, 0x0, 0x0)
syz_usb_control_io(r6, 0x0, 0x0)
r7 = syz_open_dev$I2C(&(0x7f0000000100), 0x2, 0x1)
ioctl$I2C_SMBUS(r7, 0x720, &(0x7f0000000580)={0x0, 0xc, 0x1, 0x0})
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})

2.398395544s ago: executing program 0 (id=2628):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000002c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

2.244064878s ago: executing program 0 (id=2629):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$tun(r1, &(0x7f0000000600)=ANY=[], 0x32)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000340), 0x0, 0x0, 0x0, 0x0, r3}}, 0x3c)

2.073281672s ago: executing program 0 (id=2630):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
ioctl(r3, 0x8b2c, &(0x7f0000000040))
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000002c0)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000040))
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
r6 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x80, 0x2, 0x1f9}, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000300)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x5, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x4, r5, 0x0})
io_uring_enter(r6, 0x47f6, 0x0, 0x0, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

1.824546809s ago: executing program 1 (id=2631):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="18020000fcffffff0000000003000008850000002800000085000000a000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xe00, 0x9000000, 0x0, 0x0, 0x0, 0x0}, 0x48)

1.750059969s ago: executing program 1 (id=2632):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10) (async)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000140)='lp', 0x1d)
sendto$inet(r1, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0) (async)
recvfrom$inet(r1, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x14, 0x30, 0x1, 0x70bd27}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
r2 = getpid()
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
prlimit64(r2, 0x8, &(0x7f0000000280)={0xa, 0x4}, 0x0) (async)
ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0) (async)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000002) (async)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
socket(0x10, 0x3, 0x0) (async)
rseq(&(0x7f0000000400)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x0, 0x0)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x8) (async)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[], 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r5, &(0x7f0000000240)={0x0, 0x3d, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c00000002030300000000000000000000000011080001000100000036bc7cd94b4b20b51bcdc96607fdcd1f263e4d792bcee24bacc75899289789e6578d792ce09ae31265bb3f4dd1befd0059ae6ab4ea19f05449dc0fd45eddc245793ccf3b6a4cd22e2cb933c8662457ac3f4e2d4290140ea806fbc5005ed0c4672d87eae6f200"/142], 0x1c}}, 0x0) (async)
sendmsg(0xffffffffffffffff, 0x0, 0x4) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0xf, 0x491, 0x3, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00) (async)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000134000000140a03000000000000000000020000000900010073797a300000fc8060670340000000010900020073797a3100000000140000001100010000000000000000000000000a"], 0x98}}, 0x0)

1.675421145s ago: executing program 1 (id=2633):
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0, 0xf000})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/231, 0x0, &(0x7f0000000480)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0x64, &(0x7f00000005c0)=""/100}]})
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000002c0)={0x1, r2})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000580)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_route(0x10, 0x3, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x35, 0x1, 0x4, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='status\x00')
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0, 0x0, <r5=>0x0, <r6=>0x0}, 0xfffffe14)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f, 0x8, 0xffffffffd24b2432, 0x83, 0xffff, 0x0, 0xabe6, 0x0, 0x0, 0x80, 0x8001}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000004200)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ecc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb190df08747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb81035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4718826b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22263e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485e4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6bb06500f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb0f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784776f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2205eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0609c0b731964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e44312c24c2ce8e642bb73c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a768cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d0500e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad24c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc5908", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x78, 0x0, 0x80, {0xc, 0x3, 0x0, {0xfffffffffffffffd, 0x0, 0xfffffffffffffffc, 0x0, 0x8, 0xffffffff, 0xfffffffe, 0x0, 0x80000, 0x8000, 0x0, 0x0, r5, 0x1, 0x3}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
prctl$PR_SCHED_CORE(0x3e, 0x0, r6, 0x0, 0x0)
syz_fuse_handle_req(r0, &(0x7f0000006340)="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", 0x2000, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0xbbdccba4532b703b)

1.563460935s ago: executing program 4 (id=2634):
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0, 0xf000})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/231, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000002c0)={0x1, r2})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000580)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_route(0x10, 0x3, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x35, 0x1, 0x4, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='status\x00')
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0, 0x0, <r5=>0x0, <r6=>0x0}, 0xfffffe14)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f, 0x8, 0xffffffffd24b2432, 0x83, 0xffff, 0x0, 0xabe6, 0x0, 0x0, 0x80, 0x8001}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x78, 0x0, 0x80, {0xc, 0x3, 0x0, {0xfffffffffffffffd, 0x0, 0xfffffffffffffffc, 0x0, 0x8, 0xffffffff, 0xfffffffe, 0x0, 0x80000, 0x8000, 0x0, 0x0, r5, 0x1, 0x3}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
prctl$PR_SCHED_CORE(0x3e, 0x0, r6, 0x0, 0x0)
r7 = shmget$private(0x0, 0x800000, 0x54003f00, &(0x7f0000800000/0x800000)=nil)
shmat(r7, &(0x7f0000000000/0x4000)=nil, 0xbbdccba4532b703b)

1.563118635s ago: executing program 0 (id=2635):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet_smc(0x2b, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0xc01, 0x70bd2a, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x20000080}, 0x8050)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IPT_SO_GET_REVISION_MATCH(r4, 0x0, 0x42, &(0x7f0000000040)={'TPROXY\x00'}, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000003280)={0x0, 0x0, &(0x7f0000003240)={&(0x7f00000031c0)=ANY=[@ANYBLOB="58000000020601040000e0000000000005000003140007800500140080ff00000800084000000018050001000700000005000400040000000900020073797a300000000005000500020000000c"], 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x40)
r6 = socket$inet6(0xa, 0x80002, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000140)={0x0, 0x2000, &(0x7f0000001ac0)={&(0x7f0000000000)={0x20, 0x2e, 0x1, 0xf0bd26, 0x25dfdbfc, {0x4}, [@typed={0xc, 0xc, 0x0, 0x0, @u64=0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x4c0d9}, 0x20000000)
connect$inet6(r6, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @mcast2, 0x5}, 0x1c)
setsockopt$sock_linger(r6, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/timer_list\x00', 0x0, 0x0)
preadv(r8, &(0x7f0000000440)=[{&(0x7f0000000180)=""/82, 0x52}], 0x1, 0xd651, 0x72b)
write$cgroup_netprio_ifpriomap(r8, &(0x7f0000000000)={'nicvf0', 0x32, 0x30}, 0x9)
unshare(0x28040600)

763.864632ms ago: executing program 1 (id=2636):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0xfffdfffd}, [@call={0x85, 0x0, 0x0, 0x17}, @printk={@lld, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x70}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4c}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e09f547ed3f02dc1fd3d6487775b", 0x0, 0x4, 0x0, 0xf0, 0x0, 0x0, 0x0, 0x4}, 0x50)

647.386432ms ago: executing program 1 (id=2637):
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000008c0)=@newtaction={0x174, 0x30, 0x1, 0x0, 0x0, {}, [{0x160, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x53, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_mirred={0x118, 0x2, 0x0, 0x0, {{0xb}, {0x4}, {0xeb, 0x6, "09b30283c8ce91177a12f0b85be1ab71838ba99fb948a8aaca6427f95c40aa6fa110802f1f019748d3a355c14a1c4a0f919e171980dc2c74bc0c2c73ab89986b784fdf4b379bc4bea86d2b1625e5d3fb1af07f9176df134f043fd7aa59ef9cbe05c9df4a07b418de4e38645ad639b1c5911f4d5d1bd4a176f128b7cded41ca0b20509cc81ed718b784a57a88d5026a7c955a9ad47022194f870553395c6e3db5350a3c18a9dbff399cfe991089f3d097e9e810adfd8d1858c4ac889284f2d1a29d1b23572e6e50f484d93f291eb43a85ed79797d2386b694e3aa3066ec9439b6ac88b13ec5754d"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x174}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000e0ff0000000000000000180100802020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000467a4f35cac6"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$inet6_mptcp(0xa, 0x1, 0x106)
tee(0xffffffffffffffff, 0xffffffffffffffff, 0xf3a, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0x7, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000fc0000007910ccfe000000009500000000"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x9}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0x3f, 0x40206}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_BR_MULTI_BOOLOPT={0xc, 0x2e, {0x3, 0x3}}, @IFLA_BR_VLAN_FILTERING={0x5, 0x7, 0x8}]}}}]}, 0x48}, 0x1, 0x4000, 0x0, 0x44000}, 0x0)

629.59142ms ago: executing program 0 (id=2638):
openat$binder_debug(0xffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) (async)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r0, 0x3)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000000c0)=0x289, 0x4)

573.714437ms ago: executing program 0 (id=2639):
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f0000000600)={<r2=>0x0, @in={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x14}}}, [0xfffffffffffffff8, 0x6, 0x200, 0x24, 0x5, 0x80000000, 0x8, 0x6, 0x22e4762d, 0xdd, 0x1, 0x3, 0x0, 0x81, 0x200000000]}, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={r2, 0x38, &(0x7f0000000280)=[@in6={0xa, 0x4e21, 0x7ff, @local, 0xeb2}, @in6={0xa, 0x4e21, 0x7, @mcast1, 0x9}]}, &(0x7f0000000180)=0xc)
socket$netlink(0x10, 0x3, 0x4)
r3 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r3, 0x114, 0x8, &(0x7f0000000080)=0x1, 0x4)
ppoll(&(0x7f0000000240)=[{r0, 0x4002}], 0x1, 0x0, 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
getsockopt$IP6T_SO_GET_INFO(0xffffffffffffffff, 0x29, 0x4d, 0x0, &(0x7f0000000400))
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x4, 0x0, 0x0)
getsockopt$inet_tcp_int(r5, 0x6, 0x4, 0x0, &(0x7f0000002040))
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280), 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x110a, 0x2})
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f00000024c0)={0x8, 0x0, &(0x7f0000000080)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x1, 0x100000000000000, &(0x7f0000000540)="80"})
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000480)={0x20, 0x0, &(0x7f0000000000)=[@request_death={0x400c6315}, @clear_death], 0x0, 0x0, 0x0})
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040)=[{0x0, 0x0, 0x0}], 0x1, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x0)

560.125927ms ago: executing program 4 (id=2640):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$nci(r2, 0x0, 0xfffffeea)
r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r3, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_AF={0x5}]}, 0x1c}}, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r4, 0x4048aec9, &(0x7f0000001480)={0x3, 0x0, @ioapic={0x3000, 0xffffe800, 0x800, 0xa4, 0x0, [{0x1, 0x4, 0x1, '\x00', 0x9}, {0x2, 0x0, 0x7, '\x00', 0x6}, {0x3, 0x3, 0xb, '\x00', 0x5}, {0x5, 0x4, 0xa, '\x00', 0xf9}, {0x4, 0x4, 0x40, '\x00', 0x10}, {0xb7, 0x0, 0x81, '\x00', 0xc0}, {0x9, 0xa1, 0x10, '\x00', 0x8}, {0x1, 0x40, 0xf8, '\x00', 0x2}, {0x9, 0x7f, 0xfc, '\x00', 0x16}, {0x0, 0xd, 0x34, '\x00', 0x4}, {0x0, 0x0, 0x3}, {0x6, 0x7, 0x7, '\x00', 0x4}, {0x3, 0x6, 0x0, '\x00', 0x7}, {0x2, 0x3, 0xa, '\x00', 0x7}, {0x8, 0x9, 0x80, '\x00', 0x7}, {0xd, 0xbc, 0x9, '\x00', 0x1}, {0x32, 0xc, 0x3, '\x00', 0xff}, {0x40, 0x8, 0x0, '\x00', 0x8}, {0xa, 0x2, 0x8, '\x00', 0x88}, {0x2, 0x7f, 0xd, '\x00', 0x3}, {0x81, 0x6, 0x4, '\x00', 0x80}, {0x3, 0x5, 0xe5, '\x00', 0x7}, {0x1, 0xfc, 0x81, '\x00', 0x98}, {0x8, 0x4, 0x9, '\x00', 0x2}]}})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00', r5}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000050a03000000000000000000020000000c00024000000000000000010900010073797a30000000002c000000030a01020000000000000000020000000900010073797a30000000000c0002400000000000000001"], 0x80}}, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000240)='map_files\x00')
getdents(r7, &(0x7f0000000280)=""/4097, 0x1001)

115.332422ms ago: executing program 1 (id=2641):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
r1 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read(r1, &(0x7f0000000080)=""/152, 0x98)
read(r1, &(0x7f0000001140)=""/212, 0xd4) (async)
read(r1, &(0x7f0000001140)=""/212, 0xd4)
read(r1, &(0x7f0000000480)=""/215, 0xd7) (async)
read(r1, &(0x7f0000000480)=""/215, 0xd7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x94)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040), 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000300)="8c", 0x37db, r2}, 0x38)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000700)={r2}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x1f, 0x10, &(0x7f0000000880)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3a}, 0x90)
connect$inet6(r0, &(0x7f0000000080), 0x1c) (async)
connect$inet6(r0, &(0x7f0000000080), 0x1c)
r3 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4) (async)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmsg$IPVS_CMD_GET_CONFIG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x14}}, 0x4000) (async)
sendmsg$IPVS_CMD_GET_CONFIG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x14}}, 0x4000)

0s ago: executing program 4 (id=2642):
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x103000, 0x8d)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0)
prctl$PR_SET_TSC(0x1a, 0x1)
openat$cdrom(0xffffff9c, &(0x7f00000010c0), 0x309900, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0x3, &(0x7f0000001200)={0x5, 0x2}, &(0x7f0000001240))
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$pptp(0x18, 0x1, 0x2)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fd/3\x00')
socket$nl_netfilter(0x10, 0x3, 0xc)
mount$9p_fd(0x0, &(0x7f0000000340)='.\x00', 0x0, 0x6, &(0x7f0000001100)=ANY=[@ANYRESHEX=r5, @ANYBLOB="2c7766646e823df5d7c86c6ba406e8fd6040f9be6eefecf5ce7511d1eb1994e2e0a7ae18e49db0dedca298f6ec42781a069d64f7e0d0f2497f0c28b1ad12c0dca7d60e419f8a556b3feecd8a37b1424cf3387b1706fe222909864dcf569ff15fc13b08e81fb31993b4d1cd2ca0d7d5b64d3d51935f2286fea5ca899f99e34c76ac45bcf7cac2abe551957deaf74f1039f630346eba5c4c43244b5b3637139f507c662bda433e914db646501fb8d125d0022dc9eba226d7f8515f17aa", @ANYRESHEX=r5, @ANYBLOB=',\x00'])
connect$pptp(r4, &(0x7f0000000040)={0x18, 0x2, {0xfffc, @initdev={0xac, 0x1e, 0x5, 0x0}}}, 0x1e)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a0102000000000000000002000000090002007379b8ad92b0e5d6073e7a3100000000080004400000000009001f0073797a3000000000080003400000000a1607508d122639630000000000000000000a0000"], 0x64}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000640)=ANY=[@ANYBLOB="0180c2000001aaaaaaaaaa1908004500002400650000003a9078f468358cd244ec2680004e2100109097c200000100000000"], 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
close(0xffffffffffffffff)

0s ago: executing program 1 (id=2643):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mount$afs(&(0x7f0000000240)=ANY=[@ANYBLOB="2373063978010000"], &(0x7f00000006c0)='./cgroup\x00', &(0x7f0000000700), 0x1000000, &(0x7f0000000740)=ANY=[@ANYBLOB="6175747e04bb936f63656c00000000"])
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
unshare(0x22020400)
r1 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000d40), r2)
sendmsg$FOU_CMD_DEL(r2, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000d80)={0x1c, r3, 0x2, 0x70bd2a, 0x25dfdbfb, {}, [@FOU_ATTR_IPPROTO={0x5, 0x3, 0x62}]}, 0x1c}}, 0x4)
r4 = fsmount(r1, 0x0, 0x0)
r5 = memfd_secret(0x0)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r6, 0x11c, 0x1, 0x0, 0x0)
r7 = openat$cgroup_pressure(r4, &(0x7f0000000280)='memory.pressure\x00', 0x2, 0x0)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000080)={'syz1\x00', {0x1b10, 0x0, 0x1, 0x2}, 0x2f, [0x4, 0x1, 0x704d, 0x1, 0x5, 0x1, 0x2, 0x0, 0x4, 0xfffffc01, 0xfffffffb, 0x8, 0x1, 0x100, 0xfe, 0x48, 0x7, 0x5, 0x2ca, 0x8, 0x76, 0x8, 0x0, 0x81, 0x40, 0x19b1, 0x8000, 0x7, 0x797, 0x4000000, 0x3, 0x3, 0xe, 0x7, 0x5, 0x1, 0x5, 0xe, 0x7, 0x10001, 0x9, 0x7f, 0x8, 0x6, 0xfffffff7, 0x4, 0x7, 0x40, 0x7f, 0x9, 0x1, 0x6, 0x0, 0x2284919, 0x4, 0x5643fa73, 0xfffeffff, 0x6, 0x800, 0x2, 0x8a, 0x6, 0x2, 0x6], [0xfffffed2, 0x7fffffff, 0xffff, 0x8, 0xe62, 0x3, 0x3, 0x9, 0xc33, 0x3, 0x7, 0x800, 0x6c368000, 0x8, 0x1000007, 0x0, 0x10, 0x5, 0x8, 0x8001, 0x3, 0x7fff, 0x80000009, 0x0, 0x5, 0x4, 0x401, 0x8, 0x40, 0xc10, 0x80000001, 0x3, 0x3, 0x3, 0x7, 0x8, 0x8, 0x5, 0x4, 0x9, 0x5, 0x3, 0x2, 0x3, 0x0, 0x11e, 0xa4, 0x0, 0x5, 0xd69, 0x9, 0xf404, 0xf1, 0x3, 0x3, 0x1, 0x6, 0x6, 0x0, 0x6, 0x8, 0x6, 0x4, 0x1000068], [0x1, 0x1, 0x4, 0xfffffffc, 0x0, 0x7fff, 0x405, 0x9, 0x2, 0xffc, 0x7, 0x4, 0xc, 0x7, 0xa, 0xa, 0x8, 0x7, 0x5, 0x5, 0x2, 0x30000000, 0x644, 0x7, 0x80000001, 0x7, 0x5, 0x7f, 0x7ff, 0xd, 0x400, 0xf, 0x41, 0x81, 0xc99, 0x25a, 0x2, 0x0, 0x2, 0x5d9fffa, 0x3ff, 0x40, 0x1, 0x8, 0x10000, 0xe7, 0x200, 0x7af5, 0x0, 0xb, 0x0, 0xffff, 0x7, 0xc, 0x2, 0x81, 0x9, 0x2, 0x7, 0x100, 0x7, 0x3, 0x6, 0x10], [0xffffff80, 0xd5800000, 0x0, 0x4, 0x2, 0x62a, 0x3, 0x407, 0xb343, 0x4, 0x1, 0x8, 0x8000, 0x8, 0xffffff81, 0x80000000, 0x5, 0x3, 0x201, 0xfff, 0x3, 0xfffffffd, 0x3c63, 0x7, 0x6, 0xe6, 0xffffffff, 0x3, 0x2, 0x7, 0x1, 0x7, 0x7, 0x8, 0x1, 0xf, 0x9, 0x17cb, 0x0, 0x3, 0x6fe, 0xe, 0x7, 0x13a, 0x7, 0x0, 0xb757, 0x2, 0x11b, 0x996, 0x54, 0x8c1, 0x0, 0x5, 0x4, 0x2, 0x5, 0x10000400, 0x9, 0x5, 0x3, 0xfffffffb, 0xc, 0x6]}, 0x45c)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r9 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$UI_SET_FFBIT(r5, 0x4004556b, 0x59)
ioctl$sock_kcm_SIOCKCMUNATTACH(r9, 0x89e1, &(0x7f0000000140)={r9})
sendfile64(r8, r7, 0x0, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={r0, 0x58}, 0x10)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000640)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={r10}, 0xc)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="02c9"], 0x1d)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000540)={0xffffffffffffffff, 0x0, 0x25, 0x5, @val=@netfilter={0xa, 0x0, 0xd}}, 0x20)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000580)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r7}}, './cgroup\x00'})

kernel console output (not intermixed with test programs):

90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  500.223699][T13860] RSP: 002b:00000000f503155c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[  500.223711][T13860] RAX: ffffffffffffffda RBX: 00000000f7f9e000 RCX: 00000000000000e7
[  500.223718][T13860] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  500.223725][T13860] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  500.223731][T13860] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  500.223738][T13860] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  500.223752][T13860]  </TASK>
[  500.224075][T13857] bond0: entered allmulticast mode
[  500.371055][T13860] Mem-Info:
[  500.372412][T13860] active_anon:5845 inactive_anon:1120 isolated_anon:0
[  500.372412][T13860]  active_file:1041 inactive_file:1109 isolated_file:0
[  500.372412][T13860]  unevictable:1768 dirty:30 writeback:0
[  500.372412][T13860]  slab_reclaimable:7725 slab_unreclaimable:93693
[  500.372412][T13860]  mapped:31810 shmem:7460 pagetables:1381
[  500.372412][T13860]  sec_pagetables:344 bounce:0
[  500.372412][T13860]  kernel_misc_reclaimable:0
[  500.372412][T13860]  free:51413 free_pcp:885 free_cma:0
[  500.410464][T13864] fuse: Unknown parameter 'max_r'
[  500.421492][T13860] Node 0 active_anon:332kB inactive_anon:960kB active_file:244kB inactive_file:160kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:732kB dirty:0kB writeback:0kB shmem:3860kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9232kB pagetables:1620kB sec_pagetables:1144kB all_unreclaimable? no Balloon:0kB
[  500.434753][T13860] Node 1 active_anon:23248kB inactive_anon:3444kB active_file:4148kB inactive_file:4276kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:126664kB dirty:120kB writeback:0kB shmem:26132kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4228kB pagetables:3904kB sec_pagetables:232kB all_unreclaimable? no Balloon:0kB
[  500.457716][T13860] Node 0 DMA free:1972kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  500.516710][T13860] lowmem_reserve[]: 0 289 289 289 289
[  500.530697][T13860] Node 0 DMA32 free:18848kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:0KB free_highatomic:0KB active_anon:520kB inactive_anon:956kB active_file:244kB inactive_file:160kB unevictable:3536kB writepending:0kB zspages:1812kB present:1032196kB managed:296804kB mlocked:0kB bounce:0kB free_pcp:1612kB local_pcp:264kB free_cma:0kB
[  500.680482][T13860] lowmem_reserve[]: 0 0 0 0 0
[  500.682359][T13860] Node 1 DMA32 free:183596kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:23248kB inactive_anon:3444kB active_file:4148kB inactive_file:4276kB unevictable:3536kB writepending:188kB zspages:4424kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:2224kB local_pcp:244kB free_cma:0kB
[  500.693054][T13860] lowmem_reserve[]: 0 0 0 0 0
[  500.694553][T13860] Node 0 DMA: 3*4kB (M) 3*8kB (UM) 5*16kB (UM) 4*32kB (UM) 5*64kB (UM) 1*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 1972kB
[  500.699033][T13860] Node 0 DMA32: 586*4kB (UME) 410*8kB (UME) 111*16kB (UE) 97*32kB (UME) 49*64kB (UME) 18*128kB (UME) 7*256kB (UM) 2*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 18760kB
[  500.740473][T13860] Node 1 DMA32: 2237*4kB (UME) 1995*8kB (UME) 1360*16kB (UME) 141*32kB (UME) 193*64kB (UM) 190*128kB (UM) 146*256kB (UME) 102*512kB (UM) 6*1024kB (UM) 0*2048kB 0*4096kB = 183596kB
[  500.745827][T13860] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  500.748682][T13860] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  500.811026][T13860] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  500.814975][T13860] Node 1 hugepages_total=6 hugepages_free=0 hugepages_surp=4 hugepages_size=2048kB
[  500.818827][T13860] 10700 total pagecache pages
[  500.821237][T13860] 949 pages in swap cache
[  500.823154][T13860] Free swap  = 89600kB
[  500.824925][T13860] Total swap = 124996kB
[  500.826730][T13860] 524155 pages RAM
[  500.828377][T13860] 0 pages HighMem/MovableOnly
[  500.830462][T13860] 209061 pages reserved
[  500.832224][T13860] 0 pages cma reserved
[  500.930395][T13857] bond_slave_0: entered allmulticast mode
[  500.932280][T13857] bond_slave_1: entered allmulticast mode
[  500.934620][T13857] team0: entered promiscuous mode
[  500.936208][T13857] team_slave_0: entered promiscuous mode
[  500.938035][T13857] team_slave_1: entered promiscuous mode
[  500.939809][T13857] team0: entered allmulticast mode
[  500.960654][T13857] team_slave_0: entered allmulticast mode
[  500.963107][T13857] team_slave_1: entered allmulticast mode
[  500.966257][T13857] dummy0: entered promiscuous mode
[  500.968730][T13857] dummy0: entered allmulticast mode
[  500.981020][T13857] nlmon0: entered promiscuous mode
[  500.983197][T13857] nlmon0: entered allmulticast mode
[  501.011020][T13857] caif0: entered promiscuous mode
[  501.012609][T13857] caif0: entered allmulticast mode
[  501.014181][T13857] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  501.361790][T13861] kthread_run failed with err -4
[  501.651072][T13881] netlink: 'syz.1.2079': attribute type 12 has an invalid length.
[  501.806959][   T40] audit: type=1804 audit(1768260996.604:495): pid=13888 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2078" name="/newroot/509/bus/bus" dev="overlay" ino=2774 res=1 errno=0
[  501.890095][   T40] audit: type=1804 audit(1768260996.694:496): pid=13890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2078" name="/newroot/509/bus/bus" dev="overlay" ino=2774 res=1 errno=0
[  502.000482][   T40] audit: type=1800 audit(1768260996.704:497): pid=13890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2078" name="bus" dev="overlay" ino=2774 res=0 errno=0
[  502.512710][T13895] mkiss: ax0: crc mode is auto.
[  502.892258][   T40] audit: type=1804 audit(1768260997.704:498): pid=13905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2082" name="/newroot/510/bus/bus" dev="overlay" ino=2788 res=1 errno=0
[  502.904226][   T40] audit: type=1804 audit(1768260997.714:499): pid=13905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2082" name="/newroot/510/bus/bus" dev="overlay" ino=2788 res=1 errno=0
[  502.912325][   T40] audit: type=1800 audit(1768260997.724:500): pid=13905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2082" name="bus" dev="overlay" ino=2788 res=0 errno=0
[  503.376446][T13913] netlink: 'syz.3.2084': attribute type 12 has an invalid length.
[  503.911776][   T40] audit: type=1804 audit(1768260998.724:501): pid=13926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2088" name="/newroot/517/bus/bus" dev="overlay" ino=2797 res=1 errno=0
[  503.921306][   T40] audit: type=1804 audit(1768260998.724:502): pid=13926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2088" name="/newroot/517/bus/bus" dev="overlay" ino=2797 res=1 errno=0
[  503.932690][   T40] audit: type=1800 audit(1768260998.724:503): pid=13926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2088" name="bus" dev="overlay" ino=2797 res=0 errno=0
[  504.876790][T13948] netlink: 'syz.4.2092': attribute type 12 has an invalid length.
[  506.052688][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  506.265727][T13984] netlink: 'syz.0.2097': attribute type 12 has an invalid length.
[  506.994212][   T40] audit: type=1804 audit(1768261001.804:504): pid=13997 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2100" name="/newroot/266/bus/bus" dev="overlay" ino=1548 res=1 errno=0
[  507.025091][   T40] audit: type=1804 audit(1768261001.834:505): pid=13993 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2100" name="/newroot/266/bus/bus" dev="overlay" ino=1548 res=1 errno=0
[  507.037608][   T40] audit: type=1800 audit(1768261001.834:506): pid=13993 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2100" name="bus" dev="overlay" ino=1548 res=0 errno=0
[  507.203490][   T40] audit: type=1326 audit(1768261002.014:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000
[  507.212110][   T40] audit: type=1326 audit(1768261002.024:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000
[  507.220161][   T40] audit: type=1326 audit(1768261002.024:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000
[  507.271269][   T40] audit: type=1326 audit(1768261002.024:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2104" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d579 code=0x7ffc0000
[  509.836209][T14048] /dev/nullb0: Can't open blockdev
[  510.356746][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  510.356764][   T40] audit: type=1804 audit(1768261005.164:517): pid=14062 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2112" name="/newroot/529/bus/bus" dev="overlay" ino=2917 res=1 errno=0
[  510.410909][   T40] audit: type=1804 audit(1768261005.224:518): pid=14061 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2112" name="/newroot/529/bus/bus" dev="overlay" ino=2917 res=1 errno=0
[  510.424663][   T40] audit: type=1800 audit(1768261005.224:519): pid=14061 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2112" name="bus" dev="overlay" ino=2917 res=0 errno=0
[  512.460717][   T40] audit: type=1804 audit(1768261007.234:520): pid=14104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2123" name="/newroot/531/bus/bus" dev="overlay" ino=2936 res=1 errno=0
[  512.480240][   T40] audit: type=1804 audit(1768261007.244:521): pid=14104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2123" name="/newroot/531/bus/bus" dev="overlay" ino=2936 res=1 errno=0
[  512.491651][   T40] audit: type=1800 audit(1768261007.244:522): pid=14104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2123" name="bus" dev="overlay" ino=2936 res=0 errno=0
[  512.508399][   T40] audit: type=1804 audit(1768261007.304:523): pid=14103 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2122" name="/newroot/525/bus/bus" dev="overlay" ino=2850 res=1 errno=0
[  512.564257][   T40] audit: type=1804 audit(1768261007.374:524): pid=14103 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2122" name="/newroot/525/bus/bus" dev="overlay" ino=2850 res=1 errno=0
[  512.573571][   T40] audit: type=1800 audit(1768261007.374:525): pid=14103 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2122" name="bus" dev="overlay" ino=2850 res=0 errno=0
[  513.343215][T14121] netlink: 'syz.4.2126': attribute type 12 has an invalid length.
[  513.805361][T14135] netlink: 'syz.0.2128': attribute type 12 has an invalid length.
[  514.821329][   T40] audit: type=1804 audit(1768261009.634:526): pid=14145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2129" name="/newroot/527/bus/bus" dev="overlay" ino=2870 res=1 errno=0
[  515.011574][T14153] netlink: 'syz.0.2132': attribute type 12 has an invalid length.
[  515.812595][T14165] netlink: 'syz.1.2134': attribute type 12 has an invalid length.
[  516.017454][T14177] netlink: 'syz.3.2136': attribute type 12 has an invalid length.
[  516.380352][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  516.380366][   T40] audit: type=1804 audit(1768261011.154:529): pid=14182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2138" name="/newroot/523/bus/bus" dev="overlay" ino=2866 res=1 errno=0
[  516.388230][   T40] audit: type=1804 audit(1768261011.164:530): pid=14182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2138" name="/newroot/523/bus/bus" dev="overlay" ino=2866 res=1 errno=0
[  516.394396][   T40] audit: type=1800 audit(1768261011.164:531): pid=14182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2138" name="bus" dev="overlay" ino=2866 res=0 errno=0
[  516.947425][T14193] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2141'.
[  516.948890][   T40] audit: type=1804 audit(1768261011.754:532): pid=14192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2140" name="/newroot/530/bus/bus" dev="overlay" ino=2894 res=1 errno=0
[  516.988386][   T40] audit: type=1804 audit(1768261011.794:533): pid=14192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2140" name="/newroot/530/bus/bus" dev="overlay" ino=2894 res=1 errno=0
[  517.008870][   T40] audit: type=1800 audit(1768261011.804:534): pid=14192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2140" name="bus" dev="overlay" ino=2894 res=0 errno=0
[  517.042593][T14196] netlink: 'syz.3.2143': attribute type 12 has an invalid length.
[  517.911567][T14209] netlink: 'syz.4.2154': attribute type 12 has an invalid length.
[  519.224974][T14227] netlink: 'syz.1.2149': attribute type 12 has an invalid length.
[  519.327614][T14231] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2148'.
[  519.438109][T14233] syz.3.2148: page allocation failure: order:10, mode:0x40dc0(GFP_KERNEL|__GFP_ZERO|__GFP_COMP), nodemask=(null),cpuset=/,mems_allowed=0-1
[  519.442718][T14233] CPU: 1 UID: 0 PID: 14233 Comm: syz.3.2148 Not tainted syzkaller #0 PREEMPT(full) 
[  519.442745][T14233] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  519.442754][T14233] Call Trace:
[  519.442759][T14233]  <TASK>
[  519.442765][T14233]  dump_stack_lvl+0x16c/0x1f0
[  519.442787][T14233]  warn_alloc+0x248/0x3a0
[  519.442804][T14233]  ? __pfx_warn_alloc+0x10/0x10
[  519.442818][T14233]  ? psi_memstall_leave+0x1e6/0x2d0
[  519.442837][T14233]  ? __alloc_pages_direct_compact+0x466/0x580
[  519.442852][T14233]  ? __pfx___alloc_pages_direct_compact+0x10/0x10
[  519.442866][T14233]  ? psi_memstall_leave+0x1e1/0x2d0
[  519.442883][T14233]  ? psi_memstall_leave+0x1e6/0x2d0
[  519.442902][T14233]  __alloc_frozen_pages_noprof+0xe9b/0x2430
[  519.442925][T14233]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  519.442946][T14233]  ? find_held_lock+0x2b/0x80
[  519.442962][T14233]  ? aa_file_perm+0x29e/0x1560
[  519.442980][T14233]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  519.442999][T14233]  ? policy_nodemask+0xea/0x4e0
[  519.443018][T14233]  alloc_pages_mpol+0x1fb/0x550
[  519.443036][T14233]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  519.443054][T14233]  ? stack_trace_save+0x8e/0xc0
[  519.443071][T14233]  ? __pfx_stack_trace_save+0x10/0x10
[  519.443091][T14233]  ___kmalloc_large_node+0x10c/0x150
[  519.443104][T14233]  __kmalloc_large_node_noprof+0x1c/0x70
[  519.443117][T14233]  __kmalloc_noprof.cold+0xc/0x62
[  519.443134][T14233]  ? common_file_perm+0x1b1/0x500
[  519.443148][T14233]  ? qrtr_tun_write_iter+0xc1/0x1b0
[  519.443164][T14233]  ? qrtr_tun_write_iter+0xc1/0x1b0
[  519.443177][T14233]  qrtr_tun_write_iter+0xc1/0x1b0
[  519.443192][T14233]  aio_write+0x3b9/0x910
[  519.443211][T14233]  ? __pfx_aio_write+0x10/0x10
[  519.443240][T14233]  ? __lock_acquire+0x436/0x2890
[  519.443261][T14233]  ? __might_fault+0xe3/0x190
[  519.443274][T14233]  ? __might_fault+0x13b/0x190
[  519.443289][T14233]  ? io_submit_one+0x1243/0x1e70
[  519.443299][T14233]  io_submit_one+0x1243/0x1e70
[  519.443312][T14233]  ? __lock_acquire+0x436/0x2890
[  519.443326][T14233]  ? __pfx_io_submit_one+0x10/0x10
[  519.443342][T14233]  ? __might_fault+0xe3/0x190
[  519.443355][T14233]  ? __might_fault+0x13b/0x190
[  519.443375][T14233]  ? __ia32_compat_sys_io_submit+0x1ad/0x3c0
[  519.443387][T14233]  __ia32_compat_sys_io_submit+0x1ad/0x3c0
[  519.443401][T14233]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[  519.443418][T14233]  ? rcu_is_watching+0x12/0xc0
[  519.443435][T14233]  __do_fast_syscall_32+0xe8/0x680
[  519.443454][T14233]  do_fast_syscall_32+0x32/0x80
[  519.443467][T14233]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  519.443481][T14233] RIP: 0023:0xf7fa5579
[  519.443492][T14233] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  519.443505][T14233] RSP: 002b:00000000f4c0e55c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[  519.443517][T14233] RAX: ffffffffffffffda RBX: 00000000f7f9e000 RCX: 00000000000000e7
[  519.443525][T14233] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  519.443533][T14233] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  519.443540][T14233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  519.443548][T14233] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  519.443562][T14233]  </TASK>
[  519.443714][T14233] Mem-Info:
[  519.580511][T14231] lo: left promiscuous mode
[  519.581972][T14231] lo: left allmulticast mode
[  519.584619][T14231] tunl0: left promiscuous mode
[  519.586176][T14231] tunl0: left allmulticast mode
[  519.599330][T14231] gre0: left promiscuous mode
[  519.600986][T14231] gre0: left allmulticast mode
[  519.608533][T14233] active_anon:3169 inactive_anon:1238 isolated_anon:0
[  519.608533][T14233]  active_file:1484 inactive_file:855 isolated_file:0
[  519.608533][T14233]  unevictable:1768 dirty:111 writeback:0
[  519.608533][T14233]  slab_reclaimable:7930 slab_unreclaimable:96659
[  519.608533][T14233]  mapped:27873 shmem:4638 pagetables:1328
[  519.608533][T14233]  sec_pagetables:346 bounce:0
[  519.608533][T14233]  kernel_misc_reclaimable:0
[  519.608533][T14233]  free:49041 free_pcp:1180 free_cma:0
[  519.630788][T14233] Node 0 active_anon:32kB inactive_anon:388kB active_file:1884kB inactive_file:656kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:220kB dirty:0kB writeback:0kB shmem:3172kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8960kB pagetables:1340kB sec_pagetables:1144kB all_unreclaimable? yes Balloon:0kB
[  519.678244][T14231] gretap0: left promiscuous mode
[  519.679840][T14231] gretap0: left allmulticast mode
[  519.730674][T14233] Node 1 active_anon:12704kB inactive_anon:4564kB active_file:4176kB inactive_file:2784kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:111304kB dirty:564kB writeback:0kB shmem:15380kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4560kB pagetables:3980kB sec_pagetables:240kB all_unreclaimable? no Balloon:0kB
[  519.781417][T14231] erspan0: left promiscuous mode
[  519.783122][T14231] erspan0: left allmulticast mode
[  519.789221][T14231] ip_vti0: left promiscuous mode
[  519.810407][T14231] ip_vti0: left allmulticast mode
[  519.812786][T14231] ip6_vti0: left promiscuous mode
[  519.814591][T14231] ip6_vti0: left allmulticast mode
[  519.818470][T14231] sit0: left promiscuous mode
[  519.820172][T14231] sit0: left allmulticast mode
[  519.830401][T14231] ip6tnl0: left promiscuous mode
[  519.832129][T14231] ip6tnl0: left allmulticast mode
[  519.837382][T14231] ip6gre0: left promiscuous mode
[  519.839147][T14233] Node 0 DMA free:1928kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  519.852892][T14231] ip6gre0: left allmulticast mode
[  519.855416][T14233] lowmem_reserve[]: 0 289 289 289 289
[  519.857233][T14233] Node 0 DMA32 free:20836kB boost:16384kB min:29716kB low:33048kB high:36380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:32kB inactive_anon:384kB active_file:1884kB inactive_file:656kB unevictable:3536kB writepending:0kB zspages:1756kB present:1032196kB managed:296804kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:16kB free_cma:0kB
[  519.872401][T14233] lowmem_reserve[]: 0 0 0 0 0
[  519.874018][T14233] Node 1 DMA32 free:171052kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:12704kB inactive_anon:4564kB active_file:4176kB inactive_file:2784kB unevictable:3536kB writepending:664kB zspages:4512kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:6956kB local_pcp:204kB free_cma:0kB
[  519.884394][T14233] lowmem_reserve[]: 0 0 0 0 0
[  519.885994][T14233] Node 0 DMA: 4*4kB (UM) 3*8kB (UM) 4*16kB (M) 3*32kB (M) 5*64kB (UM) 1*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 1928kB
[  519.890752][T14233] Node 0 DMA32: 543*4kB (UM) 457*8kB (UME) 138*16kB (UME) 136*32kB (UME) 50*64kB (UME) 19*128kB (UME) 7*256kB (UM) 2*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 20836kB
[  519.897165][T14231] syz_tun: left promiscuous mode
[  519.898771][T14231] syz_tun: left allmulticast mode
[  519.908414][T14233] Node 1 DMA32: 1072*4kB (UME) 1503*8kB (UE) 970*16kB (UME) 193*32kB (UM) 239*64kB (UM) 177*128kB (UM) 150*256kB (UME) 103*512kB (UME) 3*1024kB (UME) 0*2048kB 0*4096kB = 170168kB
[  519.917525][T14233] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  519.920566][T14233] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  519.923501][T14233] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  519.926541][T14233] Node 1 hugepages_total=6 hugepages_free=0 hugepages_surp=4 hugepages_size=2048kB
[  519.929452][T14233] 7762 total pagecache pages
[  519.930990][T14233] 692 pages in swap cache
[  519.932354][T14233] Free swap  = 89944kB
[  519.933660][T14233] Total swap = 124996kB
[  519.934983][T14233] 524155 pages RAM
[  519.936185][T14233] 0 pages HighMem/MovableOnly
[  519.937821][T14233] 209061 pages reserved
[  519.939148][T14233] 0 pages cma reserved
[  519.960735][T14231] ip6gretap0: left promiscuous mode
[  519.962398][T14231] ip6gretap0: left allmulticast mode
[  519.965496][T14231] vcan0: left promiscuous mode
[  519.967048][T14231] vcan0: left allmulticast mode
[  519.969247][T14231] bond0: left promiscuous mode
[  519.971477][T14231] bond_slave_0: left promiscuous mode
[  519.973267][T14231] bond_slave_1: left promiscuous mode
[  519.975057][T14231] bond0: left allmulticast mode
[  519.976614][T14231] bond_slave_0: left allmulticast mode
[  519.978348][T14231] bond_slave_1: left allmulticast mode
[  520.020636][T14231] team0: left promiscuous mode
[  520.022254][T14231] team_slave_0: left promiscuous mode
[  520.024050][T14231] team_slave_1: left promiscuous mode
[  520.026635][T14231] team0: left allmulticast mode
[  520.028190][T14231] team_slave_0: left allmulticast mode
[  520.029995][T14231] team_slave_1: left allmulticast mode
[  520.033254][T14231] dummy0: left promiscuous mode
[  520.035192][T14231] dummy0: left allmulticast mode
[  520.060839][T14231] nlmon0: left promiscuous mode
[  520.062502][T14231] nlmon0: left allmulticast mode
[  520.064646][T14231] caif0: left promiscuous mode
[  520.066204][T14231] caif0: left allmulticast mode
[  520.069142][T14231] batadv_slave_0: left promiscuous mode
[  520.073707][T14231] bond1: left promiscuous mode
[  520.077159][T14229] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2150'.
[  520.409617][T14251] netlink: 'syz.1.2151': attribute type 12 has an invalid length.
[  520.807872][T14241] binder: 14240:14241 ioctl c018620c 0 returned -14
[  520.816655][T14241] netlink: 'syz.0.2153': attribute type 3 has an invalid length.
[  520.819636][T14241] netlink: 'syz.0.2153': attribute type 3 has an invalid length.
[  520.822862][T14241] netlink: 'syz.0.2153': attribute type 3 has an invalid length.
[  520.825313][T14241] netlink: 'syz.0.2153': attribute type 3 has an invalid length.
[  520.828153][T14241] netlink: 'syz.0.2153': attribute type 3 has an invalid length.
[  520.830719][T14241] netlink: 'syz.0.2153': attribute type 3 has an invalid length.
[  520.833319][T14241] netlink: 'syz.0.2153': attribute type 3 has an invalid length.
[  520.835771][T14241] netlink: 'syz.0.2153': attribute type 3 has an invalid length.
[  520.844537][T14241] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2153'.
[  522.397059][   T40] audit: type=1804 audit(1768261017.204:535): pid=14294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2161" name="/newroot/281/bus/bus" dev="overlay" ino=1638 res=1 errno=0
[  522.417554][T14297] netlink: zone id is out of range
[  522.448186][T14297] netlink: set zone limit has 4 unknown bytes
[  522.450330][   T40] audit: type=1804 audit(1768261017.214:536): pid=14294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2161" name="/newroot/281/bus/bus" dev="overlay" ino=1638 res=1 errno=0
[  522.470387][   T40] audit: type=1800 audit(1768261017.214:537): pid=14294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2161" name="bus" dev="overlay" ino=1638 res=0 errno=0
[  523.157543][T14301] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2163'.
[  523.591368][T14301] vxcan1: left promiscuous mode
[  523.605118][T14301] netdevsim netdevsim0 netdevsim0: left allmulticast mode
[  523.641056][T14301] macsec1: left promiscuous mode
[  525.161272][T14343] fuse: Bad value for 'fd'
[  525.405274][   T40] audit: type=1326 audit(1768261020.214:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14348 comm="syz.1.2177" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  525.415203][   T40] audit: type=1326 audit(1768261020.214:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14348 comm="syz.1.2177" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  525.422929][   T40] audit: type=1326 audit(1768261020.214:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14348 comm="syz.1.2177" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf704d579 code=0x7ffc0000
[  525.430985][   T40] audit: type=1326 audit(1768261020.214:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14348 comm="syz.1.2177" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  525.438364][   T40] audit: type=1326 audit(1768261020.214:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14348 comm="syz.1.2177" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  525.446063][   T40] audit: type=1326 audit(1768261020.214:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14348 comm="syz.1.2177" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf704d579 code=0x7ffc0000
[  525.454000][   T40] audit: type=1326 audit(1768261020.214:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14348 comm="syz.1.2177" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d579 code=0x7ffc0000
[  525.834040][ T7335] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  525.891636][ T7335] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  525.933352][ T7335] bond0 (unregistering): Released all slaves
[  527.240647][T14409] FAULT_INJECTION: forcing a failure.
[  527.240647][T14409] name failslab, interval 1, probability 0, space 0, times 0
[  527.244774][T14409] CPU: 2 UID: 0 PID: 14409 Comm: syz.0.2190 Not tainted syzkaller #0 PREEMPT(full) 
[  527.244789][T14409] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  527.244797][T14409] Call Trace:
[  527.244802][T14409]  <TASK>
[  527.244806][T14409]  dump_stack_lvl+0x16c/0x1f0
[  527.244829][T14409]  should_fail_ex+0x512/0x640
[  527.244845][T14409]  should_failslab+0xc2/0x120
[  527.244864][T14409]  __kmalloc_cache_noprof+0x80/0x800
[  527.244878][T14409]  ? sctp_add_bind_addr+0xae/0x3f0
[  527.244897][T14409]  ? sctp_add_bind_addr+0xae/0x3f0
[  527.244912][T14409]  sctp_add_bind_addr+0xae/0x3f0
[  527.244929][T14409]  sctp_copy_local_addr_list+0x349/0x550
[  527.244951][T14409]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  527.244971][T14409]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  527.244990][T14409]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  527.245014][T14409]  sctp_bind_addr_copy+0xe0/0x530
[  527.245034][T14409]  sctp_connect_new_asoc+0x1c9/0x770
[  527.245048][T14409]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  527.245065][T14409]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  527.245083][T14409]  sctp_sendmsg+0x157c/0x1e20
[  527.245100][T14409]  ? __pfx_sctp_sendmsg+0x10/0x10
[  527.245112][T14409]  ? __pfx___might_resched+0x10/0x10
[  527.245132][T14409]  ? aa_sk_perm+0x2f2/0xae0
[  527.245162][T14409]  ? __pfx_aa_sk_perm+0x10/0x10
[  527.245180][T14409]  ? __might_fault+0xe3/0x190
[  527.245208][T14409]  ? __pfx_sctp_sendmsg+0x10/0x10
[  527.245230][T14409]  inet_sendmsg+0x11c/0x140
[  527.245255][T14409]  __sys_sendto+0x43c/0x520
[  527.245278][T14409]  ? __pfx___sys_sendto+0x10/0x10
[  527.245345][T14409]  ? ksys_write+0x1ac/0x250
[  527.245371][T14409]  ? __pfx_ksys_write+0x10/0x10
[  527.245399][T14409]  __ia32_sys_sendto+0xdd/0x1b0
[  527.245418][T14409]  ? __do_fast_syscall_32+0x9a/0x680
[  527.245440][T14409]  ? lockdep_hardirqs_on+0x7c/0x110
[  527.245468][T14409]  __do_fast_syscall_32+0xe8/0x680
[  527.245487][T14409]  do_fast_syscall_32+0x32/0x80
[  527.245504][T14409]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  527.245528][T14409] RIP: 0023:0xf707d579
[  527.245546][T14409] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  527.245563][T14409] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  527.245583][T14409] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  527.245594][T14409] RDX: 000000000000fffd RSI: 000000002000c851 RDI: 0000000080000140
[  527.245605][T14409] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[  527.245615][T14409] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  527.245623][T14409] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  527.245638][T14409]  </TASK>
[  527.465483][   T40] kauditd_printk_skb: 14 callbacks suppressed
[  527.465500][   T40] audit: type=1804 audit(1768261022.244:559): pid=14413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2189" name="/newroot/286/bus/bus" dev="overlay" ino=1682 res=1 errno=0
[  527.486222][   T40] audit: type=1804 audit(1768261022.254:560): pid=14413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2189" name="/newroot/286/bus/bus" dev="overlay" ino=1682 res=1 errno=0
[  527.502647][   T40] audit: type=1800 audit(1768261022.254:561): pid=14413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2189" name="bus" dev="overlay" ino=1682 res=0 errno=0
[  527.882925][T14423] validate_nla: 13 callbacks suppressed
[  527.882954][T14423] netlink: 'syz.3.2192': attribute type 12 has an invalid length.
[  528.387218][T14431] FAULT_INJECTION: forcing a failure.
[  528.387218][T14431] name failslab, interval 1, probability 0, space 0, times 0
[  528.392196][T14431] CPU: 2 UID: 0 PID: 14431 Comm: syz.4.2196 Not tainted syzkaller #0 PREEMPT(full) 
[  528.392213][T14431] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  528.392221][T14431] Call Trace:
[  528.392225][T14431]  <TASK>
[  528.392231][T14431]  dump_stack_lvl+0x16c/0x1f0
[  528.392253][T14431]  should_fail_ex+0x512/0x640
[  528.392266][T14431]  ? fs_reclaim_acquire+0xae/0x150
[  528.392286][T14431]  should_failslab+0xc2/0x120
[  528.392304][T14431]  __kmalloc_noprof+0xeb/0x910
[  528.392317][T14431]  ? tomoyo_encode2+0x100/0x3e0
[  528.392336][T14431]  ? tomoyo_encode2+0x100/0x3e0
[  528.392350][T14431]  tomoyo_encode2+0x100/0x3e0
[  528.392384][T14431]  tomoyo_encode+0x29/0x50
[  528.392400][T14431]  tomoyo_realpath_from_path+0x18f/0x6e0
[  528.392420][T14431]  tomoyo_path_number_perm+0x245/0x580
[  528.392433][T14431]  ? tomoyo_path_number_perm+0x237/0x580
[  528.392447][T14431]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  528.392475][T14431]  ? find_held_lock+0x2b/0x80
[  528.392491][T14431]  ? hook_file_ioctl_common+0x144/0x410
[  528.392508][T14431]  ? __fget_files+0x20e/0x3c0
[  528.392524][T14431]  ? __fput_deferred+0x420/0x480
[  528.392537][T14431]  security_file_ioctl_compat+0x9b/0x240
[  528.392554][T14431]  __ia32_compat_sys_ioctl+0xc3/0x370
[  528.392570][T14431]  __do_fast_syscall_32+0xe8/0x680
[  528.392584][T14431]  do_fast_syscall_32+0x32/0x80
[  528.392595][T14431]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  528.392610][T14431] RIP: 0023:0xf70ed579
[  528.392619][T14431] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  528.392630][T14431] RSP: 002b:00000000f54dd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  528.392642][T14431] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0445609
[  528.392649][T14431] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[  528.392656][T14431] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  528.392662][T14431] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  528.392669][T14431] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  528.392683][T14431]  </TASK>
[  528.392706][T14431] ERROR: Out of memory at tomoyo_realpath_from_path.
[  528.618370][   T40] audit: type=1804 audit(1768261023.424:562): pid=14438 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2194" name="/newroot/536/bus/bus" dev="overlay" ino=2951 res=1 errno=0
[  529.328532][T14455] netlink: 'syz.1.2201': attribute type 12 has an invalid length.
[  530.084458][T14461] fuse: Bad value for 'fd'
[  530.161652][T14468] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2203'.
[  530.691235][T14476] netlink: 'syz.1.2206': attribute type 12 has an invalid length.
[  531.646971][ T3243] IPVS: starting estimator thread 0...
[  531.730564][T14492] IPVS: using max 21 ests per chain, 50400 per kthread
[  531.738901][T14495] netlink: 'syz.0.2211': attribute type 12 has an invalid length.
[  532.513121][T14509] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2216'.
[  532.605360][T14513] FAULT_INJECTION: forcing a failure.
[  532.605360][T14513] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  532.609467][T14513] CPU: 3 UID: 0 PID: 14513 Comm: syz.0.2217 Not tainted syzkaller #0 PREEMPT(full) 
[  532.609487][T14513] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  532.609498][T14513] Call Trace:
[  532.609506][T14513]  <TASK>
[  532.609514][T14513]  dump_stack_lvl+0x16c/0x1f0
[  532.609537][T14513]  should_fail_ex+0x512/0x640
[  532.609554][T14513]  _copy_from_user+0x2e/0xd0
[  532.609569][T14513]  get_compat_msghdr+0xa7/0x170
[  532.609586][T14513]  ? __pfx_get_compat_msghdr+0x10/0x10
[  532.609610][T14513]  ? __lock_acquire+0x436/0x2890
[  532.609632][T14513]  ___sys_recvmsg+0x191/0x1a0
[  532.609658][T14513]  ? __pfx____sys_recvmsg+0x10/0x10
[  532.609682][T14513]  ? find_held_lock+0x2b/0x80
[  532.609702][T14513]  ? __pfx___might_resched+0x10/0x10
[  532.609743][T14513]  do_recvmmsg+0x55d/0x750
[  532.609762][T14513]  ? __pfx_do_recvmmsg+0x10/0x10
[  532.609787][T14513]  ? __fget_files+0x20e/0x3c0
[  532.609807][T14513]  __sys_recvmmsg+0x21c/0x280
[  532.609824][T14513]  ? __pfx___sys_recvmmsg+0x10/0x10
[  532.609842][T14513]  ? __pfx_ksys_write+0x10/0x10
[  532.609862][T14513]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  532.609880][T14513]  ? __do_fast_syscall_32+0x9a/0x680
[  532.609892][T14513]  ? lockdep_hardirqs_on+0x7c/0x110
[  532.609911][T14513]  __do_fast_syscall_32+0xe8/0x680
[  532.609924][T14513]  do_fast_syscall_32+0x32/0x80
[  532.609936][T14513]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  532.609952][T14513] RIP: 0023:0xf707d579
[  532.609962][T14513] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  532.609974][T14513] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  532.609986][T14513] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000800055c0
[  532.609994][T14513] RDX: 000000000400023c RSI: 0000000000000300 RDI: 0000000000000000
[  532.610001][T14513] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  532.610008][T14513] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  532.610015][T14513] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  532.610030][T14513]  </TASK>
[  532.776756][T14517] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2215'.
[  532.863408][T14521] netlink: 'syz.0.2218': attribute type 12 has an invalid length.
[  532.883837][T14522] warn_alloc: 1 callbacks suppressed
[  532.883849][T14522] syz.3.2215: page allocation failure: order:10, mode:0x40dc0(GFP_KERNEL|__GFP_ZERO|__GFP_COMP), nodemask=(null)
[  532.885579][T14522] ,cpuset=/,mems_allowed=0-1
[  532.891590][T14522] CPU: 1 UID: 0 PID: 14522 Comm: syz.3.2215 Not tainted syzkaller #0 PREEMPT(full) 
[  532.891617][T14522] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  532.891626][T14522] Call Trace:
[  532.891631][T14522]  <TASK>
[  532.891636][T14522]  dump_stack_lvl+0x16c/0x1f0
[  532.891660][T14522]  warn_alloc+0x248/0x3a0
[  532.891678][T14522]  ? __pfx_warn_alloc+0x10/0x10
[  532.891693][T14522]  ? psi_memstall_leave+0x1e6/0x2d0
[  532.891713][T14522]  ? __alloc_pages_direct_compact+0x466/0x580
[  532.891729][T14522]  ? __pfx___alloc_pages_direct_compact+0x10/0x10
[  532.891743][T14522]  ? psi_memstall_leave+0x1e1/0x2d0
[  532.891760][T14522]  ? psi_memstall_leave+0x1e6/0x2d0
[  532.891780][T14522]  __alloc_frozen_pages_noprof+0xe9b/0x2430
[  532.891803][T14522]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  532.891823][T14522]  ? find_held_lock+0x2b/0x80
[  532.891838][T14522]  ? aa_file_perm+0x29e/0x1560
[  532.891856][T14522]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  532.891874][T14522]  ? policy_nodemask+0xea/0x4e0
[  532.891893][T14522]  alloc_pages_mpol+0x1fb/0x550
[  532.891911][T14522]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  532.891929][T14522]  ? stack_trace_save+0x8e/0xc0
[  532.891946][T14522]  ? __pfx_stack_trace_save+0x10/0x10
[  532.891966][T14522]  ___kmalloc_large_node+0x10c/0x150
[  532.891979][T14522]  __kmalloc_large_node_noprof+0x1c/0x70
[  532.891991][T14522]  __kmalloc_noprof.cold+0xc/0x62
[  532.892008][T14522]  ? common_file_perm+0x1b1/0x500
[  532.892021][T14522]  ? qrtr_tun_write_iter+0xc1/0x1b0
[  532.892038][T14522]  ? qrtr_tun_write_iter+0xc1/0x1b0
[  532.892050][T14522]  qrtr_tun_write_iter+0xc1/0x1b0
[  532.892065][T14522]  aio_write+0x3b9/0x910
[  532.892085][T14522]  ? __pfx_aio_write+0x10/0x10
[  532.892102][T14522]  ? __lock_acquire+0x436/0x2890
[  532.892121][T14522]  ? __might_fault+0xe3/0x190
[  532.892134][T14522]  ? __might_fault+0x13b/0x190
[  532.892149][T14522]  ? io_submit_one+0x1243/0x1e70
[  532.892159][T14522]  io_submit_one+0x1243/0x1e70
[  532.892172][T14522]  ? __lock_acquire+0x436/0x2890
[  532.892185][T14522]  ? __pfx_io_submit_one+0x10/0x10
[  532.892200][T14522]  ? __might_fault+0xe3/0x190
[  532.892212][T14522]  ? __might_fault+0x13b/0x190
[  532.892228][T14522]  ? __ia32_compat_sys_io_submit+0x1ad/0x3c0
[  532.892240][T14522]  __ia32_compat_sys_io_submit+0x1ad/0x3c0
[  532.892254][T14522]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[  532.892271][T14522]  ? rcu_is_watching+0x12/0xc0
[  532.892288][T14522]  __do_fast_syscall_32+0xe8/0x680
[  532.892301][T14522]  do_fast_syscall_32+0x32/0x80
[  532.892313][T14522]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  532.892328][T14522] RIP: 0023:0xf7fa5579
[  532.892338][T14522] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  532.892348][T14522] RSP: 002b:00000000f503155c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[  532.892359][T14522] RAX: ffffffffffffffda RBX: 00000000f7f9e000 RCX: 00000000000000e7
[  532.892366][T14522] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  532.892373][T14522] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  532.892379][T14522] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  532.892386][T14522] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  532.892400][T14522]  </TASK>
[  532.892449][T14522] Mem-Info:
[  533.050500][T14522] active_anon:859 inactive_anon:4620 isolated_anon:0
[  533.050500][T14522]  active_file:1388 inactive_file:997 isolated_file:0
[  533.050500][T14522]  unevictable:1768 dirty:34 writeback:0
[  533.050500][T14522]  slab_reclaimable:8119 slab_unreclaimable:97816
[  533.050500][T14522]  mapped:27869 shmem:6010 pagetables:1399
[  533.050500][T14522]  sec_pagetables:346 bounce:0
[  533.050500][T14522]  kernel_misc_reclaimable:0
[  533.050500][T14522]  free:47825 free_pcp:632 free_cma:0
[  533.072072][T14522] Node 0 active_anon:44kB inactive_anon:376kB active_file:1884kB inactive_file:656kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:508kB dirty:0kB writeback:0kB shmem:3172kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8960kB pagetables:1340kB sec_pagetables:1144kB all_unreclaimable? yes Balloon:0kB
[  533.105609][T14522] Node 1 active_anon:752kB inactive_anon:17532kB active_file:3368kB inactive_file:3624kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:110968kB dirty:136kB writeback:0kB shmem:17468kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4636kB pagetables:4256kB sec_pagetables:240kB all_unreclaimable? no Balloon:0kB
[  533.117218][T14522] Node 0 DMA free:1916kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  533.126819][T14522] lowmem_reserve[]: 0 289 289 289 289
[  533.131930][T14522] Node 0 DMA32 free:22608kB boost:16384kB min:29716kB low:33048kB high:36380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:372kB active_file:1884kB inactive_file:656kB unevictable:3536kB writepending:0kB zspages:1752kB present:1032196kB managed:296804kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  533.164583][T14522] lowmem_reserve[]: 0 0 0 0 0
[  533.166386][T14522] Node 1 DMA32 free:166368kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:1028kB inactive_anon:15416kB active_file:3388kB inactive_file:3628kB unevictable:3536kB writepending:268kB zspages:4592kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:8888kB local_pcp:1096kB free_cma:0kB
[  533.192106][T14522] lowmem_reserve[]: 0 0 0 0 0
[  533.193783][T14522] Node 0 DMA: 4*4kB (UM) 3*8kB (UM) 4*16kB (M) 3*32kB (M) 5*64kB (UM) 1*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 1928kB
[  533.199370][T14522] Node 0 DMA32: 864*4kB (UM) 468*8kB (UME) 131*16kB (UME) 131*32kB (UME) 51*64kB (UME) 24*128kB (UME) 7*256kB (UM) 2*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 22640kB
[  533.211223][T14522] Node 1 DMA32: 2117*4kB (UME) 2279*8kB (UME) 1260*16kB (UME) 105*32kB (UM) 167*64kB (UME) 186*128kB (UM) 142*256kB (UM) 87*512kB (UME) 0*1024kB 0*2048kB 0*4096kB = 165612kB
[  533.229418][T14522] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  533.243759][T14522] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  533.248008][T14522] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  533.257763][T14522] Node 1 hugepages_total=6 hugepages_free=0 hugepages_surp=4 hugepages_size=2048kB
[  533.339577][   T40] audit: type=1804 audit(1768261028.144:563): pid=14532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2220" name="/newroot/554/bus/bus" dev="overlay" ino=3037 res=1 errno=0
[  533.356121][   T40] audit: type=1804 audit(1768261028.164:564): pid=14532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2220" name="/newroot/554/bus/bus" dev="overlay" ino=3037 res=1 errno=0
[  533.363877][   T40] audit: type=1800 audit(1768261028.164:565): pid=14532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2220" name="bus" dev="overlay" ino=3037 res=0 errno=0
[  533.371515][T14522] 7895 total pagecache pages
[  533.373131][T14522] 762 pages in swap cache
[  533.374690][T14522] Free swap  = 89052kB
[  533.376221][T14522] Total swap = 124996kB
[  533.377764][T14522] 524155 pages RAM
[  533.378971][T14522] 0 pages HighMem/MovableOnly
[  533.453095][T14522] 209061 pages reserved
[  533.454575][T14522] 0 pages cma reserved
[  534.116804][   T40] audit: type=1804 audit(1768261028.924:566): pid=14553 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2227" name="/newroot/552/bus/bus" dev="overlay" ino=3052 res=1 errno=0
[  534.134835][   T40] audit: type=1804 audit(1768261028.934:567): pid=14553 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2227" name="/newroot/552/bus/bus" dev="overlay" ino=3052 res=1 errno=0
[  534.143051][   T40] audit: type=1800 audit(1768261028.934:568): pid=14553 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2227" name="bus" dev="overlay" ino=3052 res=0 errno=0
[  534.647145][T14564] netlink: 'syz.4.2230': attribute type 12 has an invalid length.
[  535.196225][T14575] netlink: 'syz.3.2232': attribute type 12 has an invalid length.
[  535.720162][T14587] fuse: Bad value for 'fd'
[  535.844556][   T40] audit: type=1804 audit(1768261030.654:569): pid=14589 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2237" name="/newroot/547/bus/bus" dev="overlay" ino=3016 res=1 errno=0
[  535.854497][   T40] audit: type=1804 audit(1768261030.654:570): pid=14589 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.2237" name="/newroot/547/bus/bus" dev="overlay" ino=3016 res=1 errno=0
[  535.864101][   T40] audit: type=1800 audit(1768261030.654:571): pid=14589 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2237" name="bus" dev="overlay" ino=3016 res=0 errno=0
[  536.029336][T14596] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2241'.
[  536.076238][T14597] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2236'.
[  536.925834][T14609] netlink: 'syz.3.2243': attribute type 12 has an invalid length.
[  537.190381][  T144] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  537.320887][  T144] usb 5-1: device descriptor read/64, error -71
[  537.560912][  T144] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  537.690893][  T144] usb 5-1: device descriptor read/64, error -71
[  537.880757][  T144] usb usb5-port1: attempt power cycle
[  537.958448][T14630] netlink: 'syz.3.2244': attribute type 12 has an invalid length.
[  538.240948][  T144] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  538.261823][  T144] usb 5-1: device descriptor read/8, error -71
[  538.277763][T14637] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2246'.
[  538.462016][T14641] fuse: Bad value for 'fd'
[  538.510691][  T144] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  538.533873][  T144] usb 5-1: device descriptor read/8, error -71
[  538.651965][  T144] usb usb5-port1: unable to enumerate USB device
[  539.307546][T14665] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2251'.
[  539.918776][   T40] audit: type=1804 audit(1768261034.714:572): pid=14680 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2256" name="/newroot/560/bus/bus" dev="overlay" ino=3101 res=1 errno=0
[  539.932916][   T40] audit: type=1804 audit(1768261034.714:573): pid=14680 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2256" name="/newroot/560/bus/bus" dev="overlay" ino=3101 res=1 errno=0
[  539.946649][T14684] netlink: 'syz.4.2254': attribute type 12 has an invalid length.
[  539.949419][   T40] audit: type=1800 audit(1768261034.714:574): pid=14680 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2256" name="bus" dev="overlay" ino=3101 res=0 errno=0
[  540.011116][T14685] fuse: Bad value for 'fd'
[  540.458262][T14689] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  540.461230][T14689] syzkaller0: entered promiscuous mode
[  540.462981][T14689] syzkaller0: entered allmulticast mode
[  540.526100][T14692] tipc: Resetting bearer <eth:syzkaller0>
[  540.561014][T14688] tipc: Resetting bearer <eth:syzkaller0>
[  540.647382][T14688] tipc: Disabling bearer <eth:syzkaller0>
[  540.738371][T14702] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2262'.
[  541.291501][T14713] F2FS-fs: Value of option "test_dummy_encryption" is unrecognized
[  542.265221][T14742] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2273'.
[  542.280212][T14742] fuse: Unknown parameter 'user_i00000000000000000000'
[  543.040113][T14766] F2FS-fs: Value of option "test_dummy_encryption" is unrecognized
[  543.075450][T14767] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2276'.
[  543.156288][T14767] bridge0: left promiscuous mode
[  543.166853][T14767] 8021q: adding VLAN 0 to HW filter on device bond0
[  543.169684][T14767] 8021q: adding VLAN 0 to HW filter on device team0
[  543.201444][T14767] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  543.415835][   T40] audit: type=1804 audit(1768261038.224:575): pid=14776 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2281" name="/newroot/317/bus/bus" dev="overlay" ino=1871 res=1 errno=0
[  543.427764][   T40] audit: type=1804 audit(1768261038.234:576): pid=14776 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2281" name="/newroot/317/bus/bus" dev="overlay" ino=1871 res=1 errno=0
[  543.462262][   T40] audit: type=1800 audit(1768261038.254:577): pid=14776 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2281" name="bus" dev="overlay" ino=1871 res=0 errno=0
[  544.250130][T14793] netlink: 'syz.4.2288': attribute type 12 has an invalid length.
[  545.173952][T14807] netlink: 'syz.0.2292': attribute type 12 has an invalid length.
[  545.953895][   T40] audit: type=1804 audit(1768261040.754:578): pid=14814 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2293" name="/newroot/319/bus/bus" dev="overlay" ino=1890 res=1 errno=0
[  545.961806][   T40] audit: type=1804 audit(1768261040.764:579): pid=14814 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2293" name="/newroot/319/bus/bus" dev="overlay" ino=1890 res=1 errno=0
[  545.968883][   T40] audit: type=1800 audit(1768261040.764:580): pid=14814 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2293" name="bus" dev="overlay" ino=1890 res=0 errno=0
[  546.045430][T14816] F2FS-fs: Value of option "test_dummy_encryption" is unrecognized
[  546.875467][   T40] audit: type=1804 audit(1768261041.684:581): pid=14828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2296" name="/newroot/570/bus/bus" dev="overlay" ino=3161 res=1 errno=0
[  546.940214][   T40] audit: type=1804 audit(1768261041.744:582): pid=14828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2296" name="/newroot/570/bus/bus" dev="overlay" ino=3161 res=1 errno=0
[  546.947380][   T40] audit: type=1800 audit(1768261041.754:583): pid=14828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2296" name="bus" dev="overlay" ino=3161 res=0 errno=0
[  547.573515][T14847] netlink: 'syz.4.2303': attribute type 12 has an invalid length.
[  548.743784][T14873] tipc: Started in network mode
[  548.745347][T14873] tipc: Node identity 66118daaec64, cluster identity 4711
[  548.747541][T14873] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  548.752545][T14873] syzkaller0: entered promiscuous mode
[  548.754363][T14873] syzkaller0: entered allmulticast mode
[  548.852567][T14881] netlink: 'syz.1.2311': attribute type 12 has an invalid length.
[  548.864315][T14873] syzkaller0: mtu less than device minimum
[  548.890793][T14872] tipc: Resetting bearer <eth:syzkaller0>
[  549.061694][T14872] tipc: Disabling bearer <eth:syzkaller0>
[  549.432748][T14888] fuse: Bad value for 'fd'
[  549.633069][T14892] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2317'.
[  549.717170][T14896] warn_alloc: 1 callbacks suppressed
[  549.717183][T14896] syz.4.2319: page allocation failure: order:2, mode:0xcc1(GFP_KERNEL|GFP_DMA), nodemask=(null),cpuset=/,mems_allowed=0-1
[  549.724040][T14896] CPU: 2 UID: 0 PID: 14896 Comm: syz.4.2319 Not tainted syzkaller #0 PREEMPT(full) 
[  549.724056][T14896] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  549.724063][T14896] Call Trace:
[  549.724067][T14896]  <TASK>
[  549.724071][T14896]  dump_stack_lvl+0x16c/0x1f0
[  549.724093][T14896]  warn_alloc+0x248/0x3a0
[  549.724109][T14896]  ? __pfx_warn_alloc+0x10/0x10
[  549.724127][T14896]  ? __mutex_unlock_slowpath+0x161/0x790
[  549.724149][T14896]  __alloc_frozen_pages_noprof+0xe9b/0x2430
[  549.724171][T14896]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  549.724185][T14896]  ? __lock_acquire+0x436/0x2890
[  549.724204][T14896]  ? __lock_acquire+0x436/0x2890
[  549.724218][T14896]  __alloc_pages_noprof+0xb/0x1b0
[  549.724232][T14896]  __dma_direct_alloc_pages.constprop.0+0x4c5/0x950
[  549.724254][T14896]  ? __pfx___dma_direct_alloc_pages.constprop.0+0x10/0x10
[  549.724271][T14896]  ? pfn_valid+0x26a/0x4d0
[  549.724288][T14896]  ? dma_alloc_from_dev_coherent+0x2e4/0x570
[  549.724301][T14896]  dma_direct_alloc+0x8f/0x580
[  549.724319][T14896]  dma_alloc_attrs+0x185/0x2b0
[  549.724334][T14896]  ? __pfx_dma_alloc_attrs+0x10/0x10
[  549.724347][T14896]  ? __kmalloc_noprof+0x35d/0x910
[  549.724360][T14896]  ? dma_direct_supported+0xca/0x220
[  549.724380][T14896]  comedi_isadma_alloc+0x3de/0x6e0
[  549.724402][T14896]  ? __pfx_comedi_isadma_alloc+0x10/0x10
[  549.724421][T14896]  ? request_threaded_irq+0x2c8/0x3e0
[  549.724435][T14896]  pcl818_attach+0x11e6/0x1660
[  549.724454][T14896]  comedi_device_attach+0x3b3/0x900
[  549.724473][T14896]  do_devconfig_ioctl+0x1b1/0x710
[  549.724490][T14896]  ? comedi_unlocked_ioctl+0x167/0x2eb0
[  549.724503][T14896]  ? __pfx_do_devconfig_ioctl+0x10/0x10
[  549.724526][T14896]  ? kasan_save_track+0x14/0x30
[  549.724541][T14896]  ? kasan_save_free_info+0x3b/0x60
[  549.724553][T14896]  ? __kasan_slab_free+0x5f/0x80
[  549.724568][T14896]  ? kfree+0x2f8/0x6e0
[  549.724578][T14896]  ? tomoyo_path_number_perm+0x470/0x580
[  549.724592][T14896]  ? security_file_ioctl_compat+0x9b/0x240
[  549.724606][T14896]  ? __ia32_compat_sys_ioctl+0xc3/0x370
[  549.724620][T14896]  ? __do_fast_syscall_32+0xe8/0x680
[  549.724634][T14896]  comedi_unlocked_ioctl+0x1582/0x2eb0
[  549.724650][T14896]  ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[  549.724671][T14896]  ? kasan_quarantine_put+0x10a/0x240
[  549.724686][T14896]  ? lockdep_hardirqs_on+0x7c/0x110
[  549.724705][T14896]  ? find_held_lock+0x2b/0x80
[  549.724721][T14896]  ? tomoyo_path_number_perm+0x295/0x580
[  549.724736][T14896]  ? tomoyo_path_number_perm+0x18d/0x580
[  549.724751][T14896]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  549.724766][T14896]  comedi_compat_ioctl+0x1ed/0xda0
[  549.724779][T14896]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  549.724791][T14896]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  549.724810][T14896]  ? do_vfs_ioctl+0x128/0x14f0
[  549.724824][T14896]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  549.724841][T14896]  ? find_held_lock+0x2b/0x80
[  549.724856][T14896]  ? hook_file_ioctl_common+0x144/0x410
[  549.724873][T14896]  ? __fget_files+0x20e/0x3c0
[  549.724888][T14896]  ? __ia32_compat_sys_openat+0x140/0x210
[  549.724905][T14896]  ? __pfx_comedi_compat_ioctl+0x10/0x10
[  549.724918][T14896]  __ia32_compat_sys_ioctl+0x242/0x370
[  549.724934][T14896]  __do_fast_syscall_32+0xe8/0x680
[  549.724960][T14896]  do_fast_syscall_32+0x32/0x80
[  549.724972][T14896]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  549.724986][T14896] RIP: 0023:0xf70ed579
[  549.724996][T14896] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  549.725007][T14896] RSP: 002b:00000000f54dd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  549.725018][T14896] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000040946400
[  549.725025][T14896] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[  549.725032][T14896] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  549.725038][T14896] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  549.725045][T14896] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  549.725059][T14896]  </TASK>
[  549.725063][T14896] Mem-Info:
[  549.781050][T14900] netlink: 'syz.3.2320': attribute type 3 has an invalid length.
[  549.782562][T14896] active_anon:533 inactive_anon:1090 isolated_anon:0
[  549.782562][T14896]  active_file:2037 inactive_file:9263 isolated_file:0
[  549.782562][T14896]  unevictable:1768 dirty:45 writeback:0
[  549.782562][T14896]  slab_reclaimable:8509 slab_unreclaimable:99759
[  549.782562][T14896]  mapped:21852 shmem:1769 pagetables:1500
[  549.782562][T14896]  sec_pagetables:347 bounce:0
[  549.782562][T14896]  kernel_misc_reclaimable:0
[  549.782562][T14896]  free:32979 free_pcp:2 free_cma:0
[  549.783896][T14900] netlink: 68 bytes leftover after parsing attributes in process `syz.3.2320'.
[  549.785210][T14896] Node 0 active_anon:8kB inactive_anon:476kB active_file:4kB inactive_file:1100kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:168kB dirty:0kB writeback:0kB shmem:3172kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9224kB pagetables:1440kB sec_pagetables:1144kB all_unreclaimable? yes Balloon:0kB
[  549.884808][T14896] Node 0 DMA free:1712kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:4kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  549.894295][T14896] lowmem_reserve[]: 0 289 289 289 289
[  549.896271][T14896] Node 0 DMA: 4*4kB (U) 4*8kB (U) 3*16kB (U) 2*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 0*2048kB 0*4096kB = 1696kB
[  549.900890][T14896] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  549.903870][T14896] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  549.906736][T14896] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  549.909676][T14896] Node 1 hugepages_total=6 hugepages_free=0 hugepages_surp=4 hugepages_size=2048kB
[  549.912567][T14896] 14351 total pagecache pages
[  549.914067][T14896] 1238 pages in swap cache
[  549.915482][T14896] Free swap  = 88392kB
[  549.916738][T14896] Total swap = 124996kB
[  549.918049][T14896] 524155 pages RAM
[  549.919195][T14896] 0 pages HighMem/MovableOnly
[  549.920855][T14896] 209061 pages reserved
[  549.922409][T14896] 0 pages cma reserved
[  550.287422][T14916] overlayfs: missing 'workdir'
[  550.380945][T14919] netlink: 'syz.4.2325': attribute type 12 has an invalid length.
[  550.673240][T14923] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2323'.
[  550.906690][T14923] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  551.276272][T14939] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  551.283834][T14939] syzkaller0: entered promiscuous mode
[  551.286662][T14939] syzkaller0: entered allmulticast mode
[  551.413871][T14939] syzkaller0: mtu greater than device maximum
[  551.420874][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  551.451080][T14938] tipc: Resetting bearer <eth:syzkaller0>
[  551.591698][T14938] tipc: Disabling bearer <eth:syzkaller0>
[  551.973446][T14950] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2333'.
[  552.132058][T14956] netlink: 'syz.1.2335': attribute type 12 has an invalid length.
[  552.683267][T14966] netlink: 'syz.3.2339': attribute type 12 has an invalid length.
[  553.210755][ T6032] usb 6-1: new low-speed USB device number 18 using dummy_hcd
[  553.293273][T14978] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2340'.
[  553.320844][T14978] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  553.362130][ T6032] usb 6-1: No LPM exit latency info found, disabling LPM.
[  553.365394][ T6032] usb 6-1: config 1 interface 0 altsetting 41 endpoint 0x1 is Bulk; changing to Interrupt
[  553.368485][ T6032] usb 6-1: config 1 interface 0 altsetting 41 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  553.394484][ T6032] usb 6-1: config 1 interface 0 has no altsetting 0
[  553.402425][ T6032] usb 6-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[  553.406167][ T6032] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  553.409727][ T6032] usb 6-1: Product: 煌�囕㉡�Ƨ쫢⩆ꎛꛎ��ᆡ챲⢌诱䌎��↰蘩⬡�㞋�勾ນꗡ䎗ꯈꂋꀦ꟔ⳙ豷�䌋ꤖǾ⚦�궟�䪲㤃愾�᷺봰퀢㑻쾥�윺瓘ͦ埭ꢹ㷧꧲쨛�葭熷苺얨郥�畒�䙆辈絓ᖛ㴳魋Ҙ呈珞㳋嬣킥⇸�拾뤡則
[  553.425776][ T6032] usb 6-1: SerialNumber: 뉕
[  553.431861][T14974] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  553.440801][T14974] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  553.894298][ T6032] usb 6-1: USB disconnect, device number 18
[  554.397085][T14996] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  555.763589][T15010] netlink: 'syz.3.2351': attribute type 12 has an invalid length.
[  556.970808][T15033] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2354'.
[  556.991139][T15033] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  557.653289][T15052] netlink: 'syz.0.2361': attribute type 12 has an invalid length.
[  557.835159][T15055] netlink: 'syz.4.2364': attribute type 12 has an invalid length.
[  560.881785][T15111] netlink: 'syz.3.2378': attribute type 12 has an invalid length.
[  561.701319][T15122] veth0_to_bridge: entered promiscuous mode
[  561.953767][T15117] veth0_to_bridge: left promiscuous mode
[  564.283324][T15157] netlink: 'syz.3.2389': attribute type 12 has an invalid length.
[  567.058478][T15190] fuse: Bad value for 'fd'
[  567.493969][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  567.837028][T15201] netlink: 'syz.0.2399': attribute type 12 has an invalid length.
[  567.845670][T15202] trusted_key: encrypted_key: keylen parameter is missing
[  568.046509][T15206] netlink: 'syz.4.2401': attribute type 12 has an invalid length.
[  568.371695][T15220] netlink: 'syz.1.2404': attribute type 12 has an invalid length.
[  568.821404][T15228] netlink: 'syz.0.2407': attribute type 12 has an invalid length.
[  568.860474][T15231] fuse: Bad value for 'fd'
[  569.026990][T15234] nr0: entered promiscuous mode
[  569.373618][ T5961] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  569.377722][ T5961] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  569.380397][ T5961] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  569.383025][ T5961] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  569.385406][ T5961] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  569.546585][T15247] input: syz1 as /devices/virtual/input/input25
[  569.548568][T15247] input: failed to attach handler leds to device input25, error: -6
[  569.904665][T15240] chnl_net:caif_netlink_parms(): no params data found
[  569.907339][T15259] netlink: 'syz.0.2415': attribute type 12 has an invalid length.
[  570.079711][T15240] bridge0: port 1(bridge_slave_0) entered blocking state
[  570.088256][T15240] bridge0: port 1(bridge_slave_0) entered disabled state
[  570.110004][T15240] bridge_slave_0: entered allmulticast mode
[  570.113706][T15240] bridge_slave_0: entered promiscuous mode
[  570.127136][T15240] bridge0: port 2(bridge_slave_1) entered blocking state
[  570.129522][T15240] bridge0: port 2(bridge_slave_1) entered disabled state
[  570.136704][T15240] bridge_slave_1: entered allmulticast mode
[  570.145766][T15240] bridge_slave_1: entered promiscuous mode
[  570.170515][T15240] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  570.175064][T15240] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  570.191027][T15240] team0: Port device team_slave_0 added
[  570.194406][T15240] team0: Port device team_slave_1 added
[  570.209587][T15240] batman_adv: batadv0: Adding interface: batadv_slave_0
[  570.211964][T15240] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  570.220174][T15240] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  570.224892][T15240] batman_adv: batadv0: Adding interface: batadv_slave_1
[  570.227444][T15240] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  570.236522][T15240] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  570.260647][T15240] hsr_slave_0: entered promiscuous mode
[  570.263071][T15240] hsr_slave_1: entered promiscuous mode
[  570.265341][T15240] debugfs: 'hsr0' already exists in 'hsr'
[  570.267257][T15240] Cannot create hsr debugfs directory
[  570.798117][T15284] netlink: 'syz.0.2417': attribute type 12 has an invalid length.
[  571.072175][T15283] netlink: 'syz.1.2416': attribute type 12 has an invalid length.
[  571.208155][T15240] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  571.253809][T15240] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  571.292770][T15240] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  571.330467][ T5961] Bluetooth: hci4: command 0x1003 tx timeout
[  571.330787][ T5300] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  571.343495][T15240] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  571.411704][ T5300] Bluetooth: hci5: command tx timeout
[  571.419272][T15240] 8021q: adding VLAN 0 to HW filter on device bond0
[  571.438943][T15240] 8021q: adding VLAN 0 to HW filter on device team0
[  571.448881][ T4391] bridge0: port 1(bridge_slave_0) entered blocking state
[  571.451723][ T4391] bridge0: port 1(bridge_slave_0) entered forwarding state
[  571.463617][ T4391] bridge0: port 2(bridge_slave_1) entered blocking state
[  571.466612][ T4391] bridge0: port 2(bridge_slave_1) entered forwarding state
[  571.675972][T15240] 8021q: adding VLAN 0 to HW filter on device batadv0
[  571.709249][T15240] veth0_vlan: entered promiscuous mode
[  571.716849][T15240] veth1_vlan: entered promiscuous mode
[  571.738750][T15240] veth0_macvtap: entered promiscuous mode
[  571.820863][T15240] veth1_macvtap: entered promiscuous mode
[  571.825655][T15311] fuse: Bad value for 'fd'
[  571.842819][T15240] batman_adv: batadv0: Interface activated: batadv_slave_0
[  571.849989][T15240] batman_adv: batadv0: Interface activated: batadv_slave_1
[  571.857831][   T92] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  571.862698][   T92] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  571.867089][   T92] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  571.870032][   T92] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  572.059867][   T92] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  572.062465][   T92] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  572.081793][T15318] netlink: 'syz.0.2421': attribute type 12 has an invalid length.
[  572.084262][   T92] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  572.086875][   T92] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  572.494994][T15325] input: syz1 as /devices/virtual/input/input26
[  572.504524][T15325] input: failed to attach handler leds to device input26, error: -6
[  572.649508][ T5961] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  572.653212][ T5961] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  572.655568][ T5961] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  572.658178][ T5961] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  572.662176][ T5961] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  572.742139][T15337] netlink: 'syz.4.2424': attribute type 12 has an invalid length.
[  573.022887][T15330] chnl_net:caif_netlink_parms(): no params data found
[  573.338733][T15330] bridge0: port 1(bridge_slave_0) entered blocking state
[  573.341446][T15330] bridge0: port 1(bridge_slave_0) entered disabled state
[  573.343683][T15330] bridge_slave_0: entered allmulticast mode
[  573.346387][T15330] bridge_slave_0: entered promiscuous mode
[  573.349561][T15330] bridge0: port 2(bridge_slave_1) entered blocking state
[  573.352158][T15330] bridge0: port 2(bridge_slave_1) entered disabled state
[  573.354431][T15330] bridge_slave_1: entered allmulticast mode
[  573.357166][T15330] bridge_slave_1: entered promiscuous mode
[  573.375808][T15330] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  573.380315][T15330] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  573.396639][T15330] team0: Port device team_slave_0 added
[  573.400079][T15330] team0: Port device team_slave_1 added
[  573.413837][T15330] batman_adv: batadv0: Adding interface: batadv_slave_0
[  573.416006][T15330] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  573.424308][T15330] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  573.428571][T15330] batman_adv: batadv0: Adding interface: batadv_slave_1
[  573.431119][T15330] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  573.439020][T15330] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  573.490718][ T5961] Bluetooth: hci5: command tx timeout
[  573.526319][T15330] hsr_slave_0: entered promiscuous mode
[  573.529468][T15330] hsr_slave_1: entered promiscuous mode
[  573.531884][T15330] debugfs: 'hsr0' already exists in 'hsr'
[  573.533679][T15330] Cannot create hsr debugfs directory
[  574.690994][ T5961] Bluetooth: hci3: command tx timeout
[  575.133675][T15330] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  575.211173][T15383] loop0: detected capacity change from 0 to 2560
[  575.229500][T15383] Buffer I/O error on dev loop0, logical block 0, lost async page write
[  575.232703][T15383] Buffer I/O error on dev loop0, logical block 1, lost async page write
[  575.235466][T15383] Buffer I/O error on dev loop0, logical block 2, lost async page write
[  575.238246][T15383] Buffer I/O error on dev loop0, logical block 3, lost async page write
[  575.241333][T15383] Buffer I/O error on dev loop0, logical block 4, lost async page write
[  575.244037][T15383] Buffer I/O error on dev loop0, logical block 5, lost async page write
[  575.246798][T15383] Buffer I/O error on dev loop0, logical block 6, lost async page write
[  575.249686][T15383] Buffer I/O error on dev loop0, logical block 7, lost async page write
[  575.253058][T15383] Buffer I/O error on dev loop0, logical block 8, lost async page write
[  575.255967][T15383] Buffer I/O error on dev loop0, logical block 9, lost async page write
[  575.362543][T15382] netlink: 'syz.0.2433': attribute type 2 has an invalid length.
[  575.380886][T15330] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  575.403571][T15330] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  575.484436][T15330] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  575.570491][ T5961] Bluetooth: hci5: command tx timeout
[  575.574834][T15330] 8021q: adding VLAN 0 to HW filter on device bond0
[  575.584208][T15330] 8021q: adding VLAN 0 to HW filter on device team0
[  575.593229][ T7338] bridge0: port 1(bridge_slave_0) entered blocking state
[  575.596088][ T7338] bridge0: port 1(bridge_slave_0) entered forwarding state
[  575.612694][ T7338] bridge0: port 2(bridge_slave_1) entered blocking state
[  575.615528][ T7338] bridge0: port 2(bridge_slave_1) entered forwarding state
[  575.721576][T15403] netlink: 'syz.0.2435': attribute type 12 has an invalid length.
[  575.778481][T15330] 8021q: adding VLAN 0 to HW filter on device batadv0
[  575.948978][T15330] veth0_vlan: entered promiscuous mode
[  575.963455][T15330] veth1_vlan: entered promiscuous mode
[  575.997429][T15330] veth0_macvtap: entered promiscuous mode
[  576.003824][T15330] veth1_macvtap: entered promiscuous mode
[  576.019223][T15330] batman_adv: batadv0: Interface activated: batadv_slave_0
[  576.029740][T15330] batman_adv: batadv0: Interface activated: batadv_slave_1
[  576.048687][ T7338] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  576.094790][ T7338] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  576.102507][ T7338] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  576.190977][ T7338] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  576.229671][ T7339] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  576.233086][ T7339] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  576.268402][ T7338] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  576.271475][ T7338] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  576.771583][ T5961] Bluetooth: hci3: command tx timeout
[  576.849058][T15427] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2423'.
[  576.908162][T15427] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  577.660548][ T5961] Bluetooth: hci5: command tx timeout
[  578.192088][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  578.196167][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  578.199947][T15445] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  578.203273][T15445] UDF-fs: Scanning with blocksize 512 failed
[  578.206797][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  578.211782][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  578.215451][T15445] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  578.218672][T15445] UDF-fs: Scanning with blocksize 1024 failed
[  578.224378][T15446] netlink: 'syz.3.2446': attribute type 12 has an invalid length.
[  578.402297][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  578.406423][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  578.412021][T15445] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  578.415170][T15445] UDF-fs: Scanning with blocksize 2048 failed
[  578.420807][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256
[  578.424877][T15445] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512
[  578.437938][T15445] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found
[  578.442017][T15445] UDF-fs: Scanning with blocksize 4096 failed
[  578.461790][T15445] UDF-fs: warning (device nbd4): udf_fill_super: No partition found (1)
[  578.576750][T15445] block nbd4: NBD_DISCONNECT
[  578.862030][ T5961] Bluetooth: hci3: command tx timeout
[  578.954422][T15455] warn_alloc: 4 callbacks suppressed
[  578.954433][T15455] syz.0.2448: vmalloc error: size 2037431678, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  578.961184][T15455] CPU: 3 UID: 0 PID: 15455 Comm: syz.0.2448 Not tainted syzkaller #0 PREEMPT(full) 
[  578.961201][T15455] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  578.961209][T15455] Call Trace:
[  578.961214][T15455]  <TASK>
[  578.961219][T15455]  dump_stack_lvl+0x16c/0x1f0
[  578.961242][T15455]  warn_alloc+0x248/0x3a0
[  578.961260][T15455]  ? __pfx_warn_alloc+0x10/0x10
[  578.961280][T15455]  ? stack_trace_save+0x8e/0xc0
[  578.961299][T15455]  ? __pfx_stack_trace_save+0x10/0x10
[  578.961321][T15455]  __vmalloc_node_range_noprof+0x12c2/0x16b0
[  578.961334][T15455]  ? kasan_save_stack+0x42/0x60
[  578.961349][T15455]  ? kasan_save_stack+0x33/0x60
[  578.961364][T15455]  ? kasan_save_track+0x14/0x30
[  578.961379][T15455]  ? kasan_save_free_info+0x3b/0x60
[  578.961392][T15455]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  578.961411][T15455]  ? policy_nodemask+0xea/0x4e0
[  578.961428][T15455]  ? drm_property_create_blob+0x79/0x330
[  578.961448][T15455]  ? alloc_pages_mpol+0x25a/0x550
[  578.961466][T15455]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  578.961483][T15455]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  578.961499][T15455]  ? ___kmalloc_large_node+0x10c/0x150
[  578.961512][T15455]  __kvmalloc_node_noprof+0x42c/0xa40
[  578.961547][T15455]  ? drm_property_create_blob+0x79/0x330
[  578.961568][T15455]  ? drm_property_create_blob+0x79/0x330
[  578.961590][T15455]  ? drm_property_create_blob+0x79/0x330
[  578.961608][T15455]  drm_property_create_blob+0x79/0x330
[  578.961626][T15455]  ? find_held_lock+0x2b/0x80
[  578.961644][T15455]  drm_mode_createblob_ioctl+0x10d/0x450
[  578.961666][T15455]  drm_ioctl_kernel+0x1f4/0x3e0
[  578.961680][T15455]  ? __pfx_drm_mode_createblob_ioctl+0x10/0x10
[  578.961700][T15455]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  578.961716][T15455]  drm_ioctl+0x5c9/0xc30
[  578.961730][T15455]  ? __pfx_drm_mode_createblob_ioctl+0x10/0x10
[  578.961749][T15455]  ? __pfx_drm_ioctl+0x10/0x10
[  578.961771][T15455]  drm_compat_ioctl+0x327/0x460
[  578.961787][T15455]  ? __pfx_drm_compat_ioctl+0x10/0x10
[  578.961803][T15455]  __ia32_compat_sys_ioctl+0x242/0x370
[  578.961825][T15455]  __do_fast_syscall_32+0xe8/0x680
[  578.961839][T15455]  do_fast_syscall_32+0x32/0x80
[  578.961852][T15455]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  578.961868][T15455] RIP: 0023:0xf707d579
[  578.961878][T15455] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  578.961891][T15455] RSP: 002b:00000000f546d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  578.961903][T15455] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000c01064bd
[  578.961910][T15455] RDX: 00000000800001c0 RSI: 0000000000000000 RDI: 0000000000000000
[  578.961918][T15455] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  578.961925][T15455] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  578.961932][T15455] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  578.961948][T15455]  </TASK>
[  578.961987][T15455] Mem-Info:
[  579.065181][T15455] active_anon:3979 inactive_anon:463 isolated_anon:0
[  579.065181][T15455]  active_file:1099 inactive_file:1399 isolated_file:0
[  579.065181][T15455]  unevictable:1768 dirty:198 writeback:0
[  579.065181][T15455]  slab_reclaimable:9196 slab_unreclaimable:111604
[  579.065181][T15455]  mapped:26005 shmem:4624 pagetables:1434
[  579.065181][T15455]  sec_pagetables:347 bounce:0
[  579.065181][T15455]  kernel_misc_reclaimable:0
[  579.065181][T15455]  free:20792 free_pcp:1785 free_cma:0
[  579.079475][T15455] Node 0 active_anon:292kB inactive_anon:8kB active_file:144kB inactive_file:8kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:4756kB dirty:12kB writeback:0kB shmem:3172kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8972kB pagetables:1248kB sec_pagetables:1144kB all_unreclaimable? yes Balloon:0kB
[  579.089447][T15455] Node 1 active_anon:13724kB inactive_anon:1844kB active_file:4252kB inactive_file:5588kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:97764kB dirty:780kB writeback:0kB shmem:15324kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5700kB pagetables:4488kB sec_pagetables:244kB all_unreclaimable? no Balloon:0kB
[  579.100139][T15455] Node 0 DMA free:1884kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  579.109521][T15455] lowmem_reserve[]: 0 289 289 289 289
[  579.111765][T15455] Node 0 DMA32 free:13284kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:2048KB free_highatomic:216KB active_anon:292kB inactive_anon:8kB active_file:144kB inactive_file:8kB unevictable:3536kB writepending:12kB zspages:1580kB present:1032196kB managed:296804kB mlocked:0kB bounce:0kB free_pcp:296kB local_pcp:48kB free_cma:0kB
[  579.122220][T15455] lowmem_reserve[]: 0 0 0 0 0
[  579.123780][T15455] Node 1 DMA32 free:68000kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:2048KB free_highatomic:760KB active_anon:13724kB inactive_anon:1844kB active_file:4252kB inactive_file:5588kB unevictable:3536kB writepending:780kB zspages:4988kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:8812kB local_pcp:1984kB free_cma:0kB
[  579.134661][T15455] lowmem_reserve[]: 0 0 0 0 0
[  579.136263][T15455] Node 0 DMA: 5*4kB (U) 1*8kB (U) 6*16kB (U) 5*32kB (U) 3*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 0*2048kB 0*4096kB = 1884kB
[  579.141578][T15455] Node 0 DMA32: 147*4kB (UME) 311*8kB (UMEH) 178*16kB (UMEH) 102*32kB (UMH) 56*64kB (UM) 4*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 13284kB
[  579.152785][T15455] Node 1 DMA32: 1296*4kB (UEH) 76*8kB (UEH) 369*16kB (UMEH) 120*32kB (UMH) 49*64kB (MEH) 61*128kB (UME) 94*256kB (UM) 10*512kB (U) 8*1024kB (U) 0*2048kB 1*4096kB (U) = 67952kB
[  579.160804][T15455] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  579.168469][T15455] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  579.180856][T15455] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  579.188778][T15455] Node 1 hugepages_total=4 hugepages_free=0 hugepages_surp=2 hugepages_size=2048kB
[  579.192969][T15455] 6328 total pagecache pages
[  579.198949][T15455] 692 pages in swap cache
[  579.203077][T15455] Free swap  = 88264kB
[  579.209132][T15455] Total swap = 124996kB
[  579.212718][T15455] 524155 pages RAM
[  579.214727][T15455] 0 pages HighMem/MovableOnly
[  579.216655][T15455] 209061 pages reserved
[  579.218071][T15455] 0 pages cma reserved
[  579.366546][T15462] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2450'.
[  579.696706][T15466] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2449'.
[  579.732236][T15466] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  580.795949][T15485] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2453'.
[  580.931940][ T5961] Bluetooth: hci3: command tx timeout
[  580.950534][T15485] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  581.100394][T15489] loop0: detected capacity change from 0 to 2560
[  581.123580][T15489] buffer_io_error: 310 callbacks suppressed
[  581.123628][T15489] Buffer I/O error on dev loop0, logical block 0, lost async page write
[  581.128329][T15489] Buffer I/O error on dev loop0, logical block 1, lost async page write
[  581.131434][T15489] Buffer I/O error on dev loop0, logical block 2, lost async page write
[  581.134182][T15489] Buffer I/O error on dev loop0, logical block 3, lost async page write
[  581.140374][   T92] Buffer I/O error on dev loop0, logical block 256, lost async page write
[  581.143486][   T92] Buffer I/O error on dev loop0, logical block 257, lost async page write
[  581.146370][   T92] Buffer I/O error on dev loop0, logical block 258, lost async page write
[  581.159122][T15489] Buffer I/O error on dev loop0, logical block 4, lost async page write
[  581.162013][T15489] Buffer I/O error on dev loop0, logical block 5, lost async page write
[  581.165550][T15489] Buffer I/O error on dev loop0, logical block 6, lost async page write
[  581.226008][ T5961] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  581.229290][ T5961] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  581.232746][ T5961] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  581.235625][ T5961] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  581.238269][ T5961] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  581.878207][T15496] netlink: 'syz.3.2458': attribute type 12 has an invalid length.
[  582.521983][T15490] chnl_net:caif_netlink_parms(): no params data found
[  582.830851][T15490] bridge0: port 1(bridge_slave_0) entered blocking state
[  582.833255][T15490] bridge0: port 1(bridge_slave_0) entered disabled state
[  582.836358][T15490] bridge_slave_0: entered allmulticast mode
[  582.839289][T15490] bridge_slave_0: entered promiscuous mode
[  582.852243][T15490] bridge0: port 2(bridge_slave_1) entered blocking state
[  582.855258][T15490] bridge0: port 2(bridge_slave_1) entered disabled state
[  582.860997][T15490] bridge_slave_1: entered allmulticast mode
[  582.864588][T15490] bridge_slave_1: entered promiscuous mode
[  582.880868][T15490] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  582.885332][T15490] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  582.901030][T15490] team0: Port device team_slave_0 added
[  582.904125][T15490] team0: Port device team_slave_1 added
[  582.917103][T15490] batman_adv: batadv0: Adding interface: batadv_slave_0
[  582.919361][T15490] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  582.930412][T15490] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  582.936318][T15490] batman_adv: batadv0: Adding interface: batadv_slave_1
[  582.938705][T15490] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  582.949486][T15490] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  582.973335][T15490] hsr_slave_0: entered promiscuous mode
[  582.976129][T15490] hsr_slave_1: entered promiscuous mode
[  582.978715][T15490] debugfs: 'hsr0' already exists in 'hsr'
[  582.981443][T15490] Cannot create hsr debugfs directory
[  583.001341][   T40] audit: type=1326 audit(1768261077.814:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15507 comm="syz.3.2461" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  583.030487][   T40] audit: type=1326 audit(1768261077.824:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15507 comm="syz.3.2461" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  583.037605][   T40] audit: type=1326 audit(1768261077.824:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15507 comm="syz.3.2461" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  583.050475][   T40] audit: type=1326 audit(1768261077.824:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15507 comm="syz.3.2461" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  583.059085][   T40] audit: type=1326 audit(1768261077.824:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15507 comm="syz.3.2461" exe="/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  583.071853][   T40] audit: type=1326 audit(1768261077.824:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15507 comm="syz.3.2461" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  583.083927][   T40] audit: type=1326 audit(1768261077.824:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15507 comm="syz.3.2461" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  583.092116][   T40] audit: type=1326 audit(1768261077.824:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15507 comm="syz.3.2461" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  583.105198][   T40] audit: type=1326 audit(1768261077.824:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15507 comm="syz.3.2461" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  583.114337][   T40] audit: type=1326 audit(1768261077.824:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15507 comm="syz.3.2461" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70dd579 code=0x7ffc0000
[  583.260478][ T5961] Bluetooth: hci4: command tx timeout
[  583.997122][T15490] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  584.088448][T15490] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  584.132322][T15546] netlink: 'syz.1.2468': attribute type 12 has an invalid length.
[  584.160509][T15490] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  584.195586][T15490] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  584.392580][T15490] 8021q: adding VLAN 0 to HW filter on device bond0
[  584.404409][T15490] 8021q: adding VLAN 0 to HW filter on device team0
[  584.410974][ T7338] bridge0: port 1(bridge_slave_0) entered blocking state
[  584.413765][ T7338] bridge0: port 1(bridge_slave_0) entered forwarding state
[  584.422044][T13855] bridge0: port 2(bridge_slave_1) entered blocking state
[  584.424494][T13855] bridge0: port 2(bridge_slave_1) entered forwarding state
[  584.574535][T15490] 8021q: adding VLAN 0 to HW filter on device batadv0
[  584.598947][T15490] veth0_vlan: entered promiscuous mode
[  584.603978][T15490] veth1_vlan: entered promiscuous mode
[  584.619163][T15490] veth0_macvtap: entered promiscuous mode
[  584.625080][T15490] veth1_macvtap: entered promiscuous mode
[  584.634344][T15490] batman_adv: batadv0: Interface activated: batadv_slave_0
[  584.641085][T15490] batman_adv: batadv0: Interface activated: batadv_slave_1
[  584.654568][ T4391] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  584.657384][ T4391] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  584.663706][ T4391] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  584.667246][ T4391] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  584.971624][ T7338] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  584.974101][ T7338] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  585.001318][ T7338] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  585.003792][ T7338] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  585.293839][T15569] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2470'.
[  585.337203][ T5961] Bluetooth: hci4: command tx timeout
[  585.502892][T15577] siw: device registration error -23
[  585.551257][T15569] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  585.556331][T15574] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2456'.
[  585.600341][T15576] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2456'.
[  585.785210][T15580] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2472'.
[  585.831757][T15580] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  586.367008][T15583] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  586.425963][T15591] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(11)
[  586.428754][T15591] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  586.433233][T15591] vhci_hcd vhci_hcd.0: Device attached
[  586.621192][ T6032] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  586.690450][ T6032] usb 37-1: new low-speed USB device number 8 using vhci_hcd
[  586.796455][T15604] netlink: 'syz.3.2477': attribute type 12 has an invalid length.
[  587.221651][T15592] vhci_hcd: connection reset by peer
[  587.234592][T15499] vhci_hcd vhci_hcd.0: stop threads
[  587.236929][T15499] vhci_hcd vhci_hcd.0: release socket
[  587.239364][T15499] vhci_hcd vhci_hcd.0: disconnect device
[  587.364562][ T6033] IPVS: starting estimator thread 0...
[  587.410419][ T5961] Bluetooth: hci4: command tx timeout
[  587.480426][T15612] IPVS: using max 42 ests per chain, 100800 per kthread
[  587.665230][   T76] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x4
[  587.668477][   T76] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x2
[  587.673710][   T76] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  587.677613][   T76] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  587.681970][   T76] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  587.686624][   T76] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  587.689852][   T76] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  587.693816][   T76] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  587.697153][   T76] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  587.701544][   T76] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0
[  587.707937][   T76] hid-generic 0000:3000000:0000.0007: hidraw1: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  587.803494][T15619] fido_id[15619]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  587.983452][T15626] netlink: 13 bytes leftover after parsing attributes in process `syz.4.2481'.
[  588.646805][T15632] siw: device registration error -23
[  588.668370][T15583] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  588.854940][T15630] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2482'.
[  588.859931][T15631] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2482'.
[  589.500909][ T5961] Bluetooth: hci4: command tx timeout
[  589.605179][T15647] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2483'.
[  589.671806][T15647] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  590.011736][T15583] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  590.035571][T15656] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2486'.
[  590.183133][T15660] netlink: 'syz.4.2487': attribute type 12 has an invalid length.
[  590.314664][T15583] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  590.515166][   T13] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  590.540993][   T13] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  590.550398][   T13] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  590.557901][ T7338] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  590.943885][T15682] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  590.946054][T15682] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  590.949027][T15682] vhci_hcd vhci_hcd.0: Device attached
[  591.230590][ T6164] usb 44-1: SetAddress Request (14) to port 0
[  591.233435][ T6164] usb 44-1: new SuperSpeed USB device number 14 using vhci_hcd
[  591.741839][T15685] vhci_hcd: connection reset by peer
[  591.743776][ T7338] vhci_hcd vhci_hcd.3: stop threads
[  591.745594][ T7338] vhci_hcd vhci_hcd.3: release socket
[  591.747406][ T7338] vhci_hcd vhci_hcd.3: disconnect device
[  591.800522][ T6032] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  592.002809][T15702] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2495'.
[  592.040856][T15702] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  592.471076][T15694] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  592.473394][T15694] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  592.533621][T15694] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  592.613140][T15694] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  592.615907][T15694] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  592.702361][T15694] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  592.804161][T15694] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  592.806231][T15694] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  592.841571][T15694] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  592.997620][T15714] Invalid argument reading file caps for ./file0
[  593.105408][T15719] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(11)
[  593.108132][T15719] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  593.112138][T15719] vhci_hcd vhci_hcd.0: Device attached
[  593.254894][T15732] netlink: 'syz.1.2501': attribute type 12 has an invalid length.
[  593.290672][ T5870] vhci_hcd vhci_hcd.4: vhci_device speed not set
[  593.370373][ T5870] usb 45-1: new full-speed USB device number 2 using vhci_hcd
[  593.811403][T15720] vhci_hcd: connection reset by peer
[  593.820968][ T5961] Bluetooth: hci5: command 0x0c1a tx timeout
[  593.822319][ T7333] vhci_hcd vhci_hcd.4: stop threads
[  593.853856][ T7333] vhci_hcd vhci_hcd.4: release socket
[  593.856096][ T7333] vhci_hcd vhci_hcd.4: disconnect device
[  594.373944][T15755] netlink: 'syz.1.2508': attribute type 4 has an invalid length.
[  594.377112][T15755] netlink: 152 bytes leftover after parsing attributes in process `syz.1.2508'.
[  594.389045][T15755] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[  594.690910][ T5961] Bluetooth: hci3: command 0x0c1a tx timeout
[  594.772161][T15762] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2509'.
[  594.831054][T15762] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  594.850440][ T5961] Bluetooth: hci4: command 0x0c1a tx timeout
[  595.406361][T15779] batadv_slave_1: entered promiscuous mode
[  595.512022][T15778] batadv_slave_1: left promiscuous mode
[  595.799573][T15793] netlink: 13 bytes leftover after parsing attributes in process `syz.0.2516'.
[  595.864363][T15782] netlink: 'syz.4.2514': attribute type 2 has an invalid length.
[  595.892551][ T5961] Bluetooth: hci5: command 0x0c1a tx timeout
[  596.530336][ T6164] usb 44-1: device descriptor read/8, error -110
[  596.770731][ T5961] Bluetooth: hci3: command 0x0c1a tx timeout
[  596.889180][T15799] netlink: 'syz.1.2518': attribute type 11 has an invalid length.
[  596.931221][ T5954] Bluetooth: hci4: command 0x0c1a tx timeout
[  597.056127][ T6164] usb usb44-port1: attempt power cycle
[  597.670772][ T6164] usb usb44-port1: unable to enumerate USB device
[  597.970396][ T5954] Bluetooth: hci5: command 0x0c1a tx timeout
[  598.630409][ T5870] vhci_hcd vhci_hcd.4: vhci_device speed not set
[  598.851448][ T5954] Bluetooth: hci3: command 0x0c1a tx timeout
[  599.010392][ T5954] Bluetooth: hci4: command 0x0c1a tx timeout
[  599.044791][T15835] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2524'.
[  599.152170][T15838] netlink: 'syz.4.2533': attribute type 12 has an invalid length.
[  599.195729][T15837] warn_alloc: 2 callbacks suppressed
[  599.195804][T15837] syz.0.2524: page allocation failure: order:10, mode:0x40dc0(GFP_KERNEL|__GFP_ZERO|__GFP_COMP), nodemask=(null),cpuset=/,mems_allowed=0-1
[  599.207902][T15835] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  599.338121][T15837] CPU: 1 UID: 0 PID: 15837 Comm: syz.0.2524 Not tainted syzkaller #0 PREEMPT(full) 
[  599.338138][T15837] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  599.338145][T15837] Call Trace:
[  599.338150][T15837]  <TASK>
[  599.338154][T15837]  dump_stack_lvl+0x16c/0x1f0
[  599.338177][T15837]  warn_alloc+0x248/0x3a0
[  599.338192][T15837]  ? __pfx_warn_alloc+0x10/0x10
[  599.338207][T15837]  ? __alloc_pages_direct_compact+0x466/0x580
[  599.338222][T15837]  ? __pfx___alloc_pages_direct_compact+0x10/0x10
[  599.338237][T15837]  ? trace_irq_enable.constprop.0+0x2f/0x110
[  599.338257][T15837]  ? psi_memstall_leave+0x3b/0x2d0
[  599.338276][T15837]  __alloc_frozen_pages_noprof+0xe9b/0x2430
[  599.338298][T15837]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  599.338317][T15837]  ? find_held_lock+0x2b/0x80
[  599.338332][T15837]  ? aa_file_perm+0x29e/0x1560
[  599.338350][T15837]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  599.338368][T15837]  ? policy_nodemask+0xea/0x4e0
[  599.338388][T15837]  alloc_pages_mpol+0x1fb/0x550
[  599.338405][T15837]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  599.338422][T15837]  ? stack_trace_save+0x8e/0xc0
[  599.338440][T15837]  ? __pfx_stack_trace_save+0x10/0x10
[  599.338460][T15837]  ___kmalloc_large_node+0x10c/0x150
[  599.338473][T15837]  __kmalloc_large_node_noprof+0x1c/0x70
[  599.338485][T15837]  __kmalloc_noprof.cold+0xc/0x62
[  599.338502][T15837]  ? common_file_perm+0x1b1/0x500
[  599.338516][T15837]  ? qrtr_tun_write_iter+0xc1/0x1b0
[  599.338532][T15837]  ? qrtr_tun_write_iter+0xc1/0x1b0
[  599.338545][T15837]  qrtr_tun_write_iter+0xc1/0x1b0
[  599.338559][T15837]  aio_write+0x3b9/0x910
[  599.338578][T15837]  ? __pfx_aio_write+0x10/0x10
[  599.338596][T15837]  ? __lock_acquire+0x436/0x2890
[  599.338614][T15837]  ? __might_fault+0xe3/0x190
[  599.338627][T15837]  ? __might_fault+0x13b/0x190
[  599.338648][T15837]  ? io_submit_one+0x1243/0x1e70
[  599.338659][T15837]  io_submit_one+0x1243/0x1e70
[  599.338671][T15837]  ? __lock_acquire+0x436/0x2890
[  599.338684][T15837]  ? __pfx_io_submit_one+0x10/0x10
[  599.338699][T15837]  ? __might_fault+0xe3/0x190
[  599.338711][T15837]  ? __might_fault+0x13b/0x190
[  599.338727][T15837]  ? __ia32_compat_sys_io_submit+0x1ad/0x3c0
[  599.338739][T15837]  __ia32_compat_sys_io_submit+0x1ad/0x3c0
[  599.338754][T15837]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[  599.338771][T15837]  ? rcu_is_watching+0x12/0xc0
[  599.338788][T15837]  __do_fast_syscall_32+0xe8/0x680
[  599.338801][T15837]  do_fast_syscall_32+0x32/0x80
[  599.338812][T15837]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  599.338826][T15837] RIP: 0023:0xf7f27579
[  599.338836][T15837] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  599.338846][T15837] RSP: 002b:00000000f4fb155c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[  599.338858][T15837] RAX: ffffffffffffffda RBX: 00000000f7f20000 RCX: 00000000000000e7
[  599.338865][T15837] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  599.338872][T15837] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  599.338878][T15837] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  599.338885][T15837] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  599.338899][T15837]  </TASK>
[  599.338903][T15837] Mem-Info:
[  599.456783][T15837] active_anon:959 inactive_anon:3221 isolated_anon:0
[  599.456783][T15837]  active_file:706 inactive_file:729 isolated_file:0
[  599.456783][T15837]  unevictable:1768 dirty:33 writeback:0
[  599.456783][T15837]  slab_reclaimable:9446 slab_unreclaimable:111251
[  599.456783][T15837]  mapped:27482 shmem:4638 pagetables:1455
[  599.456783][T15837]  sec_pagetables:348 bounce:0
[  599.456783][T15837]  kernel_misc_reclaimable:0
[  599.456783][T15837]  free:24963 free_pcp:788 free_cma:0
[  599.476244][T15837] Node 0 active_anon:0kB inactive_anon:292kB active_file:48kB inactive_file:104kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:2196kB dirty:0kB writeback:0kB shmem:3172kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8992kB pagetables:1208kB sec_pagetables:1144kB all_unreclaimable? yes Balloon:0kB
[  599.486965][T15837] Node 1 active_anon:4036kB inactive_anon:12592kB active_file:2876kB inactive_file:2812kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:107832kB dirty:132kB writeback:0kB shmem:15380kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:6204kB pagetables:4612kB sec_pagetables:248kB all_unreclaimable? no Balloon:0kB
[  599.498177][T15837] Node 0 DMA free:1916kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  599.507766][T15837] lowmem_reserve[]: 0 289 289 289 289
[  599.509667][T15837] Node 0 DMA32 free:17096kB boost:8192kB min:21524kB low:24856kB high:28188kB reserved_highatomic:2048KB free_highatomic:40KB active_anon:0kB inactive_anon:292kB active_file:48kB inactive_file:104kB unevictable:3536kB writepending:0kB zspages:1576kB present:1032196kB managed:296804kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  599.521123][T15837] lowmem_reserve[]: 0 0 0 0 0
[  599.523661][T15837] Node 1 DMA32 free:78732kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:2048KB free_highatomic:812KB active_anon:4436kB inactive_anon:12592kB active_file:2876kB inactive_file:2812kB unevictable:3536kB writepending:132kB zspages:5176kB present:1048432kB managed:948212kB mlocked:0kB bounce:0kB free_pcp:4416kB local_pcp:1460kB free_cma:0kB
[  599.538257][T15837] lowmem_reserve[]: 0 0 0 0 0
[  599.539872][T15837] Node 0 DMA: 5*4kB (U) 1*8kB (U) 6*16kB (U) 6*32kB (U) 3*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 0*2048kB 0*4096kB = 1916kB
[  599.544810][T15837] Node 0 DMA32: 462*4kB (UME) 316*8kB (UMEH) 177*16kB (UME) 133*32kB (UMH) 56*64kB (UM) 4*128kB (U) 0*256kB 3*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 17096kB
[  599.549787][T15837] Node 1 DMA32: 1003*4kB (UMEH) 1070*8kB (UMEH) 642*16kB (UMEH) 152*32kB (UMEH) 79*64kB (MEH) 14*128kB (UME) 78*256kB (UM) 11*512kB (UME) 14*1024kB (UM) 2*2048kB (U) 0*4096kB = 78588kB
[  599.555868][T15837] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  599.558903][T15837] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  599.563612][T15837] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  599.567034][T15837] Node 1 hugepages_total=5 hugepages_free=0 hugepages_surp=3 hugepages_size=2048kB
[  599.569972][T15837] 6827 total pagecache pages
[  599.571910][T15837] 740 pages in swap cache
[  599.573368][T15837] Free swap  = 89632kB
[  599.574731][T15837] Total swap = 124996kB
[  599.576097][T15837] 524155 pages RAM
[  599.577382][T15837] 0 pages HighMem/MovableOnly
[  599.578959][T15837] 209061 pages reserved
[  599.581764][T15837] 0 pages cma reserved
[  599.891799][T15854] netlink: 'syz.3.2527': attribute type 5 has an invalid length.
[  599.911119][T15854] netlink: 'syz.3.2527': attribute type 5 has an invalid length.
[  599.914502][T15854] netlink: 'syz.3.2527': attribute type 5 has an invalid length.
[  599.917936][T15854] netlink: 'syz.3.2527': attribute type 5 has an invalid length.
[  599.921931][T15854] netlink: 'syz.3.2527': attribute type 5 has an invalid length.
[  599.924687][T15854] netlink: 'syz.3.2527': attribute type 5 has an invalid length.
[  599.927289][T15854] netlink: 'syz.3.2527': attribute type 5 has an invalid length.
[  599.930973][T15854] netlink: 'syz.3.2527': attribute type 5 has an invalid length.
[  600.313024][T15859] netlink: 'syz.4.2529': attribute type 11 has an invalid length.
[  600.542731][ T6164] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  600.702145][ T6164] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  600.705639][ T6164] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  600.709742][ T6164] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  600.721245][ T6164] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  600.739548][T15866] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  600.752738][ T6164] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  600.947013][ T6164] usb 6-1: USB disconnect, device number 19
[  601.119035][T15879] fuse: Unknown parameter 'ìÓ²k<Ÿ§ÄÑa¿M8Ì'
[  601.666499][T15887] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  601.668648][T15887] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  601.689490][T15887] vhci_hcd vhci_hcd.0: Device attached
[  601.993639][ T6080] usb 46-1: SetAddress Request (10) to port 0
[  601.995722][ T6080] usb 46-1: new SuperSpeed USB device number 10 using vhci_hcd
[  602.207104][T15894] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2537'.
[  602.241498][T15894] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  602.246817][T15888] vhci_hcd: connection reset by peer
[  602.250150][T15499] vhci_hcd vhci_hcd.4: stop threads
[  602.252644][T15499] vhci_hcd vhci_hcd.4: release socket
[  602.254765][T15499] vhci_hcd vhci_hcd.4: disconnect device
[  603.264986][T15904] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2540'.
[  603.269067][T15904] validate_nla: 47 callbacks suppressed
[  603.269081][T15904] netlink: 'syz.4.2540': attribute type 12 has an invalid length.
[  603.745441][T15914] FAULT_INJECTION: forcing a failure.
[  603.745441][T15914] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  603.747705][T15915] netlink: 'syz.1.2542': attribute type 5 has an invalid length.
[  603.749929][T15914] CPU: 2 UID: 0 PID: 15914 Comm: syz.3.2543 Not tainted syzkaller #0 PREEMPT(full) 
[  603.749945][T15914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  603.749952][T15914] Call Trace:
[  603.749958][T15914]  <TASK>
[  603.749962][T15914]  dump_stack_lvl+0x16c/0x1f0
[  603.749984][T15914]  should_fail_ex+0x512/0x640
[  603.750011][T15914]  _copy_from_user+0x2e/0xd0
[  603.750028][T15914]  get_compat_msghdr+0xa7/0x170
[  603.750044][T15914]  ? __pfx_get_compat_msghdr+0x10/0x10
[  603.750060][T15914]  ? __lock_acquire+0x436/0x2890
[  603.750074][T15914]  ___sys_recvmsg+0x191/0x1a0
[  603.750090][T15914]  ? __pfx____sys_recvmsg+0x10/0x10
[  603.750107][T15914]  ? find_held_lock+0x2b/0x80
[  603.750130][T15914]  __sys_recvmsg+0x16a/0x220
[  603.750146][T15914]  ? __pfx___sys_recvmsg+0x10/0x10
[  603.750166][T15914]  ? do_user_addr_fault+0x843/0x1370
[  603.750184][T15914]  __do_fast_syscall_32+0xe8/0x680
[  603.750196][T15914]  do_fast_syscall_32+0x32/0x80
[  603.750208][T15914]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  603.750222][T15914] RIP: 0023:0xf70dd579
[  603.750231][T15914] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  603.750242][T15914] RSP: 002b:00000000f54cd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000174
[  603.750253][T15914] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  603.750272][T15914] RDX: 000000004c2f3718 RSI: 0000000000000000 RDI: 0000000000000000
[  603.750278][T15914] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  603.750285][T15914] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  603.750291][T15914] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  603.750305][T15914]  </TASK>
[  603.994943][T15915] netlink: 'syz.1.2542': attribute type 5 has an invalid length.
[  603.999687][T15915] netlink: 'syz.1.2542': attribute type 5 has an invalid length.
[  604.004100][T15915] netlink: 'syz.1.2542': attribute type 5 has an invalid length.
[  604.009279][T15915] netlink: 'syz.1.2542': attribute type 5 has an invalid length.
[  604.013391][T15915] netlink: 'syz.1.2542': attribute type 5 has an invalid length.
[  604.016667][T15915] netlink: 'syz.1.2542': attribute type 5 has an invalid length.
[  604.020104][T15915] netlink: 'syz.1.2542': attribute type 5 has an invalid length.
[  604.024275][T15915] netlink: 'syz.1.2542': attribute type 5 has an invalid length.
[  604.033561][T15914] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2543'.
[  604.392897][T15921] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2544'.
[  604.430999][T15920] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2544'.
[  604.955926][T15948] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  605.360375][T15316] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  605.418096][T15960] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2556'.
[  605.492725][T15961] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2547'.
[  605.530479][T15316] usb 5-1: Using ep0 maxpacket: 8
[  605.534492][T15316] usb 5-1: config 0 interface 0 has no altsetting 0
[  605.537440][T15316] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  605.541423][T15316] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  605.563807][T15316] usb 5-1: config 0 descriptor??
[  605.797320][T15961] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  607.090748][ T6080] usb 46-1: device descriptor read/8, error -110
[  607.491414][ T6080] usb usb46-port1: attempt power cycle
[  607.503938][T16001] bond1: entered promiscuous mode
[  607.506241][T16001] 8021q: adding VLAN 0 to HW filter on device bond1
[  607.552516][T16001] bond1: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  607.556453][T16001] bond1: (slave ipvlan2): The slave device specified does not support setting the MAC address
[  607.559695][T16001] bond1: (slave ipvlan2): Setting fail_over_mac to active for active-backup mode
[  607.778390][T16007] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2567'.
[  607.829075][T16007] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  607.835567][T15316] usbhid 5-1:0.0: can't add hid device: -71
[  607.838016][T15316] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  607.842701][T15316] usb 5-1: USB disconnect, device number 16
[  608.051151][ T6080] usb usb46-port1: unable to enumerate USB device
[  608.950340][ T5870] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  609.120450][ T5870] usb 6-1: Using ep0 maxpacket: 16
[  609.123998][ T5870] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  609.130136][ T5870] usb 6-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  609.130177][ T5870] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  609.130240][ T5870] usb 6-1: Product: syz
[  609.130430][ T5870] usb 6-1: Manufacturer: syz
[  609.130439][ T5870] usb 6-1: SerialNumber: syz
[  609.141347][ T5870] usb 6-1: config 0 descriptor??
[  609.152517][ T5870] asix 6-1:0.0: probe with driver asix failed with error -22
[  610.630870][T16051] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2577'.
[  610.649836][T16051] validate_nla: 64 callbacks suppressed
[  610.649853][T16051] netlink: 'syz.0.2577': attribute type 12 has an invalid length.
[  611.672307][T16085] comedi comedi3: comedi_test: 10 microvolt, 2046 microsecond waveform attached
[  611.719743][   T40] kauditd_printk_skb: 5 callbacks suppressed
[  611.719754][   T40] audit: type=1400 audit(1768261106.524:599): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name="/dev/comedi3" pid=16084 comm="syz.3.2589"
[  611.743921][ T6033] usb 6-1: USB disconnect, device number 20
[  611.838082][T16091] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2590'.
[  611.846536][   T40] audit: type=1804 audit(1768261106.654:600): pid=16091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2590" name="file0" dev="ramfs" ino=65264 res=1 errno=0
[  612.150879][T16102] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2593'.
[  612.154284][T16102] netlink: 'syz.0.2593': attribute type 12 has an invalid length.
[  612.898444][T16113] FAULT_INJECTION: forcing a failure.
[  612.898444][T16113] name failslab, interval 1, probability 0, space 0, times 0
[  612.902408][T16113] CPU: 1 UID: 0 PID: 16113 Comm: syz.0.2598 Not tainted syzkaller #0 PREEMPT(full) 
[  612.902424][T16113] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  612.902431][T16113] Call Trace:
[  612.902435][T16113]  <TASK>
[  612.902440][T16113]  dump_stack_lvl+0x16c/0x1f0
[  612.902462][T16113]  should_fail_ex+0x512/0x640
[  612.902475][T16113]  ? __kmalloc_cache_noprof+0x5f/0x800
[  612.902491][T16113]  should_failslab+0xc2/0x120
[  612.902508][T16113]  __kmalloc_cache_noprof+0x80/0x800
[  612.902521][T16113]  ? get_random_u32+0x443/0x7d0
[  612.902533][T16113]  ? device_create_groups_vargs+0x8a/0x270
[  612.902554][T16113]  ? device_create_groups_vargs+0x8a/0x270
[  612.902571][T16113]  device_create_groups_vargs+0x8a/0x270
[  612.902590][T16113]  device_create+0xed/0x130
[  612.902607][T16113]  ? __pfx_device_create+0x10/0x10
[  612.902625][T16113]  ? do_init_timer+0xc9/0x110
[  612.902644][T16113]  ? ieee80211_roc_setup+0x136/0x270
[  612.902661][T16113]  ? ieee80211_alloc_hw_nm+0x231/0x22b0
[  612.902676][T16113]  mac80211_hwsim_new_radio+0x36a/0x5150
[  612.902696][T16113]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  612.902715][T16113]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  612.902734][T16113]  hwsim_new_radio_nl+0xba2/0x1330
[  612.902748][T16113]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  612.902770][T16113]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  612.902784][T16113]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  612.902800][T16113]  genl_family_rcv_msg_doit+0x209/0x2f0
[  612.902812][T16113]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  612.902824][T16113]  ? genl_get_cmd+0x194/0x580
[  612.902838][T16113]  ? bpf_lsm_capable+0x9/0x10
[  612.902853][T16113]  ? security_capable+0x7e/0x260
[  612.902872][T16113]  ? ns_capable+0xd7/0x110
[  612.902888][T16113]  genl_rcv_msg+0x55c/0x800
[  612.902901][T16113]  ? __pfx_genl_rcv_msg+0x10/0x10
[  612.902913][T16113]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  612.902932][T16113]  netlink_rcv_skb+0x158/0x420
[  612.902949][T16113]  ? __pfx_genl_rcv_msg+0x10/0x10
[  612.902961][T16113]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  612.902984][T16113]  ? netlink_deliver_tap+0x1ae/0xd30
[  612.903002][T16113]  genl_rcv+0x28/0x40
[  612.903012][T16113]  netlink_unicast+0x5aa/0x870
[  612.903031][T16113]  ? __pfx_netlink_unicast+0x10/0x10
[  612.903053][T16113]  netlink_sendmsg+0x8c8/0xdd0
[  612.903073][T16113]  ? __pfx_netlink_sendmsg+0x10/0x10
[  612.903092][T16113]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  612.903114][T16113]  ____sys_sendmsg+0xa5d/0xc30
[  612.903127][T16113]  ? __pfx_____sys_sendmsg+0x10/0x10
[  612.903138][T16113]  ? get_compat_msghdr+0x11a/0x170
[  612.903159][T16113]  ___sys_sendmsg+0x134/0x1d0
[  612.903175][T16113]  ? __pfx____sys_sendmsg+0x10/0x10
[  612.903198][T16113]  ? find_held_lock+0x2b/0x80
[  612.903222][T16113]  __sys_sendmsg+0x16d/0x220
[  612.903237][T16113]  ? __pfx___sys_sendmsg+0x10/0x10
[  612.903258][T16113]  ? do_user_addr_fault+0x843/0x1370
[  612.903275][T16113]  __do_fast_syscall_32+0xe8/0x680
[  612.903288][T16113]  do_fast_syscall_32+0x32/0x80
[  612.903300][T16113]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  612.903314][T16113] RIP: 0023:0xf7f27579
[  612.903323][T16113] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  612.903334][T16113] RSP: 002b:00000000f541655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  612.903346][T16113] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000140
[  612.903354][T16113] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  612.903360][T16113] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  612.903367][T16113] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  612.903373][T16113] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  612.903387][T16113]  </TASK>
[  613.110702][T16116] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2599'.
[  613.116878][T16117] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2599'.
[  613.413681][T16121] KVM: debugfs: duplicate directory 16121-6
[  614.007618][T16135] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2605'.
[  614.011803][T16135] netlink: 'syz.3.2605': attribute type 12 has an invalid length.
[  615.471175][   T40] audit: type=1326 audit(1768261110.284:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16140 comm="syz.4.2607" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  615.478063][   T40] audit: type=1326 audit(1768261110.284:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16140 comm="syz.4.2607" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x7ffc0000
[  616.019786][T16146] openvswitch: netlink: IP tunnel dst address not specified
[  616.091998][T16147] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2608'.
[  624.457926][T16160] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2609'.
[  624.580385][T16160] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2609'.
[  624.694919][T16160] geneve2: entered promiscuous mode
[  624.697199][T16160] geneve2: entered allmulticast mode
[  624.783578][T16161] cgroup: fork rejected by pids controller in /syz0
[  625.661699][T16888] netlink: 'syz.0.2616': attribute type 1 has an invalid length.
[  625.733056][T16891] bond1: (slave geneve2): making interface the new active one
[  625.735773][T16891] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  625.742578][ T7333] netdevsim netdevsim0 eth0: set [1, 1] type 2 family 0 port 20004 - 0
[  625.745171][ T7333] netdevsim netdevsim0 eth1: set [1, 1] type 2 family 0 port 20004 - 0
[  625.747675][ T7333] netdevsim netdevsim0 eth2: set [1, 1] type 2 family 0 port 20004 - 0
[  625.750232][ T7333] netdevsim netdevsim0 eth3: set [1, 1] type 2 family 0 port 20004 - 0
[  626.408324][T16906] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2623'.
[  626.947220][T16913] binder: 16909:16913 ioctl c0306201 80000600 returned -14
[  628.575648][T16954] netlink: 'syz.0.2635': attribute type 12 has an invalid length.
[  628.944337][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  629.677480][T16966] binder: 16964:16966 unknown command 1074553621
[  629.680051][T16966] binder: 16964:16966 ioctl c0306201 80000480 returned -22
[  630.036839][T16985] afs: Unknown parameter 'aut~»“ocel'
[  630.064281][T16985] 
[  630.065117][T16985] ======================================================
[  630.067291][T16985] WARNING: possible circular locking dependency detected
[  630.069480][T16985] syzkaller #0 Tainted: G             L     
[  630.071999][T16985] ------------------------------------------------------
[  630.074750][T16985] syz.1.2643/16985 is trying to acquire lock:
[  630.077153][T16985] ffff888060611c88 (&of->mutex){+.+.}-{4:4}, at: kernfs_seq_start+0x4f/0x2a0
[  630.080665][T16985] 
[  630.080665][T16985] but task is already holding lock:
[  630.083585][T16985] ffff8880290d9d88 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xe1/0x12d0
[  630.086933][T16985] 
[  630.086933][T16985] which lock already depends on the new lock.
[  630.086933][T16985] 
[  630.091015][T16985] 
[  630.091015][T16985] the existing dependency chain (in reverse order) is:
[  630.094546][T16985] 
[  630.094546][T16985] -> #3 (&p->lock){+.+.}-{4:4}:
[  630.097342][T16985]        __mutex_lock+0x1aa/0x1ca0
[  630.099383][T16985]        seq_read_iter+0xe1/0x12d0
[  630.101436][T16985]        kernfs_fop_read_iter+0x46c/0x610
[  630.103706][T16985]        copy_splice_read+0x618/0xc20
[  630.105852][T16985]        do_splice_read+0x285/0x370
[  630.107923][T16985]        splice_file_to_pipe+0x109/0x120
[  630.110158][T16985]        do_sendfile+0x400/0xe50
[  630.112193][T16985]        __ia32_sys_sendfile64+0x1d7/0x220
[  630.114515][T16985]        __do_fast_syscall_32+0xe8/0x680
[  630.116747][T16985]        do_fast_syscall_32+0x32/0x80
[  630.118866][T16985]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  630.121645][T16985] 
[  630.121645][T16985] -> #2 (&pipe->mutex){+.+.}-{4:4}:
[  630.124677][T16985]        __mutex_lock+0x1aa/0x1ca0
[  630.126723][T16985]        anon_pipe_write+0x15d/0x1bd0
[  630.128999][T16985]        __kernel_write_iter+0x720/0xb10
[  630.130781][T16985]        __kernel_write+0xf5/0x140
[  630.132403][T16985]        autofs_notify_daemon+0x4db/0xd60
[  630.134188][T16985]        autofs_wait+0x10f3/0x1ac0
[  630.135797][T16985]        autofs_mount_wait+0x132/0x3c0
[  630.137518][T16985]        autofs_d_automount+0x4b2/0x960
[  630.139257][T16985]        __traverse_mounts+0x1b9/0x830
[  630.141004][T16985]        step_into_slowpath+0x772/0xf50
[  630.142739][T16985]        path_lookupat+0x627/0xc40
[  630.144360][T16985]        filename_lookup+0x224/0x5f0
[  630.146046][T16985]        kern_path+0x35/0x50
[  630.147512][T16985]        lookup_bdev+0xd8/0x280
[  630.149061][T16985]        resume_store+0x1d6/0x490
[  630.150671][T16985]        kobj_attr_store+0x58/0x80
[  630.152279][T16985]        sysfs_kf_write+0xf2/0x150
[  630.153901][T16985]        kernfs_fop_write_iter+0x3af/0x570
[  630.155734][T16985]        vfs_write+0x7d3/0x11d0
[  630.157276][T16985]        ksys_write+0x12a/0x250
[  630.158781][T16985]        __do_fast_syscall_32+0xe8/0x680
[  630.160578][T16985]        do_fast_syscall_32+0x32/0x80
[  630.162260][T16985]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  630.164405][T16985] 
[  630.164405][T16985] -> #1 (&sbi->pipe_mutex){+.+.}-{4:4}:
[  630.166806][T16985]        __mutex_lock+0x1aa/0x1ca0
[  630.168418][T16985]        autofs_notify_daemon+0x4a6/0xd60
[  630.170194][T16985]        autofs_wait+0x10f3/0x1ac0
[  630.171747][T16985]        autofs_mount_wait+0x132/0x3c0
[  630.173455][T16985]        autofs_d_automount+0x4b2/0x960
[  630.175199][T16985]        __traverse_mounts+0x1b9/0x830
[  630.176922][T16985]        step_into_slowpath+0x772/0xf50
[  630.178661][T16985]        path_lookupat+0x627/0xc40
[  630.180272][T16985]        filename_lookup+0x224/0x5f0
[  630.181940][T16985]        kern_path+0x35/0x50
[  630.183419][T16985]        lookup_bdev+0xd8/0x280
[  630.184979][T16985]        resume_store+0x1d6/0x490
[  630.186546][T16985]        kobj_attr_store+0x58/0x80
[  630.188155][T16985]        sysfs_kf_write+0xf2/0x150
[  630.189772][T16985]        kernfs_fop_write_iter+0x3af/0x570
[  630.191628][T16985]        vfs_write+0x7d3/0x11d0
[  630.193175][T16985]        ksys_write+0x12a/0x250
[  630.194706][T16985]        __do_fast_syscall_32+0xe8/0x680
[  630.196461][T16985]        do_fast_syscall_32+0x32/0x80
[  630.198138][T16985]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  630.200325][T16985] 
[  630.200325][T16985] -> #0 (&of->mutex){+.+.}-{4:4}:
[  630.202585][T16985]        __lock_acquire+0x1669/0x2890
[  630.204280][T16985]        lock_acquire+0x179/0x330
[  630.205872][T16985]        __mutex_lock+0x1aa/0x1ca0
[  630.207325][T16985]        kernfs_seq_start+0x4f/0x2a0
[  630.208993][T16985]        seq_read_iter+0x2c1/0x12d0
[  630.210671][T16985]        kernfs_fop_read_iter+0x46c/0x610
[  630.212467][T16985]        copy_splice_read+0x618/0xc20
[  630.214291][T16985]        do_splice_read+0x285/0x370
[  630.216151][T16985]        splice_file_to_pipe+0x109/0x120
[  630.217916][T16985]        do_sendfile+0x400/0xe50
[  630.219473][T16985]        __ia32_sys_sendfile64+0x1d7/0x220
[  630.221345][T16985]        __do_fast_syscall_32+0xe8/0x680
[  630.223091][T16985]        do_fast_syscall_32+0x32/0x80
[  630.224790][T16985]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  630.226910][T16985] 
[  630.226910][T16985] other info that might help us debug this:
[  630.226910][T16985] 
[  630.230053][T16985] Chain exists of:
[  630.230053][T16985]   &of->mutex --> &pipe->mutex --> &p->lock
[  630.230053][T16985] 
[  630.233845][T16985]  Possible unsafe locking scenario:
[  630.233845][T16985] 
[  630.236181][T16985]        CPU0                    CPU1
[  630.237885][T16985]        ----                    ----
[  630.239568][T16985]   lock(&p->lock);
[  630.240831][T16985]                                lock(&pipe->mutex);
[  630.242913][T16985]                                lock(&p->lock);
[  630.244916][T16985]   lock(&of->mutex);
[  630.246183][T16985] 
[  630.246183][T16985]  *** DEADLOCK ***
[  630.246183][T16985] 
[  630.248705][T16985] 2 locks held by syz.1.2643/16985:
[  630.250378][T16985]  #0: ffff888025122068 (&pipe->mutex){+.+.}-{4:4}, at: pipe_lock+0x64/0x80
[  630.253105][T16985]  #1: ffff8880290d9d88 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xe1/0x12d0
[  630.255881][T16985] 
[  630.255881][T16985] stack backtrace:
SYZFAIL: failed to recv rpc
[  630.257743][T16985] CPU: 3 UID: 0 PID: 16985 Comm: syz.1.2643 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  630.257761][T16985] Tainted: [L]=SOFTLOCKUP
[  630.257765][T16985] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  630.257772][T16985] Call Trace:
[  630.257778][T16985]  <TASK>
[  630.257784][T16985]  dump_stack_lvl+0x116/0x1f0
[  630.257805][T16985]  print_circular_bug+0x275/0x340
[  630.257824][T16985]  check_noncircular+0x146/0x160
[  630.257845][T16985]  __lock_acquire+0x1669/0x2890
[  630.257856][T16985]  ? __kvmalloc_node_noprof+0x3ac/0xa40
[  630.257874][T16985]  ? kernfs_fop_read_iter+0x46c/0x610
[  630.257893][T16985]  lock_acquire+0x179/0x330
[  630.257903][T16985]  ? kernfs_seq_start+0x4f/0x2a0
[  630.257921][T16985]  ? __pfx___might_resched+0x10/0x10
[  630.257939][T16985]  __mutex_lock+0x1aa/0x1ca0
[  630.257950][T16985]  ? kernfs_seq_start+0x4f/0x2a0
[  630.257966][T16985]  ? kernfs_seq_start+0x4f/0x2a0
[  630.257983][T16985]  ? __pfx___mutex_lock+0x10/0x10
[  630.257996][T16985]  ? rcu_is_watching+0x12/0xc0
[  630.258012][T16985]  ? trace_kmalloc+0x2b/0xb0
[  630.258028][T16985]  ? __kvmalloc_node_noprof+0x3c9/0xa40
[  630.258044][T16985]  ? kernfs_seq_start+0x4f/0x2a0
[  630.258060][T16985]  kernfs_seq_start+0x4f/0x2a0
[  630.258076][T16985]  seq_read_iter+0x2c1/0x12d0
[  630.258092][T16985]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  630.258108][T16985]  kernfs_fop_read_iter+0x46c/0x610
[  630.258127][T16985]  copy_splice_read+0x618/0xc20
[  630.258144][T16985]  ? __pfx_aa_file_perm+0x10/0x10
[  630.258160][T16985]  ? __pfx_copy_splice_read+0x10/0x10
[  630.258177][T16985]  ? futex_private_hash_put+0x160/0x1b0
[  630.258191][T16985]  ? __pfx_copy_splice_read+0x10/0x10
[  630.258207][T16985]  do_splice_read+0x285/0x370
[  630.258223][T16985]  splice_file_to_pipe+0x109/0x120
[  630.258241][T16985]  do_sendfile+0x400/0xe50
[  630.258258][T16985]  ? __pfx_do_sendfile+0x10/0x10
[  630.258273][T16985]  ? __pfx___seccomp_filter+0x10/0x10
[  630.258287][T16985]  __ia32_sys_sendfile64+0x1d7/0x220
[  630.258298][T16985]  ? xfd_validate_state+0x61/0x180
[  630.258309][T16985]  ? __pfx___ia32_sys_sendfile64+0x10/0x10
[  630.258321][T16985]  ? __secure_computing+0x21c/0x320
[  630.258334][T16985]  __do_fast_syscall_32+0xe8/0x680
[  630.258346][T16985]  do_fast_syscall_32+0x32/0x80
[  630.258357][T16985]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  630.258372][T16985] RIP: 0023:0xf708d579
[  630.258381][T16985] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  630.258393][T16985] RSP: 002b:00000000f547d55c EFLAGS: 00000296 ORIG_RAX: 00000000000000ef
[  630.258404][T16985] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000009
[  630.258411][T16985] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000000
[  630.258418][T16985] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  630.258424][T16985] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  630.258431][T16985] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  630.258441][T16985]  </TASK>
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)