last executing test programs:

4m1.405517175s ago: executing program 2 (id=587):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x51, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_devices(r0, &(0x7f0000000840)=ANY=[], 0xffdd)

4m0.335202884s ago: executing program 2 (id=590):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x10, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xffffff87, 0x0, 0x0, 0x0, 0x34c}, {}, {}, [@ldst={0xf1b10afdc9085b4b, 0x1, 0x6, 0x2, 0x6, 0x80, 0x10}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xbb, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
fsopen(0x0, 0x0) (async)
fsopen(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid() (async)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000080)=0x48)
read$FUSE(0xffffffffffffffff, 0x0, 0x0) (async)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x103)
r4 = socket(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000003c0007010000000000000000010000000400fc800c00018008000600ffff0000080002800400728008000900"], 0x34}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002a80)=ANY=[], 0x6c}}, 0x20) (async)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002a80)=ANY=[], 0x6c}}, 0x20)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='tmpfs\x00', 0x2, &(0x7f00000001c0)='g\x1d\x80l\xb8<H\x1d')
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
syz_emit_ethernet(0x22, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa429e822106ef0800450200140067000002019078ac1414bb10094055"], 0x0) (async)
syz_emit_ethernet(0x22, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa429e822106ef0800450200140067000002019078ac1414bb10094055"], 0x0)
r7 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_qrtr_TIOCOUTQ(r7, 0x5411, &(0x7f0000000000))
openat$sw_sync_info(0xffffff9c, &(0x7f0000000040), 0x105180, 0x0)

3m59.958026264s ago: executing program 2 (id=592):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000000d000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="260f01cfbaf80c66b835b9ca8166efbafc0cec66640f32baf80c66b83065cd890fc718bafc0c36f36f66efbaf80c66b8a8a86e8866efbafc0c66b80100000066efbaf80c66b8983d448366efbafc0cb000eeea012b5d00260f0012c4e2bddfdd0f01c2", 0x63}], 0x1, 0x74, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x1, 0x6e, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x7000000)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt(r3, 0x84, 0x7f, 0x0, 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d66"])
chdir(&(0x7f0000000100)='./file0\x00')
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f00000011c0)={0xb, {'syz1\x00', 'syz0\x00', 'syz0\x00', 0x0, 0x36, 0x5, 0x0, 0x10001, 0xecd}}, 0x118)
fcntl$lock(r4, 0x6, &(0x7f0000000200))
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, 0x0, 0x0)
sendto$inet6(r5, 0x0, 0x0, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x396, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000040)='lp\x00', 0x3)
shutdown(r5, 0x1)

3m59.305326162s ago: executing program 2 (id=597):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e601bae74656e642c6163638173733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x137f, &(0x7f0000000740)={0x0, 0x9ef0, 0x10100, 0x0, 0x14e, 0x0, r3}, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {}, 0x1})
r5 = socket$inet6(0xa, 0x80803, 0x84)
setsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f0000000540)={{{@in=@dev={0xac, 0x14, 0x14, 0x30}, @in6=@mcast2, 0x4e24, 0x1, 0x4e23, 0x0, 0xa, 0x20, 0x80, 0x4}, {0xaa3, 0x0, 0x3, 0x51, 0x7, 0x401, 0xf33, 0x10000}, {0x1, 0x3, 0x9, 0xf}, 0x5, 0x6e6bbe, 0x1}, {{@in=@loopback, 0x4d6, 0x3c}, 0x2, @in=@rand_addr=0x64010101, 0x3501, 0x4, 0x0, 0x6, 0x401, 0xc52d, 0x7}}, 0xe4)
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r6, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
mkdir(&(0x7f0000000000)='./file0\x00', 0x26)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000080)='configfs\x00', 0x0, 0x0)
lchown(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x10000, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0xfffffffffffffffd}, {0x0, 0x8, 0x0, 0x8}, 0x0, 0x0, 0x1, 0x0, 0x1}, {{@in=@remote, 0x2, 0x6c}, 0x0, @in=@empty, 0x0, 0x5, 0x0, 0xb7}}, 0xe8)
sendmmsg(r6, &(0x7f0000007fc0), 0x800001d, 0xf000)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x30008095}, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x27}, 0x74)
recvmmsg(0xffffffffffffffff, &(0x7f0000005480)=[{{0x0, 0x0, 0x0}, 0x80000001}], 0x1, 0x40012000, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x0, 0x3, 0x3}, 0x10)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
link(&(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000003c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

3m58.934646862s ago: executing program 2 (id=599):
pipe2$9p(&(0x7f0000000980), 0x0)
r0 = fsopen(0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYRES32=r0, @ANYBLOB="a1781e255bea802dcd73c621afb9bc19c8044ac0b6a18fa18e000000000000000044c3a3f1b5072275c5301aa09054e3"], 0x4c}, 0x1, 0x0, 0x0, 0x400d0}, 0x240440c0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x6, &(0x7f0000000200)=0x200006)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000400)=0x14)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r9, 0x8933, &(0x7f0000001880)={'wg1\x00', <r10=>0x0})
r11 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r8, &(0x7f0000000200)={0x0, 0x4000, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="010000000000000000000100000024000300a05ca84f6c9c8e3853e2fd7a70ae0fb20fa152600cb00845174f08076f92784308000100", @ANYRES32=r10, @ANYBLOB], 0x40}}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={r1, 0xe0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000440)=[0x0, 0x0, 0x0], ""/16, <r12=>0x0, 0x0, 0x0, 0x0, 0x4, 0x5, &(0x7f0000000480)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000004c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x80, &(0x7f0000000500)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000540), &(0x7f0000000580), 0x8, 0x84, 0x8, 0x8, &(0x7f00000005c0)}}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000740)={'batadv0\x00', <r13=>0x0})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000800)={'syztnl2\x00', &(0x7f0000000780)={'syztnl2\x00', <r14=>0x0, 0x2f, 0x5, 0x3, 0x9, 0x8, @local, @private2, 0x8000, 0x20, 0x1}})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r15=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002e00)=@newtaction={0x14cc, 0x30, 0x1, 0x0, 0x0, {}, [{0x1fc, 0x1, [@m_mirred={0x1ac, 0xb, 0x0, 0x0, {{0xb}, {0x144, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x4, 0x6, 0x5, 0x7, 0x4}, 0x1, r7}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0x5, 0x5, 0x8, 0x3118}, 0x3, r10}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x5, 0x1, 0x3, 0x3}, 0x1, r12}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x9, 0x3, 0x6, 0x101}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x1000, 0x20000000, 0x3, 0xd}, 0x4, r13}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x3, 0x1000000e, 0x4bc, 0x80000001}, 0x5, r14}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x994, 0x4, 0x1, 0x9, 0x5}, 0x4, r15}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xb0e, 0xd31, 0x5, 0x7fff}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1c44, 0x4d68, 0x4, 0x9, 0x183}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x43, 0xc, 0x5, 0x80, 0x8000}, 0x3}}]}, {0x3f, 0x6, "0f4cbe358431c958b2edf5ff72128af6b3bec4a5bf4d9be988ff204b78359e08b86c55aed7f3a45eddaa737afcd4241ad2b3dc09565635ab1f1302"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_bpf={0x4c, 0x19, 0x0, 0x0, {{0x8}, {0x14, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_FD={0x8, 0x5, r3}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0xa}]}, {0x14, 0x6, "97c8bde2dfcdc88787fe2bef0a3bad95"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}, {0x12bc, 0x1, [@m_police={0xd9c, 0xd, 0x0, 0x0, {{0xb}, {0xd34, 0x2, 0x0, 0x1, [[@TCA_POLICE_AVRATE={0x8, 0x4, 0x4}, @TCA_POLICE_RATE={0x404, 0x2, [0x6c2, 0x3, 0x8, 0x7fffffff, 0x7f, 0x3, 0xf, 0x1, 0xffffffff, 0x9935, 0xffffffff, 0x1000, 0xba, 0x7, 0x3, 0x2e, 0x6, 0xfffffff8, 0x98, 0x0, 0xfffffe01, 0x5, 0xc2, 0x6, 0x1, 0x3, 0x0, 0xa, 0x2, 0x5, 0x2, 0x1000, 0x2, 0x7, 0x10a, 0x6, 0x9, 0xa32, 0x7e0109f3, 0x0, 0xe, 0x40, 0x7, 0x80000001, 0x6, 0x3, 0x7, 0x7, 0x60, 0x5, 0x4, 0x7, 0x1, 0x8, 0xc, 0x4, 0x5, 0x4, 0xa, 0x9, 0x9, 0x9, 0x3, 0x3, 0xff4, 0x3, 0x1, 0x5, 0x65de, 0x4, 0x7, 0xfffffffc, 0x5, 0x3, 0x0, 0x8, 0x9, 0xb, 0x80000001, 0x9, 0x3, 0x7, 0x1, 0x90ed, 0x68fd, 0x7, 0xa43, 0x2, 0x200, 0x80, 0x4, 0x7fff, 0x5, 0x6, 0x2, 0x1ff, 0x1ff, 0x1800, 0x5, 0x9fcb, 0x6, 0x80000000, 0x5, 0x6, 0x3, 0x3, 0x80, 0x4fbc, 0x0, 0x10001, 0x1, 0x0, 0x6, 0x3, 0x6, 0xdd5a, 0x2, 0x4, 0x40, 0x1, 0x1000, 0xfffffffd, 0x7, 0x5, 0x835, 0x2, 0xda, 0x80000001, 0xb, 0x1, 0x8, 0x3, 0x6, 0x4e9c, 0x400, 0x48, 0x4, 0x6, 0xbd5, 0x1, 0x3e, 0x100, 0x4, 0x401, 0x0, 0xe1, 0xffffffff, 0x5, 0x7, 0x6, 0x2, 0x6, 0x9, 0x10001, 0x10000009, 0x9, 0x8, 0x3, 0x1, 0x5, 0xb9, 0x9, 0xfffffffc, 0x8, 0x5, 0x10000, 0x3, 0x1, 0x10000, 0x440, 0xff, 0x0, 0x6, 0x7, 0x2, 0x4, 0x4, 0x3, 0x4, 0x9, 0x5, 0x1ff, 0x1, 0x6, 0x9, 0x0, 0x2, 0x6, 0x10, 0x5, 0x17800000, 0x5, 0x8, 0x7, 0x2, 0xb, 0x1, 0x10001, 0x8, 0x7, 0x2, 0x5, 0x4, 0x47f, 0xff, 0x9, 0x40, 0x1, 0x1, 0x0, 0x9, 0x7fff, 0x0, 0x40, 0x800, 0x9, 0x4, 0x4, 0xf641, 0x7fffffff, 0x5, 0x0, 0x2, 0x8, 0x7ff, 0x1, 0x2, 0x8, 0x1, 0x8001, 0x4, 0x1, 0x5, 0xffff, 0x3, 0x6, 0xfffffb44, 0x0, 0x7, 0x10000, 0xdca, 0x5, 0x0, 0xa000, 0x0, 0x5f, 0x3, 0x81, 0x3, 0x1, 0x1ff, 0x1, 0xfffffffd, 0x7, 0x8, 0x996]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x9, 0x5, 0x45ed, 0x2, 0x26bbea35, {0xd9, 0x2, 0x8, 0x3, 0x5965, 0x2900}, {0x2, 0x0, 0x8, 0xd28, 0x5, 0x400}, 0xfffffff8, 0x5, 0x3}}, @TCA_POLICE_RATE64={0xc, 0x8, 0xf1}], [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x6}, @TCA_POLICE_RATE={0x404, 0x2, [0x41, 0x80, 0x6, 0xa, 0x7, 0x7, 0x400, 0x1, 0x4, 0x853f, 0x7, 0x6, 0x7ff, 0x7ff, 0xe76, 0x2, 0x2, 0x7, 0x5, 0xc, 0x8001, 0x1, 0xf1, 0x1, 0x4, 0x9, 0x8, 0x0, 0xfffffff8, 0xa16c, 0x9, 0xed11, 0xab78, 0x0, 0xfffffff9, 0xfffffde5, 0x561, 0x2, 0x0, 0x0, 0x0, 0x400, 0x4, 0x3e, 0x25c, 0x5, 0x8, 0x9, 0x400, 0x10000, 0x1, 0x4, 0x4, 0xb, 0x200, 0x2, 0x5, 0x6, 0xffff, 0xaa8a, 0x6, 0x3ff, 0x7, 0xfffffff9, 0x3ff, 0x4, 0xfffffa13, 0xfffffffa, 0x80000000, 0xffffff80, 0x9, 0x36, 0xffff, 0x7f, 0x4, 0x9, 0xbb, 0x82, 0x0, 0x8, 0x7, 0x0, 0x5, 0x4, 0x10, 0x5, 0x2, 0x4, 0x2, 0x80000000, 0x6, 0xe9, 0x4fa7, 0x7060, 0x81, 0x4, 0x7f, 0x5, 0x200, 0x5, 0x0, 0x100, 0x400, 0x3, 0x6, 0x7, 0x0, 0xd, 0x2, 0xf, 0x6, 0x2, 0x3, 0x5036, 0x5, 0x9, 0x9, 0x3, 0x7, 0x7, 0x2, 0x7, 0x6, 0x1, 0xffff, 0x10001, 0x7, 0x1, 0x1, 0x98000000, 0x10, 0x6f, 0x0, 0x9, 0x1, 0x0, 0x400, 0x7fffffff, 0x10001, 0x6, 0x5b9, 0x5, 0x7, 0x9, 0x3, 0x6, 0x400, 0x7700000, 0x6995, 0x1, 0x5, 0xffffffff, 0x101, 0xffffffff, 0x1, 0x6aa, 0x7fffffff, 0x6, 0xf74f, 0x9, 0x7, 0x4, 0x8, 0x6e4ae2ea, 0x1, 0xfffffffe, 0xcc96, 0x58, 0x1, 0x4, 0x0, 0x3, 0x7fffffff, 0x5def, 0x100000, 0x3, 0xff, 0x9, 0xf, 0x0, 0x4, 0x0, 0xfff, 0xa29d, 0xffff, 0x4, 0x0, 0x1, 0x6, 0xfffffffc, 0xfffffffd, 0x9, 0x1, 0x7, 0x8, 0x5, 0x33c5c000, 0x100, 0xfa, 0x6, 0x9, 0x80000000, 0x2, 0x6, 0x8, 0x9, 0x4, 0x9, 0x8, 0x6, 0x1, 0xfffff5dc, 0xe, 0xfffffffe, 0x7, 0x7fffffff, 0x80000000, 0x5, 0xfffffeff, 0xfffffff8, 0xa05, 0x9, 0x7, 0x781, 0x7, 0x1, 0xe, 0x7, 0xa, 0x6, 0x3, 0x1, 0x8, 0x7, 0x9, 0x2, 0x3, 0x1, 0x917e, 0x0, 0xfffffff9, 0x200, 0x4, 0x6, 0x5, 0x8, 0x4, 0x7fffffff, 0x8, 0x401, 0x0, 0x7, 0x7, 0xfffffffe, 0x6, 0x24000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x8000000, 0x0, 0x8, 0x2, {0x6, 0x2, 0x9, 0x800, 0xbd, 0x924}, {0x0, 0x2, 0xfffd, 0xa979, 0x0, 0x4}, 0x80000001, 0x13f, 0x6a42}}, @TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x3, 0x3, 0xffffffff, 0x3a, {0x7, 0x2, 0x4, 0x0, 0x8, 0x7}, {0x30, 0x1, 0x5, 0x0, 0x4, 0x5}, 0x4, 0x3, 0x8}}, @TCA_POLICE_RATE={0x404, 0x2, [0x2, 0x76, 0x10001, 0x4, 0x4, 0x4, 0x5, 0x2, 0x9, 0x3, 0x9, 0x1, 0x9, 0x800, 0xcd, 0x1, 0x8, 0x2, 0x81, 0x10001, 0xa92b, 0x7, 0x7fff, 0x7, 0x5, 0xe9, 0x3e7, 0x7f, 0xff, 0x2, 0x3, 0x9, 0xa, 0x4, 0x5, 0x8, 0x260e, 0xfffffffb, 0x2, 0x6, 0xeb, 0x9, 0x5, 0x4, 0xffffffff, 0x8, 0x7, 0x3, 0x7, 0xb, 0x3, 0x4781, 0x7f, 0x6, 0x8, 0x161, 0xe, 0x1, 0xbe03, 0x7, 0x4, 0x1, 0x3, 0x4, 0x5, 0x3, 0x9, 0x8f6e, 0x2, 0x1, 0x9, 0x10001, 0x80000001, 0x2d0, 0x8, 0xe7, 0x1d1d61a2, 0xfb, 0x2a4, 0x80000001, 0x9, 0x4, 0x7f, 0xffff, 0x8000, 0x5, 0xffffff99, 0x1901, 0x7, 0x9, 0x1, 0x263e, 0x9, 0xd, 0xd80, 0x0, 0x1, 0x4, 0x7, 0x5, 0x8, 0x1, 0x6, 0x81, 0x4, 0x24000, 0x0, 0x2, 0x0, 0x1, 0x3, 0x10e7, 0x0, 0x3, 0x3, 0x8, 0x9, 0x7e73, 0x1000000, 0x5, 0x36f0eabe, 0x10000, 0x0, 0x42, 0x9, 0x0, 0xffffff7f, 0x281, 0x70, 0x3, 0x3, 0x7f, 0x10, 0x6, 0xc, 0x3, 0x8, 0xcb7c, 0x2, 0x1, 0x5, 0x2783, 0xeb2, 0x8, 0x3, 0x7, 0x1708, 0x8, 0xfffffffe, 0x8000, 0x9, 0x6, 0x0, 0x800, 0x4, 0x6, 0x9, 0x2, 0xe73c, 0x8, 0xd, 0x9fb, 0x88d0, 0x27c8, 0xe, 0x4, 0x81, 0x1e, 0x7, 0x2, 0x6, 0x1, 0x6, 0xffff, 0xff, 0x4, 0x5, 0xffff8b16, 0x8, 0x0, 0x8, 0x1000, 0x0, 0xd0, 0x9, 0x6dae, 0x800, 0x4, 0xd423, 0x5, 0x7, 0x9, 0x8, 0x0, 0x4, 0x8, 0x7, 0xfffffffd, 0x2, 0x6, 0x1, 0x5, 0x40, 0xfffffa0a, 0x5, 0x40, 0x4, 0xd1, 0x3a, 0x2, 0x48000, 0x6, 0x7, 0x8, 0x101, 0x44, 0xc3f, 0x3, 0xfffffffa, 0xfff, 0x80000001, 0x200, 0x8, 0xa, 0xfff, 0x10000, 0x3, 0x40, 0xfffff000, 0x4, 0x4, 0xab6, 0x101, 0x6, 0x3ff, 0x4, 0x1, 0x4ed, 0x7, 0x1ff, 0x3, 0xc1, 0x8, 0x80, 0x5, 0x80000001, 0x8000, 0x6, 0x8, 0x7ff, 0xfffffffe, 0xe, 0x3ff, 0x9, 0x2, 0x4]}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x7}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0xfffffffffffffff8}, @TCA_POLICE_TBF={0x3c, 0x1, {0x8, 0x7, 0x79, 0x1000, 0x6f1485b8, {0x5, 0x2, 0x8, 0x1000, 0x1, 0x6}, {0x80, 0x1, 0xe, 0x7, 0x1ff, 0x9}, 0xf68a, 0x5, 0x3}}]]}, {0x3d, 0x6, "e32c55c95728ca83ad4d4a2784d62c3ca4aba98a29ad93c4b81d57795add72556ee534dddb65eb1ce379cf1ab663c2ef5c8b101ae38bf43dc5"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_mirred={0x16c, 0x6, 0x0, 0x0, {{0xb}, {0x64, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x81, 0x7fffffff, 0x3, 0xc7, 0x9}, 0x3, r13}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x4, 0x27e, 0xffffffffffffffff, 0x4}, 0x0, r10}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x8, 0x0, 0x8}, 0x4, r14}}]}, {0xdf, 0x6, "dd2df84c03c9ef6d68bd6c2bf6d2a2c6f9d5953488e22d0ded14f7306d149212cc41c64f993660c9c775853c50b83e7e28837a6ede56a2d8d9df1b5be2043e1b1911e6997ee99f3e208a11c55b4be51f3c3bce010b99eecb1e17caa46ec20d029e7e0dd4695e80017125b7fe51b0e6a83ddf1dc233ace0896a5f89ad2247daa0cc8d1492f466c927d28af890aedb1ec874a48c6b4dbe818365c8018cdf828aad0979d73807f13dce3bb5408e913c28582260fe7c9237a0067ce0c1038c8d3b0263ffd57f781f22c38d853f816a6d0ab1b9673f646355bd64147c43"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ctinfo={0x13c, 0x1e, 0x0, 0x0, {{0xb}, {0x94, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x9, 0x6, 0x20000000, 0xbb, 0x5}}, @TCA_CTINFO_ACT={0x18, 0x3, {0x8000, 0x101, 0x6, 0x3, 0x3}}, @TCA_CTINFO_ACT={0x18, 0x3, {0x800, 0x9, 0xffffffffffffffff, 0x4c3, 0x3}}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x7}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x80000001}, @TCA_CTINFO_ZONE={0x6, 0x4, 0xfff9}, @TCA_CTINFO_ACT={0x18, 0x3, {0x200, 0x7, 0x7, 0x6, 0x8}}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x8}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0x7a5d}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x7ff}]}, {0x7d, 0x6, "ed72d91deee80f3a0f7461599894b366224d53d43fcc8b70fd853af1b6b0f0a620f081f5e00b599dfab56536d5488613af9a4a56489dcb0b5fec07a02e1334ea1bb9eeea982506ed7cb05c9f9113667dce2cfe23d7e7d16d41a927bed5c5b378138a06358357c20c8fc7e8902d3cba16916511321c01bddada"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_mpls={0x78, 0xd, 0x0, 0x0, {{0x9}, {0x34, 0x2, 0x0, 0x1, [@TCA_MPLS_TC={0x5, 0x6, 0x6}, @TCA_MPLS_LABEL={0x8, 0x5, 0x8cae7}, @TCA_MPLS_LABEL={0x8, 0x5, 0xfab61}, @TCA_MPLS_LABEL={0x8, 0x5, 0xe505b}, @TCA_MPLS_BOS={0x5}, @TCA_MPLS_BOS={0x5}]}, {0x1c, 0x6, "15be7c90fd290dd82c84fe850b2d501be49a99eda92aae9d"}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}, @m_simple={0xc4, 0xa, 0x0, 0x0, {{0xb}, {0x4}, {0x98, 0x6, "71e0b518b8f135c5a9d65bb9f4f0e07edad2ecf2b739483b73a6542b7a99a5912622fabc519750dfc37255b9e578e8a588559979d5f9216fdc186aca440b0796df725c5f2202c6b7d391f33a43745c61d4fdedb4dbc7188a70c87fd2ecccb340ca702440f9c8e84b876816a387847f551305509b53f38dedfed99f73f631952991f148aed16e46fddd4edb2899dbb93f4fe723e0"}, {0xc, 0x7, {0x72cc1572828f2fb0}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ife={0x138, 0xf, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0x6}, @TCA_IFE_TYPE={0x6, 0x5, 0x8}, @TCA_IFE_DMAC={0xa, 0x3, @random="ace42d27ac80"}, @TCA_IFE_METALST={0x14, 0x6, [@IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_TCINDEX={0x6, 0x5, @val=0xd86}]}, @TCA_IFE_TYPE={0x6, 0x5, 0x4}, @TCA_IFE_TYPE={0x6, 0x5, 0x7f}, @TCA_IFE_METALST={0x1c, 0x6, [@IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_PRIO={0x8, 0x3, @val=0x1ff}, @IFE_META_SKBMARK={0x8, 0x1, @val=0x4}]}]}, {0xb1, 0x6, "be617105056968093b1a0a7a6495d9eba907b34e2575fc771abe462148cc3b26402039099d3e7b394a27ecbc664535ee58669f39b9278bd7eab629448eae566c49f13f2005311e0ec6d0db83a129a10e4a49796b73604053124de3d1bd1698681b92bd6fe0ce79d94c2b1dd82835881c6bc1d4555514e88d2fc49b0416fa4eaaba8d6e05ad4682e2b289aa43eaff01dc3c9c45ae6ee08c8c1431b8b25bf60a139110c77ff2d99a0e4b84859689"}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0x14cc}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

3m57.865338758s ago: executing program 2 (id=603):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x8, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r5, @ANYBLOB="0c00990000000000000000000800a115ffff0000080026008d03000008009f"], 0x40}}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x7, 0x0, 0x180, 0x4, 0x0, 0xf1, 0x3, 0x8000000000000, 0x45, 0x0, 0x3b9, 0x0, 0x0, 0x0, 0xbd9], 0x8000000, 0x3c4210})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

3m57.817051783s ago: executing program 32 (id=603):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d6c2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x8, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r5, @ANYBLOB="0c00990000000000000000000800a115ffff0000080026008d03000008009f"], 0x40}}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r6, 0x4090ae82, &(0x7f0000000000)={[0x33, 0x7, 0x0, 0x180, 0x4, 0x0, 0xf1, 0x3, 0x8000000000000, 0x45, 0x0, 0x3b9, 0x0, 0x0, 0x0, 0xbd9], 0x8000000, 0x3c4210})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

38.723899157s ago: executing program 4 (id=1709):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x3b, 0x0, 0x0, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="c026000041000701000000000700"], 0x26c0}}, 0x4010)

37.723537711s ago: executing program 4 (id=1715):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000100)={0x1000000, 'erspan0\x00', {0x1}, 0x26})
socket$packet(0x11, 0x3, 0x300)
r3 = socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r3, 0x0, 0x41)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f0000000180)={0x0, 0x4, 0x0, 0x0, 0x3, 0x10, 0x3, 0xff}, 0xe)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000280)=@tipc=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000300)="80", 0xfdef}], 0x1}, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000580)=""/248, 0xf8}], 0x1, &(0x7f0000000100)=""/5, 0x5}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_int(r5, 0x29, 0x5, 0x0, &(0x7f0000000480))
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r7, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20)

36.748207015s ago: executing program 4 (id=1721):
pipe2$9p(&(0x7f0000000980), 0x0)
r0 = fsopen(0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYRES32=r0, @ANYBLOB="a1781e255bea802dcd73c621afb9bc19c8044ac0b6a18fa18e000000000000000044c3a3f1b5072275c5301aa09054e3"], 0x4c}, 0x1, 0x0, 0x0, 0x400d0}, 0x240440c0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x6, &(0x7f0000000200)=0x200006)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000400)=0x14)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r9, 0x8933, &(0x7f0000001880)={'wg1\x00', <r10=>0x0})
r11 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r8, &(0x7f0000000200)={0x0, 0x4000, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="010000000000000000000100000024000300a05ca84f6c9c8e3853e2fd7a70ae0fb20fa152600cb00845174f08076f92784308000100", @ANYRES32=r10, @ANYBLOB], 0x40}}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={r1, 0xe0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000440)=[0x0, 0x0, 0x0], ""/16, <r12=>0x0, 0x0, 0x0, 0x0, 0x4, 0x5, &(0x7f0000000480)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000004c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x80, &(0x7f0000000500)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000540), &(0x7f0000000580), 0x8, 0x84, 0x8, 0x8, &(0x7f00000005c0)}}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000740)={'batadv0\x00', <r13=>0x0})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000800)={'syztnl2\x00', &(0x7f0000000780)={'syztnl2\x00', <r14=>0x0, 0x2f, 0x5, 0x3, 0x9, 0x8, @local, @private2, 0x8000, 0x20, 0x1}})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r15=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002e00)=@newtaction={0x1484, 0x30, 0x1, 0x0, 0x0, {}, [{0x1fc, 0x1, [@m_mirred={0x1ac, 0xb, 0x0, 0x0, {{0xb}, {0x144, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x4, 0x6, 0x5, 0x7, 0x4}, 0x1, r7}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0x5, 0x5, 0x8, 0x3118}, 0x3, r10}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x5, 0x1, 0x3, 0x3}, 0x1, r12}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x9, 0x3, 0x6, 0x101}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x1000, 0x20000000, 0x3, 0xd}, 0x4, r13}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x3, 0x1000000e, 0x4bc, 0x80000001}, 0x5, r14}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x994, 0x4, 0x1, 0x9, 0x5}, 0x4, r15}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xb0e, 0xd31, 0x5, 0x7fff}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1c44, 0x4d68, 0x4, 0x9, 0x183}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x43, 0xc, 0x5, 0x80, 0x8000}, 0x3}}]}, {0x3f, 0x6, "0f4cbe358431c958b2edf5ff72128af6b3bec4a5bf4d9be988ff204b78359e08b86c55aed7f3a45eddaa737afcd4241ad2b3dc09565635ab1f1302"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_bpf={0x4c, 0x19, 0x0, 0x0, {{0x8}, {0x14, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_FD={0x8, 0x5, r3}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0xa}]}, {0x14, 0x6, "97c8bde2dfcdc88787fe2bef0a3bad95"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}, {0x1274, 0x1, [@m_police={0xd9c, 0xd, 0x0, 0x0, {{0xb}, {0xd34, 0x2, 0x0, 0x1, [[@TCA_POLICE_AVRATE={0x8, 0x4, 0x4}, @TCA_POLICE_RATE={0x404, 0x2, [0x6c2, 0x3, 0x8, 0x7fffffff, 0x7f, 0x3, 0xf, 0x1, 0xffffffff, 0x9935, 0xffffffff, 0x1000, 0xba, 0x7, 0x3, 0x2e, 0x6, 0xfffffff8, 0x98, 0x0, 0xfffffe01, 0x5, 0xc2, 0x6, 0x1, 0x3, 0x0, 0xa, 0x2, 0x5, 0x2, 0x1000, 0x2, 0x7, 0x10a, 0x6, 0x9, 0xa32, 0x7e0109f3, 0x0, 0xe, 0x40, 0x7, 0x80000001, 0x6, 0x3, 0x7, 0x7, 0x60, 0x5, 0x4, 0x7, 0x1, 0x8, 0xc, 0x4, 0x5, 0x4, 0xa, 0x9, 0x9, 0x9, 0x3, 0x3, 0xff4, 0x3, 0x1, 0x5, 0x65de, 0x4, 0x7, 0xfffffffc, 0x5, 0x3, 0x0, 0x8, 0x9, 0xb, 0x80000001, 0x9, 0x3, 0x7, 0x1, 0x90ed, 0x68fd, 0x7, 0xa43, 0x2, 0x200, 0x80, 0x4, 0x7fff, 0x5, 0x6, 0x2, 0x1ff, 0x1ff, 0x1800, 0x5, 0x9fcb, 0x6, 0x80000000, 0x5, 0x6, 0x3, 0x3, 0x80, 0x4fbc, 0x0, 0x10001, 0x1, 0x0, 0x6, 0x3, 0x6, 0xdd5a, 0x2, 0x4, 0x40, 0x1, 0x1000, 0xfffffffd, 0x7, 0x5, 0x835, 0x2, 0xda, 0x80000001, 0xb, 0x1, 0x8, 0x3, 0x6, 0x4e9c, 0x400, 0x48, 0x4, 0x6, 0xbd5, 0x1, 0x3e, 0x100, 0x4, 0x401, 0x0, 0xe1, 0xffffffff, 0x5, 0x7, 0x6, 0x2, 0x6, 0x9, 0x10001, 0x10000009, 0x9, 0x8, 0x3, 0x1, 0x5, 0xb9, 0x9, 0xfffffffc, 0x8, 0x5, 0x10000, 0x3, 0x1, 0x10000, 0x440, 0xff, 0x0, 0x6, 0x7, 0x2, 0x4, 0x4, 0x3, 0x4, 0x9, 0x5, 0x1ff, 0x1, 0x6, 0x9, 0x0, 0x2, 0x6, 0x10, 0x5, 0x17800000, 0x5, 0x8, 0x7, 0x2, 0xb, 0x1, 0x10001, 0x8, 0x7, 0x2, 0x5, 0x4, 0x47f, 0xff, 0x9, 0x40, 0x1, 0x1, 0x0, 0x9, 0x7fff, 0x0, 0x40, 0x800, 0x9, 0x4, 0x4, 0xf641, 0x7fffffff, 0x5, 0x0, 0x2, 0x8, 0x7ff, 0x1, 0x2, 0x8, 0x1, 0x8001, 0x4, 0x1, 0x5, 0xffff, 0x3, 0x6, 0xfffffb44, 0x0, 0x7, 0x10000, 0xdca, 0x5, 0x0, 0xa000, 0x0, 0x5f, 0x3, 0x81, 0x3, 0x1, 0x1ff, 0x1, 0xfffffffd, 0x7, 0x8, 0x996]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x9, 0x5, 0x45ed, 0x2, 0x26bbea35, {0xd9, 0x2, 0x8, 0x3, 0x5965, 0x2900}, {0x2, 0x0, 0x8, 0xd28, 0x5, 0x400}, 0xfffffff8, 0x5, 0x3}}, @TCA_POLICE_RATE64={0xc, 0x8, 0xf1}], [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x6}, @TCA_POLICE_RATE={0x404, 0x2, [0x41, 0x80, 0x6, 0xa, 0x7, 0x7, 0x400, 0x1, 0x4, 0x853f, 0x7, 0x6, 0x7ff, 0x7ff, 0xe76, 0x2, 0x2, 0x7, 0x5, 0xc, 0x8001, 0x1, 0xf1, 0x1, 0x4, 0x9, 0x8, 0x0, 0xfffffff8, 0xa16c, 0x9, 0xed11, 0xab78, 0x0, 0xfffffff9, 0xfffffde5, 0x561, 0x2, 0x0, 0x0, 0x0, 0x400, 0x4, 0x3e, 0x25c, 0x5, 0x8, 0x9, 0x400, 0x10000, 0x1, 0x4, 0x4, 0xb, 0x200, 0x2, 0x5, 0x6, 0xffff, 0xaa8a, 0x6, 0x3ff, 0x7, 0xfffffff9, 0x3ff, 0x4, 0xfffffa13, 0xfffffffa, 0x80000000, 0xffffff80, 0x9, 0x36, 0xffff, 0x7f, 0x4, 0x9, 0xbb, 0x82, 0x0, 0x8, 0x7, 0x0, 0x5, 0x4, 0x10, 0x5, 0x2, 0x4, 0x2, 0x80000000, 0x6, 0xe9, 0x4fa7, 0x7060, 0x81, 0x4, 0x7f, 0x5, 0x200, 0x5, 0x0, 0x100, 0x400, 0x3, 0x6, 0x7, 0x0, 0xd, 0x2, 0xf, 0x6, 0x2, 0x3, 0x5036, 0x5, 0x9, 0x9, 0x3, 0x7, 0x7, 0x2, 0x7, 0x6, 0x1, 0xffff, 0x10001, 0x7, 0x1, 0x1, 0x98000000, 0x10, 0x6f, 0x0, 0x9, 0x1, 0x0, 0x400, 0x7fffffff, 0x10001, 0x6, 0x5b9, 0x5, 0x7, 0x9, 0x3, 0x6, 0x400, 0x7700000, 0x6995, 0x1, 0x5, 0xffffffff, 0x101, 0xffffffff, 0x1, 0x6aa, 0x7fffffff, 0x6, 0xf74f, 0x9, 0x7, 0x4, 0x8, 0x6e4ae2ea, 0x1, 0xfffffffe, 0xcc96, 0x58, 0x1, 0x4, 0x0, 0x3, 0x7fffffff, 0x5def, 0x100000, 0x3, 0xff, 0x9, 0xf, 0x0, 0x4, 0x0, 0xfff, 0xa29d, 0xffff, 0x4, 0x0, 0x1, 0x6, 0xfffffffc, 0xfffffffd, 0x9, 0x1, 0x7, 0x8, 0x5, 0x33c5c000, 0x100, 0xfa, 0x6, 0x9, 0x80000000, 0x2, 0x6, 0x8, 0x9, 0x4, 0x9, 0x8, 0x6, 0x1, 0xfffff5dc, 0xe, 0xfffffffe, 0x7, 0x7fffffff, 0x80000000, 0x5, 0xfffffeff, 0xfffffff8, 0xa05, 0x9, 0x7, 0x781, 0x7, 0x1, 0xe, 0x7, 0xa, 0x6, 0x3, 0x1, 0x8, 0x7, 0x9, 0x2, 0x3, 0x1, 0x917e, 0x0, 0xfffffff9, 0x200, 0x4, 0x6, 0x5, 0x8, 0x4, 0x7fffffff, 0x8, 0x401, 0x0, 0x7, 0x7, 0xfffffffe, 0x6, 0x24000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x8000000, 0x0, 0x8, 0x2, {0x6, 0x2, 0x9, 0x800, 0xbd, 0x924}, {0x0, 0x2, 0xfffd, 0xa979, 0x0, 0x4}, 0x80000001, 0x13f, 0x6a42}}, @TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x3, 0x3, 0xffffffff, 0x3a, {0x7, 0x2, 0x4, 0x0, 0x8, 0x7}, {0x30, 0x1, 0x5, 0x0, 0x4, 0x5}, 0x4, 0x3, 0x8}}, @TCA_POLICE_RATE={0x404, 0x2, [0x2, 0x76, 0x10001, 0x4, 0x4, 0x4, 0x5, 0x2, 0x9, 0x3, 0x9, 0x1, 0x9, 0x800, 0xcd, 0x1, 0x8, 0x2, 0x81, 0x10001, 0xa92b, 0x7, 0x7fff, 0x7, 0x5, 0xe9, 0x3e7, 0x7f, 0xff, 0x2, 0x3, 0x9, 0xa, 0x4, 0x5, 0x8, 0x260e, 0xfffffffb, 0x2, 0x6, 0xeb, 0x9, 0x5, 0x4, 0xffffffff, 0x8, 0x7, 0x3, 0x7, 0xb, 0x3, 0x4781, 0x7f, 0x6, 0x8, 0x161, 0xe, 0x1, 0xbe03, 0x7, 0x4, 0x1, 0x3, 0x4, 0x5, 0x3, 0x9, 0x8f6e, 0x2, 0x1, 0x9, 0x10001, 0x80000001, 0x2d0, 0x8, 0xe7, 0x1d1d61a2, 0xfb, 0x2a4, 0x80000001, 0x9, 0x4, 0x7f, 0xffff, 0x8000, 0x5, 0xffffff99, 0x1901, 0x7, 0x9, 0x1, 0x263e, 0x9, 0xd, 0xd80, 0x0, 0x1, 0x4, 0x7, 0x5, 0x8, 0x1, 0x6, 0x81, 0x4, 0x24000, 0x0, 0x2, 0x0, 0x1, 0x3, 0x10e7, 0x0, 0x3, 0x3, 0x8, 0x9, 0x7e73, 0x1000000, 0x5, 0x36f0eabe, 0x10000, 0x0, 0x42, 0x9, 0x0, 0xffffff7f, 0x281, 0x70, 0x3, 0x3, 0x7f, 0x10, 0x6, 0xc, 0x3, 0x8, 0xcb7c, 0x2, 0x1, 0x5, 0x2783, 0xeb2, 0x8, 0x3, 0x7, 0x1708, 0x8, 0xfffffffe, 0x8000, 0x9, 0x6, 0x0, 0x800, 0x4, 0x6, 0x9, 0x2, 0xe73c, 0x8, 0xd, 0x9fb, 0x88d0, 0x27c8, 0xe, 0x4, 0x81, 0x1e, 0x7, 0x2, 0x6, 0x1, 0x6, 0xffff, 0xff, 0x4, 0x5, 0xffff8b16, 0x8, 0x0, 0x8, 0x1000, 0x0, 0xd0, 0x9, 0x6dae, 0x800, 0x4, 0xd423, 0x5, 0x7, 0x9, 0x8, 0x0, 0x4, 0x8, 0x7, 0xfffffffd, 0x2, 0x6, 0x1, 0x5, 0x40, 0xfffffa0a, 0x5, 0x40, 0x4, 0xd1, 0x3a, 0x2, 0x48000, 0x6, 0x7, 0x8, 0x101, 0x44, 0xc3f, 0x3, 0xfffffffa, 0xfff, 0x80000001, 0x200, 0x8, 0xa, 0xfff, 0x10000, 0x3, 0x40, 0xfffff000, 0x4, 0x4, 0xab6, 0x101, 0x6, 0x3ff, 0x4, 0x1, 0x4ed, 0x7, 0x1ff, 0x3, 0xc1, 0x8, 0x80, 0x5, 0x80000001, 0x8000, 0x6, 0x8, 0x7ff, 0xfffffffe, 0xe, 0x3ff, 0x9, 0x2, 0x4]}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x7}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0xfffffffffffffff8}, @TCA_POLICE_TBF={0x3c, 0x1, {0x8, 0x7, 0x79, 0x1000, 0x6f1485b8, {0x5, 0x2, 0x8, 0x1000, 0x1, 0x6}, {0x80, 0x1, 0xe, 0x7, 0x1ff, 0x9}, 0xf68a, 0x5, 0x3}}]]}, {0x3d, 0x6, "e32c55c95728ca83ad4d4a2784d62c3ca4aba98a29ad93c4b81d57795add72556ee534dddb65eb1ce379cf1ab663c2ef5c8b101ae38bf43dc5"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_mirred={0x16c, 0x6, 0x0, 0x0, {{0xb}, {0x64, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x81, 0x7fffffff, 0x3, 0xc7, 0x9}, 0x3, r13}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x4, 0x27e, 0xffffffffffffffff, 0x4}, 0x0, r10}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x8, 0x0, 0x8}, 0x4, r14}}]}, {0xdf, 0x6, "dd2df84c03c9ef6d68bd6c2bf6d2a2c6f9d5953488e22d0ded14f7306d149212cc41c64f993660c9c775853c50b83e7e28837a6ede56a2d8d9df1b5be2043e1b1911e6997ee99f3e208a11c55b4be51f3c3bce010b99eecb1e17caa46ec20d029e7e0dd4695e80017125b7fe51b0e6a83ddf1dc233ace0896a5f89ad2247daa0cc8d1492f466c927d28af890aedb1ec874a48c6b4dbe818365c8018cdf828aad0979d73807f13dce3bb5408e913c28582260fe7c9237a0067ce0c1038c8d3b0263ffd57f781f22c38d853f816a6d0ab1b9673f646355bd64147c43"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ctinfo={0xac, 0x1e, 0x0, 0x0, {{0xb}, {0x4}, {0x7d, 0x6, "ed72d91deee80f3a0f7461599894b366224d53d43fcc8b70fd853af1b6b0f0a620f081f5e00b599dfab56536d5488613af9a4a56489dcb0b5fec07a02e1334ea1bb9eeea982506ed7cb05c9f9113667dce2cfe23d7e7d16d41a927bed5c5b378138a06358357c20c8fc7e8902d3cba16916511321c01bddada"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_mpls={0x78, 0xd, 0x0, 0x0, {{0x9}, {0x34, 0x2, 0x0, 0x1, [@TCA_MPLS_TC={0x5, 0x6, 0x6}, @TCA_MPLS_LABEL={0x8, 0x5, 0x8cae7}, @TCA_MPLS_LABEL={0x8, 0x5, 0xfab61}, @TCA_MPLS_LABEL={0x8, 0x5, 0xe505b}, @TCA_MPLS_BOS={0x5}, @TCA_MPLS_BOS={0x5}]}, {0x1c, 0x6, "15be7c90fd290dd82c84fe850b2d501be49a99eda92aae9d"}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}, @m_simple={0x10c, 0xa, 0x0, 0x0, {{0xb}, {0x4c, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0xb2, 0x80, 0x6, 0x7ff, 0x2}}, @TCA_DEF_PARMS={0x18, 0x2, {0x6, 0xca, 0x4, 0x1}}, @TCA_DEF_PARMS={0x18, 0x2, {0x3, 0x2, 0x2, 0x6, 0x2}}]}, {0x98, 0x6, "71e0b518b8f135c5a9d65bb9f4f0e07edad2ecf2b739483b73a6542b7a99a5912622fabc519750dfc37255b9e578e8a588559979d5f9216fdc186aca440b0796df725c5f2202c6b7d391f33a43745c61d4fdedb4dbc7188a70c87fd2ecccb340ca702440f9c8e84b876816a387847f551305509b53f38dedfed99f73f631952991f148aed16e46fddd4edb2899dbb93f4fe723e0"}, {0xc, 0x7, {0x72cc1572828f2fb0}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ife={0x138, 0xf, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0x6}, @TCA_IFE_TYPE={0x6, 0x5, 0x8}, @TCA_IFE_DMAC={0xa, 0x3, @random="ace42d27ac80"}, @TCA_IFE_METALST={0x14, 0x6, [@IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_TCINDEX={0x6, 0x5, @val=0xd86}]}, @TCA_IFE_TYPE={0x6, 0x5, 0x4}, @TCA_IFE_TYPE={0x6, 0x5, 0x7f}, @TCA_IFE_METALST={0x1c, 0x6, [@IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_PRIO={0x8, 0x3, @val=0x1ff}, @IFE_META_SKBMARK={0x8, 0x1, @val=0x4}]}]}, {0xb1, 0x6, "be617105056968093b1a0a7a6495d9eba907b34e2575fc771abe462148cc3b26402039099d3e7b394a27ecbc664535ee58669f39b9278bd7eab629448eae566c49f13f2005311e0ec6d0db83a129a10e4a49796b73604053124de3d1bd1698681b92bd6fe0ce79d94c2b1dd82835881c6bc1d4555514e88d2fc49b0416fa4eaaba8d6e05ad4682e2b289aa43eaff01dc3c9c45ae6ee08c8c1431b8b25bf60a139110c77ff2d99a0e4b84859689"}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0x1484}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

35.750683223s ago: executing program 4 (id=1724):
r0 = socket$inet6(0xa, 0xa, 0x400000)
connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e22, 0xfd9, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
sendmmsg$inet6(r0, 0x0, 0x0, 0xc8000)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x2)
mkdir(&(0x7f0000000040)='./bus\x00', 0x149)
lsetxattr$trusted_overlay_nlink(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0), 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)={[{@index_off}, {@redirect_dir_off}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@metacopy_on}], [{@func={'func', 0x3d, 'MODULE_CHECK'}}]})
listxattr(&(0x7f0000000100)='./bus\x00', &(0x7f0000000200)=""/158, 0x9e)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(0xffffffffffffffff, 0x0, 0xd2, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x2e}, 0x1, 0x0, 0x0, 0x20000000}, 0x24004080)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000380), 0x101a02, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
read$msr(r1, &(0x7f0000000400)=""/108, 0x6c)
bind$inet6(r2, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendto$inet6(r2, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in6={{0x2, 0x0, 0x0, @dev, 0x6}}, 0x9, 0x7, 0x0, 0x0, 0x54}, 0x9c)
chdir(&(0x7f0000000100)='./file0\x00')
r3 = open(&(0x7f0000000040)='./file0\x00', 0x80242, 0x1df2a23c5997fa7b)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0xf0, 0x0, 0x0, 0x0, 0x803, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
write$FUSE_CREATE_OPEN(r3, &(0x7f0000000500)={0xa0, 0x0, 0x0, {{0x80000000, 0x3, 0x9, 0xfffffffffeffff83, 0x3, 0x1, {0xffffffffffffffff, 0x3ff, 0x20ff, 0x7ff, 0xf7c, 0x800000000000d615, 0x3fb, 0x7ffffffb, 0x6, 0x1000, 0x8, 0x0, 0x0, 0x3ff, 0x8ea2}}, {0x0, 0x12}}}, 0xa0)

35.463711394s ago: executing program 4 (id=1726):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000800), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, 0x0, 0x40882)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), r0)
setreuid(0xee00, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r2, 0x40049366, &(0x7f0000000180))
keyctl$session_to_parent(0x12)
sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r1, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400000000000000080001000300000005000200000000000500020008000000240003"], 0x12c}, 0x1, 0x0, 0x0, 0x20000020}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f00000010c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x0)

34.543111704s ago: executing program 4 (id=1730):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
madvise(&(0x7f00009ab000/0x2000)=nil, 0x2000, 0x12)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000003780), 0x240, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r2, 0x4068aea3, &(0x7f00000004c0))
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000600)={"3ff6bb967a158926e0d45f9a4e85c53d873f815ae2bfd65085ff677bcd035c43c23b8a83249cdb3138ce2e544626d0a228dd65e70642029b38f70f9a8653bc6cdf708c9797d18127b3cdb99b2e8c08880080bf7265c2e0533b00fe5da866653824e1f9806cdcbcd0c34abc3178128e99ec55564e049b283deba3df410afb94a39e493653203444f241f7bb4095dd447673de9bddbc6f158b7cef9f2eae35a27ad7284328c5a4da648b2d3d6b1e4d45166f471a74b593a0e1544a069e5f83e802abe95c3660abf974acc42f7199d2780417559551eb09279ba244e2e62c8207f036240beea9e7c4d1ea05b49e56ed70561bf33301ba355da833ad4f76de6ed78319fe0f9ea8746c60b7dc9d52a4c06dde98a9c8ab6fbe4d8b1b3a1d82c26d7163f4733a2df0b4df085782e0ba85ab384bb2b81ddff291fe74390b0ed0a19109a8811395ecd8ad603b74c0db19d12a104064f018b4a0a7a62824177413fa6e18112b83547c10307e1cb5ea0e688727a81d551b719ffeb7a0ab8ec60efd05fd522d9f8fb639c617fa7aaded585164f0ae89f2bd4f52ef51aa592788e4998a953fe86e4adcf58a5e386dcf4276d6ffdce363a0e4f429b8e8abe78534481e7610fc79cb026a31d83bea3d08828babd902baa28ed5cf67c326a32e755a32996b1074df14248ef649af69c4a8b529b94f90ab4ba4a2dba431ee06876dc30ace0a9d2ac516ef0cabca1b36aed282886150f7f1b918f023f96e8a806ed6080a5892354778c7cf7c17d586a8bcd9af620adc66050653236a4b2ca2c8819c47cf9ee0844dc6e928c1917c440a0e25d720f966e497a9f00326321f26f19cff38afd6368a324f37208793ca29ce87fd83b1c398bfab9f51acdd373be680041c1d66dc6ce46a6b59e09f963cdae8d879bc1b5524d5a07a0b0477bc7cc9b33372bd88dfa4205d8dfa7e54e62370795d27e0231325921d3f682dbc42b86bb1736ecd9f1e3c651407459964600574b86f314265c13004aae9ce22506fcc0078d5e0e7c496a76da558ebc428ef9c0718e425309bc777af86e8bdaf024b655e3ae6b447e4d7eef20a8373e8caa1490b5391b4aa2e281b50b3990d3163c23f6afc8bf8d921e7e438f99da2752683a468fe2c32067aa42a0b3a5fcd5c206821fd224a00bb958f8ce4573b2b5f111332f074b38751e5268b50da69b91c297bc6d9ec3dbc754efe683e67b0a800a2cfa78b86a8789d8b5396a469cbf900cbf65218b5eac11a0674300a23a0138cd9cdeb1aefd886fdd7eb87a4301d2376c092283a4f22e3888dbce72d7d228da1f05069dc0528f34ed75a09b461c17e1333f58eca999d759bf31e823da449c2bca9cc723788675e7c362645e5826a23b7386217a52046353f3f6bbf82314a79855b1786c77b26c33938288655f797153b17184146613f6d0ac9255db698f4"})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000f40)=ANY=[@ANYBLOB="50000000480011012abd7000fedbdf250a006000", @ANYRES32=0x0, @ANYBLOB="020000000800020007000800020003000100080002000000000014000100"/39], 0x50}, 0x1, 0x0, 0x0, 0x20000040}, 0xc090)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001300)=@newtaction={0x1a60, 0x30, 0x2, 0x40000, 0x0, {}, [{0x2b0, 0x1, [@m_mirred={0x128, 0x9, 0x0, 0x0, {{0xb}, {0x4}, {0xfa, 0x6, "03bd27be33bf327100c3ce46ec3dc06d2ff27d1fa4829df90a7d56debacfeea72975bc91d321ddb208bd5caa197cea223a40fcf7b6027956445800a5f7e9318a6b22fdfd196eb7f086ff8857b743f2938ab7dd83490d6484b208e404ad04637f320ec347340e2947293760fb3b9746dde0bb10080be83c2dc19a8ebc9b97719c1e22999add034836adf49831481ae577cab659dc3afd4e43a46ed04bce6a8fc75b1e9269ee6b7edfeb49ea00fc84d6d1ba65c5a5ab20fb18e6974dc48d453614bdc7d1990a181fdcaf325e6ba87252f784db9b6d20327e2596c93490b24b72967cc2f54d1bfda582aae80ce8179925cc169a5a702edd"}, {0xc}, {0xc}}}, @m_bpf={0x184, 0xd, 0x0, 0x0, {{0x8}, {0xa8, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS={0x1c, 0x4, [{0x401, 0x2, 0x69, 0x8001}, {0xfffa, 0xff, 0x2, 0x3}, {0x9, 0x2, 0x3, 0x8}]}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x9}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x6}, @TCA_ACT_BPF_OPS={0xc, 0x4, [{0xc4, 0x7f, 0x1, 0x4}]}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x2, 0x9, 0x0, 0x19}}, @TCA_ACT_BPF_OPS={0x24, 0x4, [{0x658, 0x4, 0x0, 0xd2}, {0x6, 0x3, 0xfe, 0x1002}, {0x400, 0xf7, 0x78, 0x2}, {0x7, 0x8, 0x6, 0xffffffff}]}, @TCA_ACT_BPF_OPS={0xc, 0x4, [{0x401, 0x1, 0xb, 0x7}]}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}]}, {0xb6, 0x6, "9bf39c7a4a78cdf86bc68100020e4eb994705a473dc4f172c00fd9682c355ed81a99ef84ca3bbba09114d71336ae4f95779fc35d049b18ad0bc70ec47778c5115f537cc53e56573557fd2b86eea8b26ee2b705cfeff7fa83c0f9b7902faa7b7e0b5aa913bf76bb55dc2836385cf78527d920eaf985b51138facf03e7580155e2c04b42c8e5b376333aca81ba8109450c9f8a08e435e705a7930a2847cc9cce393b9d8d8d3b7714fb62f3620358430272f27f"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1}}}}]}, {0x428, 0x1, [@m_bpf={0x168, 0x18, 0x0, 0x0, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x4}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x80000000, 0x7, 0x5, 0xcaae, 0x7}}, @TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x3}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x5, 0xfffeffff, 0x7, 0x6, 0x9ad0}}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}]}, {0xc8, 0x6, "2cbe1f12161d63a7cacca5bb97a6b4e0edfdd4467f28948feff9c0e5edff1ff28cc773f49c28b9d83e4b9ce1f5c599cb4f2dc5ce2950f9b0a408b3eee316122ea76866bfa73d0d86a69af5b796a8eedfca8042b3f20c0c74f54de2640031c6726a80e5eaf027a582eeb0a9e48fa4035a2f4cfc4d1532099e08d607e8e416f4dc4745de357ea1bd75b5d64ba872ec2cd3cfa734f8432472a6f2e0e8de93c02b3394488697bbb2938d771603546e09cd90214e4510a4439840106434639f2649310943fb61"}, {0xc}, {0xc}}}, @m_nat={0x194, 0x13, 0x0, 0x0, {{0x8}, {0x144, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x8000, 0x4, 0x10000000, 0x9, 0x9}, @multicast1, @loopback, 0xffffff00, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x0, 0x3, 0x3, 0x6, 0x9}, @local, @private=0xa010100, 0xffffff00}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x1, 0x101, 0x5, 0x5, 0xc1}, @private=0xa010102, @broadcast, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x80000001, 0x7, 0x20000000, 0x80, 0xfffffffa}, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, 0xff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x8, 0x10001, 0x0, 0x0, 0x4}, @remote, @private=0xa010101, 0xff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x5, 0x1, 0x20000000, 0x8, 0xffff}, @remote, @remote, 0x0, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x200, 0x800, 0x4, 0x6, 0x3}, @empty, @local, 0x0, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x1, 0x99, 0x10000000, 0x5994, 0x6}, @local, @multicast1, 0xff000000, 0x1}}]}, {0x2b, 0x6, "1f21162ff2475b98bf1dfe262ae2b6bb7f478d0005831c95f12ca723aee00352a08251e9f5257d"}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}, @m_simple={0x60, 0x13, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x3, 0x4, 0x2, 0x4, 0x1}}, @TCA_DEF_DATA={0x6, 0x3, '%\x00'}]}, {0x13, 0x6, "dde436c3e503f8c93cfb63665c918d"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_skbedit={0xc8, 0x4, 0x0, 0x0, {{0xc}, {0x54, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x7, 0x6383, 0xfffffffffffffff8, 0x4, 0x6}}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x4}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x7}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x4, 0x3ff, 0x8, 0x8}}, @TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x1}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0xfffc}]}, {0x4a, 0x6, "70935f7b4ac202bff0bdb5190ce3a44d8ca24e292b9b12cfcd42bd090571608a1da5fd5442a17d9e95a1f84316efe1cea9124f4c29b5421991f695a8d295f3436d1af4a79011"}, {0xc}, {0xc, 0x8, {0x3, 0x2}}}}]}, {0x1374, 0x1, [@m_ctinfo={0xf4, 0xc, 0x0, 0x0, {{0xb}, {0x14, 0x2, 0x0, 0x1, [@TCA_CTINFO_ZONE={0x6, 0x4, 0xf800}, @TCA_CTINFO_ZONE={0x6, 0x4, 0x2}]}, {0xb6, 0x6, "b500af08f1c3dbd2592c58871d26fad07160395c2e9f0641eed95a31e68e63eaf5f2576405d48ff7b55d606df7cecb39e0d01e914a9f1008d091ade1c7c58c7917dd96fde33274e1cd50868cde8b60bdbeb823250afb610168cd81516b6d0609c63ede675e975908599a9eaa0c20f6a1e235c623412b06de276bbeab699ab532028a455126c9831bd7f38b5216092e54e87f4732259277b910ec58ec02bf7cc4bf84aeff96366ecfaf956be11ae1ea3d40d6"}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}, @m_sample={0x130, 0x18, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x63}]}, {0xf9, 0x6, "691d029972db275c8b83b570b359e07ce081874f70b1e024cce41d3ca763d188063643df8cc192e5e5ccd7c6d39c9628bced79b888577075d206d285be42134b050008dc6e60dfab089c488b51a4b3b1492062b74df6a1e43cdacfddfeddf3013e9468eabf2565875eb7f43889ece3ed623f05332bfe2fb8924b966c3c9df7669152147284d265a7ee14912ef5413f5a183d0fd86e54bd889e5d792e9705222280547c738c43df9e821530e3d6ecfadd782b8fb9b71bfbddaa8d401c728fbd469a127432bb811caf2a270e9c6560b7d8bb356df9476d8675943bba88d98bde8a3453baa74c1739d22223d023d6e4ce868838589b50"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_ct={0x154, 0xe, 0x0, 0x0, {{0x7}, {0x60, 0x2, 0x0, 0x1, [@TCA_CT_NAT_IPV6_MAX={0x14, 0xc, @private2={0xfc, 0x2, '\x00', 0x1}}, @TCA_CT_LABELS_MASK={0x14, 0x8, "10dfdea049243d954260643c285a0f27"}, @TCA_CT_NAT_IPV6_MIN={0x14, 0xb, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}, @TCA_CT_NAT_PORT_MIN={0x6, 0xd, 0x4e20}, @TCA_CT_NAT_PORT_MAX={0x6, 0xe, 0x4e22}, @TCA_CT_NAT_PORT_MAX={0x6, 0xe, 0x4e23}, @TCA_CT_NAT_PORT_MIN={0x6, 0xd, 0x4e24}]}, {0xce, 0x6, "adc3a489e453a1ac51e70948b83e724ed33d6e81ff29b303ea45e1f68a69d9dd82b48a11b1267387bc048c4c77703f21e7a6ef42843f100fb108197df8f960840ec28016f600fe62e4dc2c0edc7d34aab6bf4199b0454a89f4ce09ecaad75c8bf9eba6ecfac970209d9267ac84d015f4ac28c04e266fa98d820304f83687558273aad6c6792f5f974a8d9674d466a17e6d09c5f385cb19526b45ca83a6b24fe7c27f8711aa96d45b30e3287d01d937fd9374fa27e3acd3058a61adf3554b4448256c988448a73f8d5a97"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_ife={0x78, 0xb, 0x0, 0x0, {{0x8}, {0x3c, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0x9a}, @TCA_IFE_TYPE={0x6, 0x5, 0x40}, @TCA_IFE_DMAC={0xa, 0x3, @multicast}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x1, 0x1, 0xfffffff0, 0x7}, 0x1}}]}, {0x17, 0x6, "fe9513d5c6c137b84aa728d16c7e132bdf7ca6"}, {0xc}, {0xc, 0x8, {0x2, 0xcde316425659f6e3}}}}, @m_skbmod={0xc8, 0x20, 0x0, 0x0, {{0xb}, {0x3c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}, @TCA_SKBMOD_DMAC={0xa, 0x3, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x10}, @TCA_SKBMOD_SMAC={0xa}, @TCA_SKBMOD_SMAC={0xa, 0x4, @link_local}]}, {0x62, 0x6, "f5781d5d94887f794bc360cd47298b7d77832d188dbed8b19ad828b9b01b363277fed7ea3a912b6bdac35e76655aff9a4601767bef31f46b7317c6b6c6005f6a89876c0f9841b817acf2bc21d70ee758965e1d5d4c9d99c681ee134d1a72"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_pedit={0xeb8, 0x5, 0x0, 0x0, {{0xa}, {0xe6c, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe68, 0x2, {{{0xff, 0x8, 0x1, 0x0, 0xe}, 0x8, 0x90, [{0x1, 0x3, 0x0, 0x1, 0xfffffffe, 0x6}, {0x10, 0xff, 0x0, 0x101, 0x7, 0x4}, {0x1, 0x2, 0x0, 0xfff, 0x10000, 0x5}]}, [{0x1, 0xb, 0x4, 0x2, 0x5, 0x3}, {0xa, 0x2, 0x0, 0x401, 0x1, 0x3}, {0x5, 0x3, 0x0, 0x80000000, 0xffffffab, 0x7c}, {0x7, 0xa, 0x3, 0xdbc, 0x5, 0x101}, {0x1, 0x2, 0x6, 0xd, 0x80000001, 0x1}, {0x2, 0x3ff, 0x4, 0x4, 0x4, 0x6}, {0x2, 0xdabe, 0x1, 0x5, 0x3, 0x5}, {0x1, 0x6, 0x6, 0x9, 0x3, 0x1}, {0x6, 0x9, 0x0, 0x0, 0x5, 0x46}, {0x40, 0x3c4, 0xf1, 0xe, 0x7, 0x80000000}, {0xfffffaa8, 0x5, 0x1, 0x9, 0x9, 0x101}, {0x2, 0x3, 0x6, 0xffff, 0x0, 0x5}, {0x0, 0x0, 0x8, 0x43c, 0x4, 0x7}, {0x6, 0x2, 0xf000, 0x3, 0x8, 0x6}, {0x10, 0x2, 0x6, 0x9, 0x81, 0x5}, {0x2, 0x8000, 0x1ff, 0x3, 0x3, 0x5}, {0x3, 0x0, 0x9, 0x6, 0x8, 0x80000001}, {0x3, 0x43, 0xffffffff, 0x7fff, 0x3, 0x8}, {0xffffffff, 0xa4, 0xff, 0x7f, 0x401, 0x3}, {0x0, 0xa372, 0x3, 0x5, 0x9, 0x7}, {0x6, 0xded, 0x400, 0x2dc, 0x0, 0xf72}, {0x80, 0x9, 0x3, 0x12, 0x10001, 0x6}, {0x200, 0x488, 0xffff, 0x3631, 0x5}, {0x3, 0x4, 0xffff8001, 0x4, 0x3ff2, 0xfff}, {0xfffffffc, 0x6, 0x2, 0x200, 0x6, 0x2}, {0xbd, 0x8, 0x4, 0x1ff, 0x0, 0x5}, {0x9, 0x0, 0xed, 0xd8, 0xf2f7, 0xfffffffa}, {0x569000, 0x6, 0x7fffffff, 0x2, 0x6, 0xf8}, {0x4, 0x2000000, 0x1, 0x8000, 0x2c0000, 0x9}, {0x670cf4f9, 0x9, 0x7, 0x8, 0x800, 0x6}, {0x7f, 0x8, 0x9, 0xa55, 0x7, 0x8}, {0x983f, 0x4, 0x5, 0x0, 0x180000, 0xb}, {0x5, 0x708, 0xbc0b, 0x6, 0xffffff49, 0xbd28}, {0x7, 0x7, 0xffffff80, 0x3, 0x6, 0x3}, {0x4, 0xffffff01, 0x4, 0x8, 0x2, 0x1}, {0xf2a, 0x3, 0x4, 0x0, 0x6, 0x4000007}, {0x8, 0x9, 0x91da, 0x9f0, 0x8, 0x6}, {0x1, 0x7, 0x9, 0x4, 0x7e6, 0x5}, {0x6, 0x2, 0x1e, 0xfffffff8, 0x3, 0x1}, {0xfffff800, 0xff, 0x1, 0x4, 0xe, 0xb877}, {0x6, 0x8, 0x1, 0x2, 0x3, 0x5}, {0x0, 0x5, 0x4, 0x37d, 0x9, 0x73d1}, {0x200, 0xfffffffa, 0x6, 0x0, 0x3cb, 0x2}, {0x1, 0x1, 0x3, 0x3, 0x5, 0x3}, {0xfb, 0x0, 0x606b, 0xd5, 0x1, 0x8}, {0x1, 0x40, 0xfffffff9, 0x7b, 0x6, 0xfffffdbb}, {0x4, 0x2b8c, 0x6, 0x80000000, 0x8001, 0xfff}, {0x0, 0xfffffff9, 0x7a, 0xb, 0x1, 0x6}, {0x3, 0x1, 0x8001, 0x9, 0x3ff, 0x1}, {0x2, 0x4d09, 0x7, 0x7, 0x8, 0x7f}, {0x800, 0xffffbb6e, 0x8, 0x6, 0xfffff001, 0x66ef}, {0x0, 0x4, 0x6, 0x6, 0x3, 0xff}, {0x3, 0x9, 0x6, 0xa8, 0x80, 0x401}, {0x4, 0xbeaa, 0x5, 0x7bd, 0x10001, 0x5}, {0x7, 0x8, 0x1, 0x4, 0x1, 0xf934}, {0x9, 0x2, 0x7, 0x9a2, 0x4, 0x6}, {0x0, 0xfa, 0xffff, 0x7, 0xfffffff9, 0x1d6}, {0xff, 0x8, 0x8, 0x3, 0x9, 0x4}, {0x400, 0xffff, 0xbe2d, 0x9, 0xffff, 0x1}, {0x0, 0xa, 0x1, 0x8, 0x3, 0x1ff}, {0x4, 0x0, 0x4, 0x0, 0x6, 0x2}, {0x2, 0x256a, 0x6, 0x4, 0x6025, 0x2}, {0x6, 0x8, 0xe, 0x6, 0x3, 0x3}, {0x6a533047, 0x0, 0x6, 0x8001, 0x89e, 0x1e}, {0x1, 0x400, 0x96, 0x7, 0x10, 0xffffffff}, {0x400, 0x0, 0x6, 0x4, 0x5, 0x3ff}, {0x3, 0x0, 0x10}, {0x5, 0x1, 0x14c, 0x4, 0x3, 0x7}, {0x2400, 0x7, 0x6, 0x1fe000, 0x0, 0x800}, {0xac7, 0xcf12, 0x81, 0x9, 0x4, 0xc}, {0x2, 0x9, 0x7, 0x5, 0x7ff, 0x7}, {0x9, 0x7, 0xffffffff, 0x6d, 0xb, 0x80000000}, {0xffffff00, 0x8, 0x10000, 0x3, 0x9efc, 0x8}, {0x4, 0x7, 0x4, 0x8, 0xfff, 0x8}, {0x562, 0x8563, 0x100, 0x0, 0xcb2e, 0xff}, {0x2, 0x81, 0x1, 0x3, 0x1ff, 0x4f}, {0x2, 0xffff, 0xfffffff9, 0x8, 0xffffef05, 0x5}, {0xcd, 0x2, 0x4, 0x2, 0xffffffff, 0x2}, {0xf, 0x5, 0x1, 0x7, 0xfffffffb, 0xe15a}, {0x98, 0x7, 0x67e, 0xd, 0x18c5, 0x1}, {0x6, 0x80000001, 0x4, 0x6477, 0x4, 0x7}, {0xffffffff, 0x2, 0xff, 0x8, 0x3ff, 0x571}, {0xe, 0x10, 0x479, 0x5, 0x4, 0x6}, {0x8000, 0x7, 0xb, 0xb160, 0xe00, 0x6}, {0xffffff81, 0xfffffff9, 0x80000000, 0x7, 0x435, 0x3}, {0x4, 0x4, 0x2e, 0x800, 0x9, 0x2}, {0x7, 0xa, 0xa7, 0xf, 0x6, 0x8}, {0x7, 0xb39a, 0x4, 0x7, 0x8, 0x2}, {0x3, 0x5, 0x7, 0xffff, 0x26, 0xfffffffc}, {0x1000, 0x80, 0xfff, 0xa1d, 0xfffffed8, 0xe}, {0x6, 0x7, 0x3, 0x4, 0xff, 0x58fa}, {0x7, 0x40, 0x8, 0x100, 0x4, 0x7}, {0x6, 0x9, 0xfffffffc, 0xf33, 0xb65, 0x5}, {0x0, 0x28, 0x325, 0x0, 0xfffffffe, 0x2}, {0x80000001, 0x7, 0x3, 0x9, 0x9, 0x6}, {0xb, 0xd52, 0x0, 0x7f, 0x0, 0x4}, {0x52fb, 0xffff, 0x0, 0x9, 0x0, 0x1}, {0x5c1, 0x4, 0x0, 0x7, 0x7, 0xaf6d}, {0x45, 0x54e0, 0x3, 0x1ff, 0x9, 0x5}, {0xd3f6, 0xfffffff7, 0x0, 0x1, 0x7fff}, {0x0, 0x7f, 0x10000, 0x1, 0x6, 0x9}, {0x9, 0x47d, 0x0, 0xfffffff6, 0x5, 0x83a8}, {0xd63, 0x0, 0x0, 0xffff}, {0x0, 0x26a5800, 0x4, 0x5, 0x400, 0x10}, {0xffffffff, 0xac, 0x4, 0x5, 0xd, 0x7f}, {0x2, 0x80, 0x9, 0x1, 0x1, 0x4}, {0x6, 0x8, 0x401, 0xfff, 0x0, 0x10}, {0x0, 0x3, 0x2, 0x4, 0x0, 0x9}, {0x3, 0xc42, 0xc8, 0x2256, 0x1, 0x5}, {0x7, 0x843, 0x9, 0x3ff, 0x5c9, 0x80000001}, {0x5e, 0x6, 0xd9, 0x400, 0x6, 0x3ff}, {0x800, 0xffff, 0x3, 0xd, 0x3, 0x6adecfc6}, {0xfffffff9, 0xa, 0x2, 0x6a8, 0x6, 0xd78}, {0x1, 0x4, 0x40, 0x6f, 0x401, 0x5551}, {0x3, 0x0, 0x10001, 0x6, 0x4, 0x88e}, {0x813, 0x9, 0x80000001, 0x8, 0x0, 0xffff8001}, {0x9, 0x80000001, 0xffff, 0x7, 0x48, 0xad}, {0xe, 0xf7d2, 0x2b9, 0x9, 0x9, 0x101}, {0xe00000, 0xfffffff7, 0x533e, 0xfffffff8, 0x8, 0x7}, {0x4, 0x5, 0xe5e1, 0x7, 0x5, 0x4}, {0x0, 0x9, 0x34f7, 0x0, 0xa8, 0x7ff}, {0xf, 0x1, 0x2, 0x3, 0x10, 0x761f563a}, {0x4000000, 0xfffffff8, 0xffffff08, 0x9, 0x2, 0x2}, {0x7, 0x7, 0x80, 0xe, 0x8439, 0x9}, {0x0, 0x6, 0x6, 0x1c, 0x100, 0x5}, {0x33afae86, 0x5, 0x49, 0x9, 0x1ff, 0x1}, {0x8, 0x7, 0x6f3af5f5, 0x4, 0xb6b0, 0x80000001}, {0x5, 0xfffffffa, 0x9, 0x4, 0xfff, 0x5}], [{0x5, 0x1}, {0x2, 0x1}, {0x3}, {0x3}, {0x3, 0x1}, {0x1}, {0x2}, {0x3, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x2}, {0x3}, {0x5}, {0x3}, {}, {0x3, 0x1}, {}, {0x5}, {0x2}, {0x4, 0x1}, {0x3}, {}, {0x4, 0x1}, {0x5}, {0x1}, {0x6}, {0x3, 0x1}, {0x1, 0x1}, {0x2}, {0x0, 0x1}, {0x5}, {0x0, 0x1}, {0x5, 0x1}, {0x6}, {0x5, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {}, {0x2}, {0x1, 0x1}, {0x3}, {0x2}, {0x5}, {0x2, 0x1}, {0x3, 0x1}, {0x5}, {0x0, 0x1}, {0x1}, {0x5, 0x1}, {0x3}, {0x2}, {0x1, 0x1}, {0x4}, {0x5, 0x1}, {0x5}, {0x0, 0x1}, {0x2}, {0x9}, {0x2}, {0x5}, {0x7}, {0x4, 0x1}, {0x3}, {0x4, 0x1}, {0x2, 0x1}, {0x3}, {0x4}, {0x5}, {0x0, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {0x4}, {0x2}, {}, {0x3}, {0x5, 0x1}, {0x5}, {0x2, 0x1}, {0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x5}, {0x5, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x2}, {}, {0x4}, {0x4}, {0x6, 0x1}, {0x4, 0x1}, {0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x4}, {0x4, 0x1}, {}, {0x2, 0x1}, {0x1}, {0x4, 0x1}, {0x2}, {}, {0x3, 0x1}, {0x3, 0x1}, {0x1}, {0x4}, {0x4}, {0x3}, {0x5, 0x1}, {}, {0x2}, {0x3}, {0x3, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {}, {0x4}]}}]}, {0x21, 0x6, "6e0d0aa74b93f034679b1972c129f9731270ccaaf026036bce555520d3"}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0x1a60}, 0x1, 0x0, 0x0, 0x4008844}, 0x800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000180), &(0x7f0000000280)=0x4)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mprotect(&(0x7f00000ff000/0x14000)=nil, 0x14000, 0x0)
socket$kcm(0x10, 0x2, 0x0)

19.495241335s ago: executing program 33 (id=1730):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
madvise(&(0x7f00009ab000/0x2000)=nil, 0x2000, 0x12)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000003780), 0x240, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r2, 0x4068aea3, &(0x7f00000004c0))
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000600)={"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"})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000f40)=ANY=[@ANYBLOB="50000000480011012abd7000fedbdf250a006000", @ANYRES32=0x0, @ANYBLOB="020000000800020007000800020003000100080002000000000014000100"/39], 0x50}, 0x1, 0x0, 0x0, 0x20000040}, 0xc090)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001300)=@newtaction={0x1a60, 0x30, 0x2, 0x40000, 0x0, {}, [{0x2b0, 0x1, [@m_mirred={0x128, 0x9, 0x0, 0x0, {{0xb}, {0x4}, {0xfa, 0x6, "03bd27be33bf327100c3ce46ec3dc06d2ff27d1fa4829df90a7d56debacfeea72975bc91d321ddb208bd5caa197cea223a40fcf7b6027956445800a5f7e9318a6b22fdfd196eb7f086ff8857b743f2938ab7dd83490d6484b208e404ad04637f320ec347340e2947293760fb3b9746dde0bb10080be83c2dc19a8ebc9b97719c1e22999add034836adf49831481ae577cab659dc3afd4e43a46ed04bce6a8fc75b1e9269ee6b7edfeb49ea00fc84d6d1ba65c5a5ab20fb18e6974dc48d453614bdc7d1990a181fdcaf325e6ba87252f784db9b6d20327e2596c93490b24b72967cc2f54d1bfda582aae80ce8179925cc169a5a702edd"}, {0xc}, {0xc}}}, @m_bpf={0x184, 0xd, 0x0, 0x0, {{0x8}, {0xa8, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS={0x1c, 0x4, [{0x401, 0x2, 0x69, 0x8001}, {0xfffa, 0xff, 0x2, 0x3}, {0x9, 0x2, 0x3, 0x8}]}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x9}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x6}, @TCA_ACT_BPF_OPS={0xc, 0x4, [{0xc4, 0x7f, 0x1, 0x4}]}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x2, 0x9, 0x0, 0x19}}, @TCA_ACT_BPF_OPS={0x24, 0x4, [{0x658, 0x4, 0x0, 0xd2}, {0x6, 0x3, 0xfe, 0x1002}, {0x400, 0xf7, 0x78, 0x2}, {0x7, 0x8, 0x6, 0xffffffff}]}, @TCA_ACT_BPF_OPS={0xc, 0x4, [{0x401, 0x1, 0xb, 0x7}]}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}]}, {0xb6, 0x6, "9bf39c7a4a78cdf86bc68100020e4eb994705a473dc4f172c00fd9682c355ed81a99ef84ca3bbba09114d71336ae4f95779fc35d049b18ad0bc70ec47778c5115f537cc53e56573557fd2b86eea8b26ee2b705cfeff7fa83c0f9b7902faa7b7e0b5aa913bf76bb55dc2836385cf78527d920eaf985b51138facf03e7580155e2c04b42c8e5b376333aca81ba8109450c9f8a08e435e705a7930a2847cc9cce393b9d8d8d3b7714fb62f3620358430272f27f"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1}}}}]}, {0x428, 0x1, [@m_bpf={0x168, 0x18, 0x0, 0x0, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x4}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x80000000, 0x7, 0x5, 0xcaae, 0x7}}, @TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x3}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x5, 0xfffeffff, 0x7, 0x6, 0x9ad0}}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file0\x00'}]}, {0xc8, 0x6, "2cbe1f12161d63a7cacca5bb97a6b4e0edfdd4467f28948feff9c0e5edff1ff28cc773f49c28b9d83e4b9ce1f5c599cb4f2dc5ce2950f9b0a408b3eee316122ea76866bfa73d0d86a69af5b796a8eedfca8042b3f20c0c74f54de2640031c6726a80e5eaf027a582eeb0a9e48fa4035a2f4cfc4d1532099e08d607e8e416f4dc4745de357ea1bd75b5d64ba872ec2cd3cfa734f8432472a6f2e0e8de93c02b3394488697bbb2938d771603546e09cd90214e4510a4439840106434639f2649310943fb61"}, {0xc}, {0xc}}}, @m_nat={0x194, 0x13, 0x0, 0x0, {{0x8}, {0x144, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x8000, 0x4, 0x10000000, 0x9, 0x9}, @multicast1, @loopback, 0xffffff00, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x0, 0x3, 0x3, 0x6, 0x9}, @local, @private=0xa010100, 0xffffff00}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x1, 0x101, 0x5, 0x5, 0xc1}, @private=0xa010102, @broadcast, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x80000001, 0x7, 0x20000000, 0x80, 0xfffffffa}, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, 0xff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x8, 0x10001, 0x0, 0x0, 0x4}, @remote, @private=0xa010101, 0xff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x5, 0x1, 0x20000000, 0x8, 0xffff}, @remote, @remote, 0x0, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x200, 0x800, 0x4, 0x6, 0x3}, @empty, @local, 0x0, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x1, 0x99, 0x10000000, 0x5994, 0x6}, @local, @multicast1, 0xff000000, 0x1}}]}, {0x2b, 0x6, "1f21162ff2475b98bf1dfe262ae2b6bb7f478d0005831c95f12ca723aee00352a08251e9f5257d"}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}, @m_simple={0x60, 0x13, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0x3, 0x4, 0x2, 0x4, 0x1}}, @TCA_DEF_DATA={0x6, 0x3, '%\x00'}]}, {0x13, 0x6, "dde436c3e503f8c93cfb63665c918d"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_skbedit={0xc8, 0x4, 0x0, 0x0, {{0xc}, {0x54, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x7, 0x6383, 0xfffffffffffffff8, 0x4, 0x6}}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x4}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x7}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x4, 0x3ff, 0x8, 0x8}}, @TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x1}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0xfffc}]}, {0x4a, 0x6, "70935f7b4ac202bff0bdb5190ce3a44d8ca24e292b9b12cfcd42bd090571608a1da5fd5442a17d9e95a1f84316efe1cea9124f4c29b5421991f695a8d295f3436d1af4a79011"}, {0xc}, {0xc, 0x8, {0x3, 0x2}}}}]}, {0x1374, 0x1, [@m_ctinfo={0xf4, 0xc, 0x0, 0x0, {{0xb}, {0x14, 0x2, 0x0, 0x1, [@TCA_CTINFO_ZONE={0x6, 0x4, 0xf800}, @TCA_CTINFO_ZONE={0x6, 0x4, 0x2}]}, {0xb6, 0x6, "b500af08f1c3dbd2592c58871d26fad07160395c2e9f0641eed95a31e68e63eaf5f2576405d48ff7b55d606df7cecb39e0d01e914a9f1008d091ade1c7c58c7917dd96fde33274e1cd50868cde8b60bdbeb823250afb610168cd81516b6d0609c63ede675e975908599a9eaa0c20f6a1e235c623412b06de276bbeab699ab532028a455126c9831bd7f38b5216092e54e87f4732259277b910ec58ec02bf7cc4bf84aeff96366ecfaf956be11ae1ea3d40d6"}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}, @m_sample={0x130, 0x18, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x63}]}, {0xf9, 0x6, "691d029972db275c8b83b570b359e07ce081874f70b1e024cce41d3ca763d188063643df8cc192e5e5ccd7c6d39c9628bced79b888577075d206d285be42134b050008dc6e60dfab089c488b51a4b3b1492062b74df6a1e43cdacfddfeddf3013e9468eabf2565875eb7f43889ece3ed623f05332bfe2fb8924b966c3c9df7669152147284d265a7ee14912ef5413f5a183d0fd86e54bd889e5d792e9705222280547c738c43df9e821530e3d6ecfadd782b8fb9b71bfbddaa8d401c728fbd469a127432bb811caf2a270e9c6560b7d8bb356df9476d8675943bba88d98bde8a3453baa74c1739d22223d023d6e4ce868838589b50"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_ct={0x154, 0xe, 0x0, 0x0, {{0x7}, {0x60, 0x2, 0x0, 0x1, [@TCA_CT_NAT_IPV6_MAX={0x14, 0xc, @private2={0xfc, 0x2, '\x00', 0x1}}, @TCA_CT_LABELS_MASK={0x14, 0x8, "10dfdea049243d954260643c285a0f27"}, @TCA_CT_NAT_IPV6_MIN={0x14, 0xb, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}, @TCA_CT_NAT_PORT_MIN={0x6, 0xd, 0x4e20}, @TCA_CT_NAT_PORT_MAX={0x6, 0xe, 0x4e22}, @TCA_CT_NAT_PORT_MAX={0x6, 0xe, 0x4e23}, @TCA_CT_NAT_PORT_MIN={0x6, 0xd, 0x4e24}]}, {0xce, 0x6, "adc3a489e453a1ac51e70948b83e724ed33d6e81ff29b303ea45e1f68a69d9dd82b48a11b1267387bc048c4c77703f21e7a6ef42843f100fb108197df8f960840ec28016f600fe62e4dc2c0edc7d34aab6bf4199b0454a89f4ce09ecaad75c8bf9eba6ecfac970209d9267ac84d015f4ac28c04e266fa98d820304f83687558273aad6c6792f5f974a8d9674d466a17e6d09c5f385cb19526b45ca83a6b24fe7c27f8711aa96d45b30e3287d01d937fd9374fa27e3acd3058a61adf3554b4448256c988448a73f8d5a97"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_ife={0x78, 0xb, 0x0, 0x0, {{0x8}, {0x3c, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0x9a}, @TCA_IFE_TYPE={0x6, 0x5, 0x40}, @TCA_IFE_DMAC={0xa, 0x3, @multicast}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x1, 0x1, 0xfffffff0, 0x7}, 0x1}}]}, {0x17, 0x6, "fe9513d5c6c137b84aa728d16c7e132bdf7ca6"}, {0xc}, {0xc, 0x8, {0x2, 0xcde316425659f6e3}}}}, @m_skbmod={0xc8, 0x20, 0x0, 0x0, {{0xb}, {0x3c, 0x2, 0x0, 0x1, [@TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}, @TCA_SKBMOD_DMAC={0xa, 0x3, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x10}, @TCA_SKBMOD_SMAC={0xa}, @TCA_SKBMOD_SMAC={0xa, 0x4, @link_local}]}, {0x62, 0x6, "f5781d5d94887f794bc360cd47298b7d77832d188dbed8b19ad828b9b01b363277fed7ea3a912b6bdac35e76655aff9a4601767bef31f46b7317c6b6c6005f6a89876c0f9841b817acf2bc21d70ee758965e1d5d4c9d99c681ee134d1a72"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_pedit={0xeb8, 0x5, 0x0, 0x0, {{0xa}, {0xe6c, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe68, 0x2, {{{0xff, 0x8, 0x1, 0x0, 0xe}, 0x8, 0x90, [{0x1, 0x3, 0x0, 0x1, 0xfffffffe, 0x6}, {0x10, 0xff, 0x0, 0x101, 0x7, 0x4}, {0x1, 0x2, 0x0, 0xfff, 0x10000, 0x5}]}, [{0x1, 0xb, 0x4, 0x2, 0x5, 0x3}, {0xa, 0x2, 0x0, 0x401, 0x1, 0x3}, {0x5, 0x3, 0x0, 0x80000000, 0xffffffab, 0x7c}, {0x7, 0xa, 0x3, 0xdbc, 0x5, 0x101}, {0x1, 0x2, 0x6, 0xd, 0x80000001, 0x1}, {0x2, 0x3ff, 0x4, 0x4, 0x4, 0x6}, {0x2, 0xdabe, 0x1, 0x5, 0x3, 0x5}, {0x1, 0x6, 0x6, 0x9, 0x3, 0x1}, {0x6, 0x9, 0x0, 0x0, 0x5, 0x46}, {0x40, 0x3c4, 0xf1, 0xe, 0x7, 0x80000000}, {0xfffffaa8, 0x5, 0x1, 0x9, 0x9, 0x101}, {0x2, 0x3, 0x6, 0xffff, 0x0, 0x5}, {0x0, 0x0, 0x8, 0x43c, 0x4, 0x7}, {0x6, 0x2, 0xf000, 0x3, 0x8, 0x6}, {0x10, 0x2, 0x6, 0x9, 0x81, 0x5}, {0x2, 0x8000, 0x1ff, 0x3, 0x3, 0x5}, {0x3, 0x0, 0x9, 0x6, 0x8, 0x80000001}, {0x3, 0x43, 0xffffffff, 0x7fff, 0x3, 0x8}, {0xffffffff, 0xa4, 0xff, 0x7f, 0x401, 0x3}, {0x0, 0xa372, 0x3, 0x5, 0x9, 0x7}, {0x6, 0xded, 0x400, 0x2dc, 0x0, 0xf72}, {0x80, 0x9, 0x3, 0x12, 0x10001, 0x6}, {0x200, 0x488, 0xffff, 0x3631, 0x5}, {0x3, 0x4, 0xffff8001, 0x4, 0x3ff2, 0xfff}, {0xfffffffc, 0x6, 0x2, 0x200, 0x6, 0x2}, {0xbd, 0x8, 0x4, 0x1ff, 0x0, 0x5}, {0x9, 0x0, 0xed, 0xd8, 0xf2f7, 0xfffffffa}, {0x569000, 0x6, 0x7fffffff, 0x2, 0x6, 0xf8}, {0x4, 0x2000000, 0x1, 0x8000, 0x2c0000, 0x9}, {0x670cf4f9, 0x9, 0x7, 0x8, 0x800, 0x6}, {0x7f, 0x8, 0x9, 0xa55, 0x7, 0x8}, {0x983f, 0x4, 0x5, 0x0, 0x180000, 0xb}, {0x5, 0x708, 0xbc0b, 0x6, 0xffffff49, 0xbd28}, {0x7, 0x7, 0xffffff80, 0x3, 0x6, 0x3}, {0x4, 0xffffff01, 0x4, 0x8, 0x2, 0x1}, {0xf2a, 0x3, 0x4, 0x0, 0x6, 0x4000007}, {0x8, 0x9, 0x91da, 0x9f0, 0x8, 0x6}, {0x1, 0x7, 0x9, 0x4, 0x7e6, 0x5}, {0x6, 0x2, 0x1e, 0xfffffff8, 0x3, 0x1}, {0xfffff800, 0xff, 0x1, 0x4, 0xe, 0xb877}, {0x6, 0x8, 0x1, 0x2, 0x3, 0x5}, {0x0, 0x5, 0x4, 0x37d, 0x9, 0x73d1}, {0x200, 0xfffffffa, 0x6, 0x0, 0x3cb, 0x2}, {0x1, 0x1, 0x3, 0x3, 0x5, 0x3}, {0xfb, 0x0, 0x606b, 0xd5, 0x1, 0x8}, {0x1, 0x40, 0xfffffff9, 0x7b, 0x6, 0xfffffdbb}, {0x4, 0x2b8c, 0x6, 0x80000000, 0x8001, 0xfff}, {0x0, 0xfffffff9, 0x7a, 0xb, 0x1, 0x6}, {0x3, 0x1, 0x8001, 0x9, 0x3ff, 0x1}, {0x2, 0x4d09, 0x7, 0x7, 0x8, 0x7f}, {0x800, 0xffffbb6e, 0x8, 0x6, 0xfffff001, 0x66ef}, {0x0, 0x4, 0x6, 0x6, 0x3, 0xff}, {0x3, 0x9, 0x6, 0xa8, 0x80, 0x401}, {0x4, 0xbeaa, 0x5, 0x7bd, 0x10001, 0x5}, {0x7, 0x8, 0x1, 0x4, 0x1, 0xf934}, {0x9, 0x2, 0x7, 0x9a2, 0x4, 0x6}, {0x0, 0xfa, 0xffff, 0x7, 0xfffffff9, 0x1d6}, {0xff, 0x8, 0x8, 0x3, 0x9, 0x4}, {0x400, 0xffff, 0xbe2d, 0x9, 0xffff, 0x1}, {0x0, 0xa, 0x1, 0x8, 0x3, 0x1ff}, {0x4, 0x0, 0x4, 0x0, 0x6, 0x2}, {0x2, 0x256a, 0x6, 0x4, 0x6025, 0x2}, {0x6, 0x8, 0xe, 0x6, 0x3, 0x3}, {0x6a533047, 0x0, 0x6, 0x8001, 0x89e, 0x1e}, {0x1, 0x400, 0x96, 0x7, 0x10, 0xffffffff}, {0x400, 0x0, 0x6, 0x4, 0x5, 0x3ff}, {0x3, 0x0, 0x10}, {0x5, 0x1, 0x14c, 0x4, 0x3, 0x7}, {0x2400, 0x7, 0x6, 0x1fe000, 0x0, 0x800}, {0xac7, 0xcf12, 0x81, 0x9, 0x4, 0xc}, {0x2, 0x9, 0x7, 0x5, 0x7ff, 0x7}, {0x9, 0x7, 0xffffffff, 0x6d, 0xb, 0x80000000}, {0xffffff00, 0x8, 0x10000, 0x3, 0x9efc, 0x8}, {0x4, 0x7, 0x4, 0x8, 0xfff, 0x8}, {0x562, 0x8563, 0x100, 0x0, 0xcb2e, 0xff}, {0x2, 0x81, 0x1, 0x3, 0x1ff, 0x4f}, {0x2, 0xffff, 0xfffffff9, 0x8, 0xffffef05, 0x5}, {0xcd, 0x2, 0x4, 0x2, 0xffffffff, 0x2}, {0xf, 0x5, 0x1, 0x7, 0xfffffffb, 0xe15a}, {0x98, 0x7, 0x67e, 0xd, 0x18c5, 0x1}, {0x6, 0x80000001, 0x4, 0x6477, 0x4, 0x7}, {0xffffffff, 0x2, 0xff, 0x8, 0x3ff, 0x571}, {0xe, 0x10, 0x479, 0x5, 0x4, 0x6}, {0x8000, 0x7, 0xb, 0xb160, 0xe00, 0x6}, {0xffffff81, 0xfffffff9, 0x80000000, 0x7, 0x435, 0x3}, {0x4, 0x4, 0x2e, 0x800, 0x9, 0x2}, {0x7, 0xa, 0xa7, 0xf, 0x6, 0x8}, {0x7, 0xb39a, 0x4, 0x7, 0x8, 0x2}, {0x3, 0x5, 0x7, 0xffff, 0x26, 0xfffffffc}, {0x1000, 0x80, 0xfff, 0xa1d, 0xfffffed8, 0xe}, {0x6, 0x7, 0x3, 0x4, 0xff, 0x58fa}, {0x7, 0x40, 0x8, 0x100, 0x4, 0x7}, {0x6, 0x9, 0xfffffffc, 0xf33, 0xb65, 0x5}, {0x0, 0x28, 0x325, 0x0, 0xfffffffe, 0x2}, {0x80000001, 0x7, 0x3, 0x9, 0x9, 0x6}, {0xb, 0xd52, 0x0, 0x7f, 0x0, 0x4}, {0x52fb, 0xffff, 0x0, 0x9, 0x0, 0x1}, {0x5c1, 0x4, 0x0, 0x7, 0x7, 0xaf6d}, {0x45, 0x54e0, 0x3, 0x1ff, 0x9, 0x5}, {0xd3f6, 0xfffffff7, 0x0, 0x1, 0x7fff}, {0x0, 0x7f, 0x10000, 0x1, 0x6, 0x9}, {0x9, 0x47d, 0x0, 0xfffffff6, 0x5, 0x83a8}, {0xd63, 0x0, 0x0, 0xffff}, {0x0, 0x26a5800, 0x4, 0x5, 0x400, 0x10}, {0xffffffff, 0xac, 0x4, 0x5, 0xd, 0x7f}, {0x2, 0x80, 0x9, 0x1, 0x1, 0x4}, {0x6, 0x8, 0x401, 0xfff, 0x0, 0x10}, {0x0, 0x3, 0x2, 0x4, 0x0, 0x9}, {0x3, 0xc42, 0xc8, 0x2256, 0x1, 0x5}, {0x7, 0x843, 0x9, 0x3ff, 0x5c9, 0x80000001}, {0x5e, 0x6, 0xd9, 0x400, 0x6, 0x3ff}, {0x800, 0xffff, 0x3, 0xd, 0x3, 0x6adecfc6}, {0xfffffff9, 0xa, 0x2, 0x6a8, 0x6, 0xd78}, {0x1, 0x4, 0x40, 0x6f, 0x401, 0x5551}, {0x3, 0x0, 0x10001, 0x6, 0x4, 0x88e}, {0x813, 0x9, 0x80000001, 0x8, 0x0, 0xffff8001}, {0x9, 0x80000001, 0xffff, 0x7, 0x48, 0xad}, {0xe, 0xf7d2, 0x2b9, 0x9, 0x9, 0x101}, {0xe00000, 0xfffffff7, 0x533e, 0xfffffff8, 0x8, 0x7}, {0x4, 0x5, 0xe5e1, 0x7, 0x5, 0x4}, {0x0, 0x9, 0x34f7, 0x0, 0xa8, 0x7ff}, {0xf, 0x1, 0x2, 0x3, 0x10, 0x761f563a}, {0x4000000, 0xfffffff8, 0xffffff08, 0x9, 0x2, 0x2}, {0x7, 0x7, 0x80, 0xe, 0x8439, 0x9}, {0x0, 0x6, 0x6, 0x1c, 0x100, 0x5}, {0x33afae86, 0x5, 0x49, 0x9, 0x1ff, 0x1}, {0x8, 0x7, 0x6f3af5f5, 0x4, 0xb6b0, 0x80000001}, {0x5, 0xfffffffa, 0x9, 0x4, 0xfff, 0x5}], [{0x5, 0x1}, {0x2, 0x1}, {0x3}, {0x3}, {0x3, 0x1}, {0x1}, {0x2}, {0x3, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x2}, {0x3}, {0x5}, {0x3}, {}, {0x3, 0x1}, {}, {0x5}, {0x2}, {0x4, 0x1}, {0x3}, {}, {0x4, 0x1}, {0x5}, {0x1}, {0x6}, {0x3, 0x1}, {0x1, 0x1}, {0x2}, {0x0, 0x1}, {0x5}, {0x0, 0x1}, {0x5, 0x1}, {0x6}, {0x5, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {}, {0x2}, {0x1, 0x1}, {0x3}, {0x2}, {0x5}, {0x2, 0x1}, {0x3, 0x1}, {0x5}, {0x0, 0x1}, {0x1}, {0x5, 0x1}, {0x3}, {0x2}, {0x1, 0x1}, {0x4}, {0x5, 0x1}, {0x5}, {0x0, 0x1}, {0x2}, {0x9}, {0x2}, {0x5}, {0x7}, {0x4, 0x1}, {0x3}, {0x4, 0x1}, {0x2, 0x1}, {0x3}, {0x4}, {0x5}, {0x0, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {0x4}, {0x2}, {}, {0x3}, {0x5, 0x1}, {0x5}, {0x2, 0x1}, {0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x5}, {0x5, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x2}, {}, {0x4}, {0x4}, {0x6, 0x1}, {0x4, 0x1}, {0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x4}, {0x4, 0x1}, {}, {0x2, 0x1}, {0x1}, {0x4, 0x1}, {0x2}, {}, {0x3, 0x1}, {0x3, 0x1}, {0x1}, {0x4}, {0x4}, {0x3}, {0x5, 0x1}, {}, {0x2}, {0x3}, {0x3, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x5, 0x1}, {}, {0x4}]}}]}, {0x21, 0x6, "6e0d0aa74b93f034679b1972c129f9731270ccaaf026036bce555520d3"}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0x1a60}, 0x1, 0x0, 0x0, 0x4008844}, 0x800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000180), &(0x7f0000000280)=0x4)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mprotect(&(0x7f00000ff000/0x14000)=nil, 0x14000, 0x0)
socket$kcm(0x10, 0x2, 0x0)

18.34080225s ago: executing program 1 (id=1818):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000040)={0x5, 0x6576, 0x9})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc00c64b5, &(0x7f00000000c0)={&(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0xa})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)

18.222263238s ago: executing program 1 (id=1819):
syz_io_uring_setup(0x3b, 0x0, &(0x7f0000000240), &(0x7f0000000100))
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0xe2, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000047c0)=ANY=[@ANYBLOB="140000003a000101000000006dd866160a"], 0x14}}, 0x0)
recvmmsg(r4, &(0x7f0000002500)=[{{0x0, 0x0, &(0x7f0000001300)=[{&(0x7f0000000300)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0e000000040000000400000003"], 0x48)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xd, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="18080000afff0400000000f4060000001811", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000035090100000000009500000000070000b7020000000000007b9a00fe000000006609000003000000dbaaf0ff50000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffff67000000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7050000080000004608f0ff760000005e9200000000000056080000010000008500000007000000"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0xd, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket(0x400000000010, 0x3, 0x0)
r7 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000240), 0x88002, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r7, 0xc004500a, &(0x7f0000000100)=0x15)
socket$phonet_pipe(0x23, 0x5, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x10, &(0x7f0000000480)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x8, 0x9c, &(0x7f0000000140)=""/156, 0x41000, 0xb, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000016c0), 0x0, 0x10, 0x3, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

17.233588403s ago: executing program 1 (id=1825):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0xa07, &(0x7f0000000200)={0x0, 0x200cc75, 0x800, 0x200003, 0x26e}, &(0x7f0000000140)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xff}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
r7 = syz_io_uring_setup(0x236, &(0x7f0000000400)={0x0, 0xf691, 0x10100, 0x0, 0x2b5, 0x0, r6}, &(0x7f0000000180)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r7, 0x708, 0x41e3, 0x0, 0x0, 0x0)
r10 = open(&(0x7f0000000180)='.\x00', 0x2000, 0x0)
flock(r10, 0x2)
r11 = open(&(0x7f0000000180)='.\x00', 0x10000, 0x0)
flock(r11, 0x1)
close(r10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_setup(0x5f03, &(0x7f00000003c0)={0x0, 0xef71, 0x800, 0x4, 0x213}, &(0x7f00000001c0)=<r12=>0x0, &(0x7f0000000440))
ioctl$sock_inet_SIOCGIFBRDADDR(0xffffffffffffffff, 0x8919, &(0x7f0000000180)={'netdevsim0\x00', {0x2, 0x0, @private}})
msgget$private(0x0, 0x148)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
r14 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$CDROMVOLCTRL(r14, 0x2202, 0x0)
syz_io_uring_submit(r12, r4, &(0x7f00000002c0)=@IORING_OP_UNLINKAT={0x24, 0x8, 0x0, r1, 0x0, 0x0, 0x0, 0x200, 0x0, {0x0, r13}})
socket$nl_generic(0x10, 0x3, 0x10)

16.696826573s ago: executing program 1 (id=1829):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x10, 0x2, 0x7fffffff}]})
close_range(r0, 0xffffffffffffffff, 0x0)

16.633643394s ago: executing program 1 (id=1830):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000800), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, 0x0, 0x40882)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), r0)
setreuid(0xee00, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r2, 0x40049366, &(0x7f0000000180))
keyctl$session_to_parent(0x12)
sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r1, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400000000000000080001000300000005000200000000000500020008000000240003"], 0x12c}, 0x1, 0x0, 0x0, 0x20000020}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f00000010c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x0)

15.742250079s ago: executing program 1 (id=1848):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$tty1(0xc, 0x4, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000280), 0x3824, &(0x7f0000000680)=ANY=[@ANYBLOB='mpol=bind=static:0-61347Nusrquota_inode_hardlimit=,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c0a00ca4d6eb07e1994e2f294f394d367981c5655b0a82ec2ee3d565b0a605fb76a0c5bc811ca022ff91cdb58be724e4dd063258c2ebf4422b8d342c59be8271c961af5a2d842e4304e33c383e8e468cca1c0c9772df50b166226f51a9355714492b9db04de30d24c60ffe617138f488e05dff9d6eb730367047bd09c69f89e5b569bd458caf44010ef154bfbc6a2d444e99182f739f8eb31cbd049d56e675c4acfcc39bf4751980405a816683aa23c8dcf83cdbb32e87e5cc32f200ed4448e24197bbc79b1debcaf1fdc761156916afd96e14bb5ccb86de95d"])
io_setup(0x6, &(0x7f0000001380)=<r0=>0x0)
io_submit(r0, 0x0, &(0x7f00000000c0))
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff000000000300000000000000000000000200000000000000000000000000000a030000000000000000000002"], 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000002c0)="140000001d000b63d25a80648c2594", 0xf}, {&(0x7f0000000580)="3f1c2725e7", 0x5}], 0x2}, 0x4000000)
r3 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0x40305839, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000800000000000000000000000000000002"])
setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x2, 0x0, 0x48)
getsockopt$inet6_mptcp_buf(0xffffffffffffffff, 0x11c, 0x4, &(0x7f0000000000)=""/152, &(0x7f00000000c0)=0x98)
ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r4, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r3, 0xc06864ce, &(0x7f0000000440)={r5, 0x0, 0x0, 0x0, 0x0, [<r6=>0x0], [], [0x2]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5})
r7 = syz_open_dev$media(&(0x7f0000000040), 0x7ffffffe, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r7, 0x80047c05, 0x0)
poll(&(0x7f0000000000)=[{0xffffffffffffffff, 0xa123}], 0x1, 0x15)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f0000000080)={r6, 0x0, <r8=>0xffffffffffffffff})
syz_open_dev$dri(0x0, 0x6, 0x240)
ioctl$DRM_IOCTL_MODE_GETFB2(r3, 0xc06864ce, &(0x7f0000000200)={r5, 0x0, 0x0, 0x0, 0x0, [<r9=>0x0]})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r3, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r8})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r3, 0xc00c642d, &(0x7f0000000040)={r9})
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x10, 0x2, 0x7fffffff}]})
write$tun(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRESDEC], 0xfce)
close_range(r10, 0xffffffffffffffff, 0x0)

5.381854464s ago: executing program 3 (id=1921):
pipe2$9p(&(0x7f0000000980), 0x0)
r0 = fsopen(0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYRES32=r0, @ANYBLOB="a1781e255bea802dcd73c621afb9bc19c8044ac0b6a18fa18e000000000000000044c3a3f1b5072275c5301aa09054e3"], 0x4c}, 0x1, 0x0, 0x0, 0x400d0}, 0x240440c0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x6, &(0x7f0000000200)=0x200006)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000400)=0x14)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r9, 0x8933, &(0x7f0000001880)={'wg1\x00', <r10=>0x0})
r11 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r8, &(0x7f0000000200)={0x0, 0x4000, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="010000000000000000000100000024000300a05ca84f6c9c8e3853e2fd7a70ae0fb20fa152600cb00845174f08076f92784308000100", @ANYRES32=r10, @ANYBLOB], 0x40}}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={r1, 0xe0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000440)=[0x0, 0x0, 0x0], ""/16, <r12=>0x0, 0x0, 0x0, 0x0, 0x4, 0x5, &(0x7f0000000480)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000004c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x80, &(0x7f0000000500)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000540), &(0x7f0000000580), 0x8, 0x84, 0x8, 0x8, &(0x7f00000005c0)}}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000740)={'batadv0\x00', <r13=>0x0})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000800)={'syztnl2\x00', &(0x7f0000000780)={'syztnl2\x00', <r14=>0x0, 0x2f, 0x5, 0x3, 0x9, 0x8, @local, @private2, 0x8000, 0x20, 0x1}})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r15=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002e00)=@newtaction={0x150c, 0x30, 0x1, 0x0, 0x0, {}, [{0x1fc, 0x1, [@m_mirred={0x1ac, 0xb, 0x0, 0x0, {{0xb}, {0x144, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x4, 0x6, 0x5, 0x7, 0x4}, 0x1, r7}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0x5, 0x5, 0x8, 0x3118}, 0x3, r10}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x5, 0x1, 0x3, 0x3}, 0x1, r12}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x9, 0x3, 0x6, 0x101}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x1000, 0x20000000, 0x3, 0xd}, 0x4, r13}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x3, 0x1000000e, 0x4bc, 0x80000001}, 0x5, r14}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x994, 0x4, 0x1, 0x9, 0x5}, 0x4, r15}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xb0e, 0xd31, 0x5, 0x7fff}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1c44, 0x4d68, 0x4, 0x9, 0x183}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x43, 0xc, 0x5, 0x80, 0x8000}, 0x3}}]}, {0x3f, 0x6, "0f4cbe358431c958b2edf5ff72128af6b3bec4a5bf4d9be988ff204b78359e08b86c55aed7f3a45eddaa737afcd4241ad2b3dc09565635ab1f1302"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_bpf={0x4c, 0x19, 0x0, 0x0, {{0x8}, {0x14, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_FD={0x8, 0x5, r3}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0xa}]}, {0x14, 0x6, "97c8bde2dfcdc88787fe2bef0a3bad95"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}, {0x12fc, 0x1, [@m_police={0xd9c, 0xd, 0x0, 0x0, {{0xb}, {0xd34, 0x2, 0x0, 0x1, [[@TCA_POLICE_AVRATE={0x8, 0x4, 0x4}, @TCA_POLICE_RATE={0x404, 0x2, [0x6c2, 0x3, 0x8, 0x7fffffff, 0x7f, 0x3, 0xf, 0x1, 0xffffffff, 0x9935, 0xffffffff, 0x1000, 0xba, 0x7, 0x3, 0x2e, 0x6, 0xfffffff8, 0x98, 0x0, 0xfffffe01, 0x5, 0xc2, 0x6, 0x1, 0x3, 0x0, 0xa, 0x2, 0x5, 0x2, 0x1000, 0x2, 0x7, 0x10a, 0x6, 0x9, 0xa32, 0x7e0109f3, 0x0, 0xe, 0x40, 0x7, 0x80000001, 0x6, 0x3, 0x7, 0x7, 0x60, 0x5, 0x4, 0x7, 0x1, 0x8, 0xc, 0x4, 0x5, 0x4, 0xa, 0x9, 0x9, 0x9, 0x3, 0x3, 0xff4, 0x3, 0x1, 0x5, 0x65de, 0x4, 0x7, 0xfffffffc, 0x5, 0x3, 0x0, 0x8, 0x9, 0xb, 0x80000001, 0x9, 0x3, 0x7, 0x1, 0x90ed, 0x68fd, 0x7, 0xa43, 0x2, 0x200, 0x80, 0x4, 0x7fff, 0x5, 0x6, 0x2, 0x1ff, 0x1ff, 0x1800, 0x5, 0x9fcb, 0x6, 0x80000000, 0x5, 0x6, 0x3, 0x3, 0x80, 0x4fbc, 0x0, 0x10001, 0x1, 0x0, 0x6, 0x3, 0x6, 0xdd5a, 0x2, 0x4, 0x40, 0x1, 0x1000, 0xfffffffd, 0x7, 0x5, 0x835, 0x2, 0xda, 0x80000001, 0xb, 0x1, 0x8, 0x3, 0x6, 0x4e9c, 0x400, 0x48, 0x4, 0x6, 0xbd5, 0x1, 0x3e, 0x100, 0x4, 0x401, 0x0, 0xe1, 0xffffffff, 0x5, 0x7, 0x6, 0x2, 0x6, 0x9, 0x10001, 0x10000009, 0x9, 0x8, 0x3, 0x1, 0x5, 0xb9, 0x9, 0xfffffffc, 0x8, 0x5, 0x10000, 0x3, 0x1, 0x10000, 0x440, 0xff, 0x0, 0x6, 0x7, 0x2, 0x4, 0x4, 0x3, 0x4, 0x9, 0x5, 0x1ff, 0x1, 0x6, 0x9, 0x0, 0x2, 0x6, 0x10, 0x5, 0x17800000, 0x5, 0x8, 0x7, 0x2, 0xb, 0x1, 0x10001, 0x8, 0x7, 0x2, 0x5, 0x4, 0x47f, 0xff, 0x9, 0x40, 0x1, 0x1, 0x0, 0x9, 0x7fff, 0x0, 0x40, 0x800, 0x9, 0x4, 0x4, 0xf641, 0x7fffffff, 0x5, 0x0, 0x2, 0x8, 0x7ff, 0x1, 0x2, 0x8, 0x1, 0x8001, 0x4, 0x1, 0x5, 0xffff, 0x3, 0x6, 0xfffffb44, 0x0, 0x7, 0x10000, 0xdca, 0x5, 0x0, 0xa000, 0x0, 0x5f, 0x3, 0x81, 0x3, 0x1, 0x1ff, 0x1, 0xfffffffd, 0x7, 0x8, 0x996]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x9, 0x5, 0x45ed, 0x2, 0x26bbea35, {0xd9, 0x2, 0x8, 0x3, 0x5965, 0x2900}, {0x2, 0x0, 0x8, 0xd28, 0x5, 0x400}, 0xfffffff8, 0x5, 0x3}}, @TCA_POLICE_RATE64={0xc, 0x8, 0xf1}], [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x6}, @TCA_POLICE_RATE={0x404, 0x2, [0x41, 0x80, 0x6, 0xa, 0x7, 0x7, 0x400, 0x1, 0x4, 0x853f, 0x7, 0x6, 0x7ff, 0x7ff, 0xe76, 0x2, 0x2, 0x7, 0x5, 0xc, 0x8001, 0x1, 0xf1, 0x1, 0x4, 0x9, 0x8, 0x0, 0xfffffff8, 0xa16c, 0x9, 0xed11, 0xab78, 0x0, 0xfffffff9, 0xfffffde5, 0x561, 0x2, 0x0, 0x0, 0x0, 0x400, 0x4, 0x3e, 0x25c, 0x5, 0x8, 0x9, 0x400, 0x10000, 0x1, 0x4, 0x4, 0xb, 0x200, 0x2, 0x5, 0x6, 0xffff, 0xaa8a, 0x6, 0x3ff, 0x7, 0xfffffff9, 0x3ff, 0x4, 0xfffffa13, 0xfffffffa, 0x80000000, 0xffffff80, 0x9, 0x36, 0xffff, 0x7f, 0x4, 0x9, 0xbb, 0x82, 0x0, 0x8, 0x7, 0x0, 0x5, 0x4, 0x10, 0x5, 0x2, 0x4, 0x2, 0x80000000, 0x6, 0xe9, 0x4fa7, 0x7060, 0x81, 0x4, 0x7f, 0x5, 0x200, 0x5, 0x0, 0x100, 0x400, 0x3, 0x6, 0x7, 0x0, 0xd, 0x2, 0xf, 0x6, 0x2, 0x3, 0x5036, 0x5, 0x9, 0x9, 0x3, 0x7, 0x7, 0x2, 0x7, 0x6, 0x1, 0xffff, 0x10001, 0x7, 0x1, 0x1, 0x98000000, 0x10, 0x6f, 0x0, 0x9, 0x1, 0x0, 0x400, 0x7fffffff, 0x10001, 0x6, 0x5b9, 0x5, 0x7, 0x9, 0x3, 0x6, 0x400, 0x7700000, 0x6995, 0x1, 0x5, 0xffffffff, 0x101, 0xffffffff, 0x1, 0x6aa, 0x7fffffff, 0x6, 0xf74f, 0x9, 0x7, 0x4, 0x8, 0x6e4ae2ea, 0x1, 0xfffffffe, 0xcc96, 0x58, 0x1, 0x4, 0x0, 0x3, 0x7fffffff, 0x5def, 0x100000, 0x3, 0xff, 0x9, 0xf, 0x0, 0x4, 0x0, 0xfff, 0xa29d, 0xffff, 0x4, 0x0, 0x1, 0x6, 0xfffffffc, 0xfffffffd, 0x9, 0x1, 0x7, 0x8, 0x5, 0x33c5c000, 0x100, 0xfa, 0x6, 0x9, 0x80000000, 0x2, 0x6, 0x8, 0x9, 0x4, 0x9, 0x8, 0x6, 0x1, 0xfffff5dc, 0xe, 0xfffffffe, 0x7, 0x7fffffff, 0x80000000, 0x5, 0xfffffeff, 0xfffffff8, 0xa05, 0x9, 0x7, 0x781, 0x7, 0x1, 0xe, 0x7, 0xa, 0x6, 0x3, 0x1, 0x8, 0x7, 0x9, 0x2, 0x3, 0x1, 0x917e, 0x0, 0xfffffff9, 0x200, 0x4, 0x6, 0x5, 0x8, 0x4, 0x7fffffff, 0x8, 0x401, 0x0, 0x7, 0x7, 0xfffffffe, 0x6, 0x24000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x8000000, 0x0, 0x8, 0x2, {0x6, 0x2, 0x9, 0x800, 0xbd, 0x924}, {0x0, 0x2, 0xfffd, 0xa979, 0x0, 0x4}, 0x80000001, 0x13f, 0x6a42}}, @TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x3, 0x3, 0xffffffff, 0x3a, {0x7, 0x2, 0x4, 0x0, 0x8, 0x7}, {0x30, 0x1, 0x5, 0x0, 0x4, 0x5}, 0x4, 0x3, 0x8}}, @TCA_POLICE_RATE={0x404, 0x2, [0x2, 0x76, 0x10001, 0x4, 0x4, 0x4, 0x5, 0x2, 0x9, 0x3, 0x9, 0x1, 0x9, 0x800, 0xcd, 0x1, 0x8, 0x2, 0x81, 0x10001, 0xa92b, 0x7, 0x7fff, 0x7, 0x5, 0xe9, 0x3e7, 0x7f, 0xff, 0x2, 0x3, 0x9, 0xa, 0x4, 0x5, 0x8, 0x260e, 0xfffffffb, 0x2, 0x6, 0xeb, 0x9, 0x5, 0x4, 0xffffffff, 0x8, 0x7, 0x3, 0x7, 0xb, 0x3, 0x4781, 0x7f, 0x6, 0x8, 0x161, 0xe, 0x1, 0xbe03, 0x7, 0x4, 0x1, 0x3, 0x4, 0x5, 0x3, 0x9, 0x8f6e, 0x2, 0x1, 0x9, 0x10001, 0x80000001, 0x2d0, 0x8, 0xe7, 0x1d1d61a2, 0xfb, 0x2a4, 0x80000001, 0x9, 0x4, 0x7f, 0xffff, 0x8000, 0x5, 0xffffff99, 0x1901, 0x7, 0x9, 0x1, 0x263e, 0x9, 0xd, 0xd80, 0x0, 0x1, 0x4, 0x7, 0x5, 0x8, 0x1, 0x6, 0x81, 0x4, 0x24000, 0x0, 0x2, 0x0, 0x1, 0x3, 0x10e7, 0x0, 0x3, 0x3, 0x8, 0x9, 0x7e73, 0x1000000, 0x5, 0x36f0eabe, 0x10000, 0x0, 0x42, 0x9, 0x0, 0xffffff7f, 0x281, 0x70, 0x3, 0x3, 0x7f, 0x10, 0x6, 0xc, 0x3, 0x8, 0xcb7c, 0x2, 0x1, 0x5, 0x2783, 0xeb2, 0x8, 0x3, 0x7, 0x1708, 0x8, 0xfffffffe, 0x8000, 0x9, 0x6, 0x0, 0x800, 0x4, 0x6, 0x9, 0x2, 0xe73c, 0x8, 0xd, 0x9fb, 0x88d0, 0x27c8, 0xe, 0x4, 0x81, 0x1e, 0x7, 0x2, 0x6, 0x1, 0x6, 0xffff, 0xff, 0x4, 0x5, 0xffff8b16, 0x8, 0x0, 0x8, 0x1000, 0x0, 0xd0, 0x9, 0x6dae, 0x800, 0x4, 0xd423, 0x5, 0x7, 0x9, 0x8, 0x0, 0x4, 0x8, 0x7, 0xfffffffd, 0x2, 0x6, 0x1, 0x5, 0x40, 0xfffffa0a, 0x5, 0x40, 0x4, 0xd1, 0x3a, 0x2, 0x48000, 0x6, 0x7, 0x8, 0x101, 0x44, 0xc3f, 0x3, 0xfffffffa, 0xfff, 0x80000001, 0x200, 0x8, 0xa, 0xfff, 0x10000, 0x3, 0x40, 0xfffff000, 0x4, 0x4, 0xab6, 0x101, 0x6, 0x3ff, 0x4, 0x1, 0x4ed, 0x7, 0x1ff, 0x3, 0xc1, 0x8, 0x80, 0x5, 0x80000001, 0x8000, 0x6, 0x8, 0x7ff, 0xfffffffe, 0xe, 0x3ff, 0x9, 0x2, 0x4]}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x7}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0xfffffffffffffff8}, @TCA_POLICE_TBF={0x3c, 0x1, {0x8, 0x7, 0x79, 0x1000, 0x6f1485b8, {0x5, 0x2, 0x8, 0x1000, 0x1, 0x6}, {0x80, 0x1, 0xe, 0x7, 0x1ff, 0x9}, 0xf68a, 0x5, 0x3}}]]}, {0x3d, 0x6, "e32c55c95728ca83ad4d4a2784d62c3ca4aba98a29ad93c4b81d57795add72556ee534dddb65eb1ce379cf1ab663c2ef5c8b101ae38bf43dc5"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_mirred={0x16c, 0x6, 0x0, 0x0, {{0xb}, {0x64, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x81, 0x7fffffff, 0x3, 0xc7, 0x9}, 0x3, r13}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x4, 0x27e, 0xffffffffffffffff, 0x4}, 0x0, r10}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x8, 0x0, 0x8}, 0x4, r14}}]}, {0xdf, 0x6, "dd2df84c03c9ef6d68bd6c2bf6d2a2c6f9d5953488e22d0ded14f7306d149212cc41c64f993660c9c775853c50b83e7e28837a6ede56a2d8d9df1b5be2043e1b1911e6997ee99f3e208a11c55b4be51f3c3bce010b99eecb1e17caa46ec20d029e7e0dd4695e80017125b7fe51b0e6a83ddf1dc233ace0896a5f89ad2247daa0cc8d1492f466c927d28af890aedb1ec874a48c6b4dbe818365c8018cdf828aad0979d73807f13dce3bb5408e913c28582260fe7c9237a0067ce0c1038c8d3b0263ffd57f781f22c38d853f816a6d0ab1b9673f646355bd64147c43"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ctinfo={0x134, 0x1e, 0x0, 0x0, {{0xb}, {0x8c, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x9, 0x6, 0x20000000, 0xbb, 0x5}}, @TCA_CTINFO_ACT={0x18, 0x3, {0x8000, 0x101, 0x6, 0x3, 0x3}}, @TCA_CTINFO_ACT={0x18, 0x3, {0x800, 0x9, 0xffffffffffffffff, 0x4c3, 0x3}}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x7}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x80000001}, @TCA_CTINFO_ZONE={0x6, 0x4, 0xfff9}, @TCA_CTINFO_ACT={0x18, 0x3, {0x200, 0x7, 0x7, 0x6, 0x8}}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x8}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0x7a5d}]}, {0x7d, 0x6, "ed72d91deee80f3a0f7461599894b366224d53d43fcc8b70fd853af1b6b0f0a620f081f5e00b599dfab56536d5488613af9a4a56489dcb0b5fec07a02e1334ea1bb9eeea982506ed7cb05c9f9113667dce2cfe23d7e7d16d41a927bed5c5b378138a06358357c20c8fc7e8902d3cba16916511321c01bddada"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_mpls={0x78, 0xd, 0x0, 0x0, {{0x9}, {0x34, 0x2, 0x0, 0x1, [@TCA_MPLS_TC={0x5, 0x6, 0x6}, @TCA_MPLS_LABEL={0x8, 0x5, 0x8cae7}, @TCA_MPLS_LABEL={0x8, 0x5, 0xfab61}, @TCA_MPLS_LABEL={0x8, 0x5, 0xe505b}, @TCA_MPLS_BOS={0x5}, @TCA_MPLS_BOS={0x5}]}, {0x1c, 0x6, "15be7c90fd290dd82c84fe850b2d501be49a99eda92aae9d"}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}, @m_simple={0x10c, 0xa, 0x0, 0x0, {{0xb}, {0x4c, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0xb2, 0x80, 0x6, 0x7ff, 0x2}}, @TCA_DEF_PARMS={0x18, 0x2, {0x6, 0xca, 0x4, 0x1}}, @TCA_DEF_PARMS={0x18, 0x2, {0x3, 0x2, 0x2, 0x6, 0x2}}]}, {0x98, 0x6, "71e0b518b8f135c5a9d65bb9f4f0e07edad2ecf2b739483b73a6542b7a99a5912622fabc519750dfc37255b9e578e8a588559979d5f9216fdc186aca440b0796df725c5f2202c6b7d391f33a43745c61d4fdedb4dbc7188a70c87fd2ecccb340ca702440f9c8e84b876816a387847f551305509b53f38dedfed99f73f631952991f148aed16e46fddd4edb2899dbb93f4fe723e0"}, {0xc, 0x7, {0x72cc1572828f2fb0}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ife={0x138, 0xf, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0x6}, @TCA_IFE_TYPE={0x6, 0x5, 0x8}, @TCA_IFE_DMAC={0xa, 0x3, @random="ace42d27ac80"}, @TCA_IFE_METALST={0x14, 0x6, [@IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_TCINDEX={0x6, 0x5, @val=0xd86}]}, @TCA_IFE_TYPE={0x6, 0x5, 0x4}, @TCA_IFE_TYPE={0x6, 0x5, 0x7f}, @TCA_IFE_METALST={0x1c, 0x6, [@IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_PRIO={0x8, 0x3, @val=0x1ff}, @IFE_META_SKBMARK={0x8, 0x1, @val=0x4}]}]}, {0xb1, 0x6, "be617105056968093b1a0a7a6495d9eba907b34e2575fc771abe462148cc3b26402039099d3e7b394a27ecbc664535ee58669f39b9278bd7eab629448eae566c49f13f2005311e0ec6d0db83a129a10e4a49796b73604053124de3d1bd1698681b92bd6fe0ce79d94c2b1dd82835881c6bc1d4555514e88d2fc49b0416fa4eaaba8d6e05ad4682e2b289aa43eaff01dc3c9c45ae6ee08c8c1431b8b25bf60a139110c77ff2d99a0e4b84859689"}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0x150c}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

4.454920676s ago: executing program 3 (id=1928):
openat$snapshot(0xffffffffffffff9c, 0x0, 0x8c01, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_usb_connect(0x0, 0x2d, &(0x7f0000001600)=ANY=[@ANYBLOB="12010000ec31f8104c1302007eec0102030109021b0001000000000904000001098b7500090583"], 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x101000)

2.838420852s ago: executing program 5 (id=1937):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
r4 = add_key(&(0x7f0000000100)='rxrpc\x00', 0x0, &(0x7f0000000140)="0000000000000004ff6943b80000fcffffff0014f200000000861f4104bfeacd", 0x20, 0xfffffffffffffffb)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r3}, 0x10) (async)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000003c0), 0xffffffffffffffff) (async)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0241, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$TUNSETVNETBE(r5, 0x400454de, &(0x7f0000000040)=0x1) (async)
write$tun(r5, &(0x7f0000000400)=ANY=[@ANYBLOB="034886dd090329877375400097f4f8a3301970cb7565fcef9f8fcdb248cd3a71b69e0fa4888cd4cc0ab6183a87cdbdece896b27e39ee7c9a8ad44421e556"], 0xfdef) (async)
ioctl$SIOCSIFHWADDR(r2, 0x8905, &(0x7f0000000040)={'wlan1\x00'})
keyctl$instantiate(0xc, r4, &(0x7f0000000300)=@encrypted_load={'load ', 'default', 0x20, 'trusted:', 'contention_end\x00', 0x20, 0x6, 0x20, [0x37, 0x62]}, 0x3d, 0xfffffffffffffffe) (async)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00'}) (async)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="3f9d00000000000000001700000008000300", @ANYRES32=r6], 0x7c}}, 0x0)
r7 = getpgid(0xffffffffffffffff) (async)
r8 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="1400001d757900"], 0x14}}, 0x4) (async)
syz_open_procfs(r7, &(0x7f0000000340)='net/if_inet6\x00')

2.721531339s ago: executing program 5 (id=1939):
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x0, &(0x7f0000000c80)}, 0x8)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x20004000)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000080)=@gcm_256={{0x303, 0x36}, "7b8bdfd668e040b5", "89e73c8e9aa7e7aa844ee902749b141eb57bda9660b3567988c3ddb6cb7405a4", "e01bfca4", "b914d9d2ad0d05dc"}, 0x38) (fail_nth: 2)

2.573509803s ago: executing program 5 (id=1941):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e43e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1001, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x80000001}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
pipe(0x0)
pipe(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0x2, 0x0)
splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0x114, 0xe)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="00010000031401"], 0x100}, 0x1, 0x0, 0x0, 0x4040024}, 0x0)

2.492414696s ago: executing program 5 (id=1942):
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x18a)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0xd)
socket$nl_route(0x10, 0x3, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
socket$igmp(0x2, 0x3, 0x2)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x42, 0x3b)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="200027bd7000fcdbdf250b00000008001300", @ANYRES32=0x0, @ANYBLOB="0c009900020000005900000011000a003452b02d978161a896185470e80000000a00060008021100000000000800090001ac0f000a000600ffffffffffff000009000700212f8544dc000000"], 0x68}, 0x1, 0x0, 0x0, 0x20040010}, 0x40001)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x88, 0x30, 0x200, 0x2, 0x0, {}, [{0x74, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xfffffffc, 0x11e41e7a, 0x20000000, 0x7, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x2c, 0x1, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0x36}, {0xc, 0x8, {0x6}}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x804}, 0x40)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x141842, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./bus\x00', 0x101800, 0x40)
r5 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x581742, 0x0)
write(r5, &(0x7f0000004200)='t', 0x1)
sendfile(r5, r4, 0x0, 0x3ffff)
r6 = syz_open_dev$vcsa(&(0x7f0000000380), 0x7b95b611, 0x802)
writev(r6, &(0x7f0000000240)=[{&(0x7f0000000200)='3V', 0x2}, {0x0, 0x300}], 0x2)

1.582388666s ago: executing program 5 (id=1946):
openat$snapshot(0xffffffffffffff9c, 0x0, 0x8c01, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_usb_connect(0x0, 0x2d, &(0x7f0000001600)=ANY=[@ANYBLOB="12010000ec31f8104c1302007eec0102030109021b0001000000000904000001098b7500090583"], 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x101000)

1.480731036s ago: executing program 0 (id=1949):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x40, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14) (async)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="40000000101454465a17bc9d50ba75045d2e5c8b01002cbd7000fedbdf250800010000000000080003000400000008004b00130000000800010001000000080015000100"/77], 0x40}, 0x1, 0x0, 0x0, 0x24044836}, 0xc094)
chdir(&(0x7f0000000280)='./file0\x00')
syz_init_net_socket$llc(0x1a, 0x1, 0x0) (async)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r2, 0x0, 0x2, 0x0, 0x0) (async)
setsockopt$inet_int(r2, 0x0, 0x2, 0x0, 0x0)
sendmmsg$sock(r1, &(0x7f0000000cc0)=[{{&(0x7f0000000100)=@l2tp={0x2, 0x0, @broadcast, 0x3}, 0x80, 0x0}}, {{&(0x7f0000000700)=@in6={0xa, 0x4e20, 0x7, @dev={0xfe, 0x80, '\x00', 0x18}, 0x60}, 0x80, 0x0}}], 0x2, 0x48094) (async)
sendmmsg$sock(r1, &(0x7f0000000cc0)=[{{&(0x7f0000000100)=@l2tp={0x2, 0x0, @broadcast, 0x3}, 0x80, 0x0}}, {{&(0x7f0000000700)=@in6={0xa, 0x4e20, 0x7, @dev={0xfe, 0x80, '\x00', 0x18}, 0x60}, 0x80, 0x0}}], 0x2, 0x48094)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
write$cgroup_int(r3, &(0x7f0000000000), 0xffffff6a)
sendfile(r1, r3, 0x0, 0xffffffff000)
sendto(r1, 0x0, 0x0, 0x0, &(0x7f0000000380)=@l2tp6={0xa, 0x0, 0x6, @empty, 0x10001, 0x3}, 0x80) (async)
sendto(r1, 0x0, 0x0, 0x0, &(0x7f0000000380)=@l2tp6={0xa, 0x0, 0x6, @empty, 0x10001, 0x3}, 0x80)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0}) (async)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, 0x0})
r5 = socket$can_raw(0x1d, 0x3, 0x1)
r6 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0) (async)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
epoll_create1(0x0) (async)
r8 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r6, &(0x7f0000000000)={0xa0000001}) (async)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r6, &(0x7f0000000000)={0xa0000001})
ppoll(&(0x7f0000000200)=[{r8, 0x1}], 0x1, 0x0, 0x0, 0x3)
close_range(r5, 0xffffffffffffffff, 0x0) (async)
close_range(r5, 0xffffffffffffffff, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
r9 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x820000, 0x0)
ioctl$KVM_CREATE_VM(r9, 0xae01, 0x0)
syz_open_dev$midi(&(0x7f00000001c0), 0x2, 0x40c01)

1.38303121s ago: executing program 3 (id=1950):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e43e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1001, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x80000001}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
pipe(0x0)
pipe(&(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0x2, 0x0)
splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0x114, 0xe)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="00010000031401"], 0x100}, 0x1, 0x0, 0x0, 0x4040024}, 0x0)

1.382788106s ago: executing program 0 (id=1951):
socket$inet6(0xa, 0x11, 0x7)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x84042, 0x0)
r4 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x1a6c42)
ioctl$LOOP_CONFIGURE(r4, 0x4c0a, &(0x7f0000000c80)={r3, 0x81f, {0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1c, "339f020bbe82b398000000000000000000000d0ec0c1b4e9b1c4369d03740250ceaac594b1b3d741dd17c1c50d38ef2a565ef1e83323691c58d66500", "a9103939c787a16c1ca43f80026d1a8554fe581b59ded130e04d528539f3d3289737f0374c72a964a02447a75df8a69ea917deb7ba193b3e7772fd29f35239d2", "24431a1e77a68e174f000000000000000010e200", [0xfffffffffffffffc]}})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000006d00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x64, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
write(0xffffffffffffffff, &(0x7f00000002c0)="fc0000001c000704ab5b2509b868030002ab087a0100000001481093210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9463cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f9dcdd51af51af8502943283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e0784f2013cd1890058a10000c880ac801fe4af000049f0d4796f0000090548de", 0xfc)
getresgid(&(0x7f0000000280), 0x0, &(0x7f0000000400))
setregid(0x0, 0x0)
r5 = socket(0x840000000002, 0x4, 0x100)
connect$inet(r5, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r5, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x4000095, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r6)
socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$sock_timeval(r6, 0x1, 0x15, &(0x7f0000000040)={0x0, 0xea60}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$alg(0x26, 0x5, 0x0)

1.303118142s ago: executing program 3 (id=1952):
pipe2$9p(&(0x7f0000000980), 0x0)
r0 = fsopen(0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYRES32=r0, @ANYBLOB="a1781e255bea802dcd73c621afb9bc19c8044ac0b6a18fa18e000000000000000044c3a3f1b5072275c5301aa09054e3"], 0x4c}, 0x1, 0x0, 0x0, 0x400d0}, 0x240440c0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x6, &(0x7f0000000200)=0x200006)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000400)=0x14)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r9, 0x8933, &(0x7f0000001880)={'wg1\x00', <r10=>0x0})
r11 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r8, &(0x7f0000000200)={0x0, 0x4000, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r11, @ANYBLOB="010000000000000000000100000024000300a05ca84f6c9c8e3853e2fd7a70ae0fb20fa152600cb00845174f08076f92784308000100", @ANYRES32=r10, @ANYBLOB], 0x40}}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={r1, 0xe0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000440)=[0x0, 0x0, 0x0], ""/16, <r12=>0x0, 0x0, 0x0, 0x0, 0x4, 0x5, &(0x7f0000000480)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000004c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x80, &(0x7f0000000500)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000540), &(0x7f0000000580), 0x8, 0x84, 0x8, 0x8, &(0x7f00000005c0)}}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000740)={'batadv0\x00', <r13=>0x0})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000800)={'syztnl2\x00', &(0x7f0000000780)={'syztnl2\x00', <r14=>0x0, 0x2f, 0x5, 0x3, 0x9, 0x8, @local, @private2, 0x8000, 0x20, 0x1}})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r15=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002e00)=@newtaction={0x150c, 0x30, 0x1, 0x0, 0x0, {}, [{0x1fc, 0x1, [@m_mirred={0x1ac, 0xb, 0x0, 0x0, {{0xb}, {0x144, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x4, 0x6, 0x5, 0x7, 0x4}, 0x1, r7}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x9, 0x5, 0x5, 0x8, 0x3118}, 0x3, r10}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x5, 0x1, 0x3, 0x3}, 0x1, r12}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x9, 0x3, 0x6, 0x101}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x1000, 0x20000000, 0x3, 0xd}, 0x4, r13}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x6, 0x3, 0x1000000e, 0x4bc, 0x80000001}, 0x5, r14}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x994, 0x4, 0x1, 0x9, 0x5}, 0x4, r15}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0xb0e, 0xd31, 0x5, 0x7fff}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1c44, 0x4d68, 0x4, 0x9, 0x183}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x43, 0xc, 0x5, 0x80, 0x8000}, 0x3}}]}, {0x3f, 0x6, "0f4cbe358431c958b2edf5ff72128af6b3bec4a5bf4d9be988ff204b78359e08b86c55aed7f3a45eddaa737afcd4241ad2b3dc09565635ab1f1302"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_bpf={0x4c, 0x19, 0x0, 0x0, {{0x8}, {0x14, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_FD={0x8, 0x5, r3}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0xa}]}, {0x14, 0x6, "97c8bde2dfcdc88787fe2bef0a3bad95"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}, {0x12fc, 0x1, [@m_police={0xd9c, 0xd, 0x0, 0x0, {{0xb}, {0xd34, 0x2, 0x0, 0x1, [[@TCA_POLICE_AVRATE={0x8, 0x4, 0x4}, @TCA_POLICE_RATE={0x404, 0x2, [0x6c2, 0x3, 0x8, 0x7fffffff, 0x7f, 0x3, 0xf, 0x1, 0xffffffff, 0x9935, 0xffffffff, 0x1000, 0xba, 0x7, 0x3, 0x2e, 0x6, 0xfffffff8, 0x98, 0x0, 0xfffffe01, 0x5, 0xc2, 0x6, 0x1, 0x3, 0x0, 0xa, 0x2, 0x5, 0x2, 0x1000, 0x2, 0x7, 0x10a, 0x6, 0x9, 0xa32, 0x7e0109f3, 0x0, 0xe, 0x40, 0x7, 0x80000001, 0x6, 0x3, 0x7, 0x7, 0x60, 0x5, 0x4, 0x7, 0x1, 0x8, 0xc, 0x4, 0x5, 0x4, 0xa, 0x9, 0x9, 0x9, 0x3, 0x3, 0xff4, 0x3, 0x1, 0x5, 0x65de, 0x4, 0x7, 0xfffffffc, 0x5, 0x3, 0x0, 0x8, 0x9, 0xb, 0x80000001, 0x9, 0x3, 0x7, 0x1, 0x90ed, 0x68fd, 0x7, 0xa43, 0x2, 0x200, 0x80, 0x4, 0x7fff, 0x5, 0x6, 0x2, 0x1ff, 0x1ff, 0x1800, 0x5, 0x9fcb, 0x6, 0x80000000, 0x5, 0x6, 0x3, 0x3, 0x80, 0x4fbc, 0x0, 0x10001, 0x1, 0x0, 0x6, 0x3, 0x6, 0xdd5a, 0x2, 0x4, 0x40, 0x1, 0x1000, 0xfffffffd, 0x7, 0x5, 0x835, 0x2, 0xda, 0x80000001, 0xb, 0x1, 0x8, 0x3, 0x6, 0x4e9c, 0x400, 0x48, 0x4, 0x6, 0xbd5, 0x1, 0x3e, 0x100, 0x4, 0x401, 0x0, 0xe1, 0xffffffff, 0x5, 0x7, 0x6, 0x2, 0x6, 0x9, 0x10001, 0x10000009, 0x9, 0x8, 0x3, 0x1, 0x5, 0xb9, 0x9, 0xfffffffc, 0x8, 0x5, 0x10000, 0x3, 0x1, 0x10000, 0x440, 0xff, 0x0, 0x6, 0x7, 0x2, 0x4, 0x4, 0x3, 0x4, 0x9, 0x5, 0x1ff, 0x1, 0x6, 0x9, 0x0, 0x2, 0x6, 0x10, 0x5, 0x17800000, 0x5, 0x8, 0x7, 0x2, 0xb, 0x1, 0x10001, 0x8, 0x7, 0x2, 0x5, 0x4, 0x47f, 0xff, 0x9, 0x40, 0x1, 0x1, 0x0, 0x9, 0x7fff, 0x0, 0x40, 0x800, 0x9, 0x4, 0x4, 0xf641, 0x7fffffff, 0x5, 0x0, 0x2, 0x8, 0x7ff, 0x1, 0x2, 0x8, 0x1, 0x8001, 0x4, 0x1, 0x5, 0xffff, 0x3, 0x6, 0xfffffb44, 0x0, 0x7, 0x10000, 0xdca, 0x5, 0x0, 0xa000, 0x0, 0x5f, 0x3, 0x81, 0x3, 0x1, 0x1ff, 0x1, 0xfffffffd, 0x7, 0x8, 0x996]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x9, 0x5, 0x45ed, 0x2, 0x26bbea35, {0xd9, 0x2, 0x8, 0x3, 0x5965, 0x2900}, {0x2, 0x0, 0x8, 0xd28, 0x5, 0x400}, 0xfffffff8, 0x5, 0x3}}, @TCA_POLICE_RATE64={0xc, 0x8, 0xf1}], [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x6}, @TCA_POLICE_RATE={0x404, 0x2, [0x41, 0x80, 0x6, 0xa, 0x7, 0x7, 0x400, 0x1, 0x4, 0x853f, 0x7, 0x6, 0x7ff, 0x7ff, 0xe76, 0x2, 0x2, 0x7, 0x5, 0xc, 0x8001, 0x1, 0xf1, 0x1, 0x4, 0x9, 0x8, 0x0, 0xfffffff8, 0xa16c, 0x9, 0xed11, 0xab78, 0x0, 0xfffffff9, 0xfffffde5, 0x561, 0x2, 0x0, 0x0, 0x0, 0x400, 0x4, 0x3e, 0x25c, 0x5, 0x8, 0x9, 0x400, 0x10000, 0x1, 0x4, 0x4, 0xb, 0x200, 0x2, 0x5, 0x6, 0xffff, 0xaa8a, 0x6, 0x3ff, 0x7, 0xfffffff9, 0x3ff, 0x4, 0xfffffa13, 0xfffffffa, 0x80000000, 0xffffff80, 0x9, 0x36, 0xffff, 0x7f, 0x4, 0x9, 0xbb, 0x82, 0x0, 0x8, 0x7, 0x0, 0x5, 0x4, 0x10, 0x5, 0x2, 0x4, 0x2, 0x80000000, 0x6, 0xe9, 0x4fa7, 0x7060, 0x81, 0x4, 0x7f, 0x5, 0x200, 0x5, 0x0, 0x100, 0x400, 0x3, 0x6, 0x7, 0x0, 0xd, 0x2, 0xf, 0x6, 0x2, 0x3, 0x5036, 0x5, 0x9, 0x9, 0x3, 0x7, 0x7, 0x2, 0x7, 0x6, 0x1, 0xffff, 0x10001, 0x7, 0x1, 0x1, 0x98000000, 0x10, 0x6f, 0x0, 0x9, 0x1, 0x0, 0x400, 0x7fffffff, 0x10001, 0x6, 0x5b9, 0x5, 0x7, 0x9, 0x3, 0x6, 0x400, 0x7700000, 0x6995, 0x1, 0x5, 0xffffffff, 0x101, 0xffffffff, 0x1, 0x6aa, 0x7fffffff, 0x6, 0xf74f, 0x9, 0x7, 0x4, 0x8, 0x6e4ae2ea, 0x1, 0xfffffffe, 0xcc96, 0x58, 0x1, 0x4, 0x0, 0x3, 0x7fffffff, 0x5def, 0x100000, 0x3, 0xff, 0x9, 0xf, 0x0, 0x4, 0x0, 0xfff, 0xa29d, 0xffff, 0x4, 0x0, 0x1, 0x6, 0xfffffffc, 0xfffffffd, 0x9, 0x1, 0x7, 0x8, 0x5, 0x33c5c000, 0x100, 0xfa, 0x6, 0x9, 0x80000000, 0x2, 0x6, 0x8, 0x9, 0x4, 0x9, 0x8, 0x6, 0x1, 0xfffff5dc, 0xe, 0xfffffffe, 0x7, 0x7fffffff, 0x80000000, 0x5, 0xfffffeff, 0xfffffff8, 0xa05, 0x9, 0x7, 0x781, 0x7, 0x1, 0xe, 0x7, 0xa, 0x6, 0x3, 0x1, 0x8, 0x7, 0x9, 0x2, 0x3, 0x1, 0x917e, 0x0, 0xfffffff9, 0x200, 0x4, 0x6, 0x5, 0x8, 0x4, 0x7fffffff, 0x8, 0x401, 0x0, 0x7, 0x7, 0xfffffffe, 0x6, 0x24000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x3, 0x8000000, 0x0, 0x8, 0x2, {0x6, 0x2, 0x9, 0x800, 0xbd, 0x924}, {0x0, 0x2, 0xfffd, 0xa979, 0x0, 0x4}, 0x80000001, 0x13f, 0x6a42}}, @TCA_POLICE_TBF={0x3c, 0x1, {0x1, 0x3, 0x3, 0xffffffff, 0x3a, {0x7, 0x2, 0x4, 0x0, 0x8, 0x7}, {0x30, 0x1, 0x5, 0x0, 0x4, 0x5}, 0x4, 0x3, 0x8}}, @TCA_POLICE_RATE={0x404, 0x2, [0x2, 0x76, 0x10001, 0x4, 0x4, 0x4, 0x5, 0x2, 0x9, 0x3, 0x9, 0x1, 0x9, 0x800, 0xcd, 0x1, 0x8, 0x2, 0x81, 0x10001, 0xa92b, 0x7, 0x7fff, 0x7, 0x5, 0xe9, 0x3e7, 0x7f, 0xff, 0x2, 0x3, 0x9, 0xa, 0x4, 0x5, 0x8, 0x260e, 0xfffffffb, 0x2, 0x6, 0xeb, 0x9, 0x5, 0x4, 0xffffffff, 0x8, 0x7, 0x3, 0x7, 0xb, 0x3, 0x4781, 0x7f, 0x6, 0x8, 0x161, 0xe, 0x1, 0xbe03, 0x7, 0x4, 0x1, 0x3, 0x4, 0x5, 0x3, 0x9, 0x8f6e, 0x2, 0x1, 0x9, 0x10001, 0x80000001, 0x2d0, 0x8, 0xe7, 0x1d1d61a2, 0xfb, 0x2a4, 0x80000001, 0x9, 0x4, 0x7f, 0xffff, 0x8000, 0x5, 0xffffff99, 0x1901, 0x7, 0x9, 0x1, 0x263e, 0x9, 0xd, 0xd80, 0x0, 0x1, 0x4, 0x7, 0x5, 0x8, 0x1, 0x6, 0x81, 0x4, 0x24000, 0x0, 0x2, 0x0, 0x1, 0x3, 0x10e7, 0x0, 0x3, 0x3, 0x8, 0x9, 0x7e73, 0x1000000, 0x5, 0x36f0eabe, 0x10000, 0x0, 0x42, 0x9, 0x0, 0xffffff7f, 0x281, 0x70, 0x3, 0x3, 0x7f, 0x10, 0x6, 0xc, 0x3, 0x8, 0xcb7c, 0x2, 0x1, 0x5, 0x2783, 0xeb2, 0x8, 0x3, 0x7, 0x1708, 0x8, 0xfffffffe, 0x8000, 0x9, 0x6, 0x0, 0x800, 0x4, 0x6, 0x9, 0x2, 0xe73c, 0x8, 0xd, 0x9fb, 0x88d0, 0x27c8, 0xe, 0x4, 0x81, 0x1e, 0x7, 0x2, 0x6, 0x1, 0x6, 0xffff, 0xff, 0x4, 0x5, 0xffff8b16, 0x8, 0x0, 0x8, 0x1000, 0x0, 0xd0, 0x9, 0x6dae, 0x800, 0x4, 0xd423, 0x5, 0x7, 0x9, 0x8, 0x0, 0x4, 0x8, 0x7, 0xfffffffd, 0x2, 0x6, 0x1, 0x5, 0x40, 0xfffffa0a, 0x5, 0x40, 0x4, 0xd1, 0x3a, 0x2, 0x48000, 0x6, 0x7, 0x8, 0x101, 0x44, 0xc3f, 0x3, 0xfffffffa, 0xfff, 0x80000001, 0x200, 0x8, 0xa, 0xfff, 0x10000, 0x3, 0x40, 0xfffff000, 0x4, 0x4, 0xab6, 0x101, 0x6, 0x3ff, 0x4, 0x1, 0x4ed, 0x7, 0x1ff, 0x3, 0xc1, 0x8, 0x80, 0x5, 0x80000001, 0x8000, 0x6, 0x8, 0x7ff, 0xfffffffe, 0xe, 0x3ff, 0x9, 0x2, 0x4]}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x7}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0xfffffffffffffff8}, @TCA_POLICE_TBF={0x3c, 0x1, {0x8, 0x7, 0x79, 0x1000, 0x6f1485b8, {0x5, 0x2, 0x8, 0x1000, 0x1, 0x6}, {0x80, 0x1, 0xe, 0x7, 0x1ff, 0x9}, 0xf68a, 0x5, 0x3}}]]}, {0x3d, 0x6, "e32c55c95728ca83ad4d4a2784d62c3ca4aba98a29ad93c4b81d57795add72556ee534dddb65eb1ce379cf1ab663c2ef5c8b101ae38bf43dc5"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_mirred={0x16c, 0x6, 0x0, 0x0, {{0xb}, {0x64, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x81, 0x7fffffff, 0x3, 0xc7, 0x9}, 0x3, r13}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x4, 0x27e, 0xffffffffffffffff, 0x4}, 0x0, r10}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x5, 0x8, 0x0, 0x8}, 0x4, r14}}]}, {0xdf, 0x6, "dd2df84c03c9ef6d68bd6c2bf6d2a2c6f9d5953488e22d0ded14f7306d149212cc41c64f993660c9c775853c50b83e7e28837a6ede56a2d8d9df1b5be2043e1b1911e6997ee99f3e208a11c55b4be51f3c3bce010b99eecb1e17caa46ec20d029e7e0dd4695e80017125b7fe51b0e6a83ddf1dc233ace0896a5f89ad2247daa0cc8d1492f466c927d28af890aedb1ec874a48c6b4dbe818365c8018cdf828aad0979d73807f13dce3bb5408e913c28582260fe7c9237a0067ce0c1038c8d3b0263ffd57f781f22c38d853f816a6d0ab1b9673f646355bd64147c43"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ctinfo={0x134, 0x1e, 0x0, 0x0, {{0xb}, {0x8c, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x9, 0x6, 0x20000000, 0xbb, 0x5}}, @TCA_CTINFO_ACT={0x18, 0x3, {0x8000, 0x101, 0x6, 0x3, 0x3}}, @TCA_CTINFO_ACT={0x18, 0x3, {0x800, 0x9, 0xffffffffffffffff, 0x4c3, 0x3}}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x7}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x80000001}, @TCA_CTINFO_ZONE={0x6, 0x4, 0xfff9}, @TCA_CTINFO_ACT={0x18, 0x3, {0x200, 0x7, 0x7, 0x6, 0x8}}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0x7a5d}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x7ff}]}, {0x7d, 0x6, "ed72d91deee80f3a0f7461599894b366224d53d43fcc8b70fd853af1b6b0f0a620f081f5e00b599dfab56536d5488613af9a4a56489dcb0b5fec07a02e1334ea1bb9eeea982506ed7cb05c9f9113667dce2cfe23d7e7d16d41a927bed5c5b378138a06358357c20c8fc7e8902d3cba16916511321c01bddada"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_mpls={0x78, 0xd, 0x0, 0x0, {{0x9}, {0x34, 0x2, 0x0, 0x1, [@TCA_MPLS_TC={0x5, 0x6, 0x6}, @TCA_MPLS_LABEL={0x8, 0x5, 0x8cae7}, @TCA_MPLS_LABEL={0x8, 0x5, 0xfab61}, @TCA_MPLS_LABEL={0x8, 0x5, 0xe505b}, @TCA_MPLS_BOS={0x5}, @TCA_MPLS_BOS={0x5}]}, {0x1c, 0x6, "15be7c90fd290dd82c84fe850b2d501be49a99eda92aae9d"}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}, @m_simple={0x10c, 0xa, 0x0, 0x0, {{0xb}, {0x4c, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18, 0x2, {0xb2, 0x80, 0x6, 0x7ff, 0x2}}, @TCA_DEF_PARMS={0x18, 0x2, {0x6, 0xca, 0x4, 0x1}}, @TCA_DEF_PARMS={0x18, 0x2, {0x3, 0x2, 0x2, 0x6, 0x2}}]}, {0x98, 0x6, "71e0b518b8f135c5a9d65bb9f4f0e07edad2ecf2b739483b73a6542b7a99a5912622fabc519750dfc37255b9e578e8a588559979d5f9216fdc186aca440b0796df725c5f2202c6b7d391f33a43745c61d4fdedb4dbc7188a70c87fd2ecccb340ca702440f9c8e84b876816a387847f551305509b53f38dedfed99f73f631952991f148aed16e46fddd4edb2899dbb93f4fe723e0"}, {0xc, 0x7, {0x72cc1572828f2fb0}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ife={0x138, 0xf, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0x6}, @TCA_IFE_TYPE={0x6, 0x5, 0x8}, @TCA_IFE_DMAC={0xa, 0x3, @random="ace42d27ac80"}, @TCA_IFE_METALST={0x14, 0x6, [@IFE_META_PRIO={0x4, 0x3, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_TCINDEX={0x6, 0x5, @val=0xd86}]}, @TCA_IFE_TYPE={0x6, 0x5, 0x4}, @TCA_IFE_TYPE={0x6, 0x5, 0x7f}, @TCA_IFE_METALST={0x1c, 0x6, [@IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_TCINDEX={0x4, 0x5, @void}, @IFE_META_PRIO={0x8, 0x3, @val=0x1ff}, @IFE_META_SKBMARK={0x8, 0x1, @val=0x4}]}]}, {0xb1, 0x6, "be617105056968093b1a0a7a6495d9eba907b34e2575fc771abe462148cc3b26402039099d3e7b394a27ecbc664535ee58669f39b9278bd7eab629448eae566c49f13f2005311e0ec6d0db83a129a10e4a49796b73604053124de3d1bd1698681b92bd6fe0ce79d94c2b1dd82835881c6bc1d4555514e88d2fc49b0416fa4eaaba8d6e05ad4682e2b289aa43eaff01dc3c9c45ae6ee08c8c1431b8b25bf60a139110c77ff2d99a0e4b84859689"}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}]}]}, 0x150c}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)

517.082371ms ago: executing program 0 (id=1953):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0xa07, &(0x7f0000000200)={0x0, 0x200cc75, 0x800, 0x200003, 0x26e}, &(0x7f0000000140)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xff}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = syz_io_uring_setup(0x236, &(0x7f0000000400)={0x0, 0xf691, 0x10100, 0x0, 0x2b5, 0x0, r5}, &(0x7f0000000180)=<r7=>0x0, &(0x7f00000001c0)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r6, 0x708, 0x41e3, 0x0, 0x0, 0x0)
r9 = open(&(0x7f0000000180)='.\x00', 0x2000, 0x0)
flock(r9, 0x2)
r10 = open(&(0x7f0000000180)='.\x00', 0x10000, 0x0)
flock(r10, 0x1)
close(r9)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_setup(0x5f03, &(0x7f00000003c0)={0x0, 0xef71, 0x800, 0x4, 0x213}, &(0x7f00000001c0)=<r11=>0x0, &(0x7f0000000440))
ioctl$sock_inet_SIOCGIFBRDADDR(0xffffffffffffffff, 0x8919, &(0x7f0000000180)={'netdevsim0\x00', {0x2, 0x0, @private}})
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$vmci(0xffffff9c, 0x0, 0x2, 0x0)
syz_io_uring_submit(r11, r3, &(0x7f00000002c0)=@IORING_OP_UNLINKAT={0x24, 0x8, 0x0, r1, 0x0, 0x0, 0x0, 0x200})
socket$nl_generic(0x10, 0x3, 0x10)

503.517855ms ago: executing program 34 (id=1848):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$tty1(0xc, 0x4, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000280), 0x3824, &(0x7f0000000680)=ANY=[@ANYBLOB='mpol=bind=static:0-61347Nusrquota_inode_hardlimit=,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c0a00ca4d6eb07e1994e2f294f394d367981c5655b0a82ec2ee3d565b0a605fb76a0c5bc811ca022ff91cdb58be724e4dd063258c2ebf4422b8d342c59be8271c961af5a2d842e4304e33c383e8e468cca1c0c9772df50b166226f51a9355714492b9db04de30d24c60ffe617138f488e05dff9d6eb730367047bd09c69f89e5b569bd458caf44010ef154bfbc6a2d444e99182f739f8eb31cbd049d56e675c4acfcc39bf4751980405a816683aa23c8dcf83cdbb32e87e5cc32f200ed4448e24197bbc79b1debcaf1fdc761156916afd96e14bb5ccb86de95d"])
io_setup(0x6, &(0x7f0000001380)=<r0=>0x0)
io_submit(r0, 0x0, &(0x7f00000000c0))
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff000000000300000000000000000000000200000000000000000000000000000a030000000000000000000002"], 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000002c0)="140000001d000b63d25a80648c2594", 0xf}, {&(0x7f0000000580)="3f1c2725e7", 0x5}], 0x2}, 0x4000000)
r3 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r4=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0x40305839, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000800000000000000000000000000000002"])
setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x2, 0x0, 0x48)
getsockopt$inet6_mptcp_buf(0xffffffffffffffff, 0x11c, 0x4, &(0x7f0000000000)=""/152, &(0x7f00000000c0)=0x98)
ioctl$DRM_IOCTL_MODE_GETCRTC(r3, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r4, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r3, 0xc06864ce, &(0x7f0000000440)={r5, 0x0, 0x0, 0x0, 0x0, [<r6=>0x0], [], [0x2]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5})
r7 = syz_open_dev$media(&(0x7f0000000040), 0x7ffffffe, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r7, 0x80047c05, 0x0)
poll(&(0x7f0000000000)=[{0xffffffffffffffff, 0xa123}], 0x1, 0x15)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f0000000080)={r6, 0x0, <r8=>0xffffffffffffffff})
syz_open_dev$dri(0x0, 0x6, 0x240)
ioctl$DRM_IOCTL_MODE_GETFB2(r3, 0xc06864ce, &(0x7f0000000200)={r5, 0x0, 0x0, 0x0, 0x0, [<r9=>0x0]})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r3, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r8})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r3, 0xc00c642d, &(0x7f0000000040)={r9})
r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x10, 0x2, 0x7fffffff}]})
write$tun(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRESDEC], 0xfce)
close_range(r10, 0xffffffffffffffff, 0x0)

283.243829ms ago: executing program 0 (id=1955):
r0 = syz_open_dev$vcsa(&(0x7f0000000380), 0x7b95b611, 0x802)
writev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)='3V', 0x2}, {0x0, 0x300}], 0x2)

223.419716ms ago: executing program 3 (id=1956):
r0 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r3, 0xc0045006, &(0x7f0000000080)=0x48)
read$FUSE(r3, &(0x7f00000009c0)={0x2020}, 0x2020)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x63, 0x1, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB])
r5 = dup(r0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000006a08000000000000000000000a000000"], 0x14}}, 0x0)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r7, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r7, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r7, 0x6, 0x18, &(0x7f0000000080)=0x80000049, 0x4)
r8 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000400)="89000000120081ae08060cdc03a6000000000002000000006ee2ffca1b1f0000000004c00e72f750375ed08a563319bf9ed720000000d6e747033a0093b837dc6cc01e32efaec8c7a6ec0012100002400d0c0c00bdad446b9bbc7a46e3988285dcdf12f21308f868fece0195b49e33538afa8af92347514f0b56a20ff27fff00"/137, 0x89}], 0x1}, 0x4080)
mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000)
r9 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r9, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
r10 = syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r10, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r11 = openat$binder_debug(0xffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
mq_timedsend(r11, 0x0, 0x0, 0x401, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000002000000000000000000000095", @ANYRES8=r11, @ANYRES16=r11, @ANYRESOCT=r1, @ANYRES64=r2], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r12 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r12, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20}, 0x62)

222.875791ms ago: executing program 0 (id=1957):
syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
getsockopt$X25_QBITINCL(r0, 0x106, 0x1, 0x0, &(0x7f0000000240)=0xfffffffffffffee0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x38, r2, 0x100, 0x70bd2d, 0xb, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x80}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7fffffffffffffff}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}]}, 0x38}}, 0x2400c0d0)

151.082675ms ago: executing program 0 (id=1958):
r0 = socket$netlink(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=@bridge_delneigh={0x28, 0x1c, 0x1, 0x8002, 0x400000, {0x7, 0x0, 0x0, 0x0, 0x3, 0xe6, 0xb}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}}]}, 0x28}, 0x1, 0x0, 0x0, 0x26044094}, 0x2000c0c4)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000006, 0x20010, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="0414"], 0x9)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004882, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x20001, 0x0)
io_submit(0x0, 0xca, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a0012fb, 0x2759, 0x7, 0x0, 0x1008, r1, &(0x7f0000000000)="98", 0x3e8000072a, 0x7000000, 0x0, 0x10}])
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$MRT6_INIT(0xffffffffffffffff, 0x29, 0xc8, &(0x7f0000000340), 0x4)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r4)
sched_setscheduler(0x0, 0x2, 0x0)

316.393µs ago: executing program 5 (id=1959):
openat$snapshot(0xffffffffffffff9c, 0x0, 0x8c01, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_usb_connect(0x0, 0x2d, &(0x7f0000001600)=ANY=[@ANYBLOB="12010000ec31f8104c1302007eec0102030109021b0001000000000904000001098b7500090583"], 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x101000)

0s ago: executing program 3 (id=1960):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x80002, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x3, 0x0, 0x1f)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="b800000019000100000000f7ffffff"], 0xb8}}, 0x4004)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x11}, 0x80)
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3", 0x8}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB], 0x6f4}}, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2def, 0x2e0e, 0x0, 0x0, 0xffffffffffffffa2)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0xc01, 0x0)
write$rfkill(r7, &(0x7f0000000080)={0x7000000, 0x1, 0x3, 0x1}, 0x8)
syz_usb_connect(0x2, 0x24, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000200), 0x4000000004002, 0x0)
ioctl$DRM_IOCTL_RM_MAP(r1, 0x4028641b, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000751000/0x2000)=nil})

kernel console output (not intermixed with test programs):

[T13065] fuse: Bad value for 'fd'
[  265.686166][T13078] input: syz0 as /devices/virtual/input/input27
[  266.163340][   T53] usb 6-1: new low-speed USB device number 58 using dummy_hcd
[  266.249935][T13085] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1255'.
[  266.303499][   T53] usb 6-1: device descriptor read/64, error -71
[  266.553412][   T53] usb 6-1: new low-speed USB device number 59 using dummy_hcd
[  266.743358][   T53] usb 6-1: device descriptor read/64, error -71
[  266.889611][   T53] usb usb6-port1: attempt power cycle
[  267.228789][T13094] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1258'.
[  267.238829][T13094] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22
[  267.241556][T13094] netdevsim netdevsim4: Direct firmware load for . failed with error -22
[  267.244961][T13094] netdevsim netdevsim4: Falling back to sysfs fallback for: .
[  267.323314][   T53] usb 6-1: new low-speed USB device number 60 using dummy_hcd
[  267.344384][   T53] usb 6-1: device descriptor read/8, error -71
[  267.363401][ T5949] Bluetooth: hci3: command 0x0c1a tx timeout
[  267.406596][T13100] fuse: Bad value for 'fd'
[  267.584674][   T53] usb 6-1: new low-speed USB device number 61 using dummy_hcd
[  267.606750][   T53] usb 6-1: device descriptor read/8, error -71
[  267.735393][   T53] usb usb6-port1: unable to enumerate USB device
[  267.828909][T13107] netlink: set zone limit has 4 unknown bytes
[  267.863567][   T53] usb 6-1: new low-speed USB device number 62 using dummy_hcd
[  267.998042][   T53] usb 6-1: device descriptor read/64, error -71
[  268.236959][T13110] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1264'.
[  268.562046][T13115] netlink: 240 bytes leftover after parsing attributes in process `syz.4.1265'.
[  268.868974][T13126] loop7: detected capacity change from 0 to 524287999
[  269.063723][   T10] usb 9-1: new high-speed USB device number 38 using dummy_hcd
[  269.237556][T13130] fuse: Bad value for 'fd'
[  269.243336][   T10] usb 9-1: Using ep0 maxpacket: 16
[  269.248204][   T10] usb 9-1: config 0 has no interfaces?
[  269.256677][   T10] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  269.259509][   T10] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  269.262031][   T10] usb 9-1: Product: syz
[  269.264404][   T10] usb 9-1: Manufacturer: syz
[  269.265848][   T10] usb 9-1: SerialNumber: syz
[  269.269157][   T10] usb 9-1: config 0 descriptor??
[  269.474805][   T10] usb 9-1: USB disconnect, device number 38
[  269.568469][T13141] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1275'.
[  270.589940][T13161] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1281'.
[  271.105421][   T53] libceph: connect (1)[c::]:6789 error -101
[  271.107841][   T53] libceph: mon0 (1)[c::]:6789 connect error
[  271.243597][T13162] ceph: No mds server is up or the cluster is laggy
[  271.322177][T13171] fuse: Bad value for 'fd'
[  271.363351][   T53] usb 6-1: new low-speed USB device number 64 using dummy_hcd
[  271.503344][   T53] usb 6-1: device descriptor read/64, error -71
[  271.641679][T13178] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1284'.
[  271.743435][   T53] usb 6-1: new low-speed USB device number 65 using dummy_hcd
[  271.873363][   T53] usb 6-1: device descriptor read/64, error -71
[  271.984310][   T53] usb usb6-port1: attempt power cycle
[  272.003580][ T5304] Bluetooth: hci3: command 0x0c1a tx timeout
[  272.227304][T13190] fuse: Bad value for 'rootmode'
[  272.323458][   T53] usb 6-1: new low-speed USB device number 66 using dummy_hcd
[  272.341474][T13194] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1292'.
[  272.346259][   T53] usb 6-1: device descriptor read/8, error -71
[  272.603319][   T53] usb 6-1: new low-speed USB device number 67 using dummy_hcd
[  272.619102][T13199] netlink: 240 bytes leftover after parsing attributes in process `syz.4.1293'.
[  272.624959][   T53] usb 6-1: device descriptor read/8, error -71
[  272.767714][   T53] usb usb6-port1: unable to enumerate USB device
[  272.791405][T13204] FAULT_INJECTION: forcing a failure.
[  272.791405][T13204] name failslab, interval 1, probability 0, space 0, times 0
[  272.795442][T13204] CPU: 1 UID: 0 PID: 13204 Comm: syz.3.1295 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  272.795458][T13204] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  272.795465][T13204] Call Trace:
[  272.795469][T13204]  <TASK>
[  272.795473][T13204]  dump_stack_lvl+0x16c/0x1f0
[  272.795496][T13204]  should_fail_ex+0x512/0x640
[  272.795508][T13204]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  272.795527][T13204]  should_failslab+0xc2/0x120
[  272.795538][T13204]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  272.795555][T13204]  ? fput+0x70/0xf0
[  272.795566][T13204]  ? getname_flags.part.0+0x4c/0x550
[  272.795580][T13204]  getname_flags.part.0+0x4c/0x550
[  272.795595][T13204]  __ia32_sys_rmdir+0xaf/0x110
[  272.795612][T13204]  __do_fast_syscall_32+0x7c/0x3a0
[  272.795625][T13204]  do_fast_syscall_32+0x32/0x80
[  272.795635][T13204]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  272.795649][T13204] RIP: 0023:0xf7f01579
[  272.795657][T13204] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  272.795668][T13204] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000028
[  272.795679][T13204] RAX: ffffffffffffffda RBX: 0000000080000100 RCX: 0000000000000000
[  272.795685][T13204] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  272.795691][T13204] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  272.795697][T13204] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  272.795703][T13204] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  272.795716][T13204]  </TASK>
[  272.853903][    C1] vkms_vblank_simulate: vblank timer overrun
[  272.963562][T13207] 8021q: adding VLAN 0 to HW filter on device bond3
[  272.977279][T13207] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1294'.
[  273.855557][T13222] random: crng reseeded on system resumption
[  274.034282][T13226] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1302'.
[  274.103559][ T5977] usb 9-1: new high-speed USB device number 39 using dummy_hcd
[  274.265582][ T5977] usb 9-1: Using ep0 maxpacket: 16
[  274.269426][ T5977] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  274.274131][ T5977] usb 9-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  274.276934][ T5977] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  274.279427][ T5977] usb 9-1: Product: syz
[  274.280761][ T5977] usb 9-1: Manufacturer: syz
[  274.282232][ T5977] usb 9-1: SerialNumber: syz
[  274.294445][ T5977] usb 9-1: config 0 descriptor??
[  274.299273][ T5977] hub 9-1:0.0: bad descriptor, ignoring hub
[  274.301772][ T5977] hub 9-1:0.0: probe with driver hub failed with error -5
[  274.308558][ T5977] input: syz syz as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input28
[  274.411323][T13236] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1305'.
[  274.723858][ T1328] usb 9-1: USB disconnect, device number 39
[  275.268916][T13241] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1306'.
[  275.277397][T13241] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  275.280059][T13241] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  275.282708][T13241] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  275.474830][T13258] random: crng reseeded on system resumption
[  275.753347][   T53] usb 6-1: new high-speed USB device number 68 using dummy_hcd
[  275.903302][   T53] usb 6-1: Using ep0 maxpacket: 16
[  275.907313][   T53] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  275.912131][   T53] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  275.915211][   T53] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  275.917736][   T53] usb 6-1: Product: syz
[  275.919116][   T53] usb 6-1: Manufacturer: syz
[  275.920646][   T53] usb 6-1: SerialNumber: syz
[  275.923631][   T53] usb 6-1: config 0 descriptor??
[  275.927311][   T53] hub 6-1:0.0: bad descriptor, ignoring hub
[  275.930490][   T53] hub 6-1:0.0: probe with driver hub failed with error -5
[  275.936097][   T53] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input29
[  276.211530][T13263] netlink: 'syz.3.1312': attribute type 4 has an invalid length.
[  276.285287][T13266] FAULT_INJECTION: forcing a failure.
[  276.285287][T13266] name failslab, interval 1, probability 0, space 0, times 0
[  276.289712][T13266] CPU: 2 UID: 0 PID: 13266 Comm: syz.4.1313 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  276.289729][T13266] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  276.289738][T13266] Call Trace:
[  276.289743][T13266]  <TASK>
[  276.289748][T13266]  dump_stack_lvl+0x16c/0x1f0
[  276.289771][T13266]  should_fail_ex+0x512/0x640
[  276.289784][T13266]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  276.289805][T13266]  should_failslab+0xc2/0x120
[  276.289817][T13266]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  276.289836][T13266]  ? ethnl_default_set_doit+0x397/0xb10
[  276.289851][T13266]  kmemdup_noprof+0x29/0x60
[  276.289868][T13266]  ethnl_default_set_doit+0x397/0xb10
[  276.289882][T13266]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  276.289895][T13266]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  276.289912][T13266]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  276.289931][T13266]  genl_family_rcv_msg_doit+0x206/0x2f0
[  276.289947][T13266]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  276.289963][T13266]  ? trace_cap_capable+0x18d/0x200
[  276.289981][T13266]  ? bpf_lsm_capable+0x9/0x10
[  276.289995][T13266]  ? security_capable+0x7e/0x260
[  276.290013][T13266]  ? ns_capable+0xd7/0x110
[  276.290027][T13266]  genl_rcv_msg+0x55c/0x800
[  276.290044][T13266]  ? __pfx_genl_rcv_msg+0x10/0x10
[  276.290059][T13266]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  276.290076][T13266]  netlink_rcv_skb+0x155/0x420
[  276.290089][T13266]  ? __pfx_genl_rcv_msg+0x10/0x10
[  276.290105][T13266]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  276.290125][T13266]  ? netlink_deliver_tap+0x1ae/0xd30
[  276.290140][T13266]  genl_rcv+0x28/0x40
[  276.290153][T13266]  netlink_unicast+0x53d/0x7f0
[  276.290168][T13266]  ? __pfx_netlink_unicast+0x10/0x10
[  276.290185][T13266]  netlink_sendmsg+0x8d1/0xdd0
[  276.290201][T13266]  ? __pfx_netlink_sendmsg+0x10/0x10
[  276.290215][T13266]  ? __import_iovec+0x1dd/0x650
[  276.290233][T13266]  ____sys_sendmsg+0xa95/0xc70
[  276.290248][T13266]  ? __pfx_____sys_sendmsg+0x10/0x10
[  276.290262][T13266]  ? get_compat_msghdr+0x11a/0x170
[  276.290280][T13266]  ___sys_sendmsg+0x134/0x1d0
[  276.290292][T13266]  ? __pfx____sys_sendmsg+0x10/0x10
[  276.290310][T13266]  ? find_held_lock+0x2b/0x80
[  276.290331][T13266]  __sys_sendmsg+0x16d/0x220
[  276.290342][T13266]  ? __pfx___sys_sendmsg+0x10/0x10
[  276.290359][T13266]  ? rcu_is_watching+0x12/0xc0
[  276.290373][T13266]  __do_fast_syscall_32+0x7c/0x3a0
[  276.290386][T13266]  do_fast_syscall_32+0x32/0x80
[  276.290397][T13266]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  276.290411][T13266] RIP: 0023:0xf703e579
[  276.290420][T13266] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  276.290430][T13266] RSP: 002b:00000000f502e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  276.290441][T13266] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[  276.290448][T13266] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  276.290454][T13266] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  276.290460][T13266] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  276.290466][T13266] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  276.290480][T13266]  </TASK>
[  276.704810][ T5977] usb 6-1: USB disconnect, device number 68
[  276.950003][T13280] random: crng reseeded on system resumption
[  276.985998][T13280] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.003384][ T1328] usb 9-1: new high-speed USB device number 40 using dummy_hcd
[  277.193454][ T1328] usb 9-1: Using ep0 maxpacket: 16
[  277.198372][ T1328] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  277.206852][ T1328] usb 9-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  277.209749][ T1328] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  277.212208][ T1328] usb 9-1: Product: syz
[  277.213581][ T1328] usb 9-1: Manufacturer: syz
[  277.215034][ T1328] usb 9-1: SerialNumber: syz
[  277.217690][ T1328] usb 9-1: config 0 descriptor??
[  277.221601][ T1328] hub 9-1:0.0: bad descriptor, ignoring hub
[  277.223525][ T1328] hub 9-1:0.0: probe with driver hub failed with error -5
[  277.227203][ T1328] input: syz syz as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input30
[  277.234130][T13280] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.243984][ T1328] usb 9-1: USB disconnect, device number 40
[  277.395600][ T1328] usb 9-1: new high-speed USB device number 41 using dummy_hcd
[  277.783544][T13293] loop7: detected capacity change from 0 to 524287999
[  278.005191][T13280] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  278.079215][T13280] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  278.188871][T13280] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  278.237694][T13280] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  278.256655][T13280] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  278.275342][T13280] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  278.857676][T13311] random: crng reseeded on system resumption
[  279.223675][ T5977] usb 6-1: new high-speed USB device number 69 using dummy_hcd
[  279.374776][ T5977] usb 6-1: Using ep0 maxpacket: 16
[  279.380245][ T5977] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  279.384827][ T5977] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  279.387625][ T5977] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  279.390066][ T5977] usb 6-1: Product: syz
[  279.391360][ T5977] usb 6-1: Manufacturer: syz
[  279.392786][ T5977] usb 6-1: SerialNumber: syz
[  279.396291][ T5977] usb 6-1: config 0 descriptor??
[  279.399123][ T5977] hub 6-1:0.0: bad descriptor, ignoring hub
[  279.401070][ T5977] hub 6-1:0.0: probe with driver hub failed with error -5
[  279.404751][ T5977] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input31
[  279.423766][ T5977] usb 6-1: USB disconnect, device number 69
[  279.443035][T13316] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1328'.
[  279.583745][T13322] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1329'.
[  279.586807][ T5977] usb 6-1: new high-speed USB device number 70 using dummy_hcd
[  279.702640][T13331] FAULT_INJECTION: forcing a failure.
[  279.702640][T13331] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  279.707971][T13331] CPU: 3 UID: 0 PID: 13331 Comm: syz.3.1333 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  279.707987][T13331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  279.707994][T13331] Call Trace:
[  279.707998][T13331]  <TASK>
[  279.708002][T13331]  dump_stack_lvl+0x16c/0x1f0
[  279.708025][T13331]  should_fail_ex+0x512/0x640
[  279.708040][T13331]  _copy_from_user+0x2e/0xd0
[  279.708054][T13331]  ucma_write+0x128/0x330
[  279.708066][T13331]  ? __pfx_ucma_write+0x10/0x10
[  279.708077][T13331]  ? bpf_lsm_file_permission+0x9/0x10
[  279.708090][T13331]  ? security_file_permission+0x71/0x210
[  279.708109][T13331]  ? rw_verify_area+0xcf/0x680
[  279.708124][T13331]  ? __pfx_ucma_write+0x10/0x10
[  279.708134][T13331]  vfs_write+0x2a0/0x1150
[  279.708153][T13331]  ? __pfx_vfs_write+0x10/0x10
[  279.708168][T13331]  ? find_held_lock+0x2b/0x80
[  279.708180][T13331]  ? __fget_files+0x204/0x3c0
[  279.708197][T13331]  ? __fget_files+0x20e/0x3c0
[  279.708212][T13331]  ? handle_mm_fault+0x1f0/0xd10
[  279.708230][T13331]  ksys_write+0x1f8/0x250
[  279.708246][T13331]  ? __pfx_ksys_write+0x10/0x10
[  279.708263][T13331]  ? rcu_is_watching+0x12/0xc0
[  279.708276][T13331]  __do_fast_syscall_32+0x7c/0x3a0
[  279.708289][T13331]  do_fast_syscall_32+0x32/0x80
[  279.708300][T13331]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  279.708315][T13331] RIP: 0023:0xf7f01579
[  279.708324][T13331] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  279.708335][T13331] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  279.708345][T13331] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000380
[  279.708352][T13331] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  279.708358][T13331] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  279.708364][T13331] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  279.708370][T13331] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  279.708384][T13331]  </TASK>
[  279.777595][    C3] vkms_vblank_simulate: vblank timer overrun
[  279.928249][T13335] loop7: detected capacity change from 0 to 524287999
[  279.982923][ T1328] usb 9-1: device descriptor read/64, error -71
[  280.234105][ T1328] usb 9-1: new high-speed USB device number 42 using dummy_hcd
[  280.405398][ T1328] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  280.409299][ T1328] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  280.410145][T13341] 9pnet_fd: Insufficient options for proto=fd
[  280.412773][ T1328] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  280.417670][ T1328] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  280.421736][ T1328] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  280.424503][ T1328] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.431294][ T1328] usb 9-1: config 0 descriptor??
[  280.698420][T13343] netlink: 'syz.3.1337': attribute type 1 has an invalid length.
[  280.711419][T13343] 8021q: adding VLAN 0 to HW filter on device bond0
[  280.754683][T13343] bond0: (slave veth3): Enslaving as an active interface with a down link
[  280.765797][T13343] vlan2: entered allmulticast mode
[  280.767458][T13343] veth1: entered allmulticast mode
[  280.769447][T13343] veth1: entered promiscuous mode
[  280.771773][T13343] veth1: left promiscuous mode
[  280.774579][T13343] bond0: (slave vlan2): making interface the new active one
[  280.777276][T13343] veth1: entered promiscuous mode
[  280.779166][T13343] vlan2: entered promiscuous mode
[  280.781045][T13343] bond0: (slave vlan2): Enslaving as an active interface with an up link
[  280.874099][ T1328] plantronics 0003:047F:FFFF.0006: ignoring exceeding usage max
[  280.882416][ T1328] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  280.903105][ T1328] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  281.551701][T13354] netlink: set zone limit has 4 unknown bytes
[  281.825025][T13370] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1346'.
[  281.945300][T13375] loop7: detected capacity change from 0 to 524287999
[  282.932431][T13389] netlink: set zone limit has 4 unknown bytes
[  282.964888][   T10] usb 9-1: USB disconnect, device number 42
[  283.211571][T13396] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1353'.
[  283.281584][T13398] fuse: Bad value for 'fd'
[  283.313197][T13399] wireguard0: entered promiscuous mode
[  283.315212][T13399] wireguard0: entered allmulticast mode
[  283.530806][T13406] loop7: detected capacity change from 0 to 524287999
[  283.553441][  T839] usb 6-1: new high-speed USB device number 71 using dummy_hcd
[  283.704876][  T839] usb 6-1: Using ep0 maxpacket: 8
[  283.728740][  T839] usb 6-1: config 0 has no interfaces?
[  283.730459][  T839] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  283.733220][  T839] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  283.738232][  T839] usb 6-1: config 0 descriptor??
[  283.977397][  T839] usb 6-1: USB disconnect, device number 71
[  284.509859][T13427] fuse: Bad value for 'fd'
[  284.512948][T13425] netlink: set zone limit has 4 unknown bytes
[  284.579509][T13431] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1365'.
[  284.728231][T13436] random: crng reseeded on system resumption
[  284.757274][T13436] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.873917][T13436] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.974484][T13436] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.124563][T13448] FAULT_INJECTION: forcing a failure.
[  285.124563][T13448] name failslab, interval 1, probability 0, space 0, times 0
[  285.128568][T13448] CPU: 1 UID: 0 PID: 13448 Comm: syz.3.1368 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  285.128585][T13448] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  285.128592][T13448] Call Trace:
[  285.128597][T13448]  <TASK>
[  285.128601][T13448]  dump_stack_lvl+0x16c/0x1f0
[  285.128624][T13448]  should_fail_ex+0x512/0x640
[  285.128640][T13448]  should_failslab+0xc2/0x120
[  285.128652][T13448]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  285.128670][T13448]  ? skb_clone+0x190/0x3f0
[  285.128687][T13448]  ? lockdep_hardirqs_on+0x7c/0x110
[  285.128706][T13448]  skb_clone+0x190/0x3f0
[  285.128718][T13448]  dev_queue_xmit_nit+0x3e7/0xca0
[  285.128733][T13448]  dev_hard_start_xmit+0x5c3/0x740
[  285.128750][T13448]  ? kmem_cache_alloc_noprof+0x1cb/0x3b0
[  285.128768][T13448]  __dev_queue_xmit+0x7eb/0x43e0
[  285.128790][T13448]  ? __pfx___dev_queue_xmit+0x10/0x10
[  285.128817][T13448]  ? __asan_memcpy+0x3c/0x60
[  285.128833][T13448]  ? __asan_memcpy+0x3c/0x60
[  285.128847][T13448]  ? __skb_clone+0x570/0x760
[  285.128867][T13448]  netlink_deliver_tap+0xa87/0xd30
[  285.128880][T13448]  ? __pfx_tc_dump_qdisc+0x10/0x10
[  285.128897][T13448]  netlink_dump+0x618/0xce0
[  285.128912][T13448]  ? __pfx_netlink_dump+0x10/0x10
[  285.128923][T13448]  ? __pfx___mutex_lock+0x10/0x10
[  285.128942][T13448]  __netlink_dump_start+0x6d6/0x990
[  285.128956][T13448]  ? __pfx_tc_dump_qdisc+0x10/0x10
[  285.128970][T13448]  rtnetlink_rcv_msg+0xb3e/0xe90
[  285.128982][T13448]  ? __pfx_tc_dump_qdisc+0x10/0x10
[  285.128997][T13448]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  285.129009][T13448]  ? __pfx_rtnl_dumpit+0x10/0x10
[  285.129024][T13448]  ? __pfx_tc_dump_qdisc+0x10/0x10
[  285.129043][T13448]  netlink_rcv_skb+0x155/0x420
[  285.129057][T13448]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  285.129069][T13448]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  285.129082][T13448]  ? rcu_is_watching+0x12/0xc0
[  285.129102][T13448]  netlink_unicast+0x53d/0x7f0
[  285.129117][T13448]  ? __pfx_netlink_unicast+0x10/0x10
[  285.129134][T13448]  netlink_sendmsg+0x8d1/0xdd0
[  285.129149][T13448]  ? __pfx_netlink_sendmsg+0x10/0x10
[  285.129164][T13448]  ? __import_iovec+0x1dd/0x650
[  285.129181][T13448]  ____sys_sendmsg+0xa95/0xc70
[  285.129196][T13448]  ? __pfx_____sys_sendmsg+0x10/0x10
[  285.129210][T13448]  ? get_compat_msghdr+0x11a/0x170
[  285.129223][T13448]  ? lockdep_hardirqs_on+0x7c/0x110
[  285.129240][T13448]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  285.129260][T13448]  ___sys_sendmsg+0x134/0x1d0
[  285.129272][T13448]  ? __pfx____sys_sendmsg+0x10/0x10
[  285.129289][T13448]  ? find_held_lock+0x2b/0x80
[  285.129308][T13448]  __sys_sendmsg+0x16d/0x220
[  285.129320][T13448]  ? __pfx___sys_sendmsg+0x10/0x10
[  285.129336][T13448]  ? rcu_is_watching+0x12/0xc0
[  285.129349][T13448]  __do_fast_syscall_32+0x7c/0x3a0
[  285.129362][T13448]  do_fast_syscall_32+0x32/0x80
[  285.129373][T13448]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  285.129387][T13448] RIP: 0023:0xf7f01579
[  285.129396][T13448] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  285.129407][T13448] RSP: 002b:00000000f4fe455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  285.129418][T13448] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000080000280
[  285.129425][T13448] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  285.129431][T13448] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  285.129437][T13448] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  285.129443][T13448] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  285.129456][T13448]  </TASK>
[  285.131694][T13448] tmpfs: Unknown parameter 'gN�ýøCH¤?HrpquaZota_block_har'
[  285.265946][T13436] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.457903][T13436] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  285.466881][T13436] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  285.474588][T13436] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  285.481637][T13436] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  285.642813][T13457] fuse: Bad value for 'fd'
[  285.844141][   T61] usb 9-1: new high-speed USB device number 43 using dummy_hcd
[  285.935519][T13466] FAULT_INJECTION: forcing a failure.
[  285.935519][T13466] name failslab, interval 1, probability 0, space 0, times 0
[  285.940218][T13466] CPU: 3 UID: 0 PID: 13466 Comm: syz.3.1376 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  285.940234][T13466] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  285.940241][T13466] Call Trace:
[  285.940246][T13466]  <TASK>
[  285.940251][T13466]  dump_stack_lvl+0x16c/0x1f0
[  285.940273][T13466]  should_fail_ex+0x512/0x640
[  285.940286][T13466]  ? __kmalloc_noprof+0xbf/0x510
[  285.940304][T13466]  ? get_create_ext.constprop.0+0x966/0xc40
[  285.940319][T13466]  should_failslab+0xc2/0x120
[  285.940331][T13466]  __kmalloc_noprof+0xd2/0x510
[  285.940351][T13466]  get_create_ext.constprop.0+0x966/0xc40
[  285.940366][T13466]  ? __pfx_aa_get_newest_label+0x10/0x10
[  285.940384][T13466]  ? __pfx_get_create_ext.constprop.0+0x10/0x10
[  285.940401][T13466]  ? apparmor_capable+0x114/0x1d0
[  285.940416][T13466]  ? bpf_lsm_capable+0x9/0x10
[  285.940465][T13466]  ? security_capable+0x7e/0x260
[  285.940482][T13466]  fuse_create_open+0x494/0xd80
[  285.940501][T13466]  ? __pfx_fuse_create_open+0x10/0x10
[  285.940518][T13466]  ? fuse_dentry_settime+0x215/0x280
[  285.940533][T13466]  ? do_raw_spin_unlock+0x172/0x230
[  285.940556][T13466]  ? __pfx_fuse_lookup+0x10/0x10
[  285.940571][T13466]  ? current_check_access_path+0x33c/0x460
[  285.940595][T13466]  ? fuse_allow_current_process+0xa2/0x380
[  285.940620][T13466]  fuse_atomic_open+0x325/0x470
[  285.940637][T13466]  ? __pfx_fuse_atomic_open+0x10/0x10
[  285.940654][T13466]  lookup_open.isra.0+0x83d/0x1580
[  285.940673][T13466]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  285.940695][T13466]  ? __pfx_down_write+0x10/0x10
[  285.940706][T13466]  ? mnt_get_write_access+0x20c/0x300
[  285.940721][T13466]  path_openat+0x893/0x2cb0
[  285.940742][T13466]  ? __pfx_path_openat+0x10/0x10
[  285.940759][T13466]  ? __lock_acquire+0xb8a/0x1c90
[  285.940776][T13466]  do_filp_open+0x20b/0x470
[  285.940792][T13466]  ? __pfx_do_filp_open+0x10/0x10
[  285.940820][T13466]  ? alloc_fd+0x471/0x7d0
[  285.940839][T13466]  do_sys_openat2+0x11b/0x1d0
[  285.940853][T13466]  ? __pfx_do_sys_openat2+0x10/0x10
[  285.940868][T13466]  ? __fget_files+0x20e/0x3c0
[  285.940882][T13466]  ? handle_mm_fault+0x1f0/0xd10
[  285.940901][T13466]  __ia32_sys_creat+0xcb/0x120
[  285.940915][T13466]  ? __pfx___ia32_sys_creat+0x10/0x10
[  285.940927][T13466]  ? __pfx_ksys_write+0x10/0x10
[  285.940945][T13466]  ? rcu_is_watching+0x12/0xc0
[  285.940955][T13466]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  285.940967][T13466]  ? lockdep_hardirqs_on+0x7c/0x110
[  285.940985][T13466]  __do_fast_syscall_32+0x7c/0x3a0
[  285.940997][T13466]  do_fast_syscall_32+0x32/0x80
[  285.941008][T13466]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  285.941022][T13466] RIP: 0023:0xf7f01579
[  285.941031][T13466] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  285.941043][T13466] RSP: 002b:00000000f500555c EFLAGS: 00000296 ORIG_RAX: 0000000000000008
[  285.941054][T13466] RAX: ffffffffffffffda RBX: 0000000080000180 RCX: 0000000000000000
[  285.941061][T13466] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  285.941067][T13466] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  285.941073][T13466] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  285.941079][T13466] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  285.941093][T13466]  </TASK>
[  286.070215][    C3] vkms_vblank_simulate: vblank timer overrun
[  286.103439][   T61] usb 9-1: Using ep0 maxpacket: 8
[  286.107362][   T61] usb 9-1: config 0 has no interfaces?
[  286.109756][   T61] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  286.112976][   T61] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  286.116740][   T61] usb 9-1: config 0 descriptor??
[  286.321801][   T61] usb 9-1: USB disconnect, device number 43
[  286.704267][T13477] netlink: 240 bytes leftover after parsing attributes in process `syz.1.1378'.
[  286.741435][T13479] random: crng reseeded on system resumption
[  286.886127][T13484] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1381'.
[  289.104145][T13510] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  289.109125][T13510] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1388'.
[  289.113624][T13510] netlink: 'syz.0.1388': attribute type 12 has an invalid length.
[  289.237467][T13515] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  289.300501][T13514] netlink: set zone limit has 4 unknown bytes
[  289.368706][T13519] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1391'.
[  290.170786][T13532] random: crng reseeded on system resumption
[  290.371378][T13536] capability: warning: `syz.1.1397' uses 32-bit capabilities (legacy support in use)
[  290.423417][  T838] usb 9-1: new high-speed USB device number 44 using dummy_hcd
[  290.583392][  T838] usb 9-1: Using ep0 maxpacket: 16
[  290.586225][  T838] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  290.590604][  T838] usb 9-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  290.593986][  T838] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  290.597040][  T838] usb 9-1: Product: syz
[  290.598347][  T838] usb 9-1: Manufacturer: syz
[  290.599969][  T838] usb 9-1: SerialNumber: syz
[  290.609720][  T838] usb 9-1: config 0 descriptor??
[  290.615958][  T838] hub 9-1:0.0: bad descriptor, ignoring hub
[  290.618659][  T838] hub 9-1:0.0: probe with driver hub failed with error -5
[  290.629285][  T838] input: syz syz as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/input/input32
[  290.688202][T13542] nvme_fabrics: missing parameter 'transport=%s'
[  290.691128][T13542] nvme_fabrics: missing parameter 'nqn=%s'
[  290.692629][T13545] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  291.059516][T13551] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1401'.
[  291.160361][T13552] wireguard0: entered promiscuous mode
[  291.162326][T13552] wireguard0: entered allmulticast mode
[  291.283517][ T5949] Bluetooth: hci0: Opcode 0x0401 failed: -110
[  291.283857][ T5304] Bluetooth: hci0: command 0x0406 tx timeout
[  291.651553][T13562] netlink: set zone limit has 4 unknown bytes
[  291.707013][T13564] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1404'.
[  291.849030][T13572] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1407'.
[  291.905743][T13573] netlink: 'syz.0.1407': attribute type 10 has an invalid length.
[  291.908447][T13573] tipc: Resetting bearer <eth:team0>
[  291.911033][T13573] team0: left allmulticast mode
[  291.912847][T13573] team_slave_0: left allmulticast mode
[  291.914622][T13573] team_slave_1: left allmulticast mode
[  291.916552][T13573] team0: left promiscuous mode
[  291.918037][T13573] team_slave_0: left promiscuous mode
[  291.919931][T13573] team_slave_1: left promiscuous mode
[  291.922742][T13573] bridge0: port 3(team0) entered disabled state
[  292.023444][   T60] vlan2: left promiscuous mode
[  293.044123][T13587] random: crng reseeded on system resumption
[  293.172675][T13585] nvme_fabrics: missing parameter 'transport=%s'
[  293.174755][T13585] nvme_fabrics: missing parameter 'nqn=%s'
[  293.381874][T13593] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1413'.
[  293.384765][T13593] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1413'.
[  293.605918][T13598] netlink: set zone limit has 4 unknown bytes
[  293.857864][T13607] ieee802154 phy0 wpan0: encryption failed: -22
[  294.228065][  T839] usb 9-1: USB disconnect, device number 44
[  296.224286][T13643] random: crng reseeded on system resumption
[  296.230850][T13643] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.310222][T13645] netlink: set zone limit has 4 unknown bytes
[  296.365562][T13643] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.534969][T13643] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.577078][T13643] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.649338][T13643] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  296.656340][T13643] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  296.662861][T13643] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  296.669313][T13643] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  297.032711][T13659] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1431'.
[  297.249634][T13658] netlink: set zone limit has 4 unknown bytes
[  297.289229][T13664] wireguard0: entered promiscuous mode
[  297.291183][T13664] wireguard0: entered allmulticast mode
[  298.003197][T13680] random: crng reseeded on system resumption
[  298.010133][T13680] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  298.329527][T13680] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  298.439001][T13680] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  298.540530][T13680] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  298.650261][T13680] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  298.660230][T13680] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  298.671758][T13680] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  298.678550][T13680] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  298.811210][T13701] netlink: set zone limit has 4 unknown bytes
[  298.926606][   T40] audit: type=1800 audit(1749100514.211:3579): pid=13708 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.3.1450" name="/" dev="sockfs" ino=34096 res=0 errno=0
[  299.047441][T13713] random: crng reseeded on system resumption
[  300.125559][T13739] FAULT_INJECTION: forcing a failure.
[  300.125559][T13739] name failslab, interval 1, probability 0, space 0, times 0
[  300.132431][T13739] CPU: 1 UID: 0 PID: 13739 Comm: syz.4.1460 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  300.132471][T13739] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  300.132482][T13739] Call Trace:
[  300.132489][T13739]  <TASK>
[  300.132496][T13739]  dump_stack_lvl+0x16c/0x1f0
[  300.132528][T13739]  should_fail_ex+0x512/0x640
[  300.132548][T13739]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  300.132573][T13739]  should_failslab+0xc2/0x120
[  300.132591][T13739]  __kmalloc_cache_noprof+0x6a/0x3e0
[  300.132615][T13739]  ? alloc_bprm+0x86/0x6f0
[  300.132641][T13739]  alloc_bprm+0x86/0x6f0
[  300.132666][T13739]  do_execveat_common.isra.0+0x1ce/0x610
[  300.132695][T13739]  __ia32_compat_sys_execve+0x92/0xc0
[  300.132722][T13739]  __do_fast_syscall_32+0x7c/0x3a0
[  300.132742][T13739]  do_fast_syscall_32+0x32/0x80
[  300.132759][T13739]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  300.132780][T13739] RIP: 0023:0xf703e579
[  300.132794][T13739] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  300.132817][T13739] RSP: 002b:00000000f4fec55c EFLAGS: 00000296 ORIG_RAX: 000000000000000b
[  300.132834][T13739] RAX: ffffffffffffffda RBX: 0000000080000080 RCX: 0000000000000000
[  300.132843][T13739] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  300.132851][T13739] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  300.132859][T13739] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  300.132867][T13739] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  300.132889][T13739]  </TASK>
[  300.203442][   T34] usb 6-1: new high-speed USB device number 72 using dummy_hcd
[  300.383435][   T34] usb 6-1: Using ep0 maxpacket: 8
[  300.386287][   T34] usb 6-1: config 0 has no interfaces?
[  300.388028][   T34] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  300.390915][   T34] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  300.398579][   T34] usb 6-1: config 0 descriptor??
[  300.612475][ T5977] usb 6-1: USB disconnect, device number 72
[  301.414834][T13767] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1470'.
[  302.182462][T13773] dvmrp1: entered allmulticast mode
[  302.198343][T13776] team_slave_0: entered promiscuous mode
[  302.200504][T13776] team_slave_1: entered promiscuous mode
[  302.202446][T13776] mac80211_hwsim hwsim17 wlan1: entered promiscuous mode
[  302.205357][T13776] bond_slave_0: entered promiscuous mode
[  302.207249][T13776] bond_slave_1: entered promiscuous mode
[  302.210682][T13776] macsec1: entered promiscuous mode
[  302.212400][T13776] team0: entered promiscuous mode
[  302.215630][T13776] bond0: entered promiscuous mode
[  302.218667][T13776] macsec1: entered allmulticast mode
[  302.220396][T13776] team0: entered allmulticast mode
[  302.222026][T13776] team_slave_0: entered allmulticast mode
[  302.224779][T13776] team_slave_1: entered allmulticast mode
[  302.226606][T13776] vlan0: entered allmulticast mode
[  302.228228][T13776] veth0_vlan: entered allmulticast mode
[  302.230088][T13776] mac80211_hwsim hwsim17 wlan1: entered allmulticast mode
[  302.232908][T13776] bond0: entered allmulticast mode
[  302.234692][T13776] bond_slave_0: entered allmulticast mode
[  302.236504][T13776] bond_slave_1: entered allmulticast mode
[  302.240108][T13776] team0: Device macsec1 is already an upper device of the team interface
[  302.245838][T13776] team0: left allmulticast mode
[  302.253398][T13776] team_slave_0: left allmulticast mode
[  302.255201][T13776] team_slave_1: left allmulticast mode
[  302.257088][T13776] vlan0: left allmulticast mode
[  302.258732][T13776] veth0_vlan: left allmulticast mode
[  302.260416][T13776] mac80211_hwsim hwsim17 wlan1: left allmulticast mode
[  302.262582][T13776] bond0: left allmulticast mode
[  302.265055][T13776] bond_slave_0: left allmulticast mode
[  302.266775][T13776] bond_slave_1: left allmulticast mode
[  302.269234][T13776] team0: left promiscuous mode
[  302.271121][T13776] bond0: left promiscuous mode
[  302.273114][T13776] team_slave_0: left promiscuous mode
[  302.274911][T13776] team_slave_1: left promiscuous mode
[  302.276720][T13776] mac80211_hwsim hwsim17 wlan1: left promiscuous mode
[  302.279113][T13776] bond_slave_0: left promiscuous mode
[  302.280849][T13776] bond_slave_1: left promiscuous mode
[  302.295632][T13779] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1472'.
[  302.407740][T13783] team_slave_0: entered promiscuous mode
[  302.409609][T13783] team_slave_1: entered promiscuous mode
[  302.411531][T13783] mac80211_hwsim hwsim17 wlan1: entered promiscuous mode
[  302.414726][T13783] bond_slave_0: entered promiscuous mode
[  302.416517][T13783] bond_slave_1: entered promiscuous mode
[  302.418530][T13783] macsec1: entered promiscuous mode
[  302.420140][T13783] team0: entered promiscuous mode
[  302.422041][T13783] bond0: entered promiscuous mode
[  302.424061][T13783] macsec1: entered allmulticast mode
[  302.425684][T13783] team0: entered allmulticast mode
[  302.427220][T13783] team_slave_0: entered allmulticast mode
[  302.428975][T13783] team_slave_1: entered allmulticast mode
[  302.430715][T13783] vlan0: entered allmulticast mode
[  302.432284][T13783] veth0_vlan: entered allmulticast mode
[  302.434067][T13783] mac80211_hwsim hwsim17 wlan1: entered allmulticast mode
[  302.436211][T13783] bond0: entered allmulticast mode
[  302.437816][T13783] bond_slave_0: entered allmulticast mode
[  302.439568][T13783] bond_slave_1: entered allmulticast mode
[  302.442248][T13783] team0: Device macsec1 is already an upper device of the team interface
[  302.453982][T13783] team0: left allmulticast mode
[  302.455512][T13783] team_slave_0: left allmulticast mode
[  302.457193][T13783] team_slave_1: left allmulticast mode
[  302.458911][T13783] vlan0: left allmulticast mode
[  302.460378][T13783] veth0_vlan: left allmulticast mode
[  302.461975][T13783] mac80211_hwsim hwsim17 wlan1: left allmulticast mode
[  302.465312][T13783] bond0: left allmulticast mode
[  302.466804][T13783] bond_slave_0: left allmulticast mode
[  302.468493][T13783] bond_slave_1: left allmulticast mode
[  302.470251][T13783] team0: left promiscuous mode
[  302.472044][T13783] bond0: left promiscuous mode
[  302.473990][T13783] team_slave_0: left promiscuous mode
[  302.475653][T13783] team_slave_1: left promiscuous mode
[  302.477348][T13783] mac80211_hwsim hwsim17 wlan1: left promiscuous mode
[  302.479527][T13783] bond_slave_0: left promiscuous mode
[  302.482268][T13783] bond_slave_1: left promiscuous mode
[  302.651091][T13794] random: crng reseeded on system resumption
[  303.303225][T13804] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1482'.
[  303.311314][T13806] befs: (loop3): No write support. Marking filesystem read-only
[  303.319110][T13806] bio_check_eod: 2 callbacks suppressed
[  303.319122][T13806] syz.1.1483: attempt to access beyond end of device
[  303.319122][T13806] loop3: rw=0, sector=0, nr_sectors = 2 limit=0
[  303.328302][T13806] befs: (loop3): unable to read superblock
[  303.347008][T13806] efs: device does not support 512 byte blocks
[  303.349215][T13806] device does not support 512 byte blocks
[  303.349215][T13806] 
[  303.925661][T13818] netlink: 120 bytes leftover after parsing attributes in process `syz.4.1485'.
[  304.279644][T13828] random: crng reseeded on system resumption
[  305.332066][T13845] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1494'.
[  306.317632][T13856] FAULT_INJECTION: forcing a failure.
[  306.317632][T13856] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  306.322893][T13856] CPU: 3 UID: 0 PID: 13856 Comm: syz.3.1497 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  306.322918][T13856] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  306.322929][T13856] Call Trace:
[  306.322935][T13856]  <TASK>
[  306.322943][T13856]  dump_stack_lvl+0x16c/0x1f0
[  306.322977][T13856]  should_fail_ex+0x512/0x640
[  306.323001][T13856]  should_fail_alloc_page+0xe7/0x130
[  306.323022][T13856]  prepare_alloc_pages+0x3c2/0x610
[  306.323043][T13856]  ? rcu_is_watching+0x12/0xc0
[  306.323064][T13856]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  306.323094][T13856]  ? rcu_is_watching+0x12/0xc0
[  306.323111][T13856]  ? trace_mm_page_alloc+0x11f/0x1a0
[  306.323132][T13856]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  306.323160][T13856]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  306.323186][T13856]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  306.323222][T13856]  ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0
[  306.323265][T13856]  ? __get_vm_area_node+0x1ca/0x330
[  306.323285][T13856]  ? __vmalloc_node_noprof+0xad/0xf0
[  306.323305][T13856]  ? __snd_dma_alloc_pages+0x53/0x90
[  306.323330][T13856]  ? snd_dma_alloc_dir_pages+0x151/0x240
[  306.323353][T13856]  ? do_alloc_pages+0x115/0x280
[  306.323374][T13856]  ? snd_pcm_lib_malloc_pages+0x3df/0x980
[  306.323397][T13856]  ? snd_pcm_hw_params+0x15e1/0x1b40
[  306.323419][T13856]  ? snd_pcm_kernel_ioctl+0x147/0x2e0
[  306.323443][T13856]  ? __do_fast_syscall_32+0x7c/0x3a0
[  306.323458][T13856]  ? do_fast_syscall_32+0x32/0x80
[  306.323473][T13856]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  306.323499][T13856]  alloc_pages_bulk_noprof+0x71c/0x1410
[  306.323521][T13856]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  306.323539][T13856]  ? policy_nodemask+0xea/0x4e0
[  306.323552][T13856]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  306.323570][T13856]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  306.323587][T13856]  kasan_populate_vmalloc+0xf1/0x1f0
[  306.323619][T13856]  alloc_vmap_area+0x959/0x29c0
[  306.323638][T13856]  ? __pfx_alloc_vmap_area+0x10/0x10
[  306.323654][T13856]  __get_vm_area_node+0x1ca/0x330
[  306.323670][T13856]  __vmalloc_node_range_noprof+0x271/0x14b0
[  306.323685][T13856]  ? __snd_dma_alloc_pages+0x53/0x90
[  306.323701][T13856]  ? __pfx___bpf_trace_contention_end+0x10/0x10
[  306.323719][T13856]  ? __pfx___mutex_trylock_common+0x10/0x10
[  306.323735][T13856]  ? __snd_dma_alloc_pages+0x53/0x90
[  306.323756][T13856]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  306.323778][T13856]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  306.323792][T13856]  ? __snd_dma_alloc_pages+0x53/0x90
[  306.323807][T13856]  __vmalloc_node_noprof+0xad/0xf0
[  306.323822][T13856]  ? __snd_dma_alloc_pages+0x53/0x90
[  306.323837][T13856]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[  306.323855][T13856]  __snd_dma_alloc_pages+0x53/0x90
[  306.323872][T13856]  snd_dma_alloc_dir_pages+0x151/0x240
[  306.323890][T13856]  do_alloc_pages+0x115/0x280
[  306.323907][T13856]  snd_pcm_lib_malloc_pages+0x3df/0x980
[  306.323926][T13856]  snd_pcm_hw_params+0x15e1/0x1b40
[  306.323945][T13856]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  306.323961][T13856]  ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0
[  306.323979][T13856]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  306.323994][T13856]  ? __asan_memset+0x23/0x50
[  306.324010][T13856]  snd_pcm_kernel_ioctl+0x147/0x2e0
[  306.324027][T13856]  snd_pcm_oss_change_params_locked+0x1432/0x3a30
[  306.324048][T13856]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  306.324075][T13856]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  306.324090][T13856]  snd_pcm_oss_write+0x4c3/0xa10
[  306.324106][T13856]  ? bpf_lsm_file_permission+0x9/0x10
[  306.324118][T13856]  ? security_file_permission+0x71/0x210
[  306.324139][T13856]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  306.324153][T13856]  vfs_write+0x2a0/0x1150
[  306.324172][T13856]  ? __pfx_vfs_write+0x10/0x10
[  306.324187][T13856]  ? find_held_lock+0x2b/0x80
[  306.324198][T13856]  ? __fget_files+0x204/0x3c0
[  306.324216][T13856]  ? __fget_files+0x20e/0x3c0
[  306.324230][T13856]  ? handle_mm_fault+0x1f0/0xd10
[  306.324269][T13856]  ksys_write+0x12a/0x250
[  306.324285][T13856]  ? __pfx_ksys_write+0x10/0x10
[  306.324302][T13856]  ? rcu_is_watching+0x12/0xc0
[  306.324315][T13856]  __do_fast_syscall_32+0x7c/0x3a0
[  306.324328][T13856]  do_fast_syscall_32+0x32/0x80
[  306.324339][T13856]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  306.324353][T13856] RIP: 0023:0xf7f01579
[  306.324361][T13856] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  306.324372][T13856] RSP: 002b:00000000f500555c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  306.324383][T13856] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800012c0
[  306.324390][T13856] RDX: 0000000000000014 RSI: 0000000000000000 RDI: 0000000000000000
[  306.324396][T13856] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  306.324402][T13856] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  306.324408][T13856] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  306.324422][T13856]  </TASK>
[  306.351065][   T40] audit: type=1326 audit(1749100521.631:3580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13859 comm="syz.0.1499" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x0
[  306.355480][T13856] syz.3.1497: vmalloc error: size 2097152, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  306.496370][T13856] CPU: 3 UID: 0 PID: 13856 Comm: syz.3.1497 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  306.496386][T13856] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  306.496393][T13856] Call Trace:
[  306.496398][T13856]  <TASK>
[  306.496403][T13856]  dump_stack_lvl+0x16c/0x1f0
[  306.496424][T13856]  warn_alloc+0x248/0x3a0
[  306.496442][T13856]  ? __pfx_warn_alloc+0x10/0x10
[  306.496459][T13856]  ? kfree+0x2b4/0x4d0
[  306.496477][T13856]  ? __get_vm_area_node+0x208/0x330
[  306.496494][T13856]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[  306.496508][T13856]  ? __pfx___bpf_trace_contention_end+0x10/0x10
[  306.496527][T13856]  ? __pfx___mutex_trylock_common+0x10/0x10
[  306.496543][T13856]  ? __snd_dma_alloc_pages+0x53/0x90
[  306.496564][T13856]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  306.496581][T13856]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  306.496594][T13856]  ? __snd_dma_alloc_pages+0x53/0x90
[  306.496610][T13856]  __vmalloc_node_noprof+0xad/0xf0
[  306.496624][T13856]  ? __snd_dma_alloc_pages+0x53/0x90
[  306.496640][T13856]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[  306.496658][T13856]  __snd_dma_alloc_pages+0x53/0x90
[  306.496675][T13856]  snd_dma_alloc_dir_pages+0x151/0x240
[  306.496693][T13856]  do_alloc_pages+0x115/0x280
[  306.496710][T13856]  snd_pcm_lib_malloc_pages+0x3df/0x980
[  306.496728][T13856]  snd_pcm_hw_params+0x15e1/0x1b40
[  306.496747][T13856]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[  306.496768][T13856]  ? snd_pcm_hw_param_near.constprop.0+0x734/0x8e0
[  306.496785][T13856]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[  306.496800][T13856]  ? __asan_memset+0x23/0x50
[  306.496816][T13856]  snd_pcm_kernel_ioctl+0x147/0x2e0
[  306.496833][T13856]  snd_pcm_oss_change_params_locked+0x1432/0x3a30
[  306.496855][T13856]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  306.496882][T13856]  snd_pcm_oss_make_ready_locked+0xb7/0x130
[  306.496897][T13856]  snd_pcm_oss_write+0x4c3/0xa10
[  306.496913][T13856]  ? bpf_lsm_file_permission+0x9/0x10
[  306.496925][T13856]  ? security_file_permission+0x71/0x210
[  306.496946][T13856]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  306.496960][T13856]  vfs_write+0x2a0/0x1150
[  306.496979][T13856]  ? __pfx_vfs_write+0x10/0x10
[  306.496994][T13856]  ? find_held_lock+0x2b/0x80
[  306.497005][T13856]  ? __fget_files+0x204/0x3c0
[  306.497023][T13856]  ? __fget_files+0x20e/0x3c0
[  306.497037][T13856]  ? handle_mm_fault+0x1f0/0xd10
[  306.497057][T13856]  ksys_write+0x12a/0x250
[  306.497072][T13856]  ? __pfx_ksys_write+0x10/0x10
[  306.497090][T13856]  ? rcu_is_watching+0x12/0xc0
[  306.497103][T13856]  __do_fast_syscall_32+0x7c/0x3a0
[  306.497116][T13856]  do_fast_syscall_32+0x32/0x80
[  306.497127][T13856]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  306.497141][T13856] RIP: 0023:0xf7f01579
[  306.497150][T13856] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  306.497161][T13856] RSP: 002b:00000000f500555c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  306.497171][T13856] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800012c0
[  306.497178][T13856] RDX: 0000000000000014 RSI: 0000000000000000 RDI: 0000000000000000
[  306.497184][T13856] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  306.497190][T13856] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  306.497196][T13856] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  306.497209][T13856]  </TASK>
[  306.497213][T13856] Mem-Info:
[  306.607997][T13856] active_anon:1377 inactive_anon:12291 isolated_anon:0
[  306.607997][T13856]  active_file:8530 inactive_file:8579 isolated_file:0
[  306.607997][T13856]  unevictable:1769 dirty:66 writeback:0
[  306.607997][T13856]  slab_reclaimable:9433 slab_unreclaimable:77066
[  306.607997][T13856]  mapped:26141 shmem:11690 pagetables:1196
[  306.607997][T13856]  sec_pagetables:314 bounce:0
[  306.607997][T13856]  kernel_misc_reclaimable:0
[  306.607997][T13856]  free:40220 free_pcp:12907 free_cma:0
[  306.622896][T13856] Node 0 active_anon:1972kB inactive_anon:0kB active_file:248kB inactive_file:13160kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:8172kB dirty:0kB writeback:0kB shmem:3764kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8128kB pagetables:1164kB sec_pagetables:1112kB all_unreclaimable? yes Balloon:0kB
[  306.633875][T13856] Node 1 active_anon:3536kB inactive_anon:49164kB active_file:33872kB inactive_file:21156kB unevictable:3540kB isolated(anon):0kB isolated(file):0kB mapped:96392kB dirty:264kB writeback:0kB shmem:42996kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4528kB pagetables:3620kB sec_pagetables:144kB all_unreclaimable? no Balloon:0kB
[  306.644335][T13856] Node 0 DMA free:3156kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  306.654176][T13856] lowmem_reserve[]: 0 289 289 289 289
[  306.655983][T13856] Node 0 DMA32 free:38204kB boost:29992kB min:43324kB low:46656kB high:49988kB reserved_highatomic:4096KB free_highatomic:708KB active_anon:1972kB inactive_anon:0kB active_file:248kB inactive_file:13160kB unevictable:3536kB writepending:0kB present:1032196kB managed:296832kB mlocked:0kB bounce:0kB free_pcp:6228kB local_pcp:52kB free_cma:0kB
[  306.665994][T13856] lowmem_reserve[]: 0 0 0 0 0
[  306.667574][T13856] Node 1 DMA32 free:119520kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:8192KB free_highatomic:3756KB active_anon:3536kB inactive_anon:49164kB active_file:33872kB inactive_file:21156kB unevictable:3540kB writepending:264kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:45500kB local_pcp:6300kB free_cma:0kB
[  306.678431][T13856] lowmem_reserve[]: 0 0 0 0 0
[  306.680118][T13856] Node 0 DMA: 59*4kB (U) 33*8kB (UE) 14*16kB (U) 18*32kB (UE) 3*64kB (UE) 1*128kB (E) 0*256kB 1*512kB (E) 1*1024kB (E) 0*2048kB 0*4096kB = 3156kB
[  306.685285][T13856] Node 0 DMA32: 1283*4kB (UMH) 576*8kB (UMEH) 177*16kB (UMEH) 391*32kB (UMEH) 99*64kB (UMEH) 27*128kB (UME) 5*256kB (UM) 2*512kB (UE) 1*1024kB (M) 0*2048kB 0*4096kB = 38204kB
[  306.690820][T13856] Node 1 DMA32: 493*4kB (UMEH) 1093*8kB (UMEH) 804*16kB (UMEH) 672*32kB (UMEH) 423*64kB (UMEH) 127*128kB (UMEH) 41*256kB (UMEH) 2*512kB (MH) 1*1024kB (U) 9*2048kB (UM) 0*4096kB = 119388kB
[  306.696875][T13856] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  306.699930][T13856] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  306.702959][T13856] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  306.705979][T13856] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  306.708899][T13856] 29297 total pagecache pages
[  306.710732][T13856] 301 pages in swap cache
[  306.712318][T13856] Free swap  = 107128kB
[  306.713808][T13856] Total swap = 124996kB
[  306.715225][T13856] 524155 pages RAM
[  306.716567][T13856] 0 pages HighMem/MovableOnly
[  306.718145][T13856] 209040 pages reserved
[  306.719605][T13856] 0 pages cma reserved
[  307.898020][T13890] random: crng reseeded on system resumption
[  307.905107][T13890] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  307.932641][T13892] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1508'.
[  307.938631][T13892] FAULT_INJECTION: forcing a failure.
[  307.938631][T13892] name failslab, interval 1, probability 0, space 0, times 0
[  307.942458][T13892] CPU: 0 UID: 0 PID: 13892 Comm: syz.4.1508 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  307.942474][T13892] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  307.942481][T13892] Call Trace:
[  307.942486][T13892]  <TASK>
[  307.942490][T13892]  dump_stack_lvl+0x16c/0x1f0
[  307.942525][T13892]  should_fail_ex+0x512/0x640
[  307.942538][T13892]  ? __kvmalloc_node_noprof+0x124/0x620
[  307.942556][T13892]  should_failslab+0xc2/0x120
[  307.942568][T13892]  __kvmalloc_node_noprof+0x137/0x620
[  307.942583][T13892]  ? copy_from_sockptr_offset+0xed/0x1b0
[  307.942599][T13892]  ? xt_alloc_table_info+0x3e/0xa0
[  307.942617][T13892]  ? xt_alloc_table_info+0x3e/0xa0
[  307.942631][T13892]  xt_alloc_table_info+0x3e/0xa0
[  307.942645][T13892]  compat_do_replace+0x184/0x3c0
[  307.942662][T13892]  ? __pfx_compat_do_replace+0x10/0x10
[  307.942678][T13892]  ? __pfx_aa_get_newest_label+0x10/0x10
[  307.942693][T13892]  ? rcu_is_watching+0x12/0xc0
[  307.942710][T13892]  ? bpf_lsm_capable+0x9/0x10
[  307.942724][T13892]  ? security_capable+0x7e/0x260
[  307.942740][T13892]  do_ip6t_set_ctl+0x55d/0xa70
[  307.942755][T13892]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  307.942772][T13892]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[  307.942788][T13892]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  307.942807][T13892]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  307.942822][T13892]  nf_setsockopt+0x8d/0xf0
[  307.942837][T13892]  ipv6_setsockopt+0x135/0x170
[  307.942853][T13892]  tcp_setsockopt+0xa7/0x100
[  307.942865][T13892]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  307.942879][T13892]  do_sock_setsockopt+0x224/0x470
[  307.942892][T13892]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  307.942914][T13892]  __sys_setsockopt+0x120/0x1a0
[  307.942934][T13892]  __ia32_sys_setsockopt+0xbc/0x160
[  307.942951][T13892]  ? lockdep_hardirqs_on+0x7c/0x110
[  307.942968][T13892]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  307.942979][T13892]  __do_fast_syscall_32+0x7c/0x3a0
[  307.942992][T13892]  do_fast_syscall_32+0x32/0x80
[  307.943002][T13892]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  307.943017][T13892] RIP: 0023:0xf703e579
[  307.943026][T13892] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  307.943037][T13892] RSP: 002b:00000000f500d55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  307.943047][T13892] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000029
[  307.943054][T13892] RDX: 0000000000000040 RSI: 0000000080000600 RDI: 0000000000000358
[  307.943061][T13892] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  307.943067][T13892] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  307.943073][T13892] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  307.943087][T13892]  </TASK>
[  308.037748][T13897] 9pnet: Unknown protocol version 9p2000.u×DÕÉUQ”S’-ÌÞÙÚ@¥¹gQ70¦`A€áÓåÈJNŽÝuõÔföc”Ü\NRž3$
[  308.051262][T13890] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  308.106217][T13890] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  308.158360][T13890] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  308.259451][T13890] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  308.286009][T13890] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  308.321191][T13890] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  308.362780][T13890] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  308.618449][   T72] kernel read not supported for file /dsp1 (pid: 72 comm: kworker/0:2)
[  309.846360][T13929] loop7: detected capacity change from 0 to 524287999
[  310.531878][T13939] random: crng reseeded on system resumption
[  310.547274][T13939] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.585362][T13940] lo speed is unknown, defaulting to 1000
[  310.588424][T13940] lo speed is unknown, defaulting to 1000
[  310.598446][T13940] lo speed is unknown, defaulting to 1000
[  310.620928][T13940] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  310.663499][T13940] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  310.732751][T13940] lo speed is unknown, defaulting to 1000
[  310.736705][T13940] lo speed is unknown, defaulting to 1000
[  310.740866][T13939] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.747988][T13940] lo speed is unknown, defaulting to 1000
[  310.750650][T13940] lo speed is unknown, defaulting to 1000
[  310.753169][T13940] lo speed is unknown, defaulting to 1000
[  310.788260][T13939] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.856112][T13939] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  311.298360][T13953] 9pnet_fd: Insufficient options for proto=fd
[  311.583526][   T72] usb 6-1: new high-speed USB device number 73 using dummy_hcd
[  311.638762][T13966] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1532'.
[  311.753324][   T72] usb 6-1: Using ep0 maxpacket: 8
[  311.756420][   T72] usb 6-1: config 0 has no interfaces?
[  311.758167][   T72] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  311.761108][   T72] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.764842][   T72] usb 6-1: config 0 descriptor??
[  311.972296][   T61] usb 6-1: USB disconnect, device number 73
[  313.113334][ T1328] usb 6-1: new low-speed USB device number 74 using dummy_hcd
[  313.254035][ T1328] usb 6-1: device descriptor read/64, error -71
[  313.306017][T13939] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  313.312715][T13939] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  313.320550][T13939] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  313.322086][T13999] netlink: 240 bytes leftover after parsing attributes in process `syz.4.1541'.
[  313.328675][T13939] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  313.414303][T14006] FAULT_INJECTION: forcing a failure.
[  313.414303][T14006] name failslab, interval 1, probability 0, space 0, times 0
[  313.419538][T14006] CPU: 3 UID: 0 PID: 14006 Comm: syz.4.1543 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  313.419563][T14006] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  313.419574][T14006] Call Trace:
[  313.419581][T14006]  <TASK>
[  313.419588][T14006]  dump_stack_lvl+0x16c/0x1f0
[  313.419622][T14006]  should_fail_ex+0x512/0x640
[  313.419642][T14006]  ? fs_reclaim_acquire+0xae/0x150
[  313.419666][T14006]  ? tomoyo_encode2+0x100/0x3e0
[  313.419683][T14006]  should_failslab+0xc2/0x120
[  313.419702][T14006]  __kmalloc_noprof+0xd2/0x510
[  313.419736][T14006]  tomoyo_encode2+0x100/0x3e0
[  313.419757][T14006]  tomoyo_encode+0x29/0x50
[  313.419774][T14006]  tomoyo_realpath_from_path+0x18f/0x6e0
[  313.419795][T14006]  ? tomoyo_profile+0x47/0x60
[  313.419819][T14006]  tomoyo_path_number_perm+0x245/0x580
[  313.419845][T14006]  ? tomoyo_path_number_perm+0x237/0x580
[  313.419873][T14006]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  313.419928][T14006]  ? find_held_lock+0x2b/0x80
[  313.419947][T14006]  ? hook_file_ioctl_common+0x145/0x410
[  313.419978][T14006]  ? __fget_files+0x20e/0x3c0
[  313.420000][T14006]  ? __fput_deferred+0x460/0x480
[  313.420025][T14006]  security_file_ioctl_compat+0x9b/0x240
[  313.420054][T14006]  __ia32_compat_sys_ioctl+0xc3/0x370
[  313.420081][T14006]  __do_fast_syscall_32+0x7c/0x3a0
[  313.420102][T14006]  do_fast_syscall_32+0x32/0x80
[  313.420121][T14006]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  313.420144][T14006] RIP: 0023:0xf703e579
[  313.420159][T14006] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  313.420197][T14006] RSP: 002b:00000000f500d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  313.420214][T14006] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000008914
[  313.420226][T14006] RDX: 0000000080000180 RSI: 0000000000000000 RDI: 0000000000000000
[  313.420237][T14006] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  313.420247][T14006] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  313.420257][T14006] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  313.420282][T14006]  </TASK>
[  313.420301][T14006] ERROR: Out of memory at tomoyo_realpath_from_path.
[  313.451068][T14007] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1545'.
[  313.500310][T14007] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1545'.
[  313.504952][ T1328] usb 6-1: new low-speed USB device number 75 using dummy_hcd
[  313.633343][ T1328] usb 6-1: device descriptor read/64, error -71
[  313.743705][ T1328] usb usb6-port1: attempt power cycle
[  314.083438][ T1328] usb 6-1: new low-speed USB device number 76 using dummy_hcd
[  314.103975][ T1328] usb 6-1: device descriptor read/8, error -71
[  314.284337][T14013] lo speed is unknown, defaulting to 1000
[  314.343460][ T1328] usb 6-1: new low-speed USB device number 77 using dummy_hcd
[  314.365365][T14021] PKCS7: Unknown OID: [4] 2.19.13055.940354.15722
[  314.367894][T14021] PKCS7: Only support pkcs7_signedData type
[  314.383836][ T1328] usb 6-1: device descriptor read/8, error -71
[  314.415797][T14012] syz.4.1547: attempt to access beyond end of device
[  314.415797][T14012] md2: rw=2048, sector=0, nr_sectors = 8 limit=0
[  314.482027][T14027] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1551'.
[  314.493836][ T1328] usb usb6-port1: unable to enumerate USB device
[  314.535034][ T5949] Bluetooth: hci0: ACL packet for unknown connection handle 201
[  314.571259][T14033] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1550'.
[  314.754752][T14033] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[  314.903440][ T5949] Bluetooth: hci3: command 0x0c1a tx timeout
[  315.517296][T14052] random: crng reseeded on system resumption
[  315.530201][T14052] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  315.917857][T14052] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  315.943553][T14053] netlink: 'syz.0.1555': attribute type 12 has an invalid length.
[  316.027852][T14052] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.174281][T14052] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.252819][T14052] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  316.305059][T14052] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  316.325733][T14052] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  316.333729][T14052] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  316.567438][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  316.827289][T14088] netlink: 240 bytes leftover after parsing attributes in process `syz.4.1569'.
[  316.938133][T14093] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1572'.
[  317.166007][T14107] loop7: detected capacity change from 0 to 524287999
[  317.171724][T14106] netlink: 'syz.3.1575': attribute type 6 has an invalid length.
[  317.294947][T14107] netlink: 'syz.4.1574': attribute type 12 has an invalid length.
[  318.135967][T14125] netlink: 240 bytes leftover after parsing attributes in process `syz.4.1580'.
[  318.338148][T14136] netlink: 240 bytes leftover after parsing attributes in process `syz.1.1589'.
[  318.403426][T14140] siw: device registration error -23
[  318.766833][T14153] loop7: detected capacity change from 0 to 524287999
[  318.840438][T14154] netlink: 'syz.3.1588': attribute type 12 has an invalid length.
[  319.101399][T14157] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1590'.
[  319.393879][T14161] kvm: vcpu 0: requested 370 ns lapic timer period limited to 200000 ns
[  319.587359][T14176] random: crng reseeded on system resumption
[  319.594173][T14176] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  319.623849][T14177] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1593'.
[  319.652674][T14176] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  319.709821][T14176] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  319.879764][T14176] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  319.883960][  T839] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  319.898241][T14181] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1597'.
[  320.664577][T14208] loop7: detected capacity change from 0 to 524287999
[  320.668604][T14176] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  320.720804][T14205] netlink: 'syz.3.1601': attribute type 12 has an invalid length.
[  320.892407][T14176] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  320.901798][T14176] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  320.920446][T14176] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  321.259079][T14214] netlink: 'syz.1.1602': attribute type 12 has an invalid length.
[  321.551607][T14231] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1607'.
[  321.704265][T14233] xt_CT: You must specify a L4 protocol and not use inversions on it
[  326.672827][T14246] random: crng reseeded on system resumption
[  326.682516][T14250] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1610'.
[  326.686369][T14246] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.819146][T14246] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.900300][T14246] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  326.902790][T14266] binder: 14263:14266 ioctl c018620c 80000380 returned -1
[  326.943604][T14269] loop7: detected capacity change from 0 to 524287999
[  327.015863][T14270] netlink: 'syz.1.1613': attribute type 12 has an invalid length.
[  327.047549][T14246] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  327.246531][T14246] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  327.254634][T14246] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  327.261298][T14246] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  327.275683][T14246] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  327.447428][T14279] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1617'.
[  328.004754][T14290] loop7: detected capacity change from 0 to 524287999
[  328.084027][T14295] netlink: 'syz.3.1619': attribute type 12 has an invalid length.
[  328.445117][T14296] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  328.448557][T14296] batadv_slave_0: entered promiscuous mode
[  329.057728][T14310] ucma_write: process 869 (syz.4.1626) changed security contexts after opening file descriptor, this is not allowed.
[  329.129658][T14313] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(12)
[  329.132080][T14313] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  329.134628][T14313] vhci_hcd vhci_hcd.0: Device attached
[  329.173230][T14317] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1625'.
[  329.282631][T14319] loop7: detected capacity change from 0 to 524287999
[  329.400211][  T838] usb 45-1: new low-speed USB device number 2 using vhci_hcd
[  329.409301][T14315] vhci_hcd: sendmsg failed!, ret=-32 for 48
[  329.413226][T14322] netlink: 'syz.3.1627': attribute type 12 has an invalid length.
[  329.530982][ T1142] vhci_hcd: stop threads
[  329.531122][ T1142] vhci_hcd: release socket
[  329.531176][ T1142] vhci_hcd: disconnect device
[  331.462183][T14350] syz.1.1633 (14350): drop_caches: 2
[  332.412803][T14378] xt_CT: You must specify a L4 protocol and not use inversions on it
[  332.622913][T14387] loop6: detected capacity change from 0 to 63
[  332.635174][T14264] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.640785][T14264] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.646559][T14387] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.650275][T14387] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.656101][T14264] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.659776][T14264] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.663717][T14264] Buffer I/O error on dev loop6, logical block 0, async page read
[  332.794837][T14391] FAULT_INJECTION: forcing a failure.
[  332.794837][T14391] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  332.798979][T14391] CPU: 0 UID: 0 PID: 14391 Comm: syz.4.1646 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  332.798996][T14391] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  332.799003][T14391] Call Trace:
[  332.799007][T14391]  <TASK>
[  332.799012][T14391]  dump_stack_lvl+0x16c/0x1f0
[  332.799034][T14391]  should_fail_ex+0x512/0x640
[  332.799049][T14391]  should_fail_alloc_page+0xe7/0x130
[  332.799063][T14391]  prepare_alloc_pages+0x3c2/0x610
[  332.799077][T14391]  ? rcu_is_watching+0x12/0xc0
[  332.799090][T14391]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  332.799110][T14391]  ? rcu_is_watching+0x12/0xc0
[  332.799121][T14391]  ? trace_mm_page_alloc+0x11f/0x1a0
[  332.799134][T14391]  ? __alloc_frozen_pages_noprof+0x294/0x23f0
[  332.799151][T14391]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  332.799169][T14391]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  332.799190][T14391]  ? kmem_cache_alloc_node_noprof+0x1d5/0x3b0
[  332.799208][T14391]  ? __get_vm_area_node+0x1ca/0x330
[  332.799220][T14391]  ? __bpf_map_area_alloc+0x12e/0x200
[  332.799231][T14391]  ? sock_hash_alloc+0x336/0x510
[  332.799244][T14391]  ? map_create+0x592/0x1db0
[  332.799258][T14391]  ? __sys_bpf+0x47cc/0x4d80
[  332.799267][T14391]  ? __ia32_sys_bpf+0x76/0xe0
[  332.799277][T14391]  ? __do_fast_syscall_32+0x7c/0x3a0
[  332.799287][T14391]  ? do_fast_syscall_32+0x32/0x80
[  332.799302][T14391]  alloc_pages_bulk_noprof+0x71c/0x1410
[  332.799319][T14391]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  332.799337][T14391]  ? policy_nodemask+0xea/0x4e0
[  332.799349][T14391]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  332.799367][T14391]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  332.799384][T14391]  kasan_populate_vmalloc+0xf1/0x1f0
[  332.799402][T14391]  alloc_vmap_area+0x959/0x29c0
[  332.799421][T14391]  ? __pfx_alloc_vmap_area+0x10/0x10
[  332.799437][T14391]  __get_vm_area_node+0x1ca/0x330
[  332.799455][T14391]  __vmalloc_node_range_noprof+0x271/0x14b0
[  332.799470][T14391]  ? sock_hash_alloc+0x336/0x510
[  332.799486][T14391]  ? sock_hash_alloc+0x336/0x510
[  332.799502][T14391]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  332.799518][T14391]  ? trace_kmalloc+0x2b/0xd0
[  332.799530][T14391]  ? __kmalloc_node_noprof+0x23b/0x500
[  332.799553][T14391]  ? sock_hash_alloc+0x336/0x510
[  332.799565][T14391]  __bpf_map_area_alloc+0x12e/0x200
[  332.799576][T14391]  ? sock_hash_alloc+0x336/0x510
[  332.799590][T14391]  sock_hash_alloc+0x336/0x510
[  332.799605][T14391]  map_create+0x592/0x1db0
[  332.799626][T14391]  ? __pfx_map_create+0x10/0x10
[  332.799641][T14391]  ? __might_fault+0xe3/0x190
[  332.799657][T14391]  ? __might_fault+0xe3/0x190
[  332.799672][T14391]  ? __might_fault+0x13b/0x190
[  332.799694][T14391]  __sys_bpf+0x47cc/0x4d80
[  332.799705][T14391]  ? __pfx___sys_bpf+0x10/0x10
[  332.799716][T14391]  ? ksys_write+0x190/0x250
[  332.799734][T14391]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  332.799753][T14391]  ? fput+0x70/0xf0
[  332.799764][T14391]  ? ksys_write+0x1ac/0x250
[  332.799779][T14391]  ? __pfx_ksys_write+0x10/0x10
[  332.799797][T14391]  __ia32_sys_bpf+0x76/0xe0
[  332.799809][T14391]  __do_fast_syscall_32+0x7c/0x3a0
[  332.799821][T14391]  do_fast_syscall_32+0x32/0x80
[  332.799832][T14391]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  332.799847][T14391] RIP: 0023:0xf703e579
[  332.799855][T14391] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  332.799866][T14391] RSP: 002b:00000000f502e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  332.799878][T14391] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800001c0
[  332.799885][T14391] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  332.799891][T14391] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  332.799898][T14391] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  332.799904][T14391] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  332.799917][T14391]  </TASK>
[  333.381071][T14406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'.
[  333.385021][T14406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'.
[  333.388806][T14406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'.
[  333.392569][T14406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'.
[  333.396476][T14406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'.
[  333.400298][T14406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'.
[  333.404115][T14406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'.
[  333.407948][T14406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'.
[  333.411792][T14406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'.
[  333.415768][T14406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'.
[  334.473392][  T838] vhci_hcd: vhci_device speed not set
[  335.249972][T14440] xt_CT: You must specify a L4 protocol and not use inversions on it
[  336.383406][ T6011] usb 9-1: new full-speed USB device number 45 using dummy_hcd
[  336.545626][ T6011] usb 9-1: config 168 has an invalid descriptor of length 0, skipping remainder of the config
[  336.548980][ T6011] usb 9-1: config 168 has 0 interfaces, different from the descriptor's value: 1
[  336.554394][ T6011] usb 9-1: config 168 has an invalid descriptor of length 0, skipping remainder of the config
[  336.557661][ T6011] usb 9-1: config 168 has 0 interfaces, different from the descriptor's value: 1
[  336.561811][ T6011] usb 9-1: config 168 has an invalid descriptor of length 0, skipping remainder of the config
[  336.565120][ T6011] usb 9-1: config 168 has 0 interfaces, different from the descriptor's value: 1
[  336.570435][ T6011] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  336.573374][ T6011] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  336.575867][ T6011] usb 9-1: Product: syz
[  336.577239][ T6011] usb 9-1: Manufacturer: syz
[  336.578748][ T6011] usb 9-1: SerialNumber: syz
[  336.849696][T14484] FAULT_INJECTION: forcing a failure.
[  336.849696][T14484] name failslab, interval 1, probability 0, space 0, times 0
[  336.854259][T14484] CPU: 2 UID: 0 PID: 14484 Comm: syz.4.1670 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  336.854276][T14484] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  336.854294][T14484] Call Trace:
[  336.854300][T14484]  <TASK>
[  336.854305][T14484]  dump_stack_lvl+0x16c/0x1f0
[  336.854327][T14484]  should_fail_ex+0x512/0x640
[  336.854340][T14484]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  336.854358][T14484]  should_failslab+0xc2/0x120
[  336.854370][T14484]  __kmalloc_cache_noprof+0x6a/0x3e0
[  336.854385][T14484]  ? slip_open+0x88a/0x1150
[  336.854405][T14484]  slip_open+0x88a/0x1150
[  336.854423][T14484]  ? __pfx_n_tty_close+0x10/0x10
[  336.854440][T14484]  ? __pfx_slip_open+0x10/0x10
[  336.854457][T14484]  ? down_write+0x14d/0x200
[  336.854471][T14484]  ? __pfx_slip_open+0x10/0x10
[  336.854489][T14484]  tty_ldisc_open+0x9c/0x120
[  336.854501][T14484]  tty_set_ldisc+0x32b/0x780
[  336.854515][T14484]  tty_ioctl+0xc42/0x1610
[  336.854529][T14484]  ? __pfx_tty_ioctl+0x10/0x10
[  336.854549][T14484]  ? find_held_lock+0x2b/0x80
[  336.854561][T14484]  ? hook_file_ioctl_common+0x145/0x410
[  336.854580][T14484]  ? __fget_files+0x20e/0x3c0
[  336.854595][T14484]  ? __fput_deferred+0x460/0x480
[  336.854609][T14484]  tty_compat_ioctl+0x24a/0x4d0
[  336.854621][T14484]  ? __pfx_tty_compat_ioctl+0x10/0x10
[  336.854642][T14484]  __ia32_compat_sys_ioctl+0x242/0x370
[  336.854664][T14484]  __do_fast_syscall_32+0x7c/0x3a0
[  336.854684][T14484]  do_fast_syscall_32+0x32/0x80
[  336.854703][T14484]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  336.854725][T14484] RIP: 0023:0xf703e579
[  336.854740][T14484] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  336.854756][T14484] RSP: 002b:00000000f500d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  336.854771][T14484] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000005423
[  336.854778][T14484] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  336.854784][T14484] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  336.854791][T14484] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  336.854797][T14484] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  336.854812][T14484]  </TASK>
[  336.952682][T13336] usb 9-1: USB disconnect, device number 45
[  338.821431][T14536] __nla_validate_parse: 43 callbacks suppressed
[  338.821444][T14536] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1687'.
[  339.737953][T14559] FAULT_INJECTION: forcing a failure.
[  339.737953][T14559] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  339.742360][T14559] CPU: 2 UID: 0 PID: 14559 Comm: syz.3.1696 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  339.742377][T14559] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  339.742384][T14559] Call Trace:
[  339.742388][T14559]  <TASK>
[  339.742392][T14559]  dump_stack_lvl+0x16c/0x1f0
[  339.742415][T14559]  should_fail_ex+0x512/0x640
[  339.742431][T14559]  _copy_to_user+0x32/0xd0
[  339.742446][T14559]  vhost_vring_ioctl+0xe08/0x13b0
[  339.742462][T14559]  ? __pfx_vhost_vring_ioctl+0x10/0x10
[  339.742475][T14559]  ? vhost_dev_ioctl+0x130/0xdc0
[  339.742490][T14559]  ? __pfx_vhost_dev_ioctl+0x10/0x10
[  339.742502][T14559]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  339.742521][T14559]  vhost_net_ioctl+0xe93/0x1710
[  339.742534][T14559]  ? __pfx_vhost_net_ioctl+0x10/0x10
[  339.742547][T14559]  ? hook_file_ioctl_common+0x145/0x410
[  339.742566][T14559]  ? __fget_files+0x20e/0x3c0
[  339.742581][T14559]  ? __fput_deferred+0x460/0x480
[  339.742594][T14559]  ? __pfx_vhost_net_ioctl+0x10/0x10
[  339.742604][T14559]  compat_ptr_ioctl+0x6b/0xa0
[  339.742616][T14559]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  339.742629][T14559]  __ia32_compat_sys_ioctl+0x242/0x370
[  339.742644][T14559]  __do_fast_syscall_32+0x7c/0x3a0
[  339.742657][T14559]  do_fast_syscall_32+0x32/0x80
[  339.742668][T14559]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  339.742683][T14559] RIP: 0023:0xf7f01579
[  339.742692][T14559] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  339.742702][T14559] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  339.742714][T14559] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000004008af14
[  339.742720][T14559] RDX: 0000000080000000 RSI: 0000000000000000 RDI: 0000000000000000
[  339.742727][T14559] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  339.742733][T14559] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  339.742739][T14559] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  339.742752][T14559]  </TASK>
[  340.028119][T14581] FAULT_INJECTION: forcing a failure.
[  340.028119][T14581] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  340.032291][T14581] CPU: 2 UID: 0 PID: 14581 Comm: syz.3.1700 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  340.032308][T14581] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  340.032315][T14581] Call Trace:
[  340.032319][T14581]  <TASK>
[  340.032324][T14581]  dump_stack_lvl+0x16c/0x1f0
[  340.032345][T14581]  should_fail_ex+0x512/0x640
[  340.032360][T14581]  strncpy_from_user+0x3b/0x2e0
[  340.032373][T14581]  bpf_prog_load+0x1aef/0x2490
[  340.032394][T14581]  ? __pfx_bpf_prog_load+0x10/0x10
[  340.032425][T14581]  __sys_bpf+0x433c/0x4d80
[  340.032441][T14581]  ? __pfx___sys_bpf+0x10/0x10
[  340.032452][T14581]  ? ksys_write+0x190/0x250
[  340.032470][T14581]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  340.032490][T14581]  ? fput+0x70/0xf0
[  340.032501][T14581]  ? ksys_write+0x1ac/0x250
[  340.032516][T14581]  ? __pfx_ksys_write+0x10/0x10
[  340.032535][T14581]  __ia32_sys_bpf+0x76/0xe0
[  340.032546][T14581]  __do_fast_syscall_32+0x7c/0x3a0
[  340.032559][T14581]  do_fast_syscall_32+0x32/0x80
[  340.032570][T14581]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  340.032584][T14581] RIP: 0023:0xf7f01579
[  340.032593][T14581] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  340.032604][T14581] RSP: 002b:00000000f502655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  340.032615][T14581] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800004c0
[  340.032621][T14581] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[  340.032628][T14581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  340.032633][T14581] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  340.032640][T14581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  340.032653][T14581]  </TASK>
[  340.313545][T14585] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1702'.
[  341.364490][T14616] loop7: detected capacity change from 0 to 524287999
[  341.444755][T14617] netlink: 'syz.1.1708': attribute type 12 has an invalid length.
[  343.355574][T14655] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1718'.
[  343.996421][T14668] netlink: 'syz.0.1720': attribute type 12 has an invalid length.
[  344.774698][T14681] overlay: Unknown parameter 'func'
[  345.513683][T14696] 9pnet_virtio: no channels available for device ./file0/file0
[  345.516885][T14696] PKCS7: Unknown OID: [4] 2.19.13055.940354.15722
[  345.518919][T14696] PKCS7: Only support pkcs7_signedData type
[  345.738680][T14698] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1728'.
[  345.768970][T14698] bridge2: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  346.554748][T14713] loop7: detected capacity change from 0 to 524287999
[  346.629918][T14714] netlink: 'syz.1.1732': attribute type 12 has an invalid length.
[  347.352948][T14724] 9pnet_virtio: no channels available for device ./file0/file0
[  347.355449][T14725] netlink: 9896 bytes leftover after parsing attributes in process `syz.0.1736'.
[  347.359638][T14724] PKCS7: Unknown OID: [4] 2.19.13055.940354.15722
[  347.361676][T14724] PKCS7: Only support pkcs7_signedData type
[  347.568703][T14727] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1737'.
[  347.648618][T14727] bridge3: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  348.051350][T14731] trusted_key: encrypted_key: insufficient parameters specified
[  348.240117][T14736] loop7: detected capacity change from 0 to 524287999
[  348.326527][T14736] netlink: 'syz.3.1738': attribute type 12 has an invalid length.
[  349.257830][T14760] loop7: detected capacity change from 0 to 524287999
[  349.288656][T14761] netlink: 9896 bytes leftover after parsing attributes in process `syz.0.1747'.
[  349.303904][T13336] usb 6-1: new high-speed USB device number 78 using dummy_hcd
[  349.359603][T14762] netlink: 'syz.3.1745': attribute type 12 has an invalid length.
[  349.563725][T13336] usb 6-1: Using ep0 maxpacket: 16
[  349.566813][T13336] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  349.573743][T13336] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  349.576715][T13336] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  349.579266][T13336] usb 6-1: Product: syz
[  349.580708][T13336] usb 6-1: Manufacturer: syz
[  349.582710][T13336] usb 6-1: SerialNumber: syz
[  349.585596][T13336] usb 6-1: config 0 descriptor??
[  349.588462][T13336] hub 6-1:0.0: bad descriptor, ignoring hub
[  349.590341][T13336] hub 6-1:0.0: probe with driver hub failed with error -5
[  349.594674][T13336] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input33
[  349.993775][  T838] usb 6-1: USB disconnect, device number 78
[  350.459388][T14780] loop7: detected capacity change from 0 to 524287999
[  350.531315][T14781] netlink: 'syz.3.1752': attribute type 12 has an invalid length.
[  351.422666][T14798] netlink: 9896 bytes leftover after parsing attributes in process `syz.0.1756'.
[  355.051631][T14828] netlink: 9896 bytes leftover after parsing attributes in process `syz.3.1766'.
[  355.138809][T14825] loop7: detected capacity change from 0 to 524287999
[  355.192490][T14825] netlink: 'syz.1.1765': attribute type 12 has an invalid length.
[  355.195256][T14826] netlink: 'syz.0.1762': attribute type 12 has an invalid length.
[  355.813432][ T6011] usb 6-1: new high-speed USB device number 79 using dummy_hcd
[  355.963334][ T6011] usb 6-1: Using ep0 maxpacket: 16
[  355.966416][ T6011] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  355.971027][ T6011] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  355.973823][ T6011] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  355.976393][ T6011] usb 6-1: Product: syz
[  355.977706][ T6011] usb 6-1: Manufacturer: syz
[  355.979179][ T6011] usb 6-1: SerialNumber: syz
[  355.981994][ T6011] usb 6-1: config 0 descriptor??
[  355.986442][ T6011] hub 6-1:0.0: bad descriptor, ignoring hub
[  355.988289][ T6011] hub 6-1:0.0: probe with driver hub failed with error -5
[  355.993098][ T6011] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input34
[  356.413592][  T838] usb 6-1: USB disconnect, device number 79
[  357.049939][T14864] loop7: detected capacity change from 0 to 524287999
[  357.123333][T14865] netlink: 'syz.3.1779': attribute type 12 has an invalid length.
[  357.412166][T14867] netlink: 9896 bytes leftover after parsing attributes in process `syz.1.1781'.
[  358.000210][T14882] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1787'.
[  358.263586][  T838] usb 6-1: new high-speed USB device number 80 using dummy_hcd
[  358.383398][T14888] loop7: detected capacity change from 0 to 524287999
[  358.413318][  T838] usb 6-1: Using ep0 maxpacket: 16
[  358.416204][  T838] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  358.420780][  T838] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  358.423711][  T838] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  358.426098][  T838] usb 6-1: Product: syz
[  358.427435][  T838] usb 6-1: Manufacturer: syz
[  358.428884][  T838] usb 6-1: SerialNumber: syz
[  358.431809][  T838] usb 6-1: config 0 descriptor??
[  358.436949][  T838] hub 6-1:0.0: bad descriptor, ignoring hub
[  358.438786][  T838] hub 6-1:0.0: probe with driver hub failed with error -5
[  358.443873][  T838] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input35
[  358.463673][  T838] usb 6-1: USB disconnect, device number 80
[  358.471021][T14888] netlink: 'syz.3.1790': attribute type 12 has an invalid length.
[  358.633378][  T838] usb 6-1: new high-speed USB device number 81 using dummy_hcd
[  359.286158][T14898] program syz.1.1793 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  359.384127][T14899] netlink: 9896 bytes leftover after parsing attributes in process `syz.3.1792'.
[  359.603139][T14909] overlayfs: conflicting options: metacopy=off,verity=require
[  360.108610][T14913] netlink: 'syz.0.1799': attribute type 12 has an invalid length.
[  360.146231][T14917] FAULT_INJECTION: forcing a failure.
[  360.146231][T14917] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  360.150328][T14917] CPU: 0 UID: 0 PID: 14917 Comm: syz.1.1800 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  360.150344][T14917] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  360.150351][T14917] Call Trace:
[  360.150355][T14917]  <TASK>
[  360.150359][T14917]  dump_stack_lvl+0x16c/0x1f0
[  360.150381][T14917]  should_fail_ex+0x512/0x640
[  360.150396][T14917]  _copy_to_user+0x32/0xd0
[  360.150411][T14917]  simple_read_from_buffer+0xcb/0x170
[  360.150428][T14917]  proc_fail_nth_read+0x197/0x270
[  360.150443][T14917]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  360.150457][T14917]  ? rw_verify_area+0xcf/0x680
[  360.150472][T14917]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  360.150485][T14917]  vfs_read+0x1e1/0xc60
[  360.150501][T14917]  ? fdget_pos+0x2a2/0x370
[  360.150519][T14917]  ? __pfx_vfs_read+0x10/0x10
[  360.150533][T14917]  ? find_held_lock+0x2b/0x80
[  360.150548][T14917]  ? __fget_files+0x20e/0x3c0
[  360.150568][T14917]  ksys_read+0x12a/0x250
[  360.150583][T14917]  ? __pfx_ksys_read+0x10/0x10
[  360.150601][T14917]  ? rcu_is_watching+0x12/0xc0
[  360.150614][T14917]  __do_fast_syscall_32+0x7c/0x3a0
[  360.150627][T14917]  do_fast_syscall_32+0x32/0x80
[  360.150638][T14917]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  360.150653][T14917] RIP: 0023:0xf710e579
[  360.150661][T14917] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  360.150672][T14917] RSP: 002b:00000000f50dd590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  360.150683][T14917] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f50dd620
[  360.150690][T14917] RDX: 000000000000000f RSI: 00000000f7472ff4 RDI: 0000000000000000
[  360.150696][T14917] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  360.150702][T14917] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  360.150708][T14917] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  360.150722][T14917]  </TASK>
[  360.213999][    C0] vkms_vblank_simulate: vblank timer overrun
[  360.451477][T14932] 9pnet_virtio: no channels available for device ./file0/file0
[  360.454840][T14932] PKCS7: Unknown OID: [4] 2.19.13055.940354.15722
[  360.456907][T14932] PKCS7: Only support pkcs7_signedData type
[  360.646138][ T1328] usb 6-1: new high-speed USB device number 82 using dummy_hcd
[  360.696733][T14933] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1807'.
[  360.705294][T14933] FAULT_INJECTION: forcing a failure.
[  360.705294][T14933] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  360.710330][T14933] CPU: 2 UID: 0 PID: 14933 Comm: syz.3.1807 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  360.710346][T14933] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  360.710353][T14933] Call Trace:
[  360.710357][T14933]  <TASK>
[  360.710361][T14933]  dump_stack_lvl+0x16c/0x1f0
[  360.710383][T14933]  should_fail_ex+0x512/0x640
[  360.710398][T14933]  _copy_to_user+0x32/0xd0
[  360.710427][T14933]  simple_read_from_buffer+0xcb/0x170
[  360.710443][T14933]  proc_fail_nth_read+0x197/0x270
[  360.710458][T14933]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  360.710472][T14933]  ? rw_verify_area+0xcf/0x680
[  360.710486][T14933]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  360.710500][T14933]  vfs_read+0x1e1/0xc60
[  360.710515][T14933]  ? fdget_pos+0x2a2/0x370
[  360.710533][T14933]  ? __pfx_vfs_read+0x10/0x10
[  360.710548][T14933]  ? find_held_lock+0x2b/0x80
[  360.710563][T14933]  ? __fget_files+0x20e/0x3c0
[  360.710582][T14933]  ksys_read+0x12a/0x250
[  360.710597][T14933]  ? __pfx_ksys_read+0x10/0x10
[  360.710615][T14933]  ? rcu_is_watching+0x12/0xc0
[  360.710628][T14933]  __do_fast_syscall_32+0x7c/0x3a0
[  360.710640][T14933]  do_fast_syscall_32+0x32/0x80
[  360.710652][T14933]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  360.710665][T14933] RIP: 0023:0xf7f01579
[  360.710674][T14933] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  360.710685][T14933] RSP: 002b:00000000f5005590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  360.710696][T14933] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f5005620
[  360.710703][T14933] RDX: 000000000000000f RSI: 00000000f7392ff4 RDI: 0000000000000000
[  360.710709][T14933] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  360.710715][T14933] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  360.710721][T14933] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  360.710735][T14933]  </TASK>
[  360.963393][ T1328] usb 6-1: Using ep0 maxpacket: 16
[  360.969845][ T1328] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  360.976133][ T1328] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  360.979554][ T1328] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  360.982268][ T1328] usb 6-1: Product: syz
[  360.983607][ T1328] usb 6-1: Manufacturer: syz
[  360.985042][ T1328] usb 6-1: SerialNumber: syz
[  360.990314][ T1328] usb 6-1: config 0 descriptor??
[  361.004147][ T1328] hub 6-1:0.0: bad descriptor, ignoring hub
[  361.005998][ T1328] hub 6-1:0.0: probe with driver hub failed with error -5
[  361.012186][ T1328] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input36
[  361.258505][ T5304] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  361.262660][ T5304] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  361.265739][ T5304] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  361.273986][ T5304] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  361.276916][ T5304] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  361.321586][T14945] lo speed is unknown, defaulting to 1000
[  361.435290][T14945] chnl_net:caif_netlink_parms(): no params data found
[  361.657457][T14945] bridge0: port 1(bridge_slave_0) entered blocking state
[  361.660474][T14945] bridge0: port 1(bridge_slave_0) entered disabled state
[  361.665464][T14945] bridge_slave_0: entered allmulticast mode
[  361.668203][T14945] bridge_slave_0: entered promiscuous mode
[  361.672366][T14945] bridge0: port 2(bridge_slave_1) entered blocking state
[  361.675805][T14945] bridge0: port 2(bridge_slave_1) entered disabled state
[  361.678706][T14945] bridge_slave_1: entered allmulticast mode
[  361.681447][T14945] bridge_slave_1: entered promiscuous mode
[  361.720622][T14945] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  361.726730][T14945] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  361.762768][T14945] team0: Port device team_slave_0 added
[  361.768866][T14945] team0: Port device team_slave_1 added
[  361.808597][T14945] batman_adv: batadv0: Adding interface: batadv_slave_0
[  361.811021][T14945] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  361.819825][T14945] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  361.825742][T14945] batman_adv: batadv0: Adding interface: batadv_slave_1
[  361.827894][T14945] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  361.837347][T14945] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  361.950475][T14945] hsr_slave_0: entered promiscuous mode
[  361.957102][T14945] hsr_slave_1: entered promiscuous mode
[  361.959599][T14945] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  361.962443][T14945] Cannot create hsr debugfs directory
[  362.096384][T14945] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  362.102818][T14945] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  362.107481][T14945] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  362.112755][T14945] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  362.127053][T14945] bridge0: port 2(bridge_slave_1) entered blocking state
[  362.129346][T14945] bridge0: port 2(bridge_slave_1) entered forwarding state
[  362.131782][T14945] bridge0: port 1(bridge_slave_0) entered blocking state
[  362.134095][T14945] bridge0: port 1(bridge_slave_0) entered forwarding state
[  362.168316][T14945] 8021q: adding VLAN 0 to HW filter on device bond0
[  362.177485][T14945] 8021q: adding VLAN 0 to HW filter on device team0
[  362.291375][T14945] 8021q: adding VLAN 0 to HW filter on device batadv0
[  362.422579][T14945] veth0_vlan: entered promiscuous mode
[  362.427378][T14945] veth1_vlan: entered promiscuous mode
[  362.437524][T14971] netlink: 'syz.0.1816': attribute type 12 has an invalid length.
[  362.447429][T14945] veth0_macvtap: entered promiscuous mode
[  362.451424][T14945] veth1_macvtap: entered promiscuous mode
[  362.459928][T14945] batman_adv: batadv0: Interface activated: batadv_slave_0
[  362.466177][T14945] batman_adv: batadv0: Interface activated: batadv_slave_1
[  362.470816][T14945] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  362.474243][T14945] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  362.476986][T14945] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  362.479707][T14945] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  362.527379][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  362.530048][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  362.544138][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  362.546521][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  362.615169][T14987] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1812'.
[  363.363493][ T5304] Bluetooth: hci3: command tx timeout
[  363.936291][T15024] loop7: detected capacity change from 0 to 524287999
[  364.037629][T15025] netlink: 'syz.5.1828': attribute type 12 has an invalid length.
[  364.140861][T15027] random: crng reseeded on system resumption
[  364.172235][T15027] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  364.290120][T15027] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  364.340754][T15027] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  364.404673][T15027] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  364.469857][T15027] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  364.477299][T15027] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  364.484697][T15027] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  364.492690][T15027] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  364.887028][ T6011] usb 6-1: USB disconnect, device number 82
[  365.443422][ T5304] Bluetooth: hci3: command tx timeout
[  365.486974][T15078] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  365.489456][T15078] UDF-fs: Scanning with blocksize 512 failed
[  365.492435][T15078] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  365.502475][T15078] UDF-fs: Scanning with blocksize 1024 failed
[  365.505914][T15078] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  365.508270][T15078] UDF-fs: Scanning with blocksize 2048 failed
[  365.511569][T15078] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  365.514538][T15078] UDF-fs: Scanning with blocksize 4096 failed
[  365.675675][T15078] FAULT_INJECTION: forcing a failure.
[  365.675675][T15078] name failslab, interval 1, probability 0, space 0, times 0
[  365.685106][T15078] CPU: 2 UID: 0 PID: 15078 Comm: syz.5.1850 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  365.685125][T15078] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  365.685132][T15078] Call Trace:
[  365.685136][T15078]  <TASK>
[  365.685141][T15078]  dump_stack_lvl+0x16c/0x1f0
[  365.685168][T15078]  should_fail_ex+0x512/0x640
[  365.685181][T15078]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  365.685200][T15078]  should_failslab+0xc2/0x120
[  365.685211][T15078]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  365.685228][T15078]  ? __kernfs_new_node+0xd2/0x8e0
[  365.685246][T15078]  __kernfs_new_node+0xd2/0x8e0
[  365.685264][T15078]  ? __pfx___kernfs_new_node+0x10/0x10
[  365.685283][T15078]  ? find_held_lock+0x2b/0x80
[  365.685295][T15078]  ? kernfs_root+0xee/0x2a0
[  365.685313][T15078]  kernfs_new_node+0x13c/0x1e0
[  365.685333][T15078]  __kernfs_create_file+0x53/0x350
[  365.685348][T15078]  sysfs_add_file_mode_ns+0x207/0x3c0
[  365.685366][T15078]  internal_create_group+0x578/0xf30
[  365.685386][T15078]  ? __pfx_internal_create_group+0x10/0x10
[  365.685405][T15078]  ? kernfs_create_link+0x1bd/0x240
[  365.685420][T15078]  internal_create_groups+0x9d/0x150
[  365.685438][T15078]  device_add+0xf30/0x1a70
[  365.685455][T15078]  ? __pfx_device_add+0x10/0x10
[  365.685470][T15078]  ? lockdep_init_map_type+0x5c/0x280
[  365.685485][T15078]  ? __init_waitqueue_head+0xca/0x150
[  365.685506][T15078]  wakeup_source_device_create+0x214/0x2a0
[  365.685522][T15078]  wakeup_source_sysfs_add+0x1c/0x90
[  365.685537][T15078]  wakeup_source_register+0x154/0x3e0
[  365.685551][T15078]  ep_create_wakeup_source+0x1dd/0x2e0
[  365.685565][T15078]  ? __pfx_ep_create_wakeup_source+0x10/0x10
[  365.685582][T15078]  ? do_epoll_ctl+0x1565/0x35b0
[  365.685599][T15078]  do_epoll_ctl+0x1d82/0x35b0
[  365.685619][T15078]  ? __pfx_do_epoll_ctl+0x10/0x10
[  365.685633][T15078]  ? find_held_lock+0x2b/0x80
[  365.685643][T15078]  ? __might_fault+0xe3/0x190
[  365.685665][T15078]  ? __ia32_sys_epoll_ctl+0x15b/0x1e0
[  365.685680][T15078]  __ia32_sys_epoll_ctl+0x15b/0x1e0
[  365.685695][T15078]  ? __pfx___ia32_sys_epoll_ctl+0x10/0x10
[  365.685711][T15078]  ? rcu_is_watching+0x12/0xc0
[  365.685725][T15078]  __do_fast_syscall_32+0x7c/0x3a0
[  365.685737][T15078]  do_fast_syscall_32+0x32/0x80
[  365.685748][T15078]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  365.685763][T15078] RIP: 0023:0xf709e579
[  365.685772][T15078] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  365.685782][T15078] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 00000000000000ff
[  365.685793][T15078] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000001
[  365.685800][T15078] RDX: 000000000000000a RSI: 0000000080000080 RDI: 0000000000000000
[  365.685806][T15078] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  365.685812][T15078] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  365.685818][T15078] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  365.685831][T15078]  </TASK>
[  365.896102][T15071] netlink: 'syz.0.1846': attribute type 12 has an invalid length.
[  366.541774][T15093] netlink: 'syz.0.1854': attribute type 10 has an invalid length.
[  366.566630][T15094] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1852'.
[  366.988732][T15117] random: crng reseeded on system resumption
[  366.996754][T15117] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.059672][T15117] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.141521][T15120] loop7: detected capacity change from 0 to 524287999
[  367.214876][T15121] netlink: 'syz.5.1862': attribute type 12 has an invalid length.
[  367.235362][T15117] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.420616][T15117] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.524510][ T5304] Bluetooth: hci3: command tx timeout
[  368.120062][T15151] fuse: Unknown parameter '0x0000000000000006'
[  368.374151][T15117] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  368.380777][T15117] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  368.387321][T15117] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  368.395387][T15117] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  368.597696][T15160] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1880'.
[  368.669785][T15163] loop7: detected capacity change from 0 to 524287999
[  368.747307][T15168] netlink: 'syz.3.1879': attribute type 12 has an invalid length.
[  369.603843][ T5304] Bluetooth: hci3: command tx timeout
[  370.094626][T15197] 9pnet_virtio: no channels available for device ./file0/file0
[  370.097756][T15197] PKCS7: Unknown OID: [4] 2.19.13055.940354.15722
[  370.099816][T15197] PKCS7: Only support pkcs7_signedData type
[  370.323953][T15204] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1893'.
[  370.350002][T15204] bridge3: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  371.611535][T15225] FAULT_INJECTION: forcing a failure.
[  371.611535][T15225] name failslab, interval 1, probability 0, space 0, times 0
[  371.617875][T15225] CPU: 3 UID: 0 PID: 15225 Comm: syz.5.1901 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  371.617900][T15225] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  371.617910][T15225] Call Trace:
[  371.617923][T15225]  <TASK>
[  371.617930][T15225]  dump_stack_lvl+0x16c/0x1f0
[  371.617962][T15225]  should_fail_ex+0x512/0x640
[  371.617987][T15225]  should_failslab+0xc2/0x120
[  371.618004][T15225]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  371.618032][T15225]  ? dst_alloc+0x99/0x1a0
[  371.618061][T15225]  dst_alloc+0x99/0x1a0
[  371.618088][T15225]  rt_dst_alloc+0x35/0x3a0
[  371.618111][T15225]  ip_route_output_key_hash_rcu+0x87a/0x28f0
[  371.618147][T15225]  ip_route_output_key_hash+0x137/0x2e0
[  371.618172][T15225]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  371.618205][T15225]  ? __pfx_crng_fast_key_erasure+0x10/0x10
[  371.618233][T15225]  ip_route_output_flow+0x27/0x150
[  371.618263][T15225]  sctp_v4_get_dst+0x41e/0x1340
[  371.618281][T15225]  ? crng_make_state+0x46e/0x6d0
[  371.618304][T15225]  ? lockdep_hardirqs_on+0x7c/0x110
[  371.618330][T15225]  ? crng_make_state+0x48e/0x6d0
[  371.618358][T15225]  ? __pfx_sctp_v4_get_dst+0x10/0x10
[  371.618389][T15225]  ? __pfx_sctp_generate_proto_unreach_event+0x10/0x10
[  371.618416][T15225]  ? lockdep_init_map_type+0x5c/0x280
[  371.618446][T15225]  ? sctp_transport_route+0x132/0x350
[  371.618469][T15225]  sctp_transport_route+0x132/0x350
[  371.618496][T15225]  sctp_assoc_add_peer+0x741/0x1550
[  371.618525][T15225]  sctp_connect_new_asoc+0x208/0x790
[  371.618552][T15225]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  371.618577][T15225]  ? sctp_endpoint_lookup_assoc+0x15c/0x2a0
[  371.618602][T15225]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  371.618625][T15225]  sctp_sendmsg+0x15f9/0x1ee0
[  371.618657][T15225]  ? __pfx_sctp_sendmsg+0x10/0x10
[  371.618682][T15225]  ? __pfx___might_resched+0x10/0x10
[  371.618708][T15225]  ? __might_fault+0xe3/0x190
[  371.618734][T15225]  ? __pfx_aa_sk_perm+0x10/0x10
[  371.618763][T15225]  ? __pfx_sctp_sendmsg+0x10/0x10
[  371.618787][T15225]  inet_sendmsg+0x119/0x140
[  371.618816][T15225]  __sys_sendto+0x43c/0x520
[  371.618842][T15225]  ? __pfx___sys_sendto+0x10/0x10
[  371.618892][T15225]  ? ksys_write+0x1ac/0x250
[  371.618923][T15225]  ? __pfx_ksys_write+0x10/0x10
[  371.618953][T15225]  __ia32_sys_sendto+0xdd/0x1b0
[  371.618977][T15225]  ? lockdep_hardirqs_on+0x7c/0x110
[  371.619003][T15225]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  371.619021][T15225]  __do_fast_syscall_32+0x7c/0x3a0
[  371.619040][T15225]  do_fast_syscall_32+0x32/0x80
[  371.619057][T15225]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  371.619078][T15225] RIP: 0023:0xf709e579
[  371.619092][T15225] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  371.619109][T15225] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  371.619126][T15225] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000100
[  371.619137][T15225] RDX: 0000000000000001 RSI: 0000000000048001 RDI: 00000000800000c0
[  371.619147][T15225] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000
[  371.619157][T15225] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  371.619166][T15225] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  371.619190][T15225]  </TASK>
[  371.915081][T15231] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1903'.
[  372.029134][T15237] overlayfs: conflicting options: userxattr,redirect_dir=on
[  372.034932][   T40] audit: type=1326 audit(1749100587.321:3581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15236 comm="syz.0.1906" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf705e579 code=0x0
[  372.530898][T15244] IPVS: Error connecting to the multicast addr
[  372.541531][T15246] random: crng reseeded on system resumption
[  372.570752][T15246] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.635580][T15246] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.696678][T15246] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.759529][T15246] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.770371][T15252] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.856300][T15252] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.868087][T15246] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  372.878521][T15246] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  372.887097][T15246] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  372.893957][T15246] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  372.909592][T15252] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  372.972084][T15252] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.078930][T15252] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  373.085938][T15252] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  373.092409][T15252] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  373.099319][T15252] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  373.131908][T15261] netlink: 240 bytes leftover after parsing attributes in process `syz.5.1912'.
[  373.381049][T15268] FAULT_INJECTION: forcing a failure.
[  373.381049][T15268] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  373.385217][T15268] CPU: 1 UID: 0 PID: 15268 Comm: syz.5.1914 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  373.385245][T15268] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  373.385253][T15268] Call Trace:
[  373.385257][T15268]  <TASK>
[  373.385261][T15268]  dump_stack_lvl+0x16c/0x1f0
[  373.385283][T15268]  should_fail_ex+0x512/0x640
[  373.385298][T15268]  _copy_to_user+0x32/0xd0
[  373.385313][T15268]  simple_read_from_buffer+0xcb/0x170
[  373.385330][T15268]  proc_fail_nth_read+0x197/0x270
[  373.385344][T15268]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  373.385358][T15268]  ? rw_verify_area+0xcf/0x680
[  373.385373][T15268]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  373.385386][T15268]  vfs_read+0x1e1/0xc60
[  373.385402][T15268]  ? fdget_pos+0x2a2/0x370
[  373.385420][T15268]  ? __pfx_vfs_read+0x10/0x10
[  373.385434][T15268]  ? find_held_lock+0x2b/0x80
[  373.385449][T15268]  ? __fget_files+0x20e/0x3c0
[  373.385469][T15268]  ksys_read+0x12a/0x250
[  373.385484][T15268]  ? __pfx_ksys_read+0x10/0x10
[  373.385501][T15268]  ? rcu_is_watching+0x12/0xc0
[  373.385515][T15268]  __do_fast_syscall_32+0x7c/0x3a0
[  373.385527][T15268]  do_fast_syscall_32+0x32/0x80
[  373.385538][T15268]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  373.385552][T15268] RIP: 0023:0xf709e579
[  373.385561][T15268] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  373.385571][T15268] RSP: 002b:00000000f504c590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  373.385582][T15268] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f504c620
[  373.385589][T15268] RDX: 000000000000000f RSI: 00000000f7402ff4 RDI: 0000000000000000
[  373.385595][T15268] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  373.385601][T15268] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  373.385607][T15268] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  373.385621][T15268]  </TASK>
[  375.206922][T15298] netlink: 240 bytes leftover after parsing attributes in process `syz.0.1923'.
[  376.580960][T15327] netlink: 240 bytes leftover after parsing attributes in process `syz.5.1932'.
[  376.613164][T15329] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  377.666616][T15343] netlink: 96 bytes leftover after parsing attributes in process `syz.5.1937'.
[  377.762104][T15350] FAULT_INJECTION: forcing a failure.
[  377.762104][T15350] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  377.767436][T15350] CPU: 3 UID: 0 PID: 15350 Comm: syz.5.1939 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  377.767461][T15350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  377.767472][T15350] Call Trace:
[  377.767479][T15350]  <TASK>
[  377.767487][T15350]  dump_stack_lvl+0x16c/0x1f0
[  377.767520][T15350]  should_fail_ex+0x512/0x640
[  377.767545][T15350]  _copy_from_user+0x2e/0xd0
[  377.767567][T15350]  copy_from_sockptr_offset+0x15c/0x1b0
[  377.767611][T15350]  ? __pfx_copy_from_sockptr_offset+0x10/0x10
[  377.767634][T15350]  ? __local_bh_enable_ip+0xa4/0x120
[  377.767657][T15350]  tls_setsockopt+0xc6d/0x19d0
[  377.767680][T15350]  ? __pfx_tls_setsockopt+0x10/0x10
[  377.767698][T15350]  ? aa_sk_perm+0x2f4/0xb10
[  377.767734][T15350]  ? sock_common_setsockopt+0x2e/0xf0
[  377.767756][T15350]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  377.767778][T15350]  do_sock_setsockopt+0x224/0x470
[  377.767798][T15350]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  377.767843][T15350]  __sys_setsockopt+0x120/0x1a0
[  377.767876][T15350]  __ia32_sys_setsockopt+0xbc/0x160
[  377.767901][T15350]  ? lockdep_hardirqs_on+0x7c/0x110
[  377.767928][T15350]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  377.767945][T15350]  __do_fast_syscall_32+0x7c/0x3a0
[  377.767965][T15350]  do_fast_syscall_32+0x32/0x80
[  377.767983][T15350]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  377.768004][T15350] RIP: 0023:0xf709e579
[  377.768018][T15350] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  377.768035][T15350] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  377.768052][T15350] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000011a
[  377.768064][T15350] RDX: 0000000000000002 RSI: 0000000080000080 RDI: 0000000000000038
[  377.768075][T15350] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  377.768085][T15350] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  377.768095][T15350] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  377.768119][T15350]  </TASK>
[  377.922068][T15354] netlink: 240 bytes leftover after parsing attributes in process `syz.5.1941'.
[  377.967799][T15356] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  377.970174][T15356] overlayfs: failed to set xattr on upper
[  377.971976][T15356] overlayfs: ...falling back to redirect_dir=nofollow.
[  377.974189][T15356] overlayfs: ...falling back to index=off.
[  377.976016][T15356] overlayfs: ...falling back to uuid=null.
[  378.016080][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  378.279280][   T40] audit: type=1804 audit(1749100593.561:3582): pid=15359 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1942" name="/newroot/44/file0/bus/bus" dev="overlay" ino=41694 res=1 errno=0
[  379.117154][T15383] netlink: 240 bytes leftover after parsing attributes in process `syz.3.1950'.
[  379.293326][   T53] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  379.453941][   T53] usb 10-1: Using ep0 maxpacket: 16
[  379.468518][   T53] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  379.475157][   T53] usb 10-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  379.478244][   T53] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  379.481004][   T53] usb 10-1: Product: syz
[  379.482554][   T53] usb 10-1: Manufacturer: syz
[  379.484412][   T53] usb 10-1: SerialNumber: syz
[  379.496239][   T53] usb 10-1: config 0 descriptor??
[  379.506637][   T53] hub 10-1:0.0: bad descriptor, ignoring hub
[  379.509341][   T53] hub 10-1:0.0: probe with driver hub failed with error -5
[  379.526918][   T53] input: syz syz as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:0.0/input/input38
[  380.104237][ T5949] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  380.121465][ T5949] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  380.125049][ T5949] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  380.128086][ T5949] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  380.130003][T12262] syz_tun (unregistering): left allmulticast mode
[  380.131181][ T5949] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  380.132353][T12262] syz_tun (unregistering): left promiscuous mode
[  380.136635][T12262] bridge0: port 3(syz_tun) entered disabled state
[  380.173653][T15397] lo speed is unknown, defaulting to 1000
[  380.279441][T15397] chnl_net:caif_netlink_parms(): no params data found
[  380.366469][T15397] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.368894][T15397] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.371309][T15397] bridge_slave_0: entered allmulticast mode
[  380.375136][T15397] bridge_slave_0: entered promiscuous mode
[  380.384709][T15397] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.387249][T15397] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.389579][T15397] bridge_slave_1: entered allmulticast mode
[  380.392354][T15397] bridge_slave_1: entered promiscuous mode
[  380.435358][T15397] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  380.445349][T15397] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  380.483345][    C0] ------------[ cut here ]------------
[  380.485350][    C0] refcount_t: addition on 0; use-after-free.
[  380.487422][    C0] WARNING: CPU: 0 PID: 15417 at lib/refcount.c:25 refcount_warn_saturate+0x1ca/0x210
[  380.490413][    C0] Modules linked in:
[  380.491971][    C0] CPU: 0 UID: 0 PID: 15417 Comm: syz.5.1959 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  380.497235][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  380.500573][    C0] RIP: 0010:refcount_warn_saturate+0x1ca/0x210
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  380.502513][    C0] Code: ff 89 de e8 e8 cc e4 fc 84 db 0f 85 e6 fe ff ff e8 fb d1 e4 fc c6 05 ae 95 99 0b 01 90 48 c7 c7 00 df f4 8b e8 57 f0 a3 fc 90 <0f> 0b 90 90 e9 c3 fe ff ff e8 d8 d1 e4 fc c6 05 89 95 99 0b 01 90
[  380.508633][    C0] RSP: 0018:ffffc900000078b0 EFLAGS: 00010286
[  380.510569][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a92c8
[  380.513040][    C0] RDX: ffff8880241c2440 RSI: ffffffff817a92d5 RDI: 0000000000000001
[  380.515557][    C0] RBP: ffff8880516c21ec R08: 0000000000000001 R09: 0000000000000000
[  380.518053][    C0] R10: 0000000000000000 R11: 0000000000000001 R12: ffff8880516c21ec
[  380.520716][    C0] R13: ffff8880516c2080 R14: ffff88805849de00 R15: ffff88804f9c2000
[  380.523170][    C0] FS:  0000000000000000(0000) GS:ffff888097772000(0063) knlGS:00000000f508eb40
[  380.526035][    C0] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  380.528128][    C0] CR2: 00000000f508d510 CR3: 0000000027af0000 CR4: 0000000000352ef0
[  380.530630][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  380.533109][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  380.535616][    C0] Call Trace:
[  380.536668][    C0]  <IRQ>
[  380.537594][    C0]  tipc_crypto_xmit+0x20c1/0x2550
[  380.539242][    C0]  ? __pfx_tipc_crypto_xmit+0x10/0x10
[  380.540941][    C0]  ? lock_acquire+0x179/0x350
[  380.542433][    C0]  ? find_held_lock+0x2b/0x80
[  380.543968][    C0]  ? net_generic+0xea/0x2a0
[  380.545403][    C0]  tipc_bearer_xmit_skb+0x15f/0x430
[  380.547035][    C0]  ? __pfx_tipc_bearer_xmit_skb+0x10/0x10
[  380.548850][    C0]  ? mark_held_locks+0x49/0x80
[  380.550370][    C0]  ? __local_bh_enable_ip+0xa4/0x120
[  380.552043][    C0]  tipc_disc_timeout+0x5b2/0x850
[  380.553663][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  380.555382][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  380.557103][    C0]  call_timer_fn+0x19a/0x620
[  380.558574][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  380.560196][    C0]  ? put_pwq+0x87/0x130
[  380.561516][    C0]  ? mark_held_locks+0x49/0x80
[  380.563025][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  380.564844][    C0]  __run_timers+0x6ef/0x960
[  380.566278][    C0]  ? __pfx___run_timers+0x10/0x10
[  380.567865][    C0]  run_timer_base+0x114/0x190
[  380.569343][    C0]  ? __pfx_run_timer_base+0x10/0x10
[  380.570962][    C0]  run_timer_softirq+0x1a/0x40
[  380.572480][    C0]  handle_softirqs+0x219/0x8e0
[  380.574019][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  380.575671][    C0]  __irq_exit_rcu+0x109/0x170
[  380.577155][    C0]  irq_exit_rcu+0x9/0x30
[  380.578524][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  380.580296][    C0]  </IRQ>
[  380.581307][    C0]  <TASK>
[  380.582264][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  380.584173][    C0] RIP: 0010:_raw_read_unlock_irqrestore+0x31/0x80
[  380.586174][    C0] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 a6 b3 1b f6 48 89 df e8 6e 0b 1c f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 <bf> 01 00 00 00 e8 c5 27 0c f6 65 8b 05 5e a3 2e 08 85 c0 74 16 5b
[  380.592131][    C0] RSP: 0018:ffffc9000d5e7938 EFLAGS: 00000246
[  380.594094][    C0] RAX: 0000000000000006 RBX: ffffffff901eb460 RCX: 0000000000000006
[  380.596544][    C0] RDX: 0000000000000000 RSI: ffffffff8dc0a7a0 RDI: ffffffff8bf533a0
[  380.599024][    C0] RBP: 0000000000000283 R08: 0000000000000001 R09: 0000000000000001
[  380.601512][    C0] R10: ffffffff9087d657 R11: 0000000000000001 R12: dffffc0000000000
[  380.604012][    C0] R13: 0000000000000000 R14: 1ffff92001abcf39 R15: ffff888050887000
[  380.606481][    C0]  netlink_broadcast_filtered+0x105/0xf10
[  380.608321][    C0]  ? __pfx_netlink_broadcast_filtered+0x10/0x10
[  380.610280][    C0]  ? netlink_has_listeners+0x20f/0x430
[  380.611994][    C0]  netlink_broadcast+0x39/0x50
[  380.613548][    C0]  kobject_uevent_env+0xc6a/0x1870
[  380.615168][    C0]  ? __pfx_dummy_pullup+0x10/0x10
[  380.616758][    C0]  ? rcu_is_watching+0x12/0xc0
[  380.618284][    C0]  gadget_bind_driver+0x78b/0xc40
[  380.619883][    C0]  ? dummy_udc_set_speed+0x41/0xa0
[  380.621505][    C0]  ? __pfx_gadget_bind_driver+0x10/0x10
[  380.623317][    C0]  really_probe+0x241/0xa90
[  380.624766][    C0]  __driver_probe_device+0x1de/0x440
[  380.626425][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  380.628287][    C0]  driver_probe_device+0x4c/0x1b0
[  380.629872][    C0]  __driver_attach+0x283/0x580
[  380.631381][    C0]  ? __pfx___driver_attach+0x10/0x10
[  380.633040][    C0]  bus_for_each_dev+0x13e/0x1d0
[  380.634647][    C0]  ? __pfx_bus_for_each_dev+0x10/0x10
[  380.636364][    C0]  ? bus_add_driver+0x299/0x690
[  380.637918][    C0]  bus_add_driver+0x2e9/0x690
[  380.639405][    C0]  driver_register+0x15c/0x4b0
[  380.640917][    C0]  usb_gadget_register_driver_owner+0x132/0x330
[  380.642850][    C0]  raw_ioctl+0x17d0/0x2c30
[  380.644338][    C0]  ? __pfx_raw_ioctl+0x10/0x10
[  380.645810][    C0]  ? __pfx_raw_ioctl+0x10/0x10
[  380.647301][    C0]  __ia32_compat_sys_ioctl+0x242/0x370
[  380.649044][    C0]  __do_fast_syscall_32+0x7c/0x3a0
[  380.650658][    C0]  do_fast_syscall_32+0x32/0x80
[  380.652202][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  380.654210][    C0] RIP: 0023:0xf709e579
[  380.655495][    C0] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  380.661443][    C0] RSP: 002b:00000000f508c484 EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  380.664068][    C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005501
[  380.664947][ T5339] usb 10-1: reset high-speed USB device number 2 using dummy_hcd
[  380.666490][    C0] RDX: 0000000000000000 RSI: 00000000f7402ff4 RDI: 00000000f508c4e8
[  380.671854][    C0] RBP: 00000000f7402ff4 R08: 0000000000000000 R09: 0000000000000000
[  380.674373][    C0] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  380.676081][    C2] raw-gadget.0 gadget.5: ignoring, device is not running
[  380.676825][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  380.681543][    C0]  </TASK>
[  380.682531][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  380.684795][    C0] CPU: 0 UID: 0 PID: 15417 Comm: syz.5.1959 Not tainted 6.15.0-syzkaller-11802-g1af80d00e1e0 #0 PREEMPT(full) 
[  380.688372][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  380.691682][    C0] Call Trace:
[  380.692717][    C0]  <IRQ>
[  380.693631][    C0]  dump_stack_lvl+0x3d/0x1f0
[  380.695094][    C0]  panic+0x71c/0x800
[  380.696341][    C0]  ? __pfx_panic+0x10/0x10
[  380.697747][    C0]  ? show_trace_log_lvl+0x29b/0x3e0
[  380.699388][    C0]  ? check_panic_on_warn+0x1f/0xb0
[  380.701022][    C0]  ? refcount_warn_saturate+0x1ca/0x210
[  380.702751][    C0]  check_panic_on_warn+0xab/0xb0
[  380.704324][    C0]  __warn+0xf6/0x3c0
[  380.705558][    C0]  ? __pfx_vprintk_emit+0x10/0x10
[  380.707131][    C0]  ? refcount_warn_saturate+0x1ca/0x210
[  380.708885][    C0]  report_bug+0x3c3/0x580
[  380.710239][    C0]  ? refcount_warn_saturate+0x1ca/0x210
[  380.712006][    C0]  handle_bug+0x184/0x210
[  380.713361][    C0]  exc_invalid_op+0x17/0x50
[  380.714768][    C0]  asm_exc_invalid_op+0x1a/0x20
[  380.716291][    C0] RIP: 0010:refcount_warn_saturate+0x1ca/0x210
[  380.718217][    C0] Code: ff 89 de e8 e8 cc e4 fc 84 db 0f 85 e6 fe ff ff e8 fb d1 e4 fc c6 05 ae 95 99 0b 01 90 48 c7 c7 00 df f4 8b e8 57 f0 a3 fc 90 <0f> 0b 90 90 e9 c3 fe ff ff e8 d8 d1 e4 fc c6 05 89 95 99 0b 01 90
[  380.723979][    C0] RSP: 0018:ffffc900000078b0 EFLAGS: 00010286
[  380.725858][    C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817a92c8
[  380.728344][    C0] RDX: ffff8880241c2440 RSI: ffffffff817a92d5 RDI: 0000000000000001
[  380.730737][    C0] RBP: ffff8880516c21ec R08: 0000000000000001 R09: 0000000000000000
[  380.733191][    C0] R10: 0000000000000000 R11: 0000000000000001 R12: ffff8880516c21ec
[  380.735580][    C0] R13: ffff8880516c2080 R14: ffff88805849de00 R15: ffff88804f9c2000
[  380.738048][    C0]  ? __warn_printk+0x198/0x350
[  380.739548][    C0]  ? __warn_printk+0x1a5/0x350
[  380.741076][    C0]  tipc_crypto_xmit+0x20c1/0x2550
[  380.742655][    C0]  ? __pfx_tipc_crypto_xmit+0x10/0x10
[  380.744352][    C0]  ? lock_acquire+0x179/0x350
[  380.745848][    C0]  ? find_held_lock+0x2b/0x80
[  380.747325][    C0]  ? net_generic+0xea/0x2a0
[  380.748788][    C0]  tipc_bearer_xmit_skb+0x15f/0x430
[  380.750474][    C0]  ? __pfx_tipc_bearer_xmit_skb+0x10/0x10
[  380.752263][    C0]  ? mark_held_locks+0x49/0x80
[  380.753765][    C0]  ? __local_bh_enable_ip+0xa4/0x120
[  380.755416][    C0]  tipc_disc_timeout+0x5b2/0x850
[  380.756926][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  380.758665][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  380.760382][    C0]  call_timer_fn+0x19a/0x620
[  380.761848][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  380.763454][    C0]  ? put_pwq+0x87/0x130
[  380.764775][    C0]  ? mark_held_locks+0x49/0x80
[  380.766277][    C0]  ? __pfx_tipc_disc_timeout+0x10/0x10
[  380.768036][    C0]  __run_timers+0x6ef/0x960
[  380.769478][    C0]  ? __pfx___run_timers+0x10/0x10
[  380.771070][    C0]  run_timer_base+0x114/0x190
[  380.772568][    C0]  ? __pfx_run_timer_base+0x10/0x10
[  380.774202][    C0]  run_timer_softirq+0x1a/0x40
[  380.775720][    C0]  handle_softirqs+0x219/0x8e0
[  380.777232][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  380.778915][    C0]  __irq_exit_rcu+0x109/0x170
[  380.780421][    C0]  irq_exit_rcu+0x9/0x30
[  380.781760][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  380.783456][    C0]  </IRQ>
[  380.784367][    C0]  <TASK>
[  380.785309][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  380.787177][    C0] RIP: 0010:_raw_read_unlock_irqrestore+0x31/0x80
[  380.789218][    C0] Code: f5 53 48 8b 74 24 10 48 89 fb 48 83 c7 18 e8 a6 b3 1b f6 48 89 df e8 6e 0b 1c f6 f7 c5 00 02 00 00 75 23 9c 58 f6 c4 02 75 37 <bf> 01 00 00 00 e8 c5 27 0c f6 65 8b 05 5e a3 2e 08 85 c0 74 16 5b
[  380.795127][    C0] RSP: 0018:ffffc9000d5e7938 EFLAGS: 00000246
[  380.797041][    C0] RAX: 0000000000000006 RBX: ffffffff901eb460 RCX: 0000000000000006
[  380.799517][    C0] RDX: 0000000000000000 RSI: ffffffff8dc0a7a0 RDI: ffffffff8bf533a0
[  380.801946][    C0] RBP: 0000000000000283 R08: 0000000000000001 R09: 0000000000000001
[  380.804363][    C0] R10: ffffffff9087d657 R11: 0000000000000001 R12: dffffc0000000000
[  380.806807][    C0] R13: 0000000000000000 R14: 1ffff92001abcf39 R15: ffff888050887000
[  380.809330][    C0]  netlink_broadcast_filtered+0x105/0xf10
[  380.811123][    C0]  ? __pfx_netlink_broadcast_filtered+0x10/0x10
[  380.813079][    C0]  ? netlink_has_listeners+0x20f/0x430
[  380.814823][    C0]  netlink_broadcast+0x39/0x50
[  380.816380][    C0]  kobject_uevent_env+0xc6a/0x1870
[  380.818011][    C0]  ? __pfx_dummy_pullup+0x10/0x10
[  380.819599][    C0]  ? rcu_is_watching+0x12/0xc0
[  380.821125][    C0]  gadget_bind_driver+0x78b/0xc40
[  380.822701][    C0]  ? dummy_udc_set_speed+0x41/0xa0
[  380.824323][    C0]  ? __pfx_gadget_bind_driver+0x10/0x10
[  380.826051][    C0]  really_probe+0x241/0xa90
[  380.827482][    C0]  __driver_probe_device+0x1de/0x440
[  380.829176][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  380.831001][    C0]  driver_probe_device+0x4c/0x1b0
[  380.832585][    C0]  __driver_attach+0x283/0x580
[  380.834085][    C0]  ? __pfx___driver_attach+0x10/0x10
[  380.835722][    C0]  bus_for_each_dev+0x13e/0x1d0
[  380.837250][    C0]  ? __pfx_bus_for_each_dev+0x10/0x10
[  380.838948][    C0]  ? bus_add_driver+0x299/0x690
[  380.840491][    C0]  bus_add_driver+0x2e9/0x690
[  380.841977][    C0]  driver_register+0x15c/0x4b0
[  380.843521][    C0]  usb_gadget_register_driver_owner+0x132/0x330
[  380.845481][    C0]  raw_ioctl+0x17d0/0x2c30
[  380.846891][    C0]  ? __pfx_raw_ioctl+0x10/0x10
[  380.848443][    C0]  ? __pfx_raw_ioctl+0x10/0x10
[  380.849960][    C0]  __ia32_compat_sys_ioctl+0x242/0x370
[  380.851676][    C0]  __do_fast_syscall_32+0x7c/0x3a0
[  380.853277][    C0]  do_fast_syscall_32+0x32/0x80
[  380.854799][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  380.856777][    C0] RIP: 0023:0xf709e579
[  380.858090][    C0] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  380.864010][    C0] RSP: 002b:00000000f508c484 EFLAGS: 00000292 ORIG_RAX: 0000000000000036
[  380.866583][    C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005501
[  380.869063][    C0] RDX: 0000000000000000 RSI: 00000000f7402ff4 RDI: 00000000f508c4e8
[  380.871503][    C0] RBP: 00000000f7402ff4 R08: 0000000000000000 R09: 0000000000000000
[  380.873953][    C0] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  380.876411][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  380.878882][    C0]  </TASK>
[  380.880548][    C0] Kernel Offset: disabled
[  380.881919][    C0] Rebooting in 86400 seconds..

VM DIAGNOSIS:
05:16:35  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8555fc15 RDI=ffffffff9ae5ca00 RBP=ffffffff9ae5c9c0 RSP=ffffc90000007220
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=000000000000003a R14=ffffffff9ae5c9c0 R15=ffffffff8555fbb0
RIP=ffffffff8555fc3f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097772000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f508d510 CR3=0000000027af0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a 0000003000000012 0004000000080024 0000000000280034
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000007af 0000001400000000 0000000000000000 0000000000000015
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff020b80030008 0006080020080006 006fea0400000093 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00010008000b8002 0100000008060601 67960008000bb003 0008000ba8033c80
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 08000ba003020800 0b98033008000188 0300080015a80300 040015a403000200
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 15a2030e020015a0 0300080015980307 fecc08001590030c 820400158c0301e4
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0400158803300800 1580031580020180 030180020b900300 08000b88030fffff
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 02134c10f831ec00 0001124e08588003 2008001580022208 0006010298001000
ZMM25=12a8e63912a8e639 12a8e63912a8e639 12a8e63912a8e639 12a8e63912a8e639 12a8e63912a8e639 12a8e63912a8e639 12a8e63912a8e639 12a8e63912a8e639
ZMM26=a179e6e8a179e6e8 a179e6e8a179e6e8 a179e6e8a179e6e8 a179e6e8a179e6e8 a179e6e8a179e6e8 a179e6e8a179e6e8 a179e6e8a179e6e8 a179e6e8a179e6e8
ZMM27=e70bd468e70bd468 e70bd468e70bd468 e70bd468e70bd468 e70bd468e70bd468 e70bd468e70bd468 e70bd468e70bd468 e70bd468e70bd468 e70bd468e70bd468
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=d10c0000d10c0000 d10c0000d10c0000 d10c0000d10c0000 d10c0000d10c0000 d10c0000d10c0000 d10c0000d10c0000 d10c0000d10c0000 d10c0000d10c0000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=ffff88802b33d000 RCX=ffffffff81af76e3 RDX=ffff88801dab4880
RSI=ffffffff81af76bd RDI=0000000000000005 RBP=ffffc9000044fd08 RSP=ffffc9000044fbc0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=fffffbfff1c79f3e
R12=1ffff92000089f80 R13=0000000000000002 R14=0000000000000001 R15=ffffed1005667a01
RIP=ffffffff81af76bf RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097872000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000056be24c0 CR3=0000000049df0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f7432ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=00000000005ffc2f RBX=0000000000000002 RCX=ffffffff8b799c69 RDX=0000000000000000
RSI=ffffffff8dc0a7a0 RDI=ffffffff8bf533a0 RBP=ffffed1003b5c910 RSP=ffffc9000047fdf8
R8 =0000000000000001 R9 =ffffed1005686645 R10=ffff88802b43322b R11=0000000000000001
R12=0000000000000002 R13=ffff88801dae4880 R14=ffffffff9087d650 R15=0000000000000000
RIP=ffffffff8b7987cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097972000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73c6188 CR3=000000002250a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000004e2e1d RBX=0000000000000003 RCX=ffffffff8b799c69 RDX=0000000000000000
RSI=ffffffff8dc0a7a0 RDI=ffffffff8bf533a0 RBP=ffffed10037e1000 RSP=ffffc9000048fdf8
R8 =0000000000000001 R9 =ffffed10056a6645 R10=ffff88802b53322b R11=0000000000000001
R12=0000000000000003 R13=ffff88801bf08000 R14=ffffffff9087d650 R15=0000000000000000
RIP=ffffffff8b7987cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097a72000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f732c6bc CR3=000000006a4e8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000