last executing test programs:

8m52.299652434s ago: executing program 3 (id=102):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r0, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x83d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, 0x8, 0x0, 0x0}}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f00000003c0)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mprotect(&(0x7f00000ff000/0x14000)=nil, 0x14000, 0x0)
ioctl$vim2m_VIDIOC_QUERYBUF(r4, 0xc044560f, &(0x7f0000000080)=@mmap={0x7f, 0x1, 0x4, 0x10, 0xb200, {}, {0x5, 0x0, 0x3, 0x0, 0x81, 0x2, "e43d8daa"}, 0x1, 0x1, {}, 0x10})
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000280)="d8000000100081044e81f782db44b904021d006a0f000000e8fe55a1290015000600142603600e120900040044000000a80016000a0003400200000000000000b94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162f7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d3220a7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r6, &(0x7f0000000040)='./file0\x00', 0x0)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='nilfs2\x00', 0x0, 0x0)

8m50.697772665s ago: executing program 3 (id=106):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f00000001c0)=ANY=[@ANYRES16=0x0, @ANYRESOCT=0x0, @ANYRESOCT], 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f00000008c0)={{0x12, 0x1, 0x0, 0xf2, 0x6c, 0x44, 0x20, 0x84f, 0x1, 0xe0b8, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xb2, 0x84, 0xbb}}]}}]}}, 0x0)
r1 = msgget$private(0x0, 0x1c0)
msgsnd(r1, &(0x7f0000000080)=ANY=[@ANYRES8], 0x0, 0x0)
msgrcv(r1, 0x0, 0x0, 0x3, 0x1000)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0x54}, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-serpent-avx2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, 0x0, 0x0)
r5 = accept4(r4, 0x0, 0x0, 0x80800)
sendmmsg$inet(r5, &(0x7f0000000200)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000a40)="21165a10978c50700e80c50245cd6573bdc3d4a9026e38df3c0f46de16ec0b28b3c2c77a25771c409208eb61287561cf2e4f34aee3abbffb0babbada01cd7a9f5c798ae35df8e74928827230716e1a733600ecce1bc6fe85ba3c466a628a680ea7fb39b1c895e41a5a000381acfe1d2f6c8764d86ffb9aff61e128a13d022f5ca7d5adeb2fcd51ad59dda45a8428d5ea80259ad3db499d38cfa1b42a322a0875534d7e23d2f54568f0b14907a3ad46afc2d9475b83d742c9685d63249e0c5e9b81075b", 0xc3}, {&(0x7f0000000d80)="4e64db0a9328d7a4e95bf99d67cc43c69de5abf4f4d80980d480772cf8dfbfe5269505e834097dfc62b11b13f334838fc65192b13bef4002deb9e7cbf4f45a36b1342f978624d74be2a571fdba877a47cf42064144daf29616879ef4550f9c3648d1918650ed3b4c3528fa6a3e3d3ca1b5f8767ac6c996e236c31be6afe2d2fefb7e2b1e3b6b30024c4bb68e0adeb2a912f3e226b653b917ae141ffcaedb52a9c165f9d0ddbf47bd3069fad9a91272e0ae9f7d77393884917cec8bec0219a1b41c7771057e0467c667299badd19148184366a2c47716", 0xd6}, {&(0x7f00000003c0)="8ebf353f583479d08a5bdcc5b0de3698931fe9a581c7f3c0db893c0ae828a125eaf59b23af6a6c1e8d6a4e6b22cb979487f2a64ea781ba99d1b65c8e88ce16ba87dbf1cac2449eef61e0773c3012c1846e", 0x51}, {&(0x7f0000000680)="9e93fc05194de5a333a7e76e8c00000000000000a55bf5eb3601a753e6b3ddf686047cebc2af7ed69d289184862e7d389f2177436b10970b1ec3bb093a0a1323532534198d02", 0x46}], 0x4}}, {{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000800)="ea2e30da97b9390ab72671", 0xb}, {&(0x7f0000000e80)="bc2779fe0b13f3374af7d8df538c6cd2a02e85bd843c7d9e51485b184f057a88f4ba801148a9e8def2ee9f41206dc448d4f4c662bb9b86daba9d7fd36b287cfb8c426991df77902e67d2f4a053b68ba3740fc390b413ddad505d84be1cd2aa3406f2e97fd1b3c3c7386919fb39aeaf7293e63d6aa4c67096949db2b60d73f75b52c5cba372a0b946136cda4fa289ef9d7a972e5ebc622480f3d964c24b512abfc921d823812721ddfb8cd45cb0b27a6b518d83ae678eb13436b37454f8fbf1ef3de5bab8bca2424077becf1ce47fbc4180ab7c119ad7f1891c93df7f91707792", 0xe0}, {&(0x7f0000000b40)="cb9e70b05b2c6ad6e7136a763ec0eeb7092f8e93fa23b652d5376f152898b72d31eb0e496eb036d1354117ba1bbf97d7a7981cdb6f48b64cf10ab1bbb1bf97a6aa21c27a8fb0e5e4202be61683958cde43997eb9ba79d431ce54853cbd51e075558cede47c37164023e79c287485fa681509720ceedccab5770581c85de51dd4213403ed7b3e01ba7c258729b2c96ffb75e8d205a0af1cbc69eb9fe16d3e8c788937857053c310964fcc70ab51c6db7e8fa3ddb01ec019afb02de544152399218955467f51838db87fd0e2553a39f112d42dc61f0cff18e3c2a8d5520d3b495fac8c70cf7504d01003e78829e9cf5f516ef270fbdf6a516199b1215d46caca27e627546e0794bf9b5431d71f2ecfa8129fa006a8e6f6e8bdce6f7d5a8717497f0c9ca8949e02843f1519120cc0d21ddb32bc3f426549a300795b1a7f68af4009b050a4422538cdd5fbf896787be22e3367dbd5c8b2a23fc39a1a0a82a0101e6d4980431ed0b1f88f4f5dddd7b0e7b56205ef3424bd5f2bf142e40277496b38932f6c5d07340c17f0b5b90267b989b36adaf18f226536291471aed6ce801e87178453adfc6000782544aa7d2ba9e6dc5ffa2d786f7204cc7cefc61b12cb851750ee82eee4cf69ac8d63a4e8094021074fad2e9fb75fbae5ec38f0127036bee1059bcb567a2e1944eb81e82182f070219d8796efb79b049505e24668f6d0598f47546addff890a41e5b64438eec4d63f46d04371f71f58c5a57f2097195e88bf7414de1ccb387376e9e383bcff1540442dcd22429a54cc4191849276b1", 0x23c}], 0x3}}], 0x2, 0x88c1)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
fcntl$setstatus(r7, 0x4, 0x42000)
close_range(r6, 0xffffffffffffffff, 0x0)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000001440)=""/4096, 0x1000}, {&(0x7f0000000480)=""/50, 0x32}, {&(0x7f0000000600)=""/113, 0x71}], 0x3}, 0xde2f8d673f441efe)
r8 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r9 = memfd_secret(0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x3, 0x7fff0000}]})
syz_usb_connect$uac1(0x2, 0xaf, &(0x7f0000000600)=ANY=[], &(0x7f0000000280)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x310, 0x80, 0x1, 0x8, 0x40, 0x3}, 0x10, &(0x7f0000000180)={0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0x8, 0x0, 0x2, 0x3, 0x7, 0x81}]}, 0x1, [{0x8a, &(0x7f00000000c0)=@string={0x8a, 0x3, "bdcab0ba14646462530aa13fd544e46cd6b27434337d256b43d1fdbea697a03f16a1562760a067b467e5f74b345cc60030a000be2e6fc648aef7231822a5769411e11d512660c172b37e0af3884cf8fa2d54f920961f868e0ceae56d7086b0abbc4c0788e9f0bee1b6ed4308c99435636953825c5b936eae8d3f8b9831a82a59392ff4146f9e49a6"}}]})

8m47.614325488s ago: executing program 3 (id=113):
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=@newtaction={0x1364, 0x30, 0x2, 0x0, 0x1000, {}, [{0x4}, {0x134c, 0x1, [@m_simple={0x12c, 0xb, 0x0, 0x0, {{0xb}, {0x100, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x81, 0x3, '#\x00\xfa\xa8\xb0\xe7MBP.\x11t\x04\x1a\xfb\xa1\x9e4.\xba\xb6V\xe0N\xe8\a\x8ab8(\xf1\xcc\x82\xb8\xc0\xb0\x91\x01\xac\xe7\xa8:\x8ebd)\xa0\xa5Qc\xf93\x94\xe7\xc0\xcd\xcc\x11\xe4\x9c\x9f\x14\xbea}\x84\x88\x9f\x88\xba\x86\x93\xbb\xe0\xd6\x18\x12\xcc\'\xb0\xc9\xdc\x1ap\xd3A\x9ec\xf8\x04\xc9)\x15\xcaH\xaf\x99\xbc\xb44D\'\xe5\n\x8c\xb8)\x9bUVq\xfc\x13\xda5\tzP^\xd3\xb2\x87I\x18\xf3'}, @TCA_DEF_PARMS={0x18, 0x2, {0x9, 0x8001, 0x10000000, 0x6, 0x2000ffff}}, @TCA_DEF_DATA={0x12, 0x3, '.-.}\'/(+]%$-+\x00'}, @TCA_DEF_DATA={0x5, 0x3, '\x00'}, @TCA_DEF_DATA={0x9, 0x3, '\\:#/\x00'}, @TCA_DEF_DATA={0x6, 0x3, '#\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0xbc99, 0xb0f, 0x3, 0x0, 0x20}}, @TCA_DEF_PARMS={0x18, 0x2, {0x4, 0xd0, 0x6, 0x200000, 0xb}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}, @m_simple={0xa4, 0x13, 0x0, 0x0, {{0xb}, {0x6c, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x6, 0x3, '\xff\xff'}, @TCA_DEF_PARMS={0x18, 0x2, {0x5fdc, 0x7fff, 0xffffffffffffffff, 0x1, 0xffff}}, @TCA_DEF_PARMS={0x18, 0x2, {0x805, 0x3, 0x5, 0x101, 0x5}}, @TCA_DEF_PARMS={0x18, 0x2, {0x5, 0x3, 0x10000000, 0xb807, 0xb}}, @TCA_DEF_PARMS={0x18, 0x2, {0x1, 0x4e5, 0x0, 0x2040, 0x9}}]}, {0x10, 0x6, "451f01fe0128d639caa23de6"}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}, @m_ct={0x98, 0x1d, 0x0, 0x0, {{0x7}, {0x34, 0x2, 0x0, 0x1, [@TCA_CT_LABELS_MASK={0x14, 0x8, "dd6f47a65fd22201d280c5dea213d3fc"}, @TCA_CT_NAT_IPV6_MIN={0x14, 0xb, @ipv4={'\x00', '\xff\xff', @empty}}, @TCA_CT_NAT_IPV4_MAX={0x8, 0xa, @loopback}]}, {0x40, 0x6, "94e6bf07705e89a20a380a6c5f7b783e9d00958aec3e037df246cc54b4667218db86ada4a7ef787c706fcb44380894e40768751e8c405f03a25823ea"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_vlan={0x1040, 0x17, 0x0, 0x0, {{0x9}, {0x14, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x88a8}, @TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0x474}]}, {0x1004, 0x6, "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"}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}, @m_skbedit={0xa0, 0x1, 0x0, 0x0, {{0xc}, {0x44, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_MARK={0x8, 0x5, 0x1}, @TCA_SKBEDIT_PTYPE={0x6}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0xfd}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x100}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x7fff}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x9}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0xacc}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6}]}, {0x32, 0x6, "a26f917dd7d918402f6f168b34b227bf4b0ee7804f18700c4225d58cfa0130026ccf61394437e77babbf60142b1b"}, {0xc}, {0xc, 0x8, {0x2, 0x5}}}}]}]}, 0x1364}, 0x1, 0x0, 0x0, 0x804}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYRES8, @ANYRES64, @ANYRES64=0x0, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000100"/28], 0x48)
prlimit64(0x0, 0x5, &(0x7f0000000140)={0x2, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r2 = fcntl$dupfd(r1, 0x0, r1)
write$sndseq(r2, &(0x7f0000000100)=[{0x0, 0x0, 0x0, 0x0, @time, {0x3}, {}, @note={0x0, 0x0, 0x0, 0x6}}, {0x0, 0x0, 0x0, 0x0, @time={0x0, 0x88}, {}, {0x0, 0x92}}], 0x38)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="34000000000801080000000062805bb8f6e6e40000000300000206000240dada000008000000000000000000000004000480056b9a7f5986a5a87284e1b6d7e61e0003003a000000f5c1d37b1ec1b0d41e7475534948637f53193a80b9aa03cd6f31661680596f596d045c9742715e3446769d26cc72c8"], 0x34}, 0x1, 0x0, 0x0, 0x24018100}, 0x4000000)
unlink(&(0x7f0000000000)='./file0\x00')
bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r5, &(0x7f0000847fff)='Y', 0x1, 0x40000000, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
modify_ldt$read(0x0, &(0x7f0000000400)=""/238, 0xee)
socket$netlink(0x10, 0x3, 0x0)

8m46.862145813s ago: executing program 3 (id=121):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)
r2 = syz_open_dev$usbfs(&(0x7f00000004c0), 0x5, 0xba0c0)
ioctl$USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000380)={0xa1, 0xf, 0xffff, 0x0, 0x0, 0x0, 0x0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="300000003e000701fcfffffffddbdf25047c0000100036800c00020007001400000000000c000180060006008e"], 0x30}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
sendmsg$can_bcm(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="05000000", @ANYRES64=r2, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRESDEC=r0, @ANYBLOB="000000000100000000000000000000009dfc"], 0x48}}, 0x4000004)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r2, 0x4004f506, &(0x7f0000000540))
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000240)='./file0/../file0/file0\x00', 0x0)
mount$bind(0x0, &(0x7f0000000100)='./file0/../file0/file0\x00', 0x0, 0x80000, 0x0)
umount2(&(0x7f00000001c0)='./file0/../file0\x00', 0x3)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r5 = socket$netlink(0x10, 0x3, 0xc)
rt_sigtimedwait(0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000003c0), r5)
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r5, &(0x7f0000000480)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000440)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c001d003e5807a414b785", @ANYRES8=r2, @ANYBLOB="00042cbd7000fedbdf251b0000000e0001006e657464657673696d0000000f0002006e657464657673696d30000008000b0006000000"], 0x3c}, 0x1, 0x0, 0x0, 0xc010}, 0xc000)
connect$bt_l2cap(r0, &(0x7f0000000200)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x8, 0x2}, 0xe)
r6 = syz_open_dev$dri(&(0x7f0000000400), 0x3, 0x200200)
openat$tun(0xffffff9c, &(0x7f0000000080), 0x80000, 0x0)
ioctl$DRM_IOCTL_MODE_REVOKE_LEASE(r6, 0xc00464c9, &(0x7f00000002c0))
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000000)=')\x00', &(0x7f0000000040)='-+{%,-!./($\x00', 0x0)
r7 = openat$null(0xffffff9c, &(0x7f00000000c0), 0x240, 0x0)
sendto$inet(r7, &(0x7f0000000100)="6bf3e459efe0091c359e6f8e35b51eb218563fef6575fa05f8d9a20a4dee7cf65abbb58ee940afef62221d4e0088d7bb5b487432789ceece3632b65750a3a5cc66abc19a96905403090a616ed2c33e8eb74170692461bf946745b1d9c555df5e004e54cdfdcb9182ef6a0e3d478201e0bc72da5c94a26098d5430bcca75faa3ea36de6b8054df2b5e92726c1ce6ef1", 0x8f, 0x4800, 0x0, 0x0)
dup(r0)

8m46.70511405s ago: executing program 3 (id=122):
mkdir(&(0x7f0000000300)='./bus\x00', 0x90)
mount$9p_virtio(&(0x7f0000000440), &(0x7f0000000480)='./bus\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=virtio,mmap,cache=none,cache=loose,posixacl']) (fail_nth: 4)

8m46.442849661s ago: executing program 3 (id=123):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$netlink(0x10, 0x3, 0xa)
dup(r2)
r3 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
ftruncate(r3, 0x3)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0x1, 0x0, 0x0, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x6)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r8 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r8, r7, &(0x7f0000002080)=0x58, 0x23b)

8m46.309336042s ago: executing program 32 (id=123):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$netlink(0x10, 0x3, 0xa)
dup(r2)
r3 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
ftruncate(r3, 0x3)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0x1, 0x0, 0x0, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x6)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r8 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r8, r7, &(0x7f0000002080)=0x58, 0x23b)

6m22.843754571s ago: executing program 4 (id=1073):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000002a00), 0x800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pimreg\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'veth1\x00', 0x400}) (fail_nth: 2)

6m22.722155871s ago: executing program 4 (id=1074):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001180)={0x6, 0x10, &(0x7f00000008c0)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000000000001823", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000000000000850000001c00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001bc0)={r1, 0x7000000, 0x4000, 0x4000, &(0x7f0000001cc0)="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", &(0x7f0000001c40)=""/76, 0x0, 0x0, 0x47, 0x50, &(0x7f0000001ac0)="9c01bd6f9a6028c80d7364240fd78867d9d62eca43c565f2c5ac65dd4a0fadceb6c65dcb07f2421e69087e0f17b4eb709e4805f2722709c46bef17c4cb9aed9fb1c342179ea349", &(0x7f0000001a40)="408fd0050dc7945b483103067eca9bd26ffbe35abf0f88a103f6893dc2b1d1cdc2195d4ae89abc04ff5fe5d2466892c81015df835a7d47be4f852161bc4015e7564b08584290fe1762f943a653008ac5", 0x1, 0x0, 0x13}, 0x22)

6m22.721314693s ago: executing program 4 (id=1075):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x5, 0xe4}]}, 0x8)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1000, 0x2000004, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4)
quotactl_fd$Q_GETNEXTQUOTA(0xffffffffffffffff, 0xffffffff80000901, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
socket$can_raw(0x1d, 0x3, 0x1)
sendmmsg$inet(r0, &(0x7f0000001200)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000001280)="bb2d839f3bf337ccd0d8f3513ab30aba4b00b6f0ef506a60f4082ace5a8a10d80d8d595071f2ff529ff6996481ffc7e4de448343b85079722c4f1a1ce360836392283201a1a5ac0b6e24ccf9f075c64fe58b7a37d37019a49908876bc37c9f304eeefed8a6d8cae3ca0f81e900c8735b8b3063967b68a1567e30726f2c0edb6c85e78619700b0645b728a0c88b22d18366a6db2e391401feb630396bf42b987b102eb2d0a804e188648df6c8ddd79e0fde3893930e06e91c39cc01d239a1c20cb0cee84da924212382163c6638e798d66660c356195a56523456052c42aca7c8404e259561dfea5cbdc21a31b7e7eb73a710b68ba2ae2eff86d3d4fbda8b72014f5de839d48acbc9d217f7ac0b3362a66f3a7d04277cc4b918687ed082170f98dc54bd56f28ea3fecc4e86e1820ed811919dac4d09c18e27c4d839c7ac015d34522c7d87ae968dc872d97db81da9a4b6f631535348d9d44ca3fe846f6706fd3d3bd2f62f2d046a2973c9e8c6ccbf96fd0060d532433732627bf213a35870cea250f79ac773b8adba386e0ae960801b073646dcfe7c89f0cb410d22146cb3109bb9a12649e943104875c0272dfdfac5998854c0f62438909522fba45a4ac83b917a6d9a45704fefe035986b7ae676dd6b8094d2ce7ed64f0aaf138cc827553d74b2c04488d849df41fb98a6c966c07cbb1a9fe3ee5e41c3082c51b37f9df811461cf123830ee606c7b5816b6b86b21860177bfc3fd9aeb689dbb39963a55cee2afe7352200f719a3c0fe44e059446bd7226d9e814d2358c2524c0103c48f7516cc69eb04815bbef84a5bd840a5131f45c335ef8939d6100cf89160f5f1c5aec60e479d18f4680a5a525964fbf2371c1493df2c3e67f98645f329d984250dc98a48a5ab14624438ad259145794a22055ace7d33b5218ed2bda0a528bee49e4e4ae3068477da429945eef0e06128a3202f62634d8faba02e7a951fd2ceba99d2a1488872c66ceef1c5ba5a3e4a523be24c7c2de0316ae12a66d11a8089888c1e2635206ad43da841b07324fdb18eaf8d8a41a8eee7e9cd948967234049bf5ff3c8ce9cd708cf33fca2896221990573c08ef7eb0843189f7033f93b753a40c49bfc92effc9a663fbd1389f1719d14b3d33558bc1ca6c7a66c3ce93151091b23b0efdc14b6e4af3bd914ae73ef2c823346af97d7d2a53f644ba75587ab85e95c43244ba1c97cd1e692bd3e781c21b937e005c9b617ef80b0b39be0da367d2d6320a9d9efa49b574239631adb87f1b5028ee294136a8ba08b36a4faa93dc03960054a7d8655beae9a5b59db4880ba897ee9bdae083bc90567876375c747e6e19876f3ec81d6306fe252c5b7339c3f8aa409a2b745db9709e0152974db8463d16f16174be5ca677ce5bccdedc1c916919a4c919a92f0529ccca4f5c15546347cbfb94924541d8d8c1ad22bd579a620195ba98c4e1aac394c483d5ec233b7d645893ce835c19f5f58179d838d8ff31391beab43f5d01ce477cb305804b2ce0412788b2e516d049a2b55aa7bf673ade77522ef7299da43acc8cb6c6be9b9bbe90c0347a87eaa000383afd0b6ff6c3e53f11ae2449bfb75b717bd5f2068680e5677782a9fecfed818e69a54849a25ba9fc1894a43076860e1beb0149baf2bef5c712a295b5c8f27fbd75f738100c2e9d2e358b5c8805d1f8f94bea753fb4c3e72802844f7f54b1120310fc1d9bceac33a1e0dad1ac318b03e39e63845ef90b7c14d543e5248626a4deb328d3ababa54de95d6b9d4947f9afbe64fa36d731670adb4efd53f981f1acaa5361293e6b1c67ed7acef1bbc61e3b92dba85773bb83850b9ec0ce204c0e109284e0de7a9007e1a0227d5a9061602fa40728e6e9e0e198bafbfe4e06450a44a8cb98ba38d02744ca3aff2dcc74054ee57cfef01af36cd5d4768ebbe1f60d302d0c56de5de0b52b15ccc824f9376fd28a303d3c9f274967f288d0775349885dbe6d4d0d921ea05130a5abd835c09a5afcf42d74db5eb2ed5b382691657ce5d101d97c4c30f9e48618fb7d9b1332f3457602306d908ac58d33f267d016a49d9f176376be5cc176df7ba603e0eae0d3aa1d0e4aba2b3e367e09d3ea776fa77a417707359532177826cc3dc36d265b2ee0ad921d787e3f88a8e4e9b21376aea3e399631998eb5f3d10a1c9e9", 0x60e}], 0x1}}], 0x1, 0x40000d0)
r1 = syz_open_dev$sg(&(0x7f0000000040), 0x80000000, 0x400800)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(r1, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
read$FUSE(r2, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000840)='\t&', 0x62, 0x40040011, 0x0, 0x0)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000000))

6m22.57144823s ago: executing program 4 (id=1076):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xa, 0x6, &(0x7f0000000140)=ANY=[@ANYBLOB="05000000000000006b110800000000008510000002000000850000000000000095000000000000009500a50500000000389230606378b65aa92ac1ac2a77cdc867e41e3acbda96d4b848d263de77bf1e6d8b17e03ac18017c094eb881e"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
move_pages(0x0, 0x7, &(0x7f0000000000)=[&(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil], &(0x7f0000000280)=[0x9, 0x9, 0x1], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x2)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
writev(r0, &(0x7f0000000900)=[{&(0x7f0000000800)='@', 0x1}], 0x1)
ioctl$BLKZEROOUT(r0, 0x127f, &(0x7f0000000100)={0xa00, 0xa00})
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x4)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$igmp(0x2, 0x3, 0x2)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x110)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x19d)
write$P9_RREADLINK(r3, &(0x7f0000000180)={0x10, 0x17, 0xfffd, {0x7, './file0'}}, 0x10)
open(&(0x7f0000000140)='./file0\x00', 0x33f, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x28, 0x2, 0x3, 0x201, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x10001, 0x2}}]}, 0x28}, 0x1, 0x0, 0x0, 0x24040040}, 0x8000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)=ANY=[@ANYRESDEC=r1], 0x6c}, 0x1, 0x0, 0x0, 0x4040}, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='tmpfs\x00', 0x0, &(0x7f00000001c0)='grpquota')

6m21.677778406s ago: executing program 4 (id=1087):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$vbi(0x0, 0x0, 0x2)
ioctl$VIDIOC_S_TUNER(r1, 0x4054561e, 0x0)
sendmsg$nl_generic(r0, 0x0, 0x4000)
syz_io_uring_setup(0x10d, 0x0, 0x0, &(0x7f0000000280))
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x80042, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xe)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f00000002c0), 0x1049c2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$unix(0x1, 0x2, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYRES16=r6, @ANYBLOB="010028bd7000fddbdf250700000008000300", @ANYRES32=r7, @ANYBLOB="0c009900ff07000070000000"], 0x50}, 0x1, 0x0, 0x0, 0x91}, 0x24044884)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010024bd7000e8dbdf252100000008000300", @ANYRES32], 0x24}, 0x1, 0x0, 0x0, 0x4014001}, 0x0)
sendmsg$NL80211_CMD_SET_PMK(r8, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1022000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r6, 0x20, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x44080}, 0x8011)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x8004}, 0x0)
sendmsg$NFT_BATCH(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @log={{0x8}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_LOG_PREFIX={0x9, 0x2, 0x1, 0x0, 'cake\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x74}}, 0x80)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
r12 = syz_open_dev$vim2m(&(0x7f0000000000), 0x8, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r12, 0xc0405602, &(0x7f0000000080)={0x19, 0x2, 0x0, "b43d70dde5dbbbe40f00f401bbe6c9000000c67f00"})
ioctl$EVIOCGPROP(r3, 0x40047438, &(0x7f0000000180)=""/246)
write$binfmt_aout(r3, &(0x7f0000000280)=ANY=[], 0xfce1)

6m21.453975539s ago: executing program 4 (id=1088):
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000004c0)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)={0x1c, r2, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x40000c4)
r4 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x891c, &(0x7f0000000140)={'ipvlan0\x00', @random="0200ff7fffff"})

6m21.349094636s ago: executing program 33 (id=1088):
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000004c0)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)={0x1c, r2, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x40000c4)
r4 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x891c, &(0x7f0000000140)={'ipvlan0\x00', @random="0200ff7fffff"})

2m18.561736461s ago: executing program 0 (id=2515):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
getpid()
ioctl$KVM_GET_SUPPORTED_CPUID(r0, 0xc008aec1, &(0x7f00000000c0)=""/8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x8850)
sendmsg$NFT_BATCH(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b040000000000000000020000002400048020000180070001006374000014000280080002400000000d08000440000000160900010073797a300000000009e3010073797a3200000000140000001100010000000000000000000700000a75193a319d1a3a4acb60bab98280d9c85054a264c8daba4726287cfb022056f8ab3dff12023a8346276fb5c8c5acfbda3017a16b7c19ac"], 0x78}}, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000040)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r4=>0x0], 0x1})
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r5, &(0x7f0000000000), 0xd)
r6 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r6, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f0000000240)=[0x0, 0x0, <r7=>0x0], &(0x7f00000000c0), 0x3, r4})
ioctl$DRM_IOCTL_MODE_OBJ_SETPROPERTY(r2, 0xc01864ba, &(0x7f0000000300)={0x14, r7, r4})
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), r1)

2m18.500899871s ago: executing program 0 (id=2516):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYRESOCT, @ANYRES64=r1, @ANYBLOB="44a837b4012918a47d0187", @ANYRES16, @ANYRESDEC=r1, @ANYRESOCT=r0], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x3, &(0x7f0000000100)=[{0x81, 0x6, 0x1, 0xe7}, {0x2, 0xcc, 0x5, 0xd}, {0x11c, 0xf, 0x9e, 0xffffffff}]})
r5 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r5, &(0x7f0000000180)=ANY=[@ANYBLOB="5245434c45560a50484f4e454f55540a535045414b455220274344272030303030303030303030303030303030303030300a4449474954414c32202706b86e65204361707455726527203030303030303430303030"], 0xb8)
dup3(0xffffffffffffffff, r5, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020100000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000acb7b0000160a01010000000000823b55e154f5000000020000000900020073797a31000000000900010073797a30000000002c000380080002400000000008000140000000001800000000000000006c616e3000000000000000000000000800074000000001140000001100010000000000000000000000000a"], 0x88}}, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r7 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0e00000004000000040000000300000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000eefaee8d7dd3e22a0000000000000000000000000072e55d282e707ecb2288f4777cb296010f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xb, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="18080000700000000000000000000000181100003c85a90c2581d709506d48c45079197c12972317112b860de9bbf307b274fbd54c45a3f8f51cb84f8a05140f97eb2a1d0eb4e06c4e4e10f8bce2e0bea5c9607f9d02243cc71ffced696a2689e5db0b20e17a09af02480337b51ae7bfc4d914ecdc1c13ed014bbbf78f55928c", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf09000000000000350901000000000095000000000700004d9800000000000056080000000000008500000000000000b7000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0xc5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bind$x25(r7, &(0x7f0000000040), 0x12)
r9 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
close(r9)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e24, @local}, 0x10)

2m17.561765367s ago: executing program 0 (id=2520):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x88)
mkdir(&(0x7f0000000000)='./file0\x00', 0x80)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@metacopy_on}]})
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000a00)=@newsa={0xec, 0x10, 0x633, 0x0, 0x0, {{@in=@broadcast, @in=@multicast2}, {@in6=@rand_addr=' \x01\x00', 0x0, 0x32}, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, {}, {0x0, 0x62c}}}, 0xec}}, 0x0)
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')
link(&(0x7f0000000100)='./file1\x00', &(0x7f0000000180)='./file0\x00')
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="9122b2b2", @ANYRES16, @ANYBLOB="01002cbd700044000000050000000800090002"], 0x40}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'bridge_slave_1\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="7c0000001000010400"/20, @ANYRES32=r5, @ANYBLOB="00000000000000005c001280110001006272696467655f736c6176650000000044000580050009000000000005002000010000000500"], 0x7c}}, 0x1)
write$FUSE_INIT(r2, &(0x7f0000004200)={0x50, 0x0, r3}, 0x50)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)

2m17.507827012s ago: executing program 0 (id=2522):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x8f20d8, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82187202, &(0x7f0000000440)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000740)=0xfffffffe, 0x4)
mount$bind(&(0x7f00000001c0)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101e, 0x0)
r1 = socket(0x10, 0x80003, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x40a000, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b40)=ANY=[@ANYBLOB="3401000010000100feffffff0001000000000000000000000000ffffe0000002fc0100000000000000000000000000010001071c4e230002000000002c000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x134}, 0x1, 0x0, 0x0, 0x815}, 0x10)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="3801000010000100000000f6cb00000000000000000000000040003b9c0003000300008000"/56, @ANYRES32=0x0, @ANYRESOCT=r5, @ANYBLOB="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"], 0x138}}, 0x20000000)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000700)={'ip6gre0\x00', &(0x7f0000000680)={'ip6gre0\x00', <r6=>0x0, 0x29, 0x0, 0x8e, 0x0, 0x46, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast1, 0x1, 0x80, 0x6, 0xffffe84d}})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x0, 0x0, 0x0, 0x14, 0x0, 0x0, 0x410ff, 0x2b, '\x00', r6, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
getsockopt$inet_mreq(r0, 0x0, 0x24, &(0x7f0000000340)={@empty, @private}, &(0x7f0000000380)=0x8)
ioctl$TUNSETOFFLOAD(r3, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r2, 0x40047451, &(0x7f0000000180))
close_range(r4, 0xffffffffffffffff, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
socket$packet(0x11, 0x2, 0x300)
request_key(&(0x7f0000000000)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVex:D%', 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
r7 = openat$uhid(0xffffff9c, &(0x7f0000000b00), 0x802, 0x0)
write$UHID_CREATE(r7, &(0x7f0000001fc0)={0x0, {'syz1\x00', 'syz0\x00', 'syz1\x00', 0x0, 0x0, 0x141, 0x2, 0x2, 0x8, 0x4}}, 0x11c)
r8 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0xffffaecd, &(0x7f0000000900)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000017f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120c0001000b080c00bdad01409bbc7a46e39a8285dcdf12176679df069163ce955fed0009d78f0a947ee2b49e33538afaeb2713f450ebd010a20ff27fff", 0x89}], 0x1}, 0xff0f000000000000)
pselect6(0x40, &(0x7f0000000140)={0xba, 0xd, 0x0, 0x1, 0xffffffffffffffff, 0x3}, &(0x7f0000000000)={0x1000001f, 0x0, 0x20, 0x4000100, 0x0, 0x4, 0xbf, 0xffffffffffffffff}, 0x0, 0x0, 0x0)

2m17.151772286s ago: executing program 0 (id=2523):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="18008865a064000000000000000000000000000000950000"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r0}, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x4000000)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04330a"], 0xd)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffd19, &(0x7f00000002c0)={&(0x7f00000000c0)=@newtaction={0x60, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_ctinfo={0x48, 0x1, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0xd, 0x3, {0x0, 0x0, 0x4}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x60}}, 0x0)
socket(0xa, 0x3, 0x3a)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r2)
r3 = memfd_create(&(0x7f0000000340)='%\x00#D)\xdeA\x02\n,\x06\x89\x96\x8f\xd3F\x9fe\xf7\x9f\x9f\x0f\xeb\v\xc3\x86c\xe7\xc6\x88\xce%0\x05\x9d4M\tH\x89m\x14>4\xe4\xb4m\fF\xaf\x9d&\x05\xcf\xc1HZ\x9a\xa3X\xaa;t\x12\'\xf5\x18PvY\xbe\xd1J6\xd9\xa6\xec\xde\xd4\xb9I5\x1a\xc6S\x14\x18]K\xe0\xef\x97Vv\xbe\x8a\xffG\xc79\x9d\x19\x10\x8c\xb2\xe0` >D\x11*V\xb9\xcfi\x03FnU\t|b\xbe\x10\xc4\xd4\x01\xb2=\x11%\xd0`-\xe2\x1d\x8e\x7f\xd1\x15\x03\xa5(\x1e\x05H\xe8\'[0\xc2\vO\xdc\xf8?QT[8:f\xe9f\x9b\xd3\xe2:\xa2b\xa3\x89\n\x9d\n\xe2\xb7\xf6\xa6\xbe\x82]YF\x90\x8e\xde\xbd\xb1w\xf7\x15\xed\xd8\xea\xa8\xef\xfbM\x82oX\x80~\xe3\x1fH\xf4\x99\xa4\xd2E\'@\xab\x13\x94\xc2\xef\x81R\xbd\xaah\xd2D\xce\x1f\'\x8b9\xa5\x88\xf1C\x1a\a!\x95\x165RS1\x9e[\xf4\xa9v\xfah\xb7\xd8\x9c&\x85\xcbs\xad\x14\xf5\xd5\xd7M\x06\x15\x9d\xa2\xfb\xfc\x9c\x94`x\xdfma\xa6\x04\x06\xcb\xeb\vC{b\xceW3l\x8a\x9cO\"\xb5\xeb#\x03k\xe4\x99\xeb\xe3\x9d\xba\xd0\xb5\x0fh\xf2\xdc\x01\x81\xb48\xea\xaf\xd0*\x9c\x1d\xba,;\x17\xfb\x94M1\xea\x1f\xbf', 0x5)
ioctl$FS_IOC_RESVSP(r3, 0x402c5828, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
openat$fuse(0xffffff9c, &(0x7f0000000340), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1d, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)

2m16.928512453s ago: executing program 0 (id=2525):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000fcffffffb7020000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_unix(&(0x7f0000000180)='./file0/file0\x00', 0x0, 0x0, 0x10000, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=unix,debug<0x0000000000000000,access=user,a', @ANYRESDEC=0xee01, @ANYBLOB=',access=user,posixacl,loose,smackfstransmute=bridge0\x00,fsmagic=0x0000000000000007,\x00'])
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1b, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="280000002000010300000000fbdbdf2502000004000000000c0000000c000c400000000000000007f71f6db29df8e5b02da1fbdcbf07534577976cb9eed87b4ce32346609cf25cf6cd439bc1761538788df77cc123e8270620ac57adb9c1d60add4da3d0729a57997663651233a41a0efc4d65029001647c565716274c793cf883664f1ef29aafcb1c7a4a2f12819bffa858cc888813a307c01e5f341e9e57e2948242cc657e7a137887"], 0x28}, 0x1, 0x0, 0x0, 0x48d1}, 0x40)
pipe2$9p(0x0, 0x80000)
r4 = openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r4, 0xc0a45320, 0x0)
openat$sequencer(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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", @ANYRES32=r6, @ANYBLOB="0008000007500500280012800b00010062726964676500001800028008001c00a20000000c0023000100000000000000"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000780)=@delchain={0x634, 0x65, 0x2, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x8}, {0x0, 0x9}, {0x6}}, [@filter_kind_options=@f_bpf={{0x8}, {0x4}}, @filter_kind_options=@f_route={{0xa}, {0x4}}, @TCA_RATE={0x6, 0x5, {0x6, 0x22}}, @filter_kind_options=@f_route={{0xa}, {0x5e0, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0x4f0, 0x6, [@m_nat={0x184, 0xc, 0x0, 0x0, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x800, 0x4, 0x3, 0x401, 0x6}, @dev={0xac, 0x14, 0x14, 0xd}, @dev={0xac, 0x14, 0x14, 0x23}}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xd, 0x3, 0x20000000, 0xabdb, 0xb}, @local, @multicast1, 0xff000000, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xb15, 0xffffffff, 0xffffffffffffffff, 0x2, 0x4}, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, 0x0, 0x1}}]}, {0xe1, 0x6, "a20cadb01f8c4a8e4748889e3737d14f1724694699e03c974023ef5ed7b61b93c4f6206ab9e28fe80e99e94c14b582de570cb0b4bfd132ece1073656a302e1a03125fc24b68adfb25d3bec3c83a3fa2466dd78e6c1bf58bb6874b3be449ca1c18d42438f97126665492a838467fcc77145d49a408729cc0fcff7c1a91044b915297c2cfa36d3d56f81e6a3f3c6c309c55673f81ce6909750ec9855a1209ae602de4eb803836a835251b47f44ad3a0ef331d760a47183b6f1cad068cb41b52b2d551b027ab5de62d6138527d22bb48064332f600ee0b5700351d41a8e93"}, {0xc}, {0xc, 0x8, {0x3}}}}, @m_skbmod={0x98, 0x6, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0x8}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x8, 0x4, 0x3, 0x5d, 0x5}, 0xe}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @remote}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x5}]}, {0x2d, 0x6, "e7da3c8403fae38a6104e8deccdff1af0e8969df3c0c229b39997b184868614ac4430b321889325324"}, {0xc, 0x7, {0x0, 0xeb1aa48f20ecc78b}}, {0xc, 0x8, {0x3}}}}, @m_skbmod={0x40, 0x12, 0x0, 0x0, {{0xb}, {0x14, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0x4}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0xe}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_sample={0x12c, 0x0, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0xffffffff}, @TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0xf3}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x7fffffff, 0x1, 0x10000000, 0x132, 0x3}}]}, {0xd6, 0x6, "5585e4978312153aa42f30e46602bd87be41196cb887f6a445019260145eacfc789e0591173e540ea96ddc89cde1312b24d81cd9cf9ddc2ac817e49647559a92bc68922da07ae74d412c68df8f1a425986d1e0fe379e9b66ed2aca073af3aad4e36109274822fbfa834d7a02b3e1fc01841581700abff25ebcfeb38bbb3ee3e0d75898ec65a1ca67c2f06a3b2b9f5eb067c4e21e0deedcf47e3db9cda23dca15b3e34e43e7d7cc1b9201d0e6d45497b608b28ca549f62ba829bfb392018f5c37ab8e7cc7f5221d33e148c986556da3dba576"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_ctinfo={0xe0, 0x4, 0x0, 0x0, {{0xb}, {0x4}, {0xb1, 0x6, "b44ebc8afbd2b83e8b5f7f3f7d0f9ec133319134ef3defd0e955c2de28a772eff360adf52781f6dd085cc36ec32f2fd717bf6376b7017fcf2c0d0b598e9ea4ab39c2de02997138177e36932b52ff37b506fcea3b7b6c60b4cc622b24ba03ba4191037d499b7d606770aff5b44285d9dc306ba939b169e30cc5732d7474a7eca83e8296f0b261eb3c36c6818ab676368e47f34f380c89aed92adf458308899021a4b195c89b32d822f9e62e8a2f"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x21bc45d1731da350}}}}, @m_nat={0x84, 0x9, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x63, 0x7fffffff, 0x0, 0x7fffffff, 0x10001}, @rand_addr=0x64010100, @remote, 0x0, 0x1}}]}, {0x31, 0x6, "fe35d39943ce91b09dd1f3de669aa5f77dd8fda92b8ff94b4d8703845cfc57e688cc3c24fe5cf2725c4c2562ec"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}]}, @TCA_ROUTE4_ACT={0xdc, 0x6, [@m_vlan={0xd8, 0x13, 0x0, 0x0, {{0x9}, {0x4}, {0xab, 0x6, "4536d5ba67cb41f3417191a0b4758169ba997e9dbec50e599419b7f290f4ee70efc0bdcb1d84cd2098b9c95fa81553821d25bbee1244fda18d438c3a5d696ee14197d17ea59071f0fd93760930ba453b3e23095f617d12282ec3f8190afeb1ac2e8d254fdac5b6ea11185f9256c3bab37a15cafe5f112d56723f0fb5c49b6449e58fc91a26d527012f701a9cfebef7787238f0d549914d85db8de6456cd08e0cd88f542f218759"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3}}}}]}]}}]}, 0x634}, 0x1, 0x0, 0x0, 0x81}, 0x8000)
r8 = socket(0x10, 0x803, 0x0)
sendto(r8, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)

2m16.886695109s ago: executing program 34 (id=2525):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000fcffffffb7020000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_unix(&(0x7f0000000180)='./file0/file0\x00', 0x0, 0x0, 0x10000, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=unix,debug<0x0000000000000000,access=user,a', @ANYRESDEC=0xee01, @ANYBLOB=',access=user,posixacl,loose,smackfstransmute=bridge0\x00,fsmagic=0x0000000000000007,\x00'])
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1b, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="280000002000010300000000fbdbdf2502000004000000000c0000000c000c400000000000000007f71f6db29df8e5b02da1fbdcbf07534577976cb9eed87b4ce32346609cf25cf6cd439bc1761538788df77cc123e8270620ac57adb9c1d60add4da3d0729a57997663651233a41a0efc4d65029001647c565716274c793cf883664f1ef29aafcb1c7a4a2f12819bffa858cc888813a307c01e5f341e9e57e2948242cc657e7a137887"], 0x28}, 0x1, 0x0, 0x0, 0x48d1}, 0x40)
pipe2$9p(0x0, 0x80000)
r4 = openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r4, 0xc0a45320, 0x0)
openat$sequencer(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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", @ANYRES32=r6, @ANYBLOB="0008000007500500280012800b00010062726964676500001800028008001c00a20000000c0023000100000000000000"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000780)=@delchain={0x634, 0x65, 0x2, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x8}, {0x0, 0x9}, {0x6}}, [@filter_kind_options=@f_bpf={{0x8}, {0x4}}, @filter_kind_options=@f_route={{0xa}, {0x4}}, @TCA_RATE={0x6, 0x5, {0x6, 0x22}}, @filter_kind_options=@f_route={{0xa}, {0x5e0, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0x4f0, 0x6, [@m_nat={0x184, 0xc, 0x0, 0x0, {{0x8}, {0x7c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x800, 0x4, 0x3, 0x401, 0x6}, @dev={0xac, 0x14, 0x14, 0xd}, @dev={0xac, 0x14, 0x14, 0x23}}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xd, 0x3, 0x20000000, 0xabdb, 0xb}, @local, @multicast1, 0xff000000, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xb15, 0xffffffff, 0xffffffffffffffff, 0x2, 0x4}, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, 0x0, 0x1}}]}, {0xe1, 0x6, "a20cadb01f8c4a8e4748889e3737d14f1724694699e03c974023ef5ed7b61b93c4f6206ab9e28fe80e99e94c14b582de570cb0b4bfd132ece1073656a302e1a03125fc24b68adfb25d3bec3c83a3fa2466dd78e6c1bf58bb6874b3be449ca1c18d42438f97126665492a838467fcc77145d49a408729cc0fcff7c1a91044b915297c2cfa36d3d56f81e6a3f3c6c309c55673f81ce6909750ec9855a1209ae602de4eb803836a835251b47f44ad3a0ef331d760a47183b6f1cad068cb41b52b2d551b027ab5de62d6138527d22bb48064332f600ee0b5700351d41a8e93"}, {0xc}, {0xc, 0x8, {0x3}}}}, @m_skbmod={0x98, 0x6, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0x8}, @TCA_SKBMOD_PARMS={0x20, 0x2, {{0x8, 0x4, 0x3, 0x5d, 0x5}, 0xe}}, @TCA_SKBMOD_DMAC={0xa, 0x3, @remote}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x5}]}, {0x2d, 0x6, "e7da3c8403fae38a6104e8deccdff1af0e8969df3c0c229b39997b184868614ac4430b321889325324"}, {0xc, 0x7, {0x0, 0xeb1aa48f20ecc78b}}, {0xc, 0x8, {0x3}}}}, @m_skbmod={0x40, 0x12, 0x0, 0x0, {{0xb}, {0x14, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0x4}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0xe}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_sample={0x12c, 0x0, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0xffffffff}, @TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0xf3}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x7fffffff, 0x1, 0x10000000, 0x132, 0x3}}]}, {0xd6, 0x6, "5585e4978312153aa42f30e46602bd87be41196cb887f6a445019260145eacfc789e0591173e540ea96ddc89cde1312b24d81cd9cf9ddc2ac817e49647559a92bc68922da07ae74d412c68df8f1a425986d1e0fe379e9b66ed2aca073af3aad4e36109274822fbfa834d7a02b3e1fc01841581700abff25ebcfeb38bbb3ee3e0d75898ec65a1ca67c2f06a3b2b9f5eb067c4e21e0deedcf47e3db9cda23dca15b3e34e43e7d7cc1b9201d0e6d45497b608b28ca549f62ba829bfb392018f5c37ab8e7cc7f5221d33e148c986556da3dba576"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_ctinfo={0xe0, 0x4, 0x0, 0x0, {{0xb}, {0x4}, {0xb1, 0x6, "b44ebc8afbd2b83e8b5f7f3f7d0f9ec133319134ef3defd0e955c2de28a772eff360adf52781f6dd085cc36ec32f2fd717bf6376b7017fcf2c0d0b598e9ea4ab39c2de02997138177e36932b52ff37b506fcea3b7b6c60b4cc622b24ba03ba4191037d499b7d606770aff5b44285d9dc306ba939b169e30cc5732d7474a7eca83e8296f0b261eb3c36c6818ab676368e47f34f380c89aed92adf458308899021a4b195c89b32d822f9e62e8a2f"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x21bc45d1731da350}}}}, @m_nat={0x84, 0x9, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x63, 0x7fffffff, 0x0, 0x7fffffff, 0x10001}, @rand_addr=0x64010100, @remote, 0x0, 0x1}}]}, {0x31, 0x6, "fe35d39943ce91b09dd1f3de669aa5f77dd8fda92b8ff94b4d8703845cfc57e688cc3c24fe5cf2725c4c2562ec"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}]}, @TCA_ROUTE4_ACT={0xdc, 0x6, [@m_vlan={0xd8, 0x13, 0x0, 0x0, {{0x9}, {0x4}, {0xab, 0x6, "4536d5ba67cb41f3417191a0b4758169ba997e9dbec50e599419b7f290f4ee70efc0bdcb1d84cd2098b9c95fa81553821d25bbee1244fda18d438c3a5d696ee14197d17ea59071f0fd93760930ba453b3e23095f617d12282ec3f8190afeb1ac2e8d254fdac5b6ea11185f9256c3bab37a15cafe5f112d56723f0fb5c49b6449e58fc91a26d527012f701a9cfebef7787238f0d549914d85db8de6456cd08e0cd88f542f218759"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3}}}}]}]}}]}, 0x634}, 0x1, 0x0, 0x0, 0x81}, 0x8000)
r8 = socket(0x10, 0x803, 0x0)
sendto(r8, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)

9.018822708s ago: executing program 1 (id=3355):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r2 = inotify_init()
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000100)={0x0, 0x3ffc, 0x0, 0x0, 0x15, "ffff00"})
io_setup(0x7, &(0x7f0000000000)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f00000006c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4, r3, &(0x7f0000000180)='0', 0x1, 0xceaa, 0x0, 0x5}])
close_range(r3, 0xffffffffffffffff, 0x0)
inotify_add_watch(r2, &(0x7f00000000c0)='.\x00', 0x5000009)
r5 = open(&(0x7f0000000180)='./bus\x00', 0x189a7c, 0x113)
r6 = open(&(0x7f0000000040)='./bus\x00', 0x4e142, 0x0)
pwritev2(r6, &(0x7f0000000680)=[{&(0x7f0000000200)="05", 0x6a000}], 0x1, 0x6000000, 0x0, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x37fffee, 0x4002011, r5, 0x0)

7.328110638s ago: executing program 1 (id=3362):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000000c0)={'veth0_to_batadv\x00', &(0x7f0000000440)=@ethtool_per_queue_op={0x4b, 0xf, [0xa7, 0x90000000, 0x7, 0xfff, 0x8, 0x1, 0x14, 0x80000000, 0x9, 0x100, 0x6ba, 0x5, 0x14, 0x800, 0x7, 0xffffff5d, 0x16a, 0x6f, 0x6, 0x6, 0xfffff801, 0x7, 0x1, 0x7, 0xffffffff, 0x9, 0x6, 0x194, 0x1000, 0x312, 0x0, 0x7f, 0x4, 0x1, 0xffff, 0x3e, 0x7, 0x101, 0x10000, 0x4eb16aea, 0x3, 0x526, 0x5, 0x4, 0x0, 0xfffffffb, 0x9, 0x1, 0x160, 0x6, 0x19ce, 0x9, 0x2d, 0x8, 0x0, 0x0, 0x8, 0x0, 0x2, 0x3, 0x557, 0x91, 0x3, 0xfffffffe, 0x7f, 0x7fffffff, 0xfffffffc, 0x7, 0x7, 0x7, 0x1000, 0x7ff, 0xff, 0xfff, 0x2, 0x7c, 0x7fff, 0x4, 0x1, 0x2, 0x1, 0x6, 0x9, 0x8, 0x8ebf, 0x979, 0x5, 0x7, 0x4, 0xff, 0x9, 0x8, 0x3, 0x3, 0x26f81526, 0x2, 0x7f, 0x4, 0x6, 0x8, 0x5, 0x18000, 0xa, 0x5, 0x6, 0x7, 0x101, 0x4, 0x5, 0xba1d, 0x6, 0x1, 0x7fff, 0x81, 0x3, 0x4, 0x0, 0xfff, 0x3, 0x3, 0x9, 0x3, 0xff, 0x0, 0x691, 0xe8de, 0x101, 0xd145]}})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="740000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b030040000000004c0012800b00010067656e65766500003c0002800800010001000000140007000000000000000005000000000000000108000f"], 0x74}}, 0x4040040)
syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r1 = epoll_create1(0x0)
socket$inet6(0xa, 0x6, 0x8000003)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc000)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x3025, &(0x7f0000000480)={0x0, 0x938f, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000180), &(0x7f00000001c0))
r4 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)
connect$inet(r4, &(0x7f0000000200)={0x2, 0x4e22, @local}, 0x10)
sendmmsg$inet(r4, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r6, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/96, 0x128000, 0x800}, 0x20)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r6, 0x11b, 0x6, &(0x7f0000000140)=0x20, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', <r8=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r6, 0x11b, 0x5, &(0x7f0000000200)=0x20, 0x4)
bind$xdp(r6, &(0x7f00000002c0)={0x2c, 0x8, r8}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r5, &(0x7f0000000080))
socket$inet_tcp(0x2, 0x1, 0x0)

6.730411572s ago: executing program 1 (id=3368):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYRESOCT, @ANYRES64=r1, @ANYBLOB, @ANYRES16, @ANYRESDEC=r1, @ANYRESOCT=r0], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x3, &(0x7f0000000100)=[{0x81, 0x6, 0x1, 0xe7}, {0x2, 0xcc, 0x5, 0xd}, {0x11c, 0xf, 0x9e, 0xffffffff}]})
r5 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r5, &(0x7f0000000180)=ANY=[@ANYBLOB="5245434c45560a50484f4e454f55540a535045414b455220274344272030303030303030303030303030303030303030300a4449474954414c32202706b86e65204361707455726527203030303030303430303030"], 0xb8)
dup3(0xffffffffffffffff, r5, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020100000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000acb7b0000160a01010000000000823b55e154f5000000020000000900020073797a31000000000900010073797a30000000002c000380080002400000000008000140000000001800000000000000006c616e3000000000000000000000000800074000000001140000001100010000000000000000000000000a"], 0x88}}, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r7 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0e00000004000000040000000300000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000eefaee8d7dd3e22a0000000000000000000000000072e55d282e707ecb2288f4777cb296010f"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xb, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="18080000700000000000000000000000181100003c85a90c2581d709506d48c45079197c12972317112b860de9bbf307b274fbd54c45a3f8f51cb84f8a05140f97eb2a1d0eb4e06c4e4e10f8bce2e0bea5c9607f9d02243cc71ffced696a2689e5db0b20e17a09af02480337b51ae7bfc4d914ecdc1c13ed014bbbf78f55928c", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf09000000000000350901000000000095000000000700004d9800000000000056080000000000008500000000000000b7000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0xc5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bind$x25(r7, &(0x7f0000000040), 0x12)
r9 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
close(r9)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e24, @local}, 0x10)

5.768125875s ago: executing program 1 (id=3372):
socket$alg(0x26, 0x5, 0x0)
syz_open_dev$radio(0x0, 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd74)
openat$fb1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x14)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000180)=0xe)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = socket$l2tp(0x2, 0x2, 0x73)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000014c0)={0xffffffffffffffff, 0xe0, &(0x7f00000013c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f00000001c0)=[0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, &(0x7f0000000200)=[0x0], &(0x7f0000000240)=[0x0], <r4=>0x0, 0xd0, &(0x7f00000003c0)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000001300), 0x0, 0x0, 0x95, 0x8, 0x8, &(0x7f0000001380)}}, 0x10)
fcntl$F_GET_RW_HINT(0xffffffffffffffff, 0x40b, &(0x7f00000011c0))
bpf$PROG_LOAD(0x5, &(0x7f00000015c0)={0x6, 0x9, &(0x7f0000000440)=ANY=[@ANYBLOB="18110000", @ANYRES32, @ANYBLOB="0000000000000000b7ce00000b0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000049d2ddad1e171f454ddf360082000000"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000140)={0xa, 0x5}, 0x8, 0x10, &(0x7f0000000180)={0x2, 0xa, 0x5, 0x8}, 0x10, r4, 0xffffffffffffffff, 0x8, &(0x7f0000001500)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000001540)=[{0x80005, 0x5, 0x10, 0x3}, {0x6, 0x4, 0xd, 0x9}, {0x0, 0x5, 0x7, 0x2}, {0x2, 0x5, 0xf, 0x5}, {0x4, 0x5, 0x8, 0x4}, {0x4, 0x5, 0x2, 0xc}, {0x4, 0x2, 0x1, 0xb}, {0x1, 0x4, 0x0, 0x1}], 0x10, 0x1, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1c, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="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"/296], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
preadv(r5, &(0x7f0000002280)=[{&(0x7f0000002780)=""/133, 0x85}], 0x1, 0x10001, 0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1d, 0xf, &(0x7f00000001c0)=ANY=[@ANYBLOB="186000000f000000000000000900000095000000000000001851000009000000000000000000000018460000feffffff00000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7028026363569f23e4300007824a1548500000006000000"], &(0x7f0000000080)='syzkaller\x00', 0x8000, 0x9d, &(0x7f0000000240)=""/157, 0x41100, 0x0, '\x00', 0x0, @lsm=0x2b, r1, 0x8, &(0x7f00000003c0)={0x0, 0x4}, 0x8, 0x10, 0x0, 0x0, r4, r2, 0x1, &(0x7f0000000440)=[r1, r1, r1, 0xffffffffffffffff, r1, r5, r1, r1], &(0x7f0000000480)=[{0x4, 0x5, 0x10, 0xc}], 0x10, 0x5, @void, @value}, 0x94)
getsockopt$inet_buf(r3, 0x0, 0x2b, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
socket$kcm(0x10, 0x2, 0x4)
dup(0xffffffffffffffff)
ioctl$KVM_PRE_FAULT_MEMORY(r8, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})

5.090728168s ago: executing program 1 (id=3374):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="120100009ac0b620110f211066865578ac0109029c000100000400090400bf900b64ea00090587"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r0)
r1 = io_uring_setup(0x177d, &(0x7f00000002c0)={0x0, 0x3e12, 0x2, 0x2, 0x3b1})
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
close_range(r1, 0xffffffffffffffff, 0x200000000000000)

3.060215086s ago: executing program 2 (id=3380):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000c, 0x8031, 0xffffffffffffffff, 0x6105d000)
mremap(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f000000b000/0x3000)=nil)
mremap(&(0x7f0000004000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000008000/0x4000)=nil)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xd)
r2 = dup(r1)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000100)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000d00)={r3}, 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000640)=@framed={{}, [@map_fd={0x18, 0x0, 0x2, 0x0, r3}, @ldst={0x1, 0x2, 0x4}]}, &(0x7f0000000d40)='syzkaller\x00', 0x40000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000040000000000000000000000850000002c000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KDGKBDIACR(r1, 0x4b4a, &(0x7f00000004c0)=""/242)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0x14, 0x0, &(0x7f0000000300)="259a53f271a76d2688ca4c6588a8588a3c71c269", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r5, 0x6, 0x21, &(0x7f0000000300)="03f6f19a0d084c750059847e72aea4c1", 0x10)
setsockopt$sock_int(r5, 0x1, 0x20, &(0x7f0000000340)=0x5c7, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r2, 0x0, 0x4d, 0x2f, &(0x7f0000000240)="8d7803d9784af5717bb764e336d2e0a9546021d7aa937fd2a814ec34914e4275fd4ab7c256efdc46f1590322617a46b726e15c9595723b85758441c960a6c2260ba4802898450b44742125f978", &(0x7f0000000000)=""/47, 0x2, 0x0, 0xfa, 0x4, &(0x7f0000000340)="b045a0890fe7097a63deac5cc349a2458d21c26c4ef6c1e83f013be872f7aca0e701328c53e2e8304b969d0cc01f73d9fcd33ffe7e58e9ed44ae39f90fbec3aa2723989fa9ddb4f94c3812fb26172c7df226e0ecfe9229ad071adb74b34a6cc2fbbe4fe23f39c5dab4de4d8e100e99155f9708b4a9e53f6a365d95af3fe1ce8c107983d13f5d9b454b69b00921eaf7d3223ce184efc7461073ad24b64d9a44cee20de06f1c3d4152503954bfe05d11cb7ed02e252fef4c73e3a2311a4e8845b63f154c0dd1aff0d9a525134ad6a592f10fec49f7581e4a8276be93ec6a298a29ecc05b0357f8d9081c827c54006fd07a85af1051f0f9b08d6473", &(0x7f00000002c0)="1eae86d8", 0x0, 0x0, 0x1}, 0x4c)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
timer_create(0xa, 0x0, 0x0)
fsopen(&(0x7f0000000000)='erofs\x00', 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r6, 0xffffffffffffffff, 0x0)
connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
writev(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
recvmmsg(r0, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000003780)=[{&(0x7f0000003740)=""/4, 0x4}], 0x1}}, {{0x0, 0x0, &(0x7f0000003bc0)=[{&(0x7f0000003a00)=""/186, 0xba}], 0x1}, 0xfffffffc}], 0x2, 0x40000121, 0x0)

2.893716256s ago: executing program 2 (id=3384):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r2 = inotify_init()
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000380)=@newlink={0x6c, 0x10, 0x403, 0x70b528, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x8a1}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x30, 0x2, 0x0, 0x1, [@IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x2}, @IFLA_GRE_ERSPAN_INDEX={0x8, 0x15, 0xcaf2d}, @IFLA_GRE_LOCAL={0x14, 0x6, @private2}, @IFLA_GRE_TTL={0x5, 0x8, 0x2}]}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x3}]}, 0x6c}, 0x1, 0xba01, 0x0, 0x4004}, 0x810)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000100)={0x0, 0x3ffc, 0x0, 0x0, 0x15, "ffff00"})
syz_open_pts(r3, 0x0)
io_setup(0x7, &(0x7f0000000000)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f00000006c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4, r3, &(0x7f0000000180)='0', 0x1, 0xceaa, 0x0, 0x5}])
close_range(r3, 0xffffffffffffffff, 0x0)
inotify_add_watch(r2, &(0x7f00000000c0)='.\x00', 0x5000009)
r6 = open(&(0x7f0000000040)='./bus\x00', 0x4e142, 0x0)
pwritev2(r6, &(0x7f0000000680)=[{&(0x7f0000000200)="05", 0x6a000}], 0x1, 0x6000000, 0x0, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x37fffee, 0x4002011, 0xffffffffffffffff, 0x0)

2.060649837s ago: executing program 1 (id=3388):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="120100009ac0b620110f211066865578ac0109029c000100000400090400bf"], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r0)
read$char_usb(r1, &(0x7f0000000000)=""/6, 0x6)
r2 = io_uring_setup(0x177d, &(0x7f00000002c0)={0x0, 0x3e12, 0x2, 0x2, 0x3b1})
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r4 = socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="390000001300034700bb5be1c3fbfeff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
close_range(r2, 0xffffffffffffffff, 0x200000000000000)

1.860501034s ago: executing program 2 (id=3389):
setsockopt(0xffffffffffffffff, 0x84, 0x81, &(0x7f00000002c0)="1a0000001900", 0x6)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000005000000fd090000842000000501"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r2}, 0x38)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f0000000140)=[{&(0x7f00000000c0)}, {0x0}], 0x2)
syz_open_dev$radio(0x0, 0x2, 0x2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000800)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x5411, &(0x7f0000000000)={'netdevsim0\x00', @random="010000201000"})
bpf$MAP_CREATE(0xb00000000000000, &(0x7f0000004080)=ANY=[@ANYRES32=0x0, @ANYBLOB], 0x48)
mount$9p_virtio(0x0, &(0x7f0000000380)='./bus\x00', &(0x7f00000003c0), 0x81c045, 0x0)
getpid()
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)=ANY=[@ANYRESDEC=0x0], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@metacopy_on}]})
open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x2)
setns(0xffffffffffffffff, 0x24020000)

1.560424495s ago: executing program 2 (id=3390):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x11, 0x3, 0x0, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='contention_end\x00', r1}, 0x18)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x1)
write$binfmt_misc(r2, &(0x7f0000000240), 0xfffffecc)
ioctl$VT_DISALLOCATE(r2, 0x5608)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = getpid()
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x2, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KDFONTOP_SET(r2, 0x4b72, &(0x7f0000001380)={0x0, 0x0, 0x10, 0x8, 0x1fc, &(0x7f0000003c40)="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"})
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001180)={0xffffffffffffffff, &(0x7f0000000080)="6f0c99dc3ac4e3f4f9f18e3d960bb95594f989ea1fd3b99ed2b84ac7851ae762bbf42a9fd575be8c1e32cdfb7caef93df8ac7a997e0a287fb90ef764ba393e7af1769b46c61556da7db9cf8e2ab1d2eff80ce404fb1000c11c65c88f75c9daa17399ff3233a43de8987c11f5e316147a95e43e38d48ece8764fbe63991551f8ad63fa93eba9b55826fdb55b7131746e0366682d95d00a786f8456963f824952996f1", &(0x7f0000000180)=""/4096}, 0x1c)
read$FUSE(0xffffffffffffffff, &(0x7f0000004040)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_WRITE(r3, &(0x7f0000000040)={0x18, 0x0, r5, {0xfffffff8}}, 0x18)
r6 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip6_flowlabel\x00')
ioctl$sock_kcm_SIOCKCMUNATTACH(r6, 0x89e1, &(0x7f0000001280)={r0})
pread64(r6, &(0x7f0000001600)=""/4089, 0x5, 0x200000000000049a)

1.458791441s ago: executing program 6 (id=3391):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x0, 0x0, @private0, 0x809}, {0xa, 0x8, 0x0, @empty}, 0x2, {[0x0, 0x1, 0xfffffffe, 0x0, 0xffffffff]}}, 0x5c)
setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}, 0x0, {[0x1, 0x0, 0x0, 0x0, 0x9]}}, 0x5c)
setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f00000001c0)={{0xa, 0x0, 0x0, @remote}, {0xa, 0x4e22, 0x0, @mcast1}}, 0x5c)
setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x0, 0x0, @private2}, {0xa, 0x0, 0x0, @empty}}, 0x5c)
setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
setsockopt$MRT6_FLUSH(r0, 0x29, 0xd4, &(0x7f00000000c0)=0x7, 0x4)

1.410502284s ago: executing program 6 (id=3392):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1e, 0x4, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f00000013c0)=0x80000000001, 0x4)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r1, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x0)
r2 = openat$vicodec1(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_G_EDID(r2, 0xc0245628, &(0x7f0000000100)={0x3, 0x0, 0x100, '\x00', &(0x7f0000000040)=0xff})
socket$nl_xfrm(0x10, 0x3, 0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x0, 0x0)
lseek(r3, 0x50, 0x4)

1.159926103s ago: executing program 6 (id=3393):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/devices\x00', 0x0, 0x0)
r0 = syz_io_uring_setup(0x239, &(0x7f0000000980)={0x0, 0x0, 0x10100}, &(0x7f0000000300)=<r1=>0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x2, 0x0)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
r6 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
setsockopt$netrom_NETROM_IDLE(r6, 0x103, 0x7, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, 0x0, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)={0x38, 0x1403, 0x1, 0x70bd2d, 0x0, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000540)=@delqdisc={0x24, 0x25, 0x300, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x6, 0xfff2}, {0x480bd72125a0c189, 0x5}, {0xffe0, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x4808}, 0x880)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0x5)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r5, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x9, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xf8}, [@jmp={0x5, 0x0, 0x6, 0x0, 0x6, 0x9, 0xfffffffffffffff0}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @map_idx={0x18, 0x2, 0x5, 0x0, 0x10}, @exit, @exit]}, 0x0, 0xfffffff6, 0x71, &(0x7f0000000680)=""/113, 0x41100, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000700)={0x0, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, &(0x7f00000007c0)=[{0x0, 0x5, 0x3, 0x3}, {0x0, 0x4, 0xd, 0x6}, {0x3, 0x1, 0xf, 0x4}, {0x2, 0x2, 0x3, 0x1}, {0x1, 0x4, 0xc, 0x4}, {0x1, 0x3, 0xc, 0x4}], 0x10, 0x0, @void, @value}, 0x94)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0)

1.159285593s ago: executing program 5 (id=3394):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_int(r0, 0x6, 0x12, 0x0, &(0x7f0000000040))
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000040)={'vxcan1\x00', <r3=>0x0})
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000080)={'vxcan0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001800010000000000000200001d01080008000a00", @ANYRES32=r3, @ANYBLOB='\b\x00\t\x00', @ANYRES32=r4, @ANYBLOB="d8b6bf1ef57387134f365ccd403eb93c21ca6bef7e5567e0f94c4f"], 0x24}}, 0x0)
mount(&(0x7f0000000000)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='affs\x00', 0x1228012, &(0x7f0000000180)='//{@)*5F\'$\'\x00')
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000019"], 0x34}}, 0x0)

1.158969136s ago: executing program 5 (id=3395):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000000c0)={'veth0_to_batadv\x00', &(0x7f0000000440)=@ethtool_per_queue_op={0x4b, 0xf, [0xa7, 0x90000000, 0x7, 0xfff, 0x8, 0x1, 0x14, 0x80000000, 0x9, 0x100, 0x6ba, 0x5, 0x14, 0x800, 0x7, 0xffffff5d, 0x16a, 0x6f, 0x6, 0x6, 0xfffff801, 0x7, 0x1, 0x7, 0xffffffff, 0x9, 0x6, 0x194, 0x1000, 0x312, 0x0, 0x7f, 0x4, 0x1, 0xffff, 0x3e, 0x7, 0x101, 0x10000, 0x4eb16aea, 0x3, 0x526, 0x5, 0x4, 0x0, 0xfffffffb, 0x9, 0x1, 0x160, 0x6, 0x19ce, 0x9, 0x2d, 0x8, 0x0, 0x0, 0x8, 0x0, 0x2, 0x3, 0x557, 0x91, 0x3, 0xfffffffe, 0x7f, 0x7fffffff, 0xfffffffc, 0x7, 0x7, 0x7, 0x1000, 0x7ff, 0xff, 0xfff, 0x2, 0x7c, 0x7fff, 0x4, 0x1, 0x2, 0x1, 0x6, 0x9, 0x8, 0x8ebf, 0x979, 0x5, 0x7, 0x4, 0xff, 0x9, 0x8, 0x3, 0x3, 0x26f81526, 0x2, 0x7f, 0x4, 0x6, 0x8, 0x5, 0x18000, 0xa, 0x5, 0x6, 0x7, 0x101, 0x4, 0x5, 0xba1d, 0x6, 0x1, 0x7fff, 0x81, 0x3, 0x4, 0x0, 0xfff, 0x3, 0x3, 0x9, 0x3, 0xff, 0x0, 0x691, 0xe8de, 0x101, 0xd145]}})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="740000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b030040000000004c0012800b00010067656e65766500003c0002800800010001000000140007000000000000000005000000000000000108000f"], 0x74}}, 0x4040040)
syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r1 = epoll_create1(0x0)
socket$inet6(0xa, 0x6, 0x8000003)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc000)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x2f, &(0x7f00000044c0)={&(0x7f00000002c0)=ANY=[], 0x60}, 0x1, 0x0, 0x0, 0x20000851}, 0x48180)
r4 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)
connect$inet(r4, &(0x7f0000000200)={0x2, 0x4e22, @local}, 0x10)
sendmmsg$inet(r4, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r6, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/96, 0x128000, 0x800}, 0x20)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r6, 0x11b, 0x6, &(0x7f0000000140)=0x20, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', <r8=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r6, 0x11b, 0x5, &(0x7f0000000200)=0x20, 0x4)
bind$xdp(r6, &(0x7f00000002c0)={0x2c, 0x8, r8}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r5, &(0x7f0000000080))
socket$inet_tcp(0x2, 0x1, 0x0)

1.010307017s ago: executing program 5 (id=3396):
ioctl$sock_inet6_tcp_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002340)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}, {{&(0x7f0000000180)={0xa, 0x4e24, 0xfff, @mcast1, 0x3}, 0x1c, &(0x7f0000000bc0)=[{&(0x7f00000004c0)="9df8430ede2c237ab63b35c2e19695f610e3f32e43dafd46b46a8192a34854c8a5e8647c33090212bd23d4b2c6ca14c88023f58e4cf7abbf71784581b9e1ab540921ebdb90eb7bd3f55515c714622fd168e744900fc09d7720b8dce026c48fde94a4c9a49b08df0e2825630326d807fee08e71a2893d2c72e8d60fa4883ae280a5af8e3bfe67fa155ddf76eb1952d6661c4750d5f5593ea56efc86d2e576500e3d0d977553c2e069c1c60acba1", 0xad}, {&(0x7f00000006c0)="32933443d884791893ec825921fcc28ee4616dddad2fba8921061ea7ba817346a6fcd4a5d79240011de9e69bb1b3fd27b185f0fdefa8f019562dabfac01604586759ce4ab974ad907fb8318739548d082b1e8f041518dd68", 0x58}, {&(0x7f00000005c0)="9789bd06d7b9c5454a0cf4baa647ef7e532ef4c4c145d2a8cd92b7ddbcf9e08b4f", 0x21}, {&(0x7f0000000800)="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", 0xff}, {&(0x7f0000000900)="7631df6679f1e81612a8feb6c7a3f07ce7d6f3c624b758cb910bc6de55ccea755f1177900b40d9f6d0392b7a28515c68c272cddf7f66fc125f0f09d9bfb928e3fff21a7838e5b12f1f5a7b746df5c8451b87918f8e97b4da5f04724defc51310b81219455343e0ebb8e6ae6d1a8c9c56114084b3b18a939856849d73474261966d016e2c8de87e4735db71872ea7cdafaab503d32dc196fabd7be4add4aac5e317dfc57ad009ac95f61c6deac8c3b02eb0733f3f8212fe7185a75bc402e5d5dd1605dc77869a623f3ae5b3f3e9", 0xcd}, {&(0x7f0000002540)="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", 0x1000}, {&(0x7f0000000740)="1d098db3eb707b", 0x7}, {&(0x7f0000000a00)="634f471c17c176559e2d1be270efd94b4e0eed22452918562d9684999360e4026f779295b2e10859e8655eb26d2eb49e949785e6", 0x34}, {&(0x7f0000000a40)="8e77a4552e6c2e6e0a2e2663507bf4a39f68322b2e011c5c61aecf4e6767ef1e4a78f42015918369b6337eefbd1a1fcbf90013dbd1c5955fd7ed0cb5e6c901223f839a550ec7f882f5bc608faf402d5d28f798893f074424943c", 0x5a}, {&(0x7f0000000ac0)="ac9fda9c6c5d3b59087f19acd2e350669438bd03a7f93cc246da34a2ccbfee56c61f67e8119470d557a2725c7c6d9ef94d63d0a2f6dce79405be8b26cbeecd34b8b55a839a6532fff91502ba16d1f510912bac11f7862beff6c8d4d32116a98b6c81dc89c64ec7a33147fbcb41807c5642e90dff61c17bb5a746ec2983c705bd7aaf20430f7182c1deae350328a7aac52152779a05e68d5fb633798882e1e81cccbcc83962650765cab50cc4543f21e62b8d6ff8e87030638c7ce2acc306549942c67965258876e3412b999fce0a7f9bb57940c98d2e", 0xd6}], 0xa, &(0x7f0000000c40)=[@flowinfo={{0x10, 0x29, 0xb, 0x3}}, @flowinfo={{0x10, 0x29, 0xb, 0xf}}, @dstopts={{0x4c, 0x29, 0x37, {0x87, 0x6, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @ra={0x5, 0x2, 0x400}, @calipso={0x7, 0x10, {0x0, 0x2, 0x5, 0x5, [0xfffffffffffffff9]}}, @ra={0x5, 0x2, 0x5}, @enc_lim={0x4, 0x1, 0xf8}, @hao={0xc9, 0x10, @private0}]}}}, @hoplimit_2292={{0x10, 0x29, 0x8, 0x3ff}}, @rthdr={{0x44, 0x29, 0x39, {0x6, 0x6, 0x2, 0x80, 0x0, [@private0={0xfc, 0x0, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x43}, @empty]}}}], 0xc0}}, {{&(0x7f0000000d00)={0xa, 0x4e21, 0xfff, @private2}, 0x1c, &(0x7f0000000fc0)=[{&(0x7f0000000d40)="021c3aafcecea3c39f15a3a8081bbabe23388d662d11976aff368730f176166c7c2f8cfd217266a98b484c0e4ee3b18387dcd26ed81ec270a721512bbc957b738aac03d9e373ce541100ec23b341faed4896fdabd4e0abd277b045fc0a226c5ab81c1893406be7d21a77e7adbc2cc5c4ced06e6012c8ad45568e8d325c2b932b94cdbc3f4c76c4c1ebc3da606ffdef658b6524bdb074fa83490f25dbdcd4dde75b73a48494a0f241fa11305be98677a5ab39ed33a49da476b20a014e60dc222d8637fe490b", 0xc5}, {&(0x7f0000000e40)="50a8a6e33ce5854c1c69a8c90ff1699699f89a80eb8941eeac820f43e2a15f4498e14a30d8a5466e634ea05acfc482e3878dbc8a6bb371b50704f611bf3d2b7690e68a40c983c19e2dea2ecf1fa3254635fc91114601681d8fc62e694ec11655f5250275fe262eccc600caf130206b7cab455f1d035e74dc3098d3599ac7148a447b4367d44701fd50137351a186a4164fdd416d9f0a83e4fb48f8be268988f2bea0340c01c89d1c7bfb2c8915014995071d9f8f58824d173c69d554ed727ee0bfde116f1a79f750f4cd302246b1417acdaf17198156297cd4844e95ed13007666f6d22b30", 0xe5}, {&(0x7f0000003540)="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", 0x1000}, {&(0x7f0000000f40)="7278df4e11496d7f8d31f038b210f7696a4c95dda66ab0722744d45df3053f19ed599f4d9750b63cdb1c6cb1698afac576de00fac0a8583c0fae8170f7e86e9f20", 0x41}], 0x4, &(0x7f0000001000)}}, {{&(0x7f0000001040)={0xa, 0x4e20, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x5}, 0x1c, &(0x7f0000001440)=[{&(0x7f0000001080)="81", 0x1}, {&(0x7f00000010c0)="92bb9b532db4532f9a494ce0df9b1edb56bfa8eafb4ddc62ee8f66b8d36e4ce40e9b17a7415481b430984efcef73dedce50e524ae966ddfd5dc755a21d252700cbc58d592b9c9912eefa763bc3900d9a12905748c4518f2d0584e965182f6232dc7b284d5788462933db1dae44cfa20e00f3e7172b9ffe69841c903cb244f82352ab586a0a34d006b65f", 0x8a}, {&(0x7f0000001180)="2cdd189b04981a21ddb98205e1df6f28eb980077fa22db2d58bf8bac94c642fa7028f2ded510d49e8aaf2b4043fd464343816ef61c697c81c70cf8b83d08cfca2dee95e198ec6c8013ff69ecdc43575186a5937502ad1a63f3497d498bf8ac5eff21b9e231e3c98855725d3294352aa84dfe3f79070141fc8660c8e5995add6248601bd3dae9412b9a125ef49772d0232987fe457107a8ed862ef4d88abf4055c1e19b60d43dc6b7fad2345312e20829decb2d9f148c494403c9d43b58fb4212c398739002149b89cfff99e227316d302f28af3917eae482a9558648974458929b07eb398c67d4eab0e4ae013a4667549cfb5473ac", 0xf5}, {&(0x7f0000001c00)="e00e9ab2eb02f5c78e80ee896ed014af850aaeebce5d75fbecbd6fe45976b946f6e407115f8020af08c163162e837111f5b5edc220bd82ccc95a47d33012a0b7811d2365d81bc069f671d61c25a318293b061e74a6d9a031a78b4e4c4d612c7d8c1235764e266d67e1c5387d49c34b5bd56c29cc5ad5662bec3012f29541da33f2a2073ad8ffe69cd0bc004192d29c6d0c405be9dfff167cea10193d65cdcc3c64e306a1791358b440cb0c33d8086f3d5976470ed551569d2c69ad9f7b1a9f21eaa594ad5bbabadee37553bbd2ffb8d84a8613a3c1f5a369597c9f4f4e2a2e2b", 0xe0}, {&(0x7f00000013c0)="dcfe9ae32f0811094e0a7e6fe201e6315f0b4415ae5018c6df8016865033a9286c641447503635db3278e062c6f78eefbade6c62078d1f1aef8e4bb417c8fcb14898f8a9610a21060887cfff3ca23a0a", 0x50}], 0x5, &(0x7f0000001500)=[@pktinfo={{0x20, 0x29, 0x32, {@empty}}}], 0x20}}, {{&(0x7f0000001540)={0xa, 0x4e20, 0x5, @loopback, 0x2}, 0x1c, &(0x7f0000001640)=[{&(0x7f0000002440)="ae4cf941bd7edb90cecc0ebf2752e4678309370e171656be4f5800e13d329f24f0a31b6118bd929dcfd654de0fe70269e064e21ee24b371f42291e3e89ef06ea8e0868e1983d1e4bb53d07d34665b9a9e5f7060a66f09c0c912647755e81a4eafa9952b2c74d0b1c57bc6a918c1fdc4f4a8b69cf595e4c82eb72fb060b8d4ff0088cc351fa4c06b919460c736ca68ffd47bcc5006a2204186d", 0x99}, {&(0x7f00000016c0)="3bf23155ff2c3a914d50ef768aef6d5f53e4ced5efa6d9a87ae0ebc417eaa4faa0b82729595f14a76017f5ef103b91b98e19c45d499fe2b3621e4ec8b351cbb1e17a20dbcf3a502eb8c1e7ea2024e3605c6d81d053573458fd73294713668bde062024", 0x63}, {&(0x7f0000004540)="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", 0x1000}], 0x3, &(0x7f0000001740)=[@hoplimit_2292={{0x10, 0x29, 0x8, 0x9}}, @dstopts={{0x12c, 0x29, 0x37, {0x0, 0x22, '\x00', [@generic={0xe, 0x4e, "ac8fa8955bb31fd49b762ec0aa135046fbef0ab16ffadb14588ff585106e92329f5a609c61a44eb02df6b2b8f778fcca4716b52978b91357fc2de11f519291b920b38b0167bc41a3be46728cabe9"}, @pad1, @generic={0x3, 0xba, "df8822cb041f32ac5913b4608210feca3fb36e11efbc14425cbbd2f914adf70e56b579573f2484d47b1fdb7a2e4f9d6c4e78af4dc206f05b45a8a50048adb044d351dd850955a9b96f50204400855c0c26a03f6a7e5ce9fc5fc7cfb80b4934bf9fe1f86fa099f71a731c016b8e81b1fd3544e540b3f077593925e053753ab67fafeaa55b200c1e0734caab1b1f9c12eb33acb3cfa48987cf77ad0b14318f2ad465c8f1a70c3bff61744eecf11068fb56068bd92da3f7f46e3bb9"}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @dontfrag={{0x10, 0x29, 0x3e, 0x3}}, @pktinfo={{0x20, 0x29, 0x32, {@remote}}}, @hopopts_2292={{0x1c, 0x29, 0x36, {0x2f, 0x0, '\x00', [@pad1]}}}, @hoplimit_2292={{0x10, 0x29, 0x8, 0x5}}, @pktinfo={{0x20, 0x29, 0x32, {@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}}], 0x1b8}}, {{&(0x7f0000001900)={0xa, 0x4e23, 0x9, @local, 0x8}, 0x1c, &(0x7f0000001bc0)=[{&(0x7f0000001940)="18d88f9b6a26df4e3e129a712cd12d93baedc756079c1075aad17fbf251aea08dffeab5ec53cf52fb36d877d31c31179bdb04bda428ff6b0c937a30a1bdc87810bd8a8fb52eb8e0b4d0ea48bfa8f7dc29859f80787f3549907d0fe5936318abbd1d931b4a1b7902085179fc678654f96f6e7f10307eb67e6d88ef3236e8d02b51475c18a", 0x84}, {&(0x7f0000001a00)="7d2d57c6692df4046a89a70b38456c48ae295d1ca41562a7903605ac914743bb1c3d949eec7697f77b8be08a554a70892ad3ba2bd807228c073eb517f6912b8c709ad0e5326e51a9dcc9b8", 0x4b}, {&(0x7f0000001a80)="dc", 0x1}, {&(0x7f0000001ac0)="b7659807241863c86badedc6b4f16343c6c456ec39259aee8836226cf6bf9fdbfaec0890faed132ef1309388d220efc8f392f7dedb56c2ca14c79a4cd920bb6397a290f63d40bfc5594728f369415e25d7c731781c93e7d2261560883df50986b09b699c8355a333dd63d6dca94c3854887e1597c7c5684940fe66b26ca56d9470daa9ab2c3bd6d64cba7b1786bd944d76e1ed154a74e677a4d2466199c6e7d5ff6fdfebfd3acbb5d2621f53a457b55e88dcb6295ee8485db9760a38b6621fcf0bddd0bed7ad74bbaaeb0bbda1786e4e68c79a01ff5e075705beb7db7c035bfe35033e866db16b988d4c18d7fc6dbe6fb8fadfc97e7b", 0xf6}], 0x4, &(0x7f0000005540)=[@rthdrdstopts={{0x7c, 0x29, 0x37, {0xb7, 0xd, '\x00', [@calipso={0x7, 0x30, {0x0, 0xa, 0x80, 0xf6, [0x7ff, 0x7, 0xa332, 0x2, 0x6]}}, @jumbo={0xc2, 0x4, 0x100}, @pad1, @generic={0x80, 0x2b, "b42890ff846928cce8353288cdbe1eb6d91c4efc6330ce646ee534bd62d6f42b27a0687846d1366f0e6e6c"}]}}}, @dstopts={{0x64, 0x29, 0x37, {0xc, 0xa, '\x00', [@jumbo={0xc2, 0x4, 0x513ff62d}, @hao={0xc9, 0x10, @remote}, @calipso={0x7, 0x30, {0x1, 0xa, 0x6d, 0xb6, [0x0, 0x100000000, 0xff, 0x4a5, 0xffffffffffffffff]}}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}}}, @hopopts_2292={{0x5c, 0x29, 0x36, {0x87, 0x8, '\x00', [@ra={0x5, 0x2, 0x55}, @pad1, @ra={0x5, 0x2, 0x9}, @ra={0x5, 0x2, 0xff}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00'}, @jumbo={0xc2, 0x4, 0x1}, @enc_lim={0x4, 0x1, 0x1}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @local}, @pad1]}}}, @tclass={{0x10, 0x29, 0x43, 0x6}}, @dstopts_2292={{0x2c, 0x29, 0x4, {0x2b, 0x2, '\x00', [@pad1, @pad1, @jumbo={0xc2, 0x4, 0x1}, @pad1, @enc_lim={0x4, 0x1, 0xc}]}}}, @hoplimit_2292={{0x10, 0x29, 0x8, 0x8}}], 0x188}}, {{&(0x7f0000001dc0)={0xa, 0x4e22, 0x8000, @empty, 0x9}, 0x1c, &(0x7f0000002040)=[{&(0x7f0000001e00)="3e58ef9c0b8ba0a540f9877ef6e610e08acdac90c0", 0x15}, {&(0x7f0000001e40)="aa99a21cfb3420b4616dde1d341cef8d13be9f87a5e0be9dd884b3660d855cece7918c73b059ad639b6796e614848aafcb16f208732842ad4d1f7b23bfd843bb98854f0bc5962b5986213f2cffae249ce7257af9828bd578604f2af0c61923f9a0aad5dfd8894efb81a9a96b182abf57192935206d66369b355721081d42049b136f93882ecaf9bca689f6213ad7483f71", 0x91}, {&(0x7f0000001f00)="d01bf835547288e17ee779dea1b97ab5a9e4f75bf541ce291905c855149248b2f9e2c60c9c95e472f26830a7b8b28e6fbe6abb1edc105a7c8a4f9ccbd077305375404425920bfced09a8511af6ffb3c78c07c025d401d97a3656ad2d52b9c6e870100f095299981ba14a18f983e76e5bb71cfad9375e77339ae2368121bb6d22fb7825aa0a8da34beec7078a27fc9918ce31480b620339dbf60d0ac615b47ac1a638276b815240b33411e8ba7e3084d83c308b", 0xb3}, {&(0x7f0000001fc0)="461b8b381f15f20794bd7789945571e0ff6fe26726f4b338a8eec160c47e31d9541f52c5ed8694e4c7a6ba1b35ed9fd5c74f1a71330b355a031189faf8f180b586030f971ac491d70c354a46f1f4240b562c2943d89b935654d84a5272c1afa9cf048221e4f0d61dbb285a592d4c7ce2436121acb6a84935", 0x78}], 0x4, &(0x7f0000002080)=[@dstopts_2292={{0x1c, 0x29, 0x4, {0x3a, 0x0, '\x00', [@pad1]}}}, @hoplimit={{0x10}}], 0x2c}}, {{&(0x7f00000020c0)={0xa, 0x4e24, 0x6, @private2, 0x2}, 0x1c, &(0x7f0000002280)=[{&(0x7f0000002100)="441b9047a26b2164b5e3a222e2bc8ea86ff71a8dd5e2e6bb42749b8d0fdd079a1b745d8abbcaeb4fc5d007ac56acb678d2ea1daf3270f558c52f57526eb0a26fcadc8646da2be25ac60aa899966ef3985988044d65c371ee4c3ed5b728b305ae7bbe4d1016e64d0907c318cacaaf942490f1983df5c350fe348bd2f439b352c04dce80fd9c02e43f62", 0x89}, {&(0x7f00000021c0)="d518215878ff677ed15436bbdbd4a421fe2128627639cba74511fbd846db5353b24ae0e2d2cc76a07816633755da4ddfc0c00d50d76420cbd210d99a951ea51b859babfc93b1a955aff6264e5c8be003d0d27e550663b18adee0ded226bd4eefb839800e950adb792280943e98f3c2964c89d063d106ab19015236e727dfe28c200f3dfe322813eb3ce33a4a7ebbabf736740540a152be27296bc658aeaba44246c26b775885", 0xa6}], 0x2, &(0x7f00000022c0)=[@dontfrag={{0x10}}, @rthdr_2292={{0x34, 0x29, 0x39, {0x2b, 0x4, 0x1, 0x0, 0x0, [@mcast2, @private1={0xfc, 0x1, '\x00', 0x1}]}}}, @dstopts={{0x1c, 0x29, 0x37, {0x2b, 0x0, '\x00', [@padn]}}}], 0x60}}], 0x8, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000400)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="48040000", @ANYRES16=r2, @ANYBLOB="01e5c300000000fb04003b1c210008000300", @ANYRES32=r1, @ANYBLOB="2c0433005000de295b3acba52ee4080211000001505050505050"], 0x448}}, 0x0)

1.009850322s ago: executing program 5 (id=3397):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
inotify_init()
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000380)=@newlink={0x6c, 0x10, 0x403, 0x70b528, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x8a1}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x30, 0x2, 0x0, 0x1, [@IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x2}, @IFLA_GRE_ERSPAN_INDEX={0x8, 0x15, 0xcaf2d}, @IFLA_GRE_LOCAL={0x14, 0x6, @private2}, @IFLA_GRE_TTL={0x5, 0x8, 0x2}]}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x3}]}, 0x6c}, 0x1, 0xba01, 0x0, 0x4004}, 0x810)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000100)={0x0, 0x3ffc, 0x0, 0x0, 0x15, "ffff00"})
syz_open_pts(r2, 0x0)
io_setup(0x7, &(0x7f0000000000)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f00000006c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4, r2, &(0x7f0000000180)='0', 0x1, 0xceaa, 0x0, 0x5}])
close_range(r2, 0xffffffffffffffff, 0x0)
r5 = open(&(0x7f0000000180)='./bus\x00', 0x189a7c, 0x113)
r6 = open(&(0x7f0000000040)='./bus\x00', 0x4e142, 0x0)
pwritev2(r6, &(0x7f0000000680)=[{&(0x7f0000000200)="05", 0x6a000}], 0x1, 0x6000000, 0x0, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x37fffee, 0x4002011, r5, 0x0)

570.595688ms ago: executing program 2 (id=3398):
setsockopt(0xffffffffffffffff, 0x84, 0x81, &(0x7f00000002c0)="1a0000001900", 0x6)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000005000000fd090000842000000501"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r0}, 0x38)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000140)=[{&(0x7f00000000c0)}, {0x0}], 0x2)
syz_open_dev$radio(0x0, 0x2, 0x2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000800)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x5411, &(0x7f0000000000)={'netdevsim0\x00', @random="010000201000"})
bpf$MAP_CREATE(0xb00000000000000, &(0x7f0000004080)=ANY=[@ANYRES32=0x0, @ANYBLOB], 0x48)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$9p_virtio(0x0, &(0x7f0000000380)='./bus\x00', &(0x7f00000003c0), 0x81c045, 0x0)
getpid()
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)=ANY=[@ANYRESDEC=0x0], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@metacopy_on}]})
r3 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
mknodat$loop(r3, &(0x7f00000002c0)='./file1\x00', 0x10, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x2)
setns(0xffffffffffffffff, 0x24020000)

455.714311ms ago: executing program 2 (id=3399):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000001340)={0x84, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x807, 0x83, 0x6, 0xfffa}, 0x2000001d, [0x8000, 0xc95a, 0x12, 0x9, 0x80, 0x2, 0x3, 0x7f, 0x6, 0x49, 0x39cc191b, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x4, 0x8, 0x2, 0x4, 0x3c5b, 0x90, 0x24, 0x9, 0x1, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x7, 0x3, 0x2, 0x4c74, 0x80000000, 0x242, 0x0, 0xe, 0x1000, 0x0, 0x7, 0x7, 0x1, 0x7, 0x0, 0x3e, 0x8f, 0x6, 0x6, 0x0, 0x5, 0x0, 0x8, 0x0, 0x5, 0x0, 0x5, 0x6, 0xb, 0x4, 0x1, 0x40], [0x10000007, 0xffff, 0x8000012d, 0x8000, 0x10, 0xfffffff3, 0x129432e6, 0xcd, 0x40c, 0x9, 0x2bf, 0x6c9, 0x8, 0xfffffffc, 0x3, 0x0, 0x7, 0xeb, 0x5573, 0xe, 0x312, 0x78, 0xea4, 0x0, 0xda7a, 0x4, 0x8000, 0x2009, 0x400, 0x401, 0x6, 0x7, 0x4, 0x5, 0x5, 0x5f2e, 0x4, 0x0, 0x2, 0x2, 0x9, 0x4, 0x9, 0x8, 0x0, 0x6, 0x7, 0x8000, 0x0, 0xfe000000, 0x10000, 0x2, 0x7f, 0x5, 0x3, 0x3, 0x9, 0x1, 0x7, 0x3, 0x9, 0x48c93690, 0x42, 0x2], [0x7, 0x3, 0x0, 0x4, 0xfffffffe, 0x9, 0x8d2, 0x8, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x20004, 0x5, 0x5, 0x0, 0x3, 0x5, 0x8, 0x83, 0x3, 0x9, 0x3e7, 0x9, 0x5, 0x2, 0x2, 0x3, 0xd, 0x4, 0x6d01, 0x9, 0x9, 0x800000, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0x5, 0x5, 0x611e, 0xac8, 0x7, 0x2, 0x3, 0x7ff, 0xfffffff9, 0x0, 0x1, 0xffff, 0x3, 0x6, 0x1c, 0x120000, 0x3, 0x3, 0xa2ed, 0x404, 0x25], [0x9, 0xbb31, 0x296, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0x5, 0xce7, 0x53f53814, 0x2, 0x7, 0x5, 0x3, 0x101, 0x10000, 0x6, 0x207fff, 0xffff, 0x2, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x6, 0xffffffff, 0x80000000, 0x5, 0x8, 0xc8, 0xee1, 0xfffff000, 0xffff, 0x3, 0x7e, 0x20100, 0x9602, 0x7, 0x2, 0x4, 0x6, 0x1, 0x50080, 0x5, 0x8, 0x1000, 0xa1f, 0xc, 0x7, 0x1, 0x6c1b, 0x8000, 0x4, 0x5, 0xb1e, 0x1, 0x200, 0xffff3441, 0x7]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x1e, 0x0, 0x0, 0x0)

260.06756ms ago: executing program 6 (id=3400):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0xc, &(0x7f00000006c0)=ANY=[@ANYBLOB="1802000000000000000000000000000085000000bc00000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000008850000000800000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r2, &(0x7f0000000e40)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x800, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x10}, 0x1c, &(0x7f0000000100)=[{&(0x7f00000003c0)="ee", 0x1}], 0x1}}, {{&(0x7f0000000180)={0xa, 0x4e23, 0x495, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c, &(0x7f0000000840)=[{&(0x7f0000000280)="80", 0x1}], 0x1}}], 0x2, 0x4004)
shutdown(r2, 0x1)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x85, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e24, @empty}}, 0xffff, 0xffc0}, 0x90)
r3 = openat$dlm_monitor(0xffffff9c, 0x0, 0x92080, 0x0)
ioctl$FS_IOC_SETFLAGS(r3, 0x40046602, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40186f40, &(0x7f0000000440)=0x1f)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0x10}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
socket(0x400000000010, 0x3, 0x0)
r8 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r8, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
epoll_create1(0x80000)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})

69.890188ms ago: executing program 6 (id=3401):
creat(&(0x7f0000000340)='./file0\x00', 0x22)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRES64=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syslog(0x9, 0x0, 0x0)

69.396649ms ago: executing program 6 (id=3402):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0)
iopl(0x3)
prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x3, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
setpriority(0x1, 0x0, 0x2201)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000100)='0', 0x1)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x7)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
ioctl$KDSIGACCEPT(r2, 0x5607, 0x2c)
sched_setscheduler(0x0, 0x0, &(0x7f0000000040)=0x5)
dup(0xffffffffffffffff)
ioctl$TIOCL_SETVESABLANK(0xffffffffffffffff, 0x560e, &(0x7f0000000140))
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_ACTIVATE(r5, 0x5606, 0x4)
mq_open(0x0, 0x2, 0x103, &(0x7f0000000080)={0x6, 0x7, 0x3, 0x1})
ioctl$TIOCL_BLANKSCREEN(r5, 0x541c, &(0x7f0000000000))
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r4, 0x0, 0x25, 0x10, @val=@netfilter={0x2, 0x1, 0x5228}}, 0x20)
setreuid(0xee01, 0xee00)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0xff, 0x9, 0x7fffffff, 0x0, 0x0, 0x37})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x101, 0x2})

377.287Âĩs ago: executing program 5 (id=3403):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f00000002c0)={0x9, 0x3, 0x2, 0x3, 0x8, 0x7})
sendmmsg(0xffffffffffffffff, &(0x7f00000007c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000002080)="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", 0x192}], 0x1}}], 0x1, 0x400c004)
write$binfmt_misc(r0, &(0x7f0000000240), 0xfffffecc)

0s ago: executing program 5 (id=3404):
setsockopt(0xffffffffffffffff, 0x84, 0x81, &(0x7f00000002c0)="1a0000001900", 0x6)
socket$netlink(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = dup(0xffffffffffffffff)
write$6lowpan_enable(r0, &(0x7f0000000000)='0', 0xfffffd2c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000005000000fd090000842000000501"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r1}, 0x38)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000140)=[{&(0x7f00000000c0)}, {0x0}], 0x2)
syz_open_dev$radio(0x0, 0x2, 0x2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000800)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x5411, &(0x7f0000000000)={'netdevsim0\x00', @random="010000201000"})
bpf$MAP_CREATE(0xb00000000000000, &(0x7f0000004080)=ANY=[@ANYRES32=0x0, @ANYBLOB], 0x48)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$9p_virtio(0x0, &(0x7f0000000380)='./bus\x00', &(0x7f00000003c0), 0x81c045, 0x0)
getpid()
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)=ANY=[@ANYRESDEC=0x0], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@metacopy_on}]})
r4 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
mknodat$loop(r4, &(0x7f00000002c0)='./file1\x00', 0x10, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x2)
setns(0xffffffffffffffff, 0x24020000)

kernel console output (not intermixed with test programs):

8]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  443.238940][T15098]  ? rw_verify_area+0xcf/0x680
[  443.238966][T15098]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  443.238991][T15098]  vfs_read+0x1de/0xc70
[  443.239014][T15098]  ? __pfx___mutex_lock+0x10/0x10
[  443.239039][T15098]  ? __pfx_vfs_read+0x10/0x10
[  443.239063][T15098]  ? __fget_files+0x20e/0x3c0
[  443.239090][T15098]  ksys_read+0x12a/0x240
[  443.239108][T15098]  ? __pfx_ksys_read+0x10/0x10
[  443.239127][T15098]  ? rcu_is_watching+0x12/0xc0
[  443.239149][T15098]  __do_fast_syscall_32+0x73/0x120
[  443.239177][T15098]  do_fast_syscall_32+0x32/0x80
[  443.239203][T15098]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  443.239224][T15098] RIP: 0023:0xf709e579
[  443.239239][T15098] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  443.239257][T15098] RSP: 002b:00000000f508e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  443.239273][T15098] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f508e620
[  443.239285][T15098] RDX: 000000000000000f RSI: 00000000f7402ff4 RDI: 0000000000000000
[  443.239296][T15098] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  443.239306][T15098] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  443.239317][T15098] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  443.239341][T15098]  </TASK>
[  443.241071][T15087] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  443.306112][T15087] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  443.429232][T15087] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  443.433552][T15087] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0
[  443.536836][T15106] FAULT_INJECTION: forcing a failure.
[  443.536836][T15106] name failslab, interval 1, probability 0, space 0, times 0
[  443.541012][T15106] CPU: 3 UID: 0 PID: 15106 Comm: syz.0.2373 Not tainted 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  443.541028][T15106] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  443.541035][T15106] Call Trace:
[  443.541040][T15106]  <TASK>
[  443.541045][T15106]  dump_stack_lvl+0x16c/0x1f0
[  443.541066][T15106]  should_fail_ex+0x512/0x640
[  443.541082][T15106]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  443.541095][T15106]  should_failslab+0xc2/0x120
[  443.541110][T15106]  __kmalloc_cache_noprof+0x6a/0x3e0
[  443.541121][T15106]  ? sctp_stream_init_ext+0x4e/0x1b0
[  443.541140][T15106]  sctp_stream_init_ext+0x4e/0x1b0
[  443.541158][T15106]  sctp_sendmsg_to_asoc+0x16c1/0x1bf0
[  443.541171][T15106]  ? __lock_acquire+0x5ca/0x1ba0
[  443.541189][T15106]  ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10
[  443.541200][T15106]  ? do_raw_spin_lock+0x12c/0x2b0
[  443.541217][T15106]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  443.541236][T15106]  ? sctp_sendmsg_check_sflags+0x176/0x320
[  443.541255][T15106]  sctp_sendmsg+0xef5/0x1ee0
[  443.541273][T15106]  ? __pfx_sctp_sendmsg+0x10/0x10
[  443.541292][T15106]  ? __fget_files+0x204/0x3c0
[  443.541303][T15106]  ? __pfx_aa_sk_perm+0x10/0x10
[  443.541317][T15106]  ? __fget_files+0x20e/0x3c0
[  443.541326][T15106]  ? __print_lock_name+0x80/0xe0
[  443.541336][T15106]  ? __pfx_sctp_sendmsg+0x10/0x10
[  443.541349][T15106]  inet_sendmsg+0x119/0x140
[  443.541371][T15106]  __sys_sendto+0x431/0x510
[  443.541384][T15106]  ? __pfx___sys_sendto+0x10/0x10
[  443.541407][T15106]  ? ksys_write+0x1b9/0x240
[  443.541418][T15106]  ? __pfx_ksys_write+0x10/0x10
[  443.541430][T15106]  __ia32_sys_sendto+0xdd/0x1b0
[  443.541441][T15106]  ? lockdep_hardirqs_on+0x7c/0x110
[  443.541457][T15106]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  443.541474][T15106]  __do_fast_syscall_32+0x73/0x120
[  443.541491][T15106]  do_fast_syscall_32+0x32/0x80
[  443.541508][T15106]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  443.541521][T15106] RIP: 0023:0xf711e579
[  443.541530][T15106] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  443.541541][T15106] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  443.541552][T15106] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000300
[  443.541559][T15106] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  443.541565][T15106] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  443.541571][T15106] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  443.541577][T15106] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  443.541590][T15106]  </TASK>
[  443.679336][T15087] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 256 - 0
[  443.683045][T15087] netdevsim netdevsim5 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  443.694292][T15087] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 256 - 0
[  443.697755][T15087] netdevsim netdevsim5 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  443.698750][ T5958] Bluetooth: hci4: unexpected subevent 0x06 length: 11 > 10
[  443.711262][T15087] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 256 - 0
[  443.714542][T15087] netdevsim netdevsim5 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  443.726022][T15087] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 256 - 0
[  443.729222][T15087] netdevsim netdevsim5 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  444.037608][T15120] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2378'.
[  444.261795][T15122] random: crng reseeded on system resumption
[  444.277163][T15122] Restarting kernel threads ... done.
[  444.629767][T15110] ALSA: mixer_oss: invalid index 40000
[  445.218888][T15142] netlink: 'syz.0.2383': attribute type 1 has an invalid length.
[  445.218909][T15142] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2383'.
[  445.218925][T15142] nbd: illegal input index 65544
[  445.792760][T13815] Bluetooth: hci4: command tx timeout
[  445.982525][T15163] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2391'.
[  446.141044][T15170] lo speed is unknown, defaulting to 1000
[  446.667260][T13815] Bluetooth: hci0: command 0x0c1a tx timeout
[  446.755875][   T40] kauditd_printk_skb: 290 callbacks suppressed
[  446.755886][   T40] audit: type=1326 audit(2000000140.313:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15177 comm="syz.5.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70be598 code=0x7ffc0000
[  446.775161][   T40] audit: type=1326 audit(2000000140.333:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15177 comm="syz.5.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  446.781999][   T40] audit: type=1326 audit(2000000140.333:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15177 comm="syz.5.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70be598 code=0x7ffc0000
[  446.794329][   T40] audit: type=1326 audit(2000000140.333:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15177 comm="syz.5.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  446.794356][   T40] audit: type=1326 audit(2000000140.333:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15177 comm="syz.5.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70be598 code=0x7ffc0000
[  446.794376][   T40] audit: type=1326 audit(2000000140.333:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15177 comm="syz.5.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70be598 code=0x7ffc0000
[  446.794397][   T40] audit: type=1326 audit(2000000140.333:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15177 comm="syz.5.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70be598 code=0x7ffc0000
[  446.794418][   T40] audit: type=1326 audit(2000000140.333:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15177 comm="syz.5.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70be598 code=0x7ffc0000
[  446.794438][   T40] audit: type=1326 audit(2000000140.333:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15177 comm="syz.5.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70be598 code=0x7ffc0000
[  446.794458][   T40] audit: type=1326 audit(2000000140.333:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15177 comm="syz.5.2395" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70be598 code=0x7ffc0000
[  447.198655][T15198] netlink: 11 bytes leftover after parsing attributes in process `syz.5.2400'.
[  447.925546][T15204] ALSA: mixer_oss: invalid index 40000
[  448.626087][T15223] FAULT_INJECTION: forcing a failure.
[  448.626087][T15223] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  448.631307][T15223] CPU: 0 UID: 0 PID: 15223 Comm: syz.2.2409 Not tainted 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  448.631323][T15223] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  448.631330][T15223] Call Trace:
[  448.631334][T15223]  <TASK>
[  448.631340][T15223]  dump_stack_lvl+0x16c/0x1f0
[  448.631360][T15223]  should_fail_ex+0x512/0x640
[  448.631379][T15223]  _copy_to_user+0x32/0xd0
[  448.631391][T15223]  simple_read_from_buffer+0xcb/0x170
[  448.631410][T15223]  proc_fail_nth_read+0x197/0x270
[  448.631426][T15223]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  448.631443][T15223]  ? rw_verify_area+0xcf/0x680
[  448.631458][T15223]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  448.631474][T15223]  vfs_read+0x1de/0xc70
[  448.631486][T15223]  ? __pfx___mutex_lock+0x10/0x10
[  448.631503][T15223]  ? __pfx_vfs_read+0x10/0x10
[  448.631517][T15223]  ? __fget_files+0x20e/0x3c0
[  448.631532][T15223]  ksys_read+0x12a/0x240
[  448.631550][T15223]  ? __pfx_ksys_read+0x10/0x10
[  448.631561][T15223]  ? rcu_is_watching+0x12/0xc0
[  448.631586][T15223]  __do_fast_syscall_32+0x73/0x120
[  448.631606][T15223]  do_fast_syscall_32+0x32/0x80
[  448.631623][T15223]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  448.631637][T15223] RIP: 0023:0xf711e579
[  448.631645][T15223] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  448.631656][T15223] RSP: 002b:00000000f510e590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  448.631667][T15223] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f510e620
[  448.631673][T15223] RDX: 000000000000000f RSI: 00000000f7482ff4 RDI: 0000000000000000
[  448.631679][T15223] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  448.631685][T15223] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  448.631691][T15223] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  448.631704][T15223]  </TASK>
[  448.777064][T15209] ALSA: mixer_oss: invalid index 40000
[  449.034668][T15234] ip6gretap0: entered promiscuous mode
[  449.629652][T15242] FAULT_INJECTION: forcing a failure.
[  449.629652][T15242] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  449.636466][T15242] CPU: 3 UID: 0 PID: 15242 Comm: syz.2.2416 Not tainted 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  449.636482][T15242] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  449.636489][T15242] Call Trace:
[  449.636493][T15242]  <TASK>
[  449.636498][T15242]  dump_stack_lvl+0x16c/0x1f0
[  449.636518][T15242]  should_fail_ex+0x512/0x640
[  449.636536][T15242]  _copy_to_user+0x32/0xd0
[  449.636547][T15242]  do_fb_ioctl+0x567/0x7e0
[  449.636565][T15242]  ? __pfx_do_fb_ioctl+0x10/0x10
[  449.636580][T15242]  ? lockdep_hardirqs_on+0x7c/0x110
[  449.636597][T15242]  ? find_held_lock+0x2b/0x80
[  449.636628][T15242]  fb_compat_ioctl+0x55e/0x670
[  449.636644][T15242]  ? __pfx_fb_compat_ioctl+0x10/0x10
[  449.636664][T15242]  ? __fget_files+0x20e/0x3c0
[  449.636674][T15242]  ? fput+0x50/0xf0
[  449.636690][T15242]  ? __pfx_fb_compat_ioctl+0x10/0x10
[  449.636705][T15242]  __ia32_compat_sys_ioctl+0x24c/0x360
[  449.636722][T15242]  __do_fast_syscall_32+0x73/0x120
[  449.636740][T15242]  do_fast_syscall_32+0x32/0x80
[  449.636756][T15242]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  449.636770][T15242] RIP: 0023:0xf711e579
[  449.636779][T15242] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  449.636789][T15242] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  449.636799][T15242] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004601
[  449.636805][T15242] RDX: 0000000080000280 RSI: 0000000000000000 RDI: 0000000000000000
[  449.636812][T15242] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  449.636817][T15242] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  449.636823][T15242] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  449.636836][T15242]  </TASK>
[  449.750228][ T5958] Bluetooth: hci0: ACL packet for unknown connection handle 0
[  449.752856][ T5958] Bluetooth: hci0: SCO packet for unknown connection handle 200
[  449.880549][T15249] binder_alloc: 15248: binder_alloc_buf, no vma
[  449.936333][T15251] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  449.939449][T15251] IPv6: NLM_F_CREATE should be set when creating new route
[  449.942493][T15251] IPv6: NLM_F_CREATE should be set when creating new route
[  451.476960][T15294] 8021q: adding VLAN 0 to HW filter on device bond2
[  451.627151][T15294] bond2 (unregistering): Released all slaves
[  451.745165][T15303] FAULT_INJECTION: forcing a failure.
[  451.745165][T15303] name failslab, interval 1, probability 0, space 0, times 0
[  451.749374][T15303] CPU: 3 UID: 0 PID: 15303 Comm: syz.2.2432 Not tainted 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  451.749389][T15303] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  451.749397][T15303] Call Trace:
[  451.749401][T15303]  <TASK>
[  451.749406][T15303]  dump_stack_lvl+0x16c/0x1f0
[  451.749426][T15303]  should_fail_ex+0x512/0x640
[  451.749443][T15303]  ? fs_reclaim_acquire+0xae/0x150
[  451.749461][T15303]  ? tomoyo_encode2+0x100/0x3e0
[  451.749476][T15303]  should_failslab+0xc2/0x120
[  451.749490][T15303]  __kmalloc_noprof+0xd2/0x510
[  451.749503][T15303]  ? d_absolute_path+0x136/0x1a0
[  451.749519][T15303]  tomoyo_encode2+0x100/0x3e0
[  451.749541][T15303]  tomoyo_encode+0x29/0x50
[  451.749556][T15303]  tomoyo_realpath_from_path+0x18f/0x6e0
[  451.749576][T15303]  tomoyo_check_open_permission+0x2ab/0x3c0
[  451.749591][T15303]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  451.749619][T15303]  ? do_raw_spin_lock+0x12c/0x2b0
[  451.749640][T15303]  tomoyo_file_open+0x6b/0x90
[  451.749652][T15303]  security_file_open+0x84/0x1e0
[  451.749668][T15303]  do_dentry_open+0x596/0x1c10
[  451.749684][T15303]  vfs_open+0x82/0x3f0
[  451.749700][T15303]  path_openat+0x1e5e/0x2d40
[  451.749717][T15303]  ? __pfx_path_openat+0x10/0x10
[  451.749732][T15303]  do_filp_open+0x20b/0x470
[  451.749743][T15303]  ? __pfx_do_filp_open+0x10/0x10
[  451.749764][T15303]  ? alloc_fd+0x471/0x7d0
[  451.749778][T15303]  do_sys_openat2+0x11b/0x1d0
[  451.749793][T15303]  ? __pfx_do_sys_openat2+0x10/0x10
[  451.749809][T15303]  ? __fget_files+0x20e/0x3c0
[  451.749822][T15303]  __ia32_compat_sys_openat+0x16d/0x210
[  451.749838][T15303]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  451.749853][T15303]  ? ksys_write+0x1b9/0x240
[  451.749866][T15303]  ? rcu_is_watching+0x12/0xc0
[  451.749879][T15303]  __do_fast_syscall_32+0x73/0x120
[  451.749897][T15303]  do_fast_syscall_32+0x32/0x80
[  451.749914][T15303]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  451.749928][T15303] RIP: 0023:0xf711e579
[  451.749936][T15303] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  451.749948][T15303] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  451.749959][T15303] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 00000000800005c0
[  451.749966][T15303] RDX: 0000000000020000 RSI: 0000000000000000 RDI: 0000000000000000
[  451.749972][T15303] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  451.749979][T15303] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  451.749985][T15303] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  451.749998][T15303]  </TASK>
[  451.750029][T15303] ERROR: Out of memory at tomoyo_realpath_from_path.
[  451.795807][ T5958] Bluetooth: hci0: command 0x0c1a tx timeout
[  452.223883][T15317] overlayfs: failed to clone upperpath
[  452.357838][T15328] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2441'.
[  452.630756][T15327] ALSA: mixer_oss: invalid index 40000
[  453.021319][T15345] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2445'.
[  453.033172][T15345] bridge_slave_1: left allmulticast mode
[  453.035718][T15345] bridge_slave_1: left promiscuous mode
[  453.040507][T15345] bridge0: port 2(bridge_slave_1) entered disabled state
[  453.276641][T15345] bridge_slave_0: left allmulticast mode
[  453.279023][T15345] bridge_slave_0: left promiscuous mode
[  453.282538][T15345] bridge0: port 1(bridge_slave_0) entered disabled state
[  453.633551][ T8513] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  453.787991][ T8513] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  453.791902][ T8513] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  453.795900][ T8513] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  453.803069][ T8513] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  453.806793][ T8513] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  453.818478][ T8513] usb 5-1: config 0 descriptor??
[  454.229175][ T8513] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  454.242408][ T8513] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  454.801079][T15388] input: syz0 as /devices/virtual/input/input26
[  455.703870][   T72] usb 5-1: reset high-speed USB device number 8 using dummy_hcd
[  456.239659][T15403] netlink: 'syz.5.2468': attribute type 1 has an invalid length.
[  456.467732][T15403] 8021q: adding VLAN 0 to HW filter on device bond2
[  456.584238][T15381] syz.0.2449 (15381) used greatest stack depth: 19288 bytes left
[  456.926343][T15411] siw: device registration error -23
[  457.220667][T15426] binder_alloc: 15425: binder_alloc_buf, no vma
[  457.223449][T15428] binder_alloc: 15425: binder_alloc_buf, no vma
[  457.345408][T15437] XFS (nullb0): Invalid superblock magic number
[  457.457322][T15450] netlink: 256 bytes leftover after parsing attributes in process `syz.2.2479'.
[  457.460346][T15450] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2479'.
[  457.535077][T15452] netlink: 'syz.1.2480': attribute type 1 has an invalid length.
[  457.537576][T15452] netlink: 'syz.1.2480': attribute type 2 has an invalid length.
[  458.017427][ T5946] usb 5-1: USB disconnect, device number 8
[  458.144201][   T40] kauditd_printk_skb: 203 callbacks suppressed
[  458.144215][   T40] audit: type=1326 audit(2000000151.703:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.5.2490" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  458.180730][   T40] audit: type=1326 audit(2000000151.703:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.5.2490" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  458.188642][   T40] audit: type=1326 audit(2000000151.703:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.5.2490" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70be579 code=0x7ffc0000
[  458.196094][   T40] audit: type=1326 audit(2000000151.703:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.5.2490" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  458.203385][   T40] audit: type=1326 audit(2000000151.703:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.5.2490" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  458.210024][   T40] audit: type=1326 audit(2000000151.703:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.5.2490" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70be579 code=0x7ffc0000
[  458.211858][T15483] siw: device registration error -23
[  458.223477][   T40] audit: type=1326 audit(2000000151.713:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.5.2490" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  458.230025][   T40] audit: type=1326 audit(2000000151.713:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.5.2490" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  458.253352][   T40] audit: type=1326 audit(2000000151.713:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.5.2490" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70be579 code=0x7ffc0000
[  458.259884][   T40] audit: type=1326 audit(2000000151.713:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15479 comm="syz.5.2490" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  458.791792][T15491] ubi: mtd0 is already attached to ubi31
[  459.042412][T15493] overlayfs: failed to clone upperpath
[  459.203386][   T72] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  459.373456][   T72] usb 7-1: Using ep0 maxpacket: 32
[  459.377971][   T72] usb 7-1: config index 0 descriptor too short (expected 156, got 27)
[  459.381798][   T72] usb 7-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  459.386759][T15514] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2500'.
[  459.391908][   T72] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  459.399169][   T72] usb 7-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  459.409135][   T72] usb 7-1: config 0 interface 0 has no altsetting 0
[  459.417109][   T72] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  459.420818][   T72] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  459.433371][   T72] usb 7-1: Product: syz
[  459.435257][   T72] usb 7-1: Manufacturer: syz
[  459.437241][   T72] usb 7-1: SerialNumber: syz
[  459.441367][   T72] usb 7-1: config 0 descriptor??
[  459.448793][   T72] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  459.456673][   T72] ldusb 7-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  459.553532][T15518] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  459.654537][ T8513] usb 7-1: USB disconnect, device number 14
[  459.657243][    C2] ldusb 7-1:0.0: usb_submit_urb failed (-19)
[  459.662470][ T8513] ldusb 7-1:0.0: LD USB Device #0 now disconnected
[  459.758726][T15496] ALSA: mixer_oss: invalid index 40000
[  459.791300][T15525] openvswitch: netlink: Unknown key attributes 2
[  459.856975][T15501] ldusb: No device or device unplugged -19
[  459.869763][T15501] netlink: 'syz.2.2497': attribute type 4 has an invalid length.
[  459.975223][T15537] FAULT_INJECTION: forcing a failure.
[  459.975223][T15537] name failslab, interval 1, probability 0, space 0, times 0
[  459.979034][T15537] CPU: 2 UID: 0 PID: 15537 Comm: syz.0.2509 Not tainted 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  459.979050][T15537] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  459.979056][T15537] Call Trace:
[  459.979061][T15537]  <TASK>
[  459.979066][T15537]  dump_stack_lvl+0x16c/0x1f0
[  459.979086][T15537]  should_fail_ex+0x512/0x640
[  459.979102][T15537]  ? __kvmalloc_node_noprof+0x122/0x600
[  459.979116][T15537]  should_failslab+0xc2/0x120
[  459.979130][T15537]  __kvmalloc_node_noprof+0x135/0x600
[  459.979142][T15537]  ? bucket_table_alloc.isra.0+0x83/0x460
[  459.979160][T15537]  ? bucket_table_alloc.isra.0+0x83/0x460
[  459.979175][T15537]  bucket_table_alloc.isra.0+0x83/0x460
[  459.979192][T15537]  rhashtable_init_noprof+0x41a/0x7e0
[  459.979209][T15537]  rhltable_init_noprof+0x20/0x60
[  459.979229][T15537]  nf_tables_newtable+0xf94/0x1b40
[  459.979249][T15537]  ? __pfx___nla_validate_parse+0x10/0x10
[  459.979262][T15537]  ? __pfx_nf_tables_newtable+0x10/0x10
[  459.979282][T15537]  ? __nla_parse+0x40/0x60
[  459.979295][T15537]  nfnetlink_rcv_batch+0x190b/0x2350
[  459.979319][T15537]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  459.979334][T15537]  ? consume_skb+0xcc/0x100
[  459.979350][T15537]  ? find_held_lock+0x2b/0x80
[  459.979363][T15537]  ? __local_bh_enable_ip+0xa4/0x120
[  459.979375][T15537]  ? lockdep_hardirqs_on+0x7c/0x110
[  459.979399][T15537]  ? __pfx___dev_queue_xmit+0x10/0x10
[  459.979423][T15537]  ? __nla_parse+0x40/0x60
[  459.979436][T15537]  nfnetlink_rcv+0x3c1/0x430
[  459.979452][T15537]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  459.979471][T15537]  netlink_unicast+0x53a/0x7f0
[  459.979488][T15537]  ? __pfx_netlink_unicast+0x10/0x10
[  459.979506][T15537]  netlink_sendmsg+0x8d1/0xdd0
[  459.979523][T15537]  ? __pfx_netlink_sendmsg+0x10/0x10
[  459.979538][T15537]  ? __import_iovec+0x1c8/0x660
[  459.979551][T15537]  ____sys_sendmsg+0xa98/0xc70
[  459.979569][T15537]  ? __pfx_____sys_sendmsg+0x10/0x10
[  459.979584][T15537]  ? get_compat_msghdr+0x11a/0x170
[  459.979604][T15537]  ___sys_sendmsg+0x134/0x1d0
[  459.979618][T15537]  ? __pfx____sys_sendmsg+0x10/0x10
[  459.979648][T15537]  __sys_sendmsg+0x16d/0x220
[  459.979661][T15537]  ? __pfx___sys_sendmsg+0x10/0x10
[  459.979681][T15537]  ? rcu_is_watching+0x12/0xc0
[  459.979694][T15537]  __do_fast_syscall_32+0x73/0x120
[  459.979712][T15537]  do_fast_syscall_32+0x32/0x80
[  459.979728][T15537]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  459.979742][T15537] RIP: 0023:0xf711e579
[  459.979751][T15537] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  459.979761][T15537] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  459.979775][T15537] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800000c0
[  459.979782][T15537] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  459.979788][T15537] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  459.979794][T15537] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  459.979800][T15537] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  459.979813][T15537]  </TASK>
[  459.979884][T15537] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2509'.
[  460.082791][T15537] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2509'.
[  460.151724][T15540] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2510'.
[  460.410423][T15546] siw: device registration error -23
[  460.536428][T15548] syzkaller0: entered promiscuous mode
[  460.538979][T15548] syzkaller0: entered allmulticast mode
[  460.915735][T15557] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2515'.
[  461.820699][T15559] ALSA: mixer_oss: invalid index 40000
[  462.111262][T15580] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2522'.
[  462.653475][   T57] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  462.802912][T15585] ALSA: mixer_oss: invalid index 40000
[  462.816260][T13815] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  462.833445][   T57] usb 7-1: Using ep0 maxpacket: 8
[  462.833643][T13815] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  462.837392][   T57] usb 7-1: config 0 has an invalid interface number: 112 but max is 0
[  462.840933][T13815] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  462.841453][   T57] usb 7-1: config 0 has no interface number 0
[  462.848644][T13815] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  462.849366][   T57] usb 7-1: New USB device found, idVendor=04c1, idProduct=009d, bcdDevice=1f.14
[  462.853434][T13815] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  462.855051][   T57] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  462.861227][   T57] usb 7-1: Product: syz
[  462.863086][   T57] usb 7-1: Manufacturer: syz
[  462.867313][   T57] usb 7-1: SerialNumber: syz
[  462.872784][   T57] usb 7-1: config 0 descriptor??
[  462.897509][   T57] gspca_main: vicam-2.14.0 probing 04c1:009d
[  462.905474][   T57] usb 7-1: Direct firmware load for vicam/firmware.fw failed with error -2
[  462.908306][   T57] usb 7-1: Falling back to sysfs fallback for: vicam/firmware.fw
[  462.910932][T15587] lo speed is unknown, defaulting to 1000
[  463.039859][T15587] chnl_net:caif_netlink_parms(): no params data found
[  463.175884][T15587] bridge0: port 1(bridge_slave_0) entered blocking state
[  463.179978][T15587] bridge0: port 1(bridge_slave_0) entered disabled state
[  463.183092][T15587] bridge_slave_0: entered allmulticast mode
[  463.189504][T15587] bridge_slave_0: entered promiscuous mode
[  463.194129][T15587] bridge0: port 2(bridge_slave_1) entered blocking state
[  463.197249][T15587] bridge0: port 2(bridge_slave_1) entered disabled state
[  463.200465][T15587] bridge_slave_1: entered allmulticast mode
[  463.208192][T15587] bridge_slave_1: entered promiscuous mode
[  463.272173][T15587] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  463.281154][T15587] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  463.358686][T15587] team0: Port device team_slave_0 added
[  463.366806][T15587] team0: Port device team_slave_1 added
[  463.417947][T15587] batman_adv: batadv0: Adding interface: batadv_slave_0
[  463.420158][T15587] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  463.428261][T15587] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  463.432480][T15587] batman_adv: batadv0: Adding interface: batadv_slave_1
[  463.434854][T15587] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  463.442829][T15587] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  463.483019][T15587] hsr_slave_0: entered promiscuous mode
[  463.488180][T15587] hsr_slave_1: entered promiscuous mode
[  463.490436][T15587] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  463.492910][T15587] Cannot create hsr debugfs directory
[  463.655208][T15587] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  463.662963][T15587] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  463.669942][T15587] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  463.676061][T15587] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  463.685335][T15589] ALSA: mixer_oss: invalid index 40000
[  463.727026][T15587] 8021q: adding VLAN 0 to HW filter on device bond0
[  463.743179][T15587] 8021q: adding VLAN 0 to HW filter on device team0
[  463.758282][T15601] netlink: 'syz.1.2529': attribute type 1 has an invalid length.
[  463.772377][ T6087] bridge0: port 1(bridge_slave_0) entered blocking state
[  463.775504][ T6087] bridge0: port 1(bridge_slave_0) entered forwarding state
[  463.805889][ T6111] bridge0: port 2(bridge_slave_1) entered blocking state
[  463.808317][ T6111] bridge0: port 2(bridge_slave_1) entered forwarding state
[  464.060016][T15587] 8021q: adding VLAN 0 to HW filter on device batadv0
[  464.384873][T15587] veth0_vlan: entered promiscuous mode
[  464.395352][T15587] veth1_vlan: entered promiscuous mode
[  464.417654][T15587] veth0_macvtap: entered promiscuous mode
[  464.425713][T15587] veth1_macvtap: entered promiscuous mode
[  464.438247][T15587] batman_adv: batadv0: Interface activated: batadv_slave_0
[  464.446143][T15587] batman_adv: batadv0: Interface activated: batadv_slave_1
[  464.452315][T15587] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  464.456918][T15587] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  464.460463][T15587] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  464.465041][T15587] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  464.542429][   T78] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  464.552599][   T78] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  464.596079][ T9081] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  464.598790][ T9081] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  464.734325][T15638] FAULT_INJECTION: forcing a failure.
[  464.734325][T15638] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  464.738328][T15638] CPU: 2 UID: 0 PID: 15638 Comm: syz.6.2526 Not tainted 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  464.738343][T15638] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  464.738349][T15638] Call Trace:
[  464.738353][T15638]  <TASK>
[  464.738358][T15638]  dump_stack_lvl+0x16c/0x1f0
[  464.738382][T15638]  should_fail_ex+0x512/0x640
[  464.738401][T15638]  _copy_from_user+0x2e/0xd0
[  464.738419][T15638]  kstrtouint_from_user+0xd6/0x1d0
[  464.738433][T15638]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  464.738445][T15638]  ? __lock_acquire+0xaa4/0x1ba0
[  464.738466][T15638]  proc_fail_nth_write+0x83/0x250
[  464.738483][T15638]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  464.738503][T15638]  vfs_write+0x25c/0x1180
[  464.738513][T15638]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  464.738531][T15638]  ? __pfx___mutex_lock+0x10/0x10
[  464.738547][T15638]  ? __pfx_vfs_write+0x10/0x10
[  464.738561][T15638]  ? __fget_files+0x20e/0x3c0
[  464.738575][T15638]  ksys_write+0x12a/0x240
[  464.738586][T15638]  ? __pfx_ksys_write+0x10/0x10
[  464.738597][T15638]  ? rcu_is_watching+0x12/0xc0
[  464.738610][T15638]  __do_fast_syscall_32+0x73/0x120
[  464.738627][T15638]  do_fast_syscall_32+0x32/0x80
[  464.738644][T15638]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  464.738657][T15638] RIP: 0023:0xf7f68579
[  464.738666][T15638] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  464.738676][T15638] RSP: 002b:00000000f5065590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  464.738686][T15638] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5065620
[  464.738693][T15638] RDX: 0000000000000001 RSI: 00000000f73f2ff4 RDI: 0000000000000000
[  464.738699][T15638] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  464.738705][T15638] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  464.738710][T15638] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  464.738723][T15638]  </TASK>
[  464.802311][    C2] vkms_vblank_simulate: vblank timer overrun
[  464.904695][T13815] Bluetooth: hci2: command tx timeout
[  465.274811][T15650] overlayfs: failed to clone upperpath
[  465.338484][T15654] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2542'.
[  465.481359][T15634] ALSA: mixer_oss: invalid index 40000
[  465.526679][T15658] lo speed is unknown, defaulting to 1000
[  465.528542][T15658] lo speed is unknown, defaulting to 1000
[  465.530635][T15658] lo speed is unknown, defaulting to 1000
[  465.573813][T15658] infiniband sĖR4: RDMA CMA: cma_listen_on_dev, error -98
[  465.672284][T15668] FAULT_INJECTION: forcing a failure.
[  465.672284][T15668] name failslab, interval 1, probability 0, space 0, times 0
[  465.676744][T15668] CPU: 3 UID: 0 PID: 15668 Comm: syz.1.2547 Not tainted 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  465.676759][T15668] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  465.676765][T15668] Call Trace:
[  465.676769][T15668]  <TASK>
[  465.676773][T15668]  dump_stack_lvl+0x16c/0x1f0
[  465.676792][T15668]  should_fail_ex+0x512/0x640
[  465.676809][T15668]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  465.676823][T15668]  should_failslab+0xc2/0x120
[  465.676837][T15668]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  465.676849][T15668]  ? __alloc_skb+0x2b2/0x380
[  465.676865][T15668]  __alloc_skb+0x2b2/0x380
[  465.676876][T15668]  ? __pfx___alloc_skb+0x10/0x10
[  465.676890][T15668]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  465.676907][T15668]  netlink_alloc_large_skb+0x69/0x130
[  465.676922][T15668]  netlink_sendmsg+0x6a1/0xdd0
[  465.676939][T15668]  ? __pfx_netlink_sendmsg+0x10/0x10
[  465.676954][T15668]  ? __import_iovec+0x1c8/0x660
[  465.676967][T15668]  ____sys_sendmsg+0xa98/0xc70
[  465.676985][T15668]  ? __pfx_____sys_sendmsg+0x10/0x10
[  465.677000][T15668]  ? get_compat_msghdr+0x11a/0x170
[  465.677019][T15668]  ___sys_sendmsg+0x134/0x1d0
[  465.677033][T15668]  ? __pfx____sys_sendmsg+0x10/0x10
[  465.677062][T15668]  __sys_sendmsg+0x16d/0x220
[  465.677075][T15668]  ? __pfx___sys_sendmsg+0x10/0x10
[  465.677094][T15668]  ? rcu_is_watching+0x12/0xc0
[  465.677106][T15668]  __do_fast_syscall_32+0x73/0x120
[  465.677130][T15668]  do_fast_syscall_32+0x32/0x80
[  465.677147][T15668]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  465.677161][T15668] RIP: 0023:0xf709e579
[  465.677169][T15668] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  465.677179][T15668] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  465.677190][T15668] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[  465.677196][T15668] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  465.677202][T15668] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  465.677208][T15668] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  465.677214][T15668] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  465.677227][T15668]  </TASK>
[  465.684323][T15658] lo speed is unknown, defaulting to 1000
[  465.850602][T15673] lo speed is unknown, defaulting to 1000
[  465.858091][T15658] lo speed is unknown, defaulting to 1000
[  465.860537][T15658] lo speed is unknown, defaulting to 1000
[  465.862968][T15658] lo speed is unknown, defaulting to 1000
[  465.865647][T15673] lo speed is unknown, defaulting to 1000
[  465.884844][T15658] lo speed is unknown, defaulting to 1000
[  466.120698][T15678] overlayfs: failed to clone upperpath
[  466.263069][   T34] usb 11-1: new high-speed USB device number 2 using dummy_hcd
[  466.644269][ T5986] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  466.793409][   T34] usb 11-1: Using ep0 maxpacket: 32
[  466.798099][   T34] usb 11-1: config index 0 descriptor too short (expected 156, got 27)
[  466.800775][   T34] usb 11-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  466.804203][   T34] usb 11-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  466.807605][   T34] usb 11-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  466.811523][   T34] usb 11-1: config 0 interface 0 has no altsetting 0
[  466.815417][   T34] usb 11-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  466.818217][   T34] usb 11-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  466.820812][   T34] usb 11-1: Product: syz
[  466.822186][   T34] usb 11-1: Manufacturer: syz
[  466.828046][   T34] usb 11-1: SerialNumber: syz
[  466.832469][   T34] usb 11-1: config 0 descriptor??
[  466.838883][   T34] ldusb 11-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  466.846399][   T34] ldusb 11-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  466.994200][T13815] Bluetooth: hci2: command tx timeout
[  467.052317][    C3] ldusb 11-1:0.0: usb_submit_urb failed (-19)
[  467.054963][   T34] usb 11-1: USB disconnect, device number 2
[  467.082108][   T34] ldusb 11-1:0.0: LD USB Device #0 now disconnected
[  467.179056][T15694] overlayfs: failed to clone upperpath
[  467.248064][T15676] ldusb: No device or device unplugged -19
[  467.891864][T15720] IPv4: Oversized IP packet from 127.0.0.1
[  467.897423][    C0] IPv4: Oversized IP packet from 127.0.0.1
[  467.900369][    C0] IPv4: Oversized IP packet from 127.0.0.1
[  467.906250][T15720] IPv4: Oversized IP packet from 127.0.0.1
[  467.909232][    C0] IPv4: Oversized IP packet from 127.0.0.1
[  467.911882][    C0] IPv4: Oversized IP packet from 127.0.0.1
[  467.915731][T15720] IPv4: Oversized IP packet from 127.0.0.1
[  467.918624][    C0] IPv4: Oversized IP packet from 127.0.0.1
[  467.921240][    C0] IPv4: Oversized IP packet from 127.0.0.1
[  467.925509][T15720] IPv4: Oversized IP packet from 127.0.0.1
[  468.896927][T15724] ALSA: mixer_oss: invalid index 40000
[  469.063723][T13815] Bluetooth: hci2: command tx timeout
[  469.243397][ T6005] usb 11-1: new high-speed USB device number 3 using dummy_hcd
[  469.413404][ T6005] usb 11-1: Using ep0 maxpacket: 32
[  469.417405][ T6005] usb 11-1: config index 0 descriptor too short (expected 156, got 27)
[  469.420934][ T6005] usb 11-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  469.426163][ T6005] usb 11-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  469.430800][ T6005] usb 11-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  469.436464][ T6005] usb 11-1: config 0 interface 0 has no altsetting 0
[  469.441599][ T6005] usb 11-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  469.445538][ T6005] usb 11-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  469.449300][ T6005] usb 11-1: Product: syz
[  469.451174][ T6005] usb 11-1: Manufacturer: syz
[  469.453161][ T6005] usb 11-1: SerialNumber: syz
[  469.458443][ T6005] usb 11-1: config 0 descriptor??
[  469.464758][ T6005] ldusb 11-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  469.469953][ T6005] ldusb 11-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  469.666966][ T6005] usb 11-1: USB disconnect, device number 3
[  469.669490][    C2] ldusb 11-1:0.0: usb_submit_urb failed (-19)
[  469.672933][ T6005] ldusb 11-1:0.0: LD USB Device #0 now disconnected
[  469.869742][T15740] ldusb: No device or device unplugged -19
[  471.145906][T13815] Bluetooth: hci2: command tx timeout
[  471.281608][T15763] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2578'.
[  471.517735][T15775] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2578'.
[  471.713373][ T5985] usb 11-1: new high-speed USB device number 4 using dummy_hcd
[  471.873445][ T5985] usb 11-1: Using ep0 maxpacket: 32
[  471.877135][ T5985] usb 11-1: config index 0 descriptor too short (expected 156, got 27)
[  471.880373][ T5985] usb 11-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  471.885712][ T5985] usb 11-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  471.891011][ T5985] usb 11-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  471.896159][ T5985] usb 11-1: config 0 interface 0 has no altsetting 0
[  471.900679][ T5985] usb 11-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  471.904367][ T5985] usb 11-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  471.907325][ T5985] usb 11-1: Product: syz
[  471.909008][ T5985] usb 11-1: Manufacturer: syz
[  471.910914][ T5985] usb 11-1: SerialNumber: syz
[  471.914317][ T5985] usb 11-1: config 0 descriptor??
[  471.918677][ T5985] ldusb 11-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  471.923430][ T5985] ldusb 11-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  472.122841][ T8513] usb 11-1: USB disconnect, device number 4
[  472.125474][    C2] ldusb 11-1:0.0: usb_submit_urb failed (-19)
[  472.134996][ T8513] ldusb 11-1:0.0: LD USB Device #0 now disconnected
[  472.341817][T15774] ldusb: No device or device unplugged -19
[  472.361663][T15774] netlink: 'syz.6.2582': attribute type 4 has an invalid length.
[  472.374318][T15789] netlink: 'syz.2.2588': attribute type 10 has an invalid length.
[  472.387345][T15774] netlink: 'syz.6.2582': attribute type 4 has an invalid length.
[  472.417761][T15789] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  472.426599][T15789] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2588'.
[  472.665062][T15788] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  473.222994][T15814] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  473.225450][T15814] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  473.229906][T15814] vhci_hcd vhci_hcd.0: Device attached
[  473.291724][T15815] vhci_hcd: connection closed
[  473.292068][ T9081] vhci_hcd: stop threads
[  473.295061][ T9081] vhci_hcd: release socket
[  473.296494][ T9081] vhci_hcd: disconnect device
[  473.537023][T15819] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2597'.
[  474.066563][T15836] fuse: Bad value for 'fd'
[  474.626129][T15853] syz.6.2611 (15853): drop_caches: 2
[  475.468931][T15869] fuse: Bad value for 'user_id'
[  475.470573][T15869] fuse: Bad value for 'user_id'
[  476.445052][T15881] overlayfs: failed to clone upperpath
[  476.616772][ T5985] Process accounting resumed
[  476.953371][T15894] overlayfs: failed to clone lowerpath
[  477.278759][T15896] syz.6.2624 (15896): drop_caches: 2
[  478.113824][T15902] netlink: 'syz.2.2626': attribute type 1 has an invalid length.
[  478.116762][T15902] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2626'.
[  478.191259][T15906] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2627'.
[  478.194463][T15906] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2627'.
[  478.255067][T15908] lo speed is unknown, defaulting to 1000
[  478.258111][T15908] lo speed is unknown, defaulting to 1000
[  478.305119][T15910] syz_tun: entered allmulticast mode
[  478.387674][T15915] dvmrp1: entered allmulticast mode
[  479.239942][T15907] syz_tun: left allmulticast mode
[  479.241795][T15907] dvmrp1: left allmulticast mode
[  480.088667][T15943] xfs: Unknown parameter 'norecoverySũý‰góցÜ6pĒnĐÝ.W"ŋœĢö›R[C1`ŪBūlJ°AüęėđFĮØ€^ĮCÓčŅņÏádîI•['
[  481.524543][T15958] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2638'.
[  481.540132][T15958] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2638'.
[  481.957345][T15964] netlink: 'syz.5.2642': attribute type 4 has an invalid length.
[  481.960714][T15964] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2642'.
[  483.899720][T15991] overlayfs: failed to clone upperpath
[  483.946632][T15995] lo speed is unknown, defaulting to 1000
[  483.950374][T15995] lo speed is unknown, defaulting to 1000
[  484.059648][T16004] lo speed is unknown, defaulting to 1000
[  484.062158][T16004] lo speed is unknown, defaulting to 1000
[  484.120605][   T40] kauditd_printk_skb: 68 callbacks suppressed
[  484.120622][   T40] audit: type=1804 audit(2000000177.673:794): pid=16005 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.2654" name="bus" dev="tmpfs" ino=1718 res=1 errno=0
[  484.218617][T16011] binder: 16010:16011 ioctl 4008941a 800002c0 returned -22
[  484.222958][T16011] binder: 16010:16011 ioctl c0306201 800003c0 returned -14
[  484.296162][T15995] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  484.298459][T15995] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  484.336924][T15995] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  484.339172][T15995] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  484.346658][T15995] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  484.348864][T15995] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  484.378066][T15995] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  485.453691][T16019] ALSA: mixer_oss: invalid index 40000
[  485.568442][T16025] QAT: failed to copy from user cfg_data.
[  485.729933][T16041] autofs: Unknown parameter 'ĸĸ'
[  486.263598][T13815] Bluetooth: hci3: command 0x0406 tx timeout
[  486.343644][T13815] Bluetooth: hci0: command 0x0c1a tx timeout
[  486.354535][T15994] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  486.423526][T13815] Bluetooth: hci2: command 0x0c1a tx timeout
[  487.500807][T16059] bridge2: entered promiscuous mode
[  487.503716][T16059] bridge2: entered allmulticast mode
[  487.533814][T16059] team0: Port device bridge2 added
[  487.547040][T16059] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2675'.
[  487.729368][T16066] siw: device registration error -23
[  488.353468][T13815] Bluetooth: hci3: command 0x0406 tx timeout
[  488.380271][T16072] siw: device registration error -23
[  488.423440][T13815] Bluetooth: hci0: command 0x0c1a tx timeout
[  488.503547][T13815] Bluetooth: hci2: command 0x0c1a tx timeout
[  488.591953][T16083] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_team, syncid = 5, id = 0
[  489.018085][T16101] fuse: Bad value for 'fd'
[  489.058719][   T40] audit: type=1326 audit(2000000182.613:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16102 comm="syz.2.2691" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x0
[  489.870216][T16121] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2698'.
[  490.503408][T13815] Bluetooth: hci0: command 0x0c1a tx timeout
[  490.584166][T13815] Bluetooth: hci2: command 0x0c1a tx timeout
[  490.648085][T16141] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2705'.
[  490.785837][T16149] IPVS: length: 78 != 8
[  490.850020][T16143] lo speed is unknown, defaulting to 1000
[  490.856055][T16143] lo speed is unknown, defaulting to 1000
[  490.866832][T16153] netlink: 'syz.6.2710': attribute type 21 has an invalid length.
[  490.870086][T16153] netlink: 128 bytes leftover after parsing attributes in process `syz.6.2710'.
[  490.877400][T16153] netlink: 'syz.6.2710': attribute type 5 has an invalid length.
[  490.880605][T16153] netlink: 'syz.6.2710': attribute type 6 has an invalid length.
[  490.884517][T16153] netlink: 3 bytes leftover after parsing attributes in process `syz.6.2710'.
[  490.889428][T16150] netlink: 56 bytes leftover after parsing attributes in process `syz.5.2707'.
[  492.219132][T16178] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2717'.
[  492.224426][T16178] netlink: 'syz.1.2717': attribute type 1 has an invalid length.
[  492.227041][T16178] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2717'.
[  493.411785][T16218] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2733'.
[  493.417843][T16218] bridge0: port 1(batadv0) entered disabled state
[  493.979872][T16240] netlink: 6 bytes leftover after parsing attributes in process `syz.5.2742'.
[  493.985467][T16240] net_ratelimit: 86 callbacks suppressed
[  493.985481][T16240] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  494.133812][T16236] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2736'.
[  494.270114][T16262] siw: device registration error -23
[  494.299475][T16262] lo speed is unknown, defaulting to 1000
[  494.303382][T16262] lo speed is unknown, defaulting to 1000
[  494.338556][T16270] RDS: rds_bind could not find a transport for ::ffff:10.1.1.0, load rds_tcp or rds_rdma?
[  494.435384][T16272] evm: overlay not supported
[  495.013392][ T5986] usb 11-1: new high-speed USB device number 5 using dummy_hcd
[  495.193395][ T5986] usb 11-1: Using ep0 maxpacket: 32
[  495.196868][ T5986] usb 11-1: config index 0 descriptor too short (expected 156, got 27)
[  495.199554][ T5986] usb 11-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  495.203109][ T5986] usb 11-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  495.207914][ T5986] usb 11-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  495.212058][ T5986] usb 11-1: config 0 interface 0 has no altsetting 0
[  495.216160][ T5986] usb 11-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  495.224684][ T5986] usb 11-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  495.227596][ T5986] usb 11-1: Product: syz
[  495.229129][ T5986] usb 11-1: Manufacturer: syz
[  495.230737][ T5986] usb 11-1: SerialNumber: syz
[  495.236580][ T5986] usb 11-1: config 0 descriptor??
[  495.245659][ T5986] ldusb 11-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  495.252093][ T5986] ldusb 11-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  495.368544][T16298] overlayfs: failed to clone upperpath
[  495.451933][ T5986] usb 11-1: USB disconnect, device number 5
[  495.454549][    C2] ldusb 11-1:0.0: usb_submit_urb failed (-19)
[  495.464822][ T5986] ldusb 11-1:0.0: LD USB Device #0 now disconnected
[  495.468479][T16306] ieee802154 phy0 wpan0: encryption failed: -22
[  495.532536][T16306] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2763'.
[  495.650600][   T40] audit: type=1326 audit(2000000189.203:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16318 comm="syz.5.2769" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  495.655606][T16281] ldusb: No device or device unplugged -19
[  495.661960][   T40] audit: type=1326 audit(2000000189.203:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16318 comm="syz.5.2769" exe="/syz-executor" sig=0 arch=40000003 syscall=242 compat=1 ip=0xf70be579 code=0x7ffc0000
[  495.669697][   T40] audit: type=1326 audit(2000000189.203:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16318 comm="syz.5.2769" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  495.677227][   T40] audit: type=1326 audit(2000000189.203:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16318 comm="syz.5.2769" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70be579 code=0x7ffc0000
[  495.685952][   T40] audit: type=1326 audit(2000000189.203:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16318 comm="syz.5.2769" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  495.692932][   T40] audit: type=1326 audit(2000000189.203:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16318 comm="syz.5.2769" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70be579 code=0x7ffc0000
[  495.700138][   T40] audit: type=1326 audit(2000000189.203:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16318 comm="syz.5.2769" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  495.708065][   T40] audit: type=1326 audit(2000000189.203:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16318 comm="syz.5.2769" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  495.756160][T16321] overlayfs: failed to clone upperpath
[  495.816541][T16327] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2773'.
[  496.057022][T16334] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2774'.
[  496.113551][T16334] openvswitch: netlink: Flow key attr not present in new flow.
[  496.360571][T16337] FAULT_INJECTION: forcing a failure.
[  496.360571][T16337] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  496.365976][T16337] CPU: 2 UID: 0 PID: 16337 Comm: syz.6.2776 Not tainted 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  496.366001][T16337] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  496.366025][T16337] Call Trace:
[  496.366033][T16337]  <TASK>
[  496.366040][T16337]  dump_stack_lvl+0x16c/0x1f0
[  496.366071][T16337]  should_fail_ex+0x512/0x640
[  496.366099][T16337]  _copy_from_user+0x2e/0xd0
[  496.366128][T16337]  __tun_chr_ioctl+0x1de/0x4740
[  496.366152][T16337]  ? __pfx___tun_chr_ioctl+0x10/0x10
[  496.366171][T16337]  ? find_held_lock+0x2b/0x80
[  496.366189][T16337]  ? hook_file_ioctl_common+0x145/0x410
[  496.366216][T16337]  ? __fget_files+0x20e/0x3c0
[  496.366231][T16337]  ? fput+0x50/0xf0
[  496.366258][T16337]  ? __pfx_tun_chr_compat_ioctl+0x10/0x10
[  496.366275][T16337]  __ia32_compat_sys_ioctl+0x24c/0x360
[  496.366304][T16337]  __do_fast_syscall_32+0x73/0x120
[  496.366332][T16337]  do_fast_syscall_32+0x32/0x80
[  496.366358][T16337]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  496.366380][T16337] RIP: 0023:0xf7f68579
[  496.366393][T16337] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  496.366409][T16337] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  496.366426][T16337] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000400454ca
[  496.366437][T16337] RDX: 00000000800000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  496.366447][T16337] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  496.366457][T16337] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  496.366467][T16337] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  496.366490][T16337]  </TASK>
[  496.928560][T16347] openvswitch: netlink: Key type 277 is out of range max 32
[  496.973558][T16350] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2780'.
[  496.977471][T16350] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2780'.
[  497.270379][T16354] overlayfs: failed to clone upperpath
[  497.320041][T16360] lo speed is unknown, defaulting to 1000
[  497.322570][T16360] lo speed is unknown, defaulting to 1000
[  497.530754][T16360] loop6: detected capacity change from 0 to 6
[  497.581825][T16360] Dev loop6: unable to read RDB block 6
[  497.584745][T16360]  loop6: unable to read partition table
[  497.587505][T16360] loop6: partition table beyond EOD, truncated
[  497.590288][T16360] loop_reread_partitions: partition scan of loop6 (îÝ·ÂU@™:ÖB$Œ{
WÎÉīå) failed (rc=-5)
[  497.986069][T16355] ALSA: mixer_oss: invalid index 40000
[  498.596847][T16389] overlayfs: failed to clone upperpath
[  498.758139][T16405] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2799'.
[  498.875943][T16412] overlayfs: failed to resolve './file0': -2
[  498.905856][T16414] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2803'.
[  498.909488][T16414] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2803'.
[  499.127048][T16423] overlayfs: failed to resolve './file1': -2
[  499.215101][T16427] lo speed is unknown, defaulting to 1000
[  499.218483][T16427] lo speed is unknown, defaulting to 1000
[  499.405080][T16432] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2808'.
[  499.449143][T16434] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2809'.
[  499.662049][T16440] overlayfs: failed to resolve './file0': -2
[  499.801532][T16444] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2813'.
[  500.332506][   T40] audit: type=1326 audit(2000000193.873:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16435 comm="syz.5.2810" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7fc00000
[  500.451665][T16455] openvswitch: netlink: IPv6 tunnel dst address is zero
[  500.523012][T16457] overlayfs: failed to resolve './file1': -2
[  500.906397][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  500.965725][T16466] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2818'.
[  501.051315][T16472] overlayfs: failed to resolve './file0': -2
[  502.977014][T16500] overlayfs: failed to clone upperpath
[  503.171123][T16503] overlayfs: failed to resolve './file1': -2
[  503.527258][T16507] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2832'.
[  503.531188][T16507] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2832'.
[  504.093635][T16522] [U] 
[  504.094892][T16522] [U] K{‘
[  504.096245][T16522] [U] ät Ž1ĘāŠŠFėĮÄfˊî`GĘJį˜ÜgöæŊđŽĄ—þČoÕņ/ümCį
[  504.099293][T16522] [U] tžØ–/,~ˆÄœ­‹jõĸĘ}8îĘþ'o1Ü"™7-î‚JQœK—ĪWšïqé5c%"ŽH12–ĶY“„‰ž€ĘXÍ`ˆ‚íčž`+ģû(·âŋ!(éûéz'ātXlnŧIŪgÅj– °üÝ­·på~ũ7í!‘Õō"øĻÎūŠ(Č5ˆObüĪ‡ÍƒJÖ
[  504.107511][T16522] [U] ąk\&—}6Ģ6œXîHXĨôĩ„Ėþ.`ļa“$Û40|Ïķŋ9°øÞĻ„ŊĀÏU‚ō4ôäŪVbzÃð}ĖwÔM”TšŽíQŸýÎĶr’4”ĸ
[  504.112410][T16522] [U] ".h6øÞ"Ökã‡[›‰ĪŒJá4įØInĻ™[Z(•„C|Të]z{â3Ÿc=ŧĻxîôžë…î4ßw‰)\T‘XJøSH{q;ėđĒ…ötÔĮ+‹ĶũgíčĸŪd„.˂ģ>yžũéwUh„fN—ŽĮhl]SÔ2ŠĮŲ\g%ŠOž&z)ĩðš'Ļpul‚_<ã	ĒØ°‰ōŪÔå`ŌąTÔÁþœÐËþ;_ô"(‘u{7jœŋ2X ‘/€'ÝŲcŅĖõIšĐĀÏHŋcÕģžVĶ=‘AiĮ%wžEsž RšŸjŠîœƒÚ”gÂũrÁđíĄhI
˜Ēœaïė6-úDúVĻá i"øånæĻ þÚAsc~4ÁŠđ8cø*­OO5/ĸœJš~š§Ąw—vK+ŽŪ‰Œ3čĮY)ŽđM°ļævķĖyqæ―€DTrŊ
Otpem%fŨĘejÍA5æÔT_-X~ ^aaۂō˜―qÖå
[  504.135068][T16522] [U] 	+w‰G?]ĢÓ'a:	ŧÚ)Õ
ïó™“' B>tĒ Ąf/™ũ<'čUÓ'–žh§ié.+]eŸ.―-ÉŋĸŋŌ%ũč>2`ķ^Uĸ8F.Š6ĪÅ3ÓØ+ËAūÂŦŦ„°g3ÓpÂó6:^0Ātéčvũ'Eõtž€ûâYC‰nūþrÏĐÞnčPjŨ;æZ†ęôņû‘8!ŊČ\ų…ļAØʖ2ÁĢ$ðĩ™Â­wi.Íį#ŠČ/BaižÄ`ðá4j’ôdîy@Óz„ügWũ5ËŋBÄĩŲœ Nóy"vI2ûĖ
[  504.153498][T16522] [U] ôTĶ_K5ļtŽYJÐþÎ9ðÕcĘ$brŸLúNulķü9wČýÍ|žGå"ʃÆ%ĮúķęCŠØ°ķšqîŲ
 ŸĮ3‹ÆqŊôN^HP*―Ü$	ĩ.Î7yÓąœ2ģ
[  504.158228][T16522] [U] ―?Đĸhüä*ŲÁ”Î3í7Üéū^#Q"0~‡‚ð(éoïXLŒbĢ,'vîÓ=‹ÝëCĖSŦ…’G‚SķÞ0•Ö‚‹Ų`˜›žŲ‡Ÿ†=1(ũîū™ũp#ō2DO*Ƀ
[  504.163461][T16522] [U] Đsđ“gžĩēķ“˜GuÐÔd-{ļ™â|&“ŪŸŸņ2ĩ›LÞc_М!`ĻÍozÖĨĒBķģ%>ęrņķöwï‡ýŽSsÂH"ĢyA4ĢO.šYŲÛ䏄RTÔķŒBÚ[+/<<RBĘäõ|ÐĪeŽžŅÛ –V96#ûúŅÍĪęĶjšUš%
s851ƒþŌĐsPąĻ\Ģƒ?qŠ|LīQXĩ0ÂKÔ1orÉī2Ą―|ÖüdÖFĖŋŧųÚË2ޔ–ĻŨ0ĖåH•}C[/Īŧ“Ÿpx^žčo
[  504.190332][T16522] [U] Ö؛·Ü—(JÅЛ•§mÛüxz˜;œ―ąÓĸ؝_đŧĩÔ*3ũ3…ß5ļ\ƒxmģÚU‰AK!aQ`ßË;Fð•I+ÖÐVUHåðÂmŅjģīÆ·ŲÛZÄcøãz‹žÂ)_įŸĄ	ô‘Ą&ĸöĄĸáaĮxtoČÝę_― úžĶ:ĻâŨ%āēPōŨČCöē‚yö+_þü›ýû}Uïm˜ƒÆŦCÅ!KJō7ÐßgŊË=bč
[  504.190506][T16526] siw: device registration error -23
[  504.200803][T16522] [U] Ų―ĨFœ%ŽXAŲÂlŸ2r*gŒōVWŽŅ$ƒüj	ãA˜›Fķߝ·+øū9̈́VišÖ—žkŲūÅ1}_Đâ
áĨ%Ãr6„•(]“Ķ/ŸķøÅ™YÜšĮÞhãĪūüŅr gŠÄrn/ÜŦÎ#!ędŲûÚŦ%ÞÛËDŠï-{ð$þvU‘ýTēžŠ$:mtrÔEŽC1V‰D~îČ];[˜ËÚÐũsqūŊœų(ėëe,XĶ8â"Ų
æðGĨdŸúĩ2@T8žūīōƒāðĸāt8.Rc+Ä@ËęĶ‡p‡uá
p”‰žķCą‡Ë'å„yLÓ-Ss1E?Å7ÓO‡§ė^]Ķ†Âóc”â―H]§Jkr]Rkq܆øÝĢþīOTcôÆxķĻū4™NË	ģÏ&á­ðڋŠÓ@ķ:m7ß~+”W*ÛÁ–xMüó>>—Ą{qĒÚŨ
_ē՝LX8ĘU„ĮØî{ðZģíø)ĸŌ7?ËrR;ĸcßr hŨēÚĢáŧĻč1Å>)ĐMăâ‰Ït§ēÚ(ėĮaϝ„}9·ÚĨãJ*MŅœĨÄĄŦ'LđĢq	ėDWŸōøļ=Ø―|qŽ	ÏƙW;5æŲÅ―Š!ņdBļx`é§ö/ũÂE`ÆĶMÂĒXîâ"ä\
[  504.219755][T16522] [U] {;ŽõĨÂŲ˜_ˆo2ŦŅ)îoŪ›.2ÐW2ęēĻðyųÃãx_  HPÏąœSŠD­Ķø:]‚{ËĐÔÝæč―
[  504.223239][T16522] [U] I,Į>ĮóĪ	îŲ51ņũ^1ōN4ŊoĮķþ'0ý?֒iŲ9w.ï_.ķWŠažŠVˆą`)ŅZŽïæc6GiÓđēaŧŽXL[Ē›―ĄFü*ĀņO‰W)+‡Į'\nÆ
[K@ŅëÄü2įĮŽ–ŪĄp"^`Á‰í	øß
[  504.228675][T16522] [U] 22―“ÆĐÐûĐx?0;3uą
[  504.230522][T16522] [U] ޜÕ
æósObx 8”Wˆ4á‘(ð~/§ŋíKĮUžãԖoQËe+·GŪ-yĩgY_
•>vĒÜČë—3.hÁә]̈́ē2‘”)™DË,	‘Ä	þD~ŨdĐĢĄ+Ãw;A\˜F
PÉþȘ|$šø)
KؐIģéÐÉŋkņYT^RÍüųį™ĩ“ËA=ą#–Üœ	ÝíßËaeАtå1·ÎÝŊ4KŊ.e"RÚS|ðŸĀsÖ’Á:•ų>p™…rÐ"z‰ú­ûúé#P!˜KY"›}ÃÆFŋN84üģƒÅhÞąĢo•ČsߙĖŦ%DlwŲmæēĮ
[  504.241213][T16522] [U] [Š['xn€'ēũáŋÜ,mrĶŦ/žšœâ1D=!DŽx91Bų
wįŧR—lf…ƒÆKėĪZõę# `ė‘l؛§ËœŧŨb~åmŌÔÖ
[  504.245180][T16522] [U] ™LÖ>ņd+ˆdŊ§—ŪĖ"5Žęh3<ŠĻÅiR=F^”fnõóÜĀ‰ŋû­vÛũœDÁOIOÚ:Uö>ÖYâ
[  504.248759][T16522] [U] 'B—6vý20ģä·įžĨ·ŨŒï"t8Ņ{9ÆFW]ôĘäėЍ
[  504.251415][T16522] [U] ų72þ‰ïÂÃuþC6™îüÔτI]8cŠĢtÛĻQSkYÞîIŌĀâđ ŋ|V'ÛTV/ųÅg•$[â 9kh`ú"ü‘úõ}€ņ[^=ˆú0á]―ã%ÆĖ‚T“ŠžđØFė_vö4CļōÅ
[  504.256604][T16522] [U] đec
[  504.257963][T16522] [U] —”|‚Ęė<äî:^ü3$7nK~Ø-™@ũĶ?Ÿ–/mtl·ÛūĐIˆwčŽ@g~tØ{ęÜPß+Æ$Šjp|ĩŽįIÛRiópmð õ·YÓ ú”8ėtÉÐÞVžŲĸÆë,îlâ,Õ
[  504.916425][T16540] overlayfs: failed to clone upperpath
[  507.108894][T16524] [U] ˆKĖúÛõ‰)0ÄÄÝ~üģĘŠÁiP'ífóōœzÚÞrŽ™ĸ@BÓ]Â5ÝĘ{­ĐĘžô'ā8åÆĨF‡đUTqUd
ĮĐĪK;7íŠ0c[„ãy–žČYCĶķŧØ°mŠ™Lō8’T…ÍšÎ5ģýýrx™ķðWí xĪēóoQhVi'8œĨÎ…Lĩ
[  508.028829][T16577] ALSA: mixer_oss: invalid index 40000
[  508.138080][T16595] binder: 16593:16595 ioctl c0306201 80000040 returned -22
[  508.142536][T16595] netlink: 'syz.1.2860': attribute type 10 has an invalid length.
[  508.145340][T16595] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2860'.
[  508.150070][T16595] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  508.162655][T16595] netlink: 'syz.1.2860': attribute type 10 has an invalid length.
[  508.428751][T16599] overlayfs: failed to clone upperpath
[  508.709971][   T40] audit: type=1326 audit(2000000202.173:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16608 comm="syz.5.2866" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  508.720039][   T40] audit: type=1326 audit(2000000202.173:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16608 comm="syz.5.2866" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  508.729293][   T40] audit: type=1326 audit(2000000202.173:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16608 comm="syz.5.2866" exe="/syz-executor" sig=0 arch=40000003 syscall=163 compat=1 ip=0xf70be579 code=0x7ffc0000
[  508.738337][   T40] audit: type=1326 audit(2000000202.173:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16608 comm="syz.5.2866" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  508.747250][   T40] audit: type=1326 audit(2000000202.173:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16608 comm="syz.5.2866" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  508.755793][   T40] audit: type=1326 audit(2000000202.183:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16608 comm="syz.5.2866" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf70be579 code=0x7ffc0000
[  508.777225][   T40] audit: type=1326 audit(2000000202.333:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16608 comm="syz.5.2866" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  508.785265][   T40] audit: type=1326 audit(2000000202.333:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16608 comm="syz.5.2866" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  508.791972][   T40] audit: type=1326 audit(2000000202.343:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16608 comm="syz.5.2866" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf70be579 code=0x7ffc0000
[  508.800801][   T40] audit: type=1326 audit(2000000202.343:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16608 comm="syz.5.2866" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  508.957439][T16615] siw: device registration error -23
[  509.007041][T16617] siw: device registration error -23
[  509.223762][T16620] input: syz1 as /devices/virtual/input/input28
[  509.537260][T16624] openvswitch: netlink: IP tunnel TTL not specified.
[  509.758531][T16626] netlink: 'syz.5.2870': attribute type 4 has an invalid length.
[  509.769785][T16626] netlink: 'syz.5.2870': attribute type 4 has an invalid length.
[  509.843570][ T8513] usb 11-1: new low-speed USB device number 6 using dummy_hcd
[  509.995606][ T8513] usb 11-1: config 0 has an invalid interface number: 55 but max is 0
[  509.998166][ T8513] usb 11-1: config 0 has no interface number 0
[  510.000234][ T8513] usb 11-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  510.005050][ T8513] usb 11-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  510.009451][ T8513] usb 11-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  510.015471][ T8513] usb 11-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  510.020016][ T8513] usb 11-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  510.025265][ T8513] usb 11-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  510.030396][ T8513] usb 11-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  510.034239][ T8513] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  510.040325][ T8513] usb 11-1: config 0 descriptor??
[  510.043428][T16627] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  510.053102][T16627] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  510.060533][ T8513] ldusb 11-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  510.300130][ T5985] usb 11-1: USB disconnect, device number 6
[  510.335329][ T5985] ldusb 11-1:0.55: LD USB Device #0 now disconnected
[  511.109880][T16654] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2879'.
[  511.113904][T16654] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2879'.
[  512.868260][T16688] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2890'.
[  512.870847][T16688] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2890'.
[  513.303406][   T34] usb 11-1: new high-speed USB device number 7 using dummy_hcd
[  513.353648][T16704] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2895'.
[  513.474468][   T34] usb 11-1: Using ep0 maxpacket: 32
[  513.477821][   T34] usb 11-1: config index 0 descriptor too short (expected 156, got 27)
[  513.481333][   T34] usb 11-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  513.485805][   T34] usb 11-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  513.489289][   T34] usb 11-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  513.493839][   T34] usb 11-1: config 0 interface 0 has no altsetting 0
[  513.497797][   T34] usb 11-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  513.500658][   T34] usb 11-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  513.504932][   T34] usb 11-1: Product: syz
[  513.506457][   T34] usb 11-1: Manufacturer: syz
[  513.507963][   T34] usb 11-1: SerialNumber: syz
[  513.510611][   T34] usb 11-1: config 0 descriptor??
[  513.515579][   T34] ldusb 11-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  513.519203][   T34] ldusb 11-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  513.718759][   T34] usb 11-1: USB disconnect, device number 7
[  513.721768][   T34] ldusb 11-1:0.0: LD USB Device #0 now disconnected
[  514.227214][T16712] fuse: Bad value for 'user_id'
[  514.228956][T16712] fuse: Bad value for 'user_id'
[  514.372870][T16716] overlayfs: failed to clone upperpath
[  514.624381][T16706] ALSA: mixer_oss: invalid index 40000
[  515.094651][T16738] overlayfs: failed to resolve './file0': -2
[  515.350045][T16745] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2909'.
[  515.352773][T16745] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2909'.
[  515.625523][T16732] ALSA: mixer_oss: invalid index 40000
[  515.825757][   T40] kauditd_printk_skb: 18 callbacks suppressed
[  515.825805][   T40] audit: type=1326 audit(2000000209.383:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16755 comm="syz.1.2912" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  515.854053][   T40] audit: type=1326 audit(2000000209.413:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16755 comm="syz.1.2912" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf709e579 code=0x7ffc0000
[  515.862560][   T40] audit: type=1326 audit(2000000209.413:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16755 comm="syz.1.2912" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  515.902832][   T40] audit: type=1326 audit(2000000209.413:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16755 comm="syz.1.2912" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  515.924567][   T40] audit: type=1326 audit(2000000209.423:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16755 comm="syz.1.2912" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf709e579 code=0x7ffc0000
[  515.933528][   T40] audit: type=1326 audit(2000000209.423:838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16755 comm="syz.1.2912" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  515.941622][   T40] audit: type=1326 audit(2000000209.443:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16755 comm="syz.1.2912" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf709e579 code=0x7ffc0000
[  515.952876][   T40] audit: type=1326 audit(2000000209.453:840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16755 comm="syz.1.2912" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  515.992632][   T40] audit: type=1326 audit(2000000209.453:841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16755 comm="syz.1.2912" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf709e579 code=0x7ffc0000
[  516.012870][   T40] audit: type=1326 audit(2000000209.453:842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16755 comm="syz.1.2912" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  516.259526][T16758] siw: device registration error -23
[  517.004742][T16771] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2916'.
[  517.125323][T16775] syz.6.2917 (16775): drop_caches: 2
[  519.612106][T16821] syz.2.2933 (16821): drop_caches: 2
[  521.212525][T16840] FAULT_INJECTION: forcing a failure.
[  521.212525][T16840] name failslab, interval 1, probability 0, space 0, times 0
[  521.217834][T16840] CPU: 3 UID: 0 PID: 16840 Comm: syz.2.2938 Not tainted 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  521.217860][T16840] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  521.217870][T16840] Call Trace:
[  521.217877][T16840]  <TASK>
[  521.217884][T16840]  dump_stack_lvl+0x16c/0x1f0
[  521.217916][T16840]  should_fail_ex+0x512/0x640
[  521.217947][T16840]  should_failslab+0xc2/0x120
[  521.217968][T16840]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  521.217992][T16840]  ? skb_clone+0x190/0x3f0
[  521.218017][T16840]  skb_clone+0x190/0x3f0
[  521.218036][T16840]  netlink_deliver_tap+0xabd/0xd30
[  521.218061][T16840]  ? __pfx_rtnl_dump_ifinfo+0x10/0x10
[  521.218090][T16840]  netlink_dump+0x638/0xd00
[  521.218115][T16840]  ? __pfx_netlink_dump+0x10/0x10
[  521.218147][T16840]  ? kfree_skbmem+0x1a4/0x1f0
[  521.218176][T16840]  ? kfree_skbmem+0x1a4/0x1f0
[  521.218206][T16840]  netlink_recvmsg+0xa15/0xf20
[  521.218229][T16840]  ? __pfx_netlink_recvmsg+0x10/0x10
[  521.218252][T16840]  ? __lock_acquire+0xaa4/0x1ba0
[  521.218284][T16840]  ? iovec_from_user+0xbb/0x140
[  521.218306][T16840]  ____sys_recvmsg+0x5f6/0x6b0
[  521.218337][T16840]  ? __pfx_____sys_recvmsg+0x10/0x10
[  521.218358][T16840]  ? import_iovec+0x86/0xb0
[  521.218386][T16840]  ? ___sys_recvmsg+0x121/0x1a0
[  521.218412][T16840]  ___sys_recvmsg+0x114/0x1a0
[  521.218432][T16840]  ? __pfx____sys_recvmsg+0x10/0x10
[  521.218465][T16840]  ? ktime_get_ts64+0x2d2/0x400
[  521.218486][T16840]  ? __pfx___might_resched+0x10/0x10
[  521.218507][T16840]  ? read_tsc+0x9/0x20
[  521.218530][T16840]  ? ktime_get_ts64+0x256/0x400
[  521.218553][T16840]  do_recvmmsg+0x568/0x740
[  521.218579][T16840]  ? __pfx_do_recvmmsg+0x10/0x10
[  521.218596][T16840]  ? find_held_lock+0x2b/0x80
[  521.218616][T16840]  ? __might_fault+0xe3/0x190
[  521.218637][T16840]  ? __might_fault+0x13b/0x190
[  521.218667][T16840]  ? __pfx_get_old_timespec32+0x10/0x10
[  521.218689][T16840]  ? __fget_files+0x20e/0x3c0
[  521.218706][T16840]  __sys_recvmmsg+0x110/0x280
[  521.218728][T16840]  ? __pfx___sys_recvmmsg+0x10/0x10
[  521.218751][T16840]  ? __pfx_ksys_write+0x10/0x10
[  521.218772][T16840]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  521.218793][T16840]  ? lockdep_hardirqs_on+0x7c/0x110
[  521.218817][T16840]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  521.218842][T16840]  __do_fast_syscall_32+0x73/0x120
[  521.218869][T16840]  do_fast_syscall_32+0x32/0x80
[  521.218896][T16840]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  521.218919][T16840] RIP: 0023:0xf711e579
[  521.218930][T16840] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  521.218949][T16840] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  521.218967][T16840] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800037c0
[  521.218978][T16840] RDX: 00000000000003b4 RSI: 0000000000000000 RDI: 0000000080003700
[  521.218990][T16840] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  521.219000][T16840] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  521.219008][T16840] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  521.219033][T16840]  </TASK>
[  522.373947][T16860] overlayfs: failed to clone upperpath
[  523.705733][T16881] syz.1.2951 (16881): drop_caches: 2
[  523.764502][T16866] ALSA: mixer_oss: invalid index 40000
[  523.815095][T16867] ALSA: mixer_oss: invalid index 40000
[  523.906180][T16886] bond0: (slave bond_slave_0): Releasing backup interface
[  523.912197][T16886] bond0: (slave bond_slave_1): Releasing backup interface
[  523.944791][T16886] team0: Port device team_slave_0 removed
[  523.952991][T16886] team0: Port device team_slave_1 removed
[  523.955642][T16886] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  523.958065][T16886] batman_adv: batadv0: Removing interface: batadv_slave_0
[  523.961306][T16886] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  523.964156][T16886] batman_adv: batadv0: Removing interface: batadv_slave_1
[  523.971343][T16886] bond0: (slave wlan1): Releasing backup interface
[  523.983874][ T6004] lo speed is unknown, defaulting to 1000
[  524.030429][T16893] input: syz0 as /devices/virtual/input/input29
[  524.536837][T16913] loop2: detected capacity change from 0 to 7
[  524.546116][T14384] Dev loop2: unable to read RDB block 7
[  524.548322][T14384]  loop2: unable to read partition table
[  524.553473][T14384] loop2: partition table beyond EOD, truncated
[  524.605815][T16913] Dev loop2: unable to read RDB block 7
[  524.605880][T16913]  loop2: unable to read partition table
[  524.606053][T16913] loop2: partition table beyond EOD, truncated
[  524.606087][T16913] loop_reread_partitions: partition scan of loop2 (þčĒŦxü—ŸŅā– ) failed (rc=-5)
[  524.956118][ T5354] Dev loop2: unable to read RDB block 7
[  524.957919][ T5354]  loop2: unable to read partition table
[  524.963789][ T5354] loop2: partition table beyond EOD, truncated
[  525.397498][T16936] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2967'.
[  525.401319][T16936] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2967'.
[  525.583661][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  525.583680][   T40] audit: type=1804 audit(2000000219.123:849): pid=16938 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.2964" name="/newroot/96/bus" dev="tmpfs" ino=614 res=1 errno=0
[  525.596897][T16941] syz.2.2968 (16941): drop_caches: 2
[  526.239047][   T40] audit: type=1326 audit(2000000219.793:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16952 comm="syz.1.2971" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  526.246099][   T40] audit: type=1326 audit(2000000219.793:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16952 comm="syz.1.2971" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  526.252974][   T40] audit: type=1326 audit(2000000219.803:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16952 comm="syz.1.2971" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf709e579 code=0x7ffc0000
[  526.260117][   T40] audit: type=1326 audit(2000000219.803:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16952 comm="syz.1.2971" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  526.267467][   T40] audit: type=1326 audit(2000000219.803:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16952 comm="syz.1.2971" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  526.274552][   T40] audit: type=1326 audit(2000000219.803:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16952 comm="syz.1.2971" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf709e579 code=0x7ffc0000
[  526.282990][   T40] audit: type=1326 audit(2000000219.803:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16952 comm="syz.1.2971" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf709e598 code=0x7ffc0000
[  526.290167][   T40] audit: type=1326 audit(2000000219.803:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16952 comm="syz.1.2971" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf709e598 code=0x7ffc0000
[  526.297277][   T40] audit: type=1326 audit(2000000219.803:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16952 comm="syz.1.2971" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf709e598 code=0x7ffc0000
[  526.465974][T16961] binder: Unknown parameter '('
[  526.990371][T16970] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2977'.
[  526.993179][T16970] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2977'.
[  527.178653][   T57] gspca_vicam: Failed to load "vicam/firmware.fw": -110
[  527.181536][   T57] vicam 7-1:0.112: probe with driver vicam failed with error -110
[  527.189431][T16972] overlayfs: failed to clone upperpath
[  527.234601][   T57] usb 7-1: USB disconnect, device number 15
[  527.581758][T16984] syz.6.2982 (16984): drop_caches: 2
[  527.854145][T16994] siw: device registration error -23
[  529.525376][T17005] ALSA: mixer_oss: invalid index 40000
[  529.543988][T17028] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2993'.
[  529.546912][T17028] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2993'.
[  529.719133][T17030] netlink: 72 bytes leftover after parsing attributes in process `syz.5.2994'.
[  529.806662][T17032] overlayfs: failed to clone upperpath
[  530.705924][T17051] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3002'.
[  530.709679][T17051] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3002'.
[  531.060069][T17049] siw: device registration error -23
[  531.121592][T17054] netlink: 72 bytes leftover after parsing attributes in process `syz.2.3003'.
[  531.650251][T17072] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3007'.
[  531.653198][T17072] netlink: 'syz.2.3007': attribute type 5 has an invalid length.
[  531.655763][T17072] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3007'.
[  531.675783][T17072] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0
[  531.678604][T17072] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0
[  531.681371][T17072] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0
[  531.763611][T17072] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0
[  531.766755][T17072] geneve3: entered promiscuous mode
[  531.819006][T17072] geneve3: entered allmulticast mode
[  532.118813][T17080] netlink: 72 bytes leftover after parsing attributes in process `syz.1.3012'.
[  532.186848][T17083] syz.1.3013 (17083): drop_caches: 2
[  533.264799][T17094] ALSA: mixer_oss: invalid index 40000
[  533.843400][ T6005] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  534.013419][ T6005] usb 7-1: Using ep0 maxpacket: 32
[  534.016517][ T6005] usb 7-1: config index 0 descriptor too short (expected 156, got 27)
[  534.019561][ T6005] usb 7-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  534.023881][ T6005] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  534.027493][ T6005] usb 7-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  534.031503][ T6005] usb 7-1: config 0 interface 0 has no altsetting 0
[  534.037984][ T6005] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  534.040936][ T6005] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  534.043690][ T6005] usb 7-1: Product: syz
[  534.045008][ T6005] usb 7-1: Manufacturer: syz
[  534.046517][ T6005] usb 7-1: SerialNumber: syz
[  534.049556][ T6005] usb 7-1: config 0 descriptor??
[  534.054178][ T6005] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  534.060067][ T6005] ldusb 7-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  534.269562][ T1449] usb 7-1: USB disconnect, device number 16
[  534.271530][    C3] ldusb 7-1:0.0: usb_submit_urb failed (-19)
[  534.279094][ T1449] ldusb 7-1:0.0: LD USB Device #0 now disconnected
[  534.478053][T17126] netlink: 'syz.2.3028': attribute type 4 has an invalid length.
[  534.489937][   T72] lo speed is unknown, defaulting to 1000
[  534.492392][   T72] sĖR4: Port: 1 Link DOWN
[  534.499289][T17126] netlink: 'syz.2.3028': attribute type 4 has an invalid length.
[  534.505811][   T72] lo speed is unknown, defaulting to 1000
[  534.508280][   T72] sĖR4: Port: 1 Link ACTIVE
[  535.077801][T17144] batman_adv: batadv0: Adding interface: dummy0
[  535.080383][T17144] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  535.090236][T17144] batman_adv: batadv0: Interface activated: dummy0
[  535.094562][T17146] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.3035'.
[  535.154560][T17134] ALSA: mixer_oss: invalid index 40000
[  535.257310][T17157] netlink: 72 bytes leftover after parsing attributes in process `syz.2.3040'.
[  535.583643][   T72] usb 7-1: new low-speed USB device number 17 using dummy_hcd
[  535.745836][   T72] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[  535.748426][   T72] usb 7-1: config 0 has no interface number 0
[  535.750355][   T72] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  535.753990][   T72] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[  535.757278][   T72] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  535.760930][   T72] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  535.764491][   T72] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 8
[  535.767839][   T72] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  535.771941][   T72] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  535.775781][   T72] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  535.781016][   T72] usb 7-1: config 0 descriptor??
[  535.784231][T17166] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  535.787313][T17166] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  535.792239][   T72] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  535.850266][T17178] netlink: 'syz.5.3044': attribute type 4 has an invalid length.
[  535.860059][T17178] netlink: 'syz.5.3044': attribute type 4 has an invalid length.
[  535.997640][T17166] tmpfs: Bad value for 'mpol'
[  536.040676][ T8513] usb 7-1: USB disconnect, device number 17
[  536.048381][ T8513] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[  536.862131][T17193] FAULT_INJECTION: forcing a failure.
[  536.862131][T17193] name failslab, interval 1, probability 0, space 0, times 0
[  536.867230][T17193] CPU: 3 UID: 0 PID: 17193 Comm: syz.2.3048 Not tainted 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  536.867247][T17193] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  536.867254][T17193] Call Trace:
[  536.867258][T17193]  <TASK>
[  536.867263][T17193]  dump_stack_lvl+0x16c/0x1f0
[  536.867283][T17193]  should_fail_ex+0x512/0x640
[  536.867299][T17193]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  536.867315][T17193]  should_failslab+0xc2/0x120
[  536.867341][T17193]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  536.867354][T17193]  ? mas_alloc_nodes+0x18b/0x8b0
[  536.867371][T17193]  mas_alloc_nodes+0x18b/0x8b0
[  536.867388][T17193]  mas_node_count_gfp+0x105/0x130
[  536.867403][T17193]  mas_preallocate+0x53e/0xcd0
[  536.867417][T17193]  ? __pfx_mas_preallocate+0x10/0x10
[  536.867432][T17193]  ? anon_vma_name+0x75/0x100
[  536.867449][T17193]  __split_vma+0x33b/0x1030
[  536.867463][T17193]  ? __pfx___split_vma+0x10/0x10
[  536.867481][T17193]  vms_gather_munmap_vmas+0x392/0x1310
[  536.867496][T17193]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  536.867510][T17193]  ? mas_walk+0x6a6/0x910
[  536.867529][T17193]  __mmap_region+0x314/0x27c0
[  536.867543][T17193]  ? __pfx___mmap_region+0x10/0x10
[  536.867555][T17193]  ? lock_acquire+0x179/0x350
[  536.867572][T17193]  ? mark_held_locks+0x49/0x80
[  536.867585][T17193]  ? finish_task_switch.isra.0+0x221/0xc10
[  536.867598][T17193]  ? finish_task_switch.isra.0+0x2fa/0xc10
[  536.867609][T17193]  ? rcu_is_watching+0x12/0xc0
[  536.867619][T17193]  ? trace_sched_exit_tp+0xde/0x130
[  536.867633][T17193]  ? __schedule+0x1186/0x5de0
[  536.867665][T17193]  ? irqentry_exit+0x3b/0x90
[  536.867680][T17193]  ? lockdep_hardirqs_on+0x7c/0x110
[  536.867699][T17193]  mmap_region+0x1ab/0x3f0
[  536.867714][T17193]  do_mmap+0xd8e/0x11b0
[  536.867739][T17193]  ? __pfx_do_mmap+0x10/0x10
[  536.867755][T17193]  ? __pfx_down_write_killable+0x10/0x10
[  536.867768][T17193]  vm_mmap_pgoff+0x281/0x450
[  536.867787][T17193]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  536.867801][T17193]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  536.867817][T17193]  ? hugetlbfs_get_inode+0x31f/0x730
[  536.867835][T17193]  ksys_mmap_pgoff+0x1c8/0x5c0
[  536.867852][T17193]  ? __ia32_sys_mmap_pgoff+0x11/0x1b0
[  536.867869][T17193]  __do_fast_syscall_32+0x73/0x120
[  536.867887][T17193]  do_fast_syscall_32+0x32/0x80
[  536.867904][T17193]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  536.867917][T17193] RIP: 0023:0xf711e579
[  536.867927][T17193] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  536.867938][T17193] RSP: 002b:00000000f50c455c EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[  536.867948][T17193] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000002000
[  536.867955][T17193] RDX: 0000000001000006 RSI: 0000000000040032 RDI: 00000000ffffffff
[  536.867961][T17193] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  536.867967][T17193] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  536.867973][T17193] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  536.867987][T17193]  </TASK>
[  537.011339][ T9073] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  537.077950][ T9073] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  537.170864][ T9073] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  537.290249][ T9073] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  537.324300][T17196] lo speed is unknown, defaulting to 1000
[  537.327111][T17196] lo speed is unknown, defaulting to 1000
[  537.377086][T17186] ALSA: mixer_oss: invalid index 40000
[  537.436450][ T9073] bridge_slave_1: left allmulticast mode
[  537.438734][ T9073] bridge_slave_1: left promiscuous mode
[  537.441035][ T9073] bridge0: port 2(bridge_slave_1) entered disabled state
[  537.466694][ T9073] bridge_slave_0: left allmulticast mode
[  537.468560][ T9073] bridge_slave_0: left promiscuous mode
[  537.470523][ T9073] bridge0: port 1(bridge_slave_0) entered disabled state
[  537.816609][T17209] syz.1.3051: attempt to access beyond end of device
[  537.816609][T17209] md2: rw=2048, sector=0, nr_sectors = 8 limit=0
[  537.836201][T17209] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3051'.
[  538.289166][ T9073] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  538.293449][ T9073] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  538.297087][ T9073] bond0 (unregistering): Released all slaves
[  538.322955][T17205] lo speed is unknown, defaulting to 1000
[  538.326082][T17205] lo speed is unknown, defaulting to 1000
[  538.363410][ T1449] usb 11-1: new high-speed USB device number 8 using dummy_hcd
[  538.533556][ T1449] usb 11-1: Using ep0 maxpacket: 32
[  538.537610][ T1449] usb 11-1: config index 0 descriptor too short (expected 156, got 27)
[  538.540456][ T1449] usb 11-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  538.544820][ T1449] usb 11-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  538.548363][ T1449] usb 11-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  538.552521][ T1449] usb 11-1: config 0 interface 0 has no altsetting 0
[  538.557594][ T1449] usb 11-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  538.560650][ T1449] usb 11-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  538.563509][ T1449] usb 11-1: Product: syz
[  538.564812][ T1449] usb 11-1: Manufacturer: syz
[  538.566312][ T1449] usb 11-1: SerialNumber: syz
[  538.569428][ T1449] usb 11-1: config 0 descriptor??
[  538.576489][ T1449] ldusb 11-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  538.586740][ T1449] ldusb 11-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  538.781326][ T1449] usb 11-1: USB disconnect, device number 8
[  538.785777][ T1449] ldusb 11-1:0.0: LD USB Device #0 now disconnected
[  538.980089][T17213] netlink: 'syz.6.3054': attribute type 4 has an invalid length.
[  539.033657][T17227] netlink: 'syz.6.3054': attribute type 4 has an invalid length.
[  539.591496][ T9073] hsr_slave_0: left promiscuous mode
[  539.616147][ T9073] hsr_slave_1: left promiscuous mode
[  539.636340][ T9073] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  539.639375][ T9073] batman_adv: batadv0: Removing interface: batadv_slave_0
[  539.652999][ T9073] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  539.655208][T17237] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3060'.
[  539.655628][ T9073] batman_adv: batadv0: Removing interface: batadv_slave_1
[  539.698064][T17233] overlayfs: failed to clone upperpath
[  539.699753][ T9073] veth1_macvtap: left promiscuous mode
[  539.702116][ T9073] veth0_macvtap: left promiscuous mode
[  539.704163][ T9073] veth1_vlan: left promiscuous mode
[  539.705886][ T9073] veth0_vlan: left promiscuous mode
[  539.963681][T17228] ALSA: mixer_oss: invalid index 40000
[  541.726163][ T9073] team0 (unregistering): Port device team_slave_1 removed
[  541.923453][ T9073] team0 (unregistering): Port device team_slave_0 removed
[  542.762765][T17237] 8021q: VLANs not supported on gre0
[  542.765618][   T72] lo speed is unknown, defaulting to 1000
[  542.768036][   T72] syz0: Port: 1 Link DOWN
[  542.919299][T17265] overlayfs: failed to clone upperpath
[  543.181471][T17267] netlink: 'syz.5.3070': attribute type 4 has an invalid length.
[  543.190305][T17267] netlink: 'syz.5.3070': attribute type 4 has an invalid length.
[  543.397781][   T40] kauditd_printk_skb: 150 callbacks suppressed
[  543.397793][   T40] audit: type=1804 audit(2000000236.943:1009): pid=17277 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.3072" name="/newroot/117/bus" dev="tmpfs" ino=742 res=1 errno=0
[  543.763597][T17280] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  543.767200][T17280] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  544.948972][T17307] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  544.952670][T17307] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  545.015255][T17305] netlink: 'syz.2.3081': attribute type 4 has an invalid length.
[  545.019769][ T8513] lo speed is unknown, defaulting to 1000
[  545.021620][ T8513] sĖR4: Port: 1 Link DOWN
[  545.024195][T17305] netlink: 'syz.2.3081': attribute type 4 has an invalid length.
[  545.028728][ T8513] lo speed is unknown, defaulting to 1000
[  545.030536][ T8513] sĖR4: Port: 1 Link ACTIVE
[  545.230095][T17312] lo speed is unknown, defaulting to 1000
[  545.232888][T17312] lo speed is unknown, defaulting to 1000
[  545.239403][T17312] lo speed is unknown, defaulting to 1000
[  545.273058][T17312] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  545.444640][T17312] lo speed is unknown, defaulting to 1000
[  545.456560][T17312] lo speed is unknown, defaulting to 1000
[  545.459150][T17312] lo speed is unknown, defaulting to 1000
[  545.461979][T17312] lo speed is unknown, defaulting to 1000
[  545.738652][   T40] audit: type=1804 audit(2000000239.293:1010): pid=17327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3088" name="/newroot/338/bus" dev="tmpfs" ino=1916 res=1 errno=0
[  547.053873][T17357] fuse: Bad value for 'user_id'
[  547.055976][T17357] fuse: Bad value for 'user_id'
[  547.161629][T17354] netlink: 'syz.5.3096': attribute type 4 has an invalid length.
[  547.171079][T17354] netlink: 'syz.5.3096': attribute type 4 has an invalid length.
[  547.788373][T17372] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3103'.
[  547.802365][T17374] netlink: 156 bytes leftover after parsing attributes in process `syz.5.3104'.
[  547.966569][T13815] Bluetooth: hci3: unexpected event for opcode 0x0c1c
[  548.063495][   T40] audit: type=1804 audit(2000000241.603:1011): pid=17384 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3106" name="bus" dev="tmpfs" ino=2609 res=1 errno=0
[  548.804759][T17388] overlayfs: missing 'lowerdir'
[  549.130351][T17390] netlink: 'syz.2.3109': attribute type 4 has an invalid length.
[  549.135780][ T1449] lo speed is unknown, defaulting to 1000
[  549.137641][ T1449] sĖR4: Port: 1 Link DOWN
[  549.139098][T17390] netlink: 'syz.2.3109': attribute type 4 has an invalid length.
[  549.143095][ T1449] lo speed is unknown, defaulting to 1000
[  549.145011][ T1449] sĖR4: Port: 1 Link ACTIVE
[  549.196931][T17393] input: syz0 as /devices/virtual/input/input30
[  549.199074][T17393] input: failed to attach handler leds to device input30, error: -6
[  549.792223][   T40] audit: type=1804 audit(2000000243.343:1012): pid=17410 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3116" name="/newroot/389/bus" dev="tmpfs" ino=2221 res=1 errno=0
[  550.638821][   T40] audit: type=1804 audit(2000000244.193:1013): pid=17427 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3120" name="bus" dev="tmpfs" ino=2635 res=1 errno=0
[  551.345411][T17437] : entered promiscuous mode
[  551.705970][T17450] netlink: 'syz.2.3125': attribute type 4 has an invalid length.
[  551.712789][   T34] lo speed is unknown, defaulting to 1000
[  551.715372][T17450] netlink: 'syz.2.3125': attribute type 4 has an invalid length.
[  551.718597][   T24] lo speed is unknown, defaulting to 1000
[  552.166211][T17463] overlayfs: missing 'workdir'
[  552.257147][T17468] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3129'.
[  552.260074][T17468] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3129'.
[  552.468418][T17473] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3131'.
[  552.472079][T17473] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3131'.
[  552.829935][T17481] netlink: 72 bytes leftover after parsing attributes in process `syz.1.3134'.
[  552.873135][T17485] overlayfs: missing 'workdir'
[  552.957567][   T40] audit: type=1804 audit(2000000246.513:1014): pid=17489 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3135" name="bus" dev="tmpfs" ino=2670 res=1 errno=0
[  553.118371][T17469] ALSA: mixer_oss: invalid index 40000
[  553.188386][T17491] netlink: 'syz.1.3138': attribute type 4 has an invalid length.
[  553.207164][T17491] netlink: 'syz.1.3138': attribute type 4 has an invalid length.
[  553.226699][T17500] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3141'.
[  553.233945][T17500] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3141'.
[  554.492498][T17511] netlink: 72 bytes leftover after parsing attributes in process `syz.6.3145'.
[  554.529021][T17513] overlayfs: missing 'workdir'
[  554.745939][T17527] FAULT_INJECTION: forcing a failure.
[  554.745939][T17527] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  554.751478][T17527] CPU: 3 UID: 0 PID: 17527 Comm: syz.6.3149 Not tainted 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  554.751503][T17527] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  554.751513][T17527] Call Trace:
[  554.751520][T17527]  <TASK>
[  554.751526][T17527]  dump_stack_lvl+0x16c/0x1f0
[  554.751552][T17527]  should_fail_ex+0x512/0x640
[  554.751579][T17527]  __fpu_restore_sig+0x8f3/0x13a0
[  554.751605][T17527]  ? __lock_acquire+0xaa4/0x1ba0
[  554.751626][T17527]  ? __pfx___fpu_restore_sig+0x10/0x10
[  554.751658][T17527]  ? __might_fault+0xe3/0x190
[  554.751677][T17527]  ? __might_fault+0x13b/0x190
[  554.751702][T17527]  fpu__restore_sig+0x115/0x190
[  554.751728][T17527]  ia32_restore_sigcontext+0x44a/0x630
[  554.751745][T17527]  ? __pfx_ia32_restore_sigcontext+0x10/0x10
[  554.751763][T17527]  ? rcu_is_watching+0x12/0xc0
[  554.751773][T17527]  ? _raw_spin_unlock_irq+0x23/0x50
[  554.751787][T17527]  ? lockdep_hardirqs_on+0x7c/0x110
[  554.751805][T17527]  __do_compat_sys_rt_sigreturn+0x120/0x1f0
[  554.751816][T17527]  ? __pfx___do_compat_sys_rt_sigreturn+0x10/0x10
[  554.751828][T17527]  ? rcu_is_watching+0x12/0xc0
[  554.751839][T17527]  do_int80_emulation+0x104/0x200
[  554.751858][T17527]  asm_int80_emulation+0x1a/0x20
[  554.751868][T17527] RIP: 0023:0xf7f68577
[  554.751877][T17527] Code: 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 <cd> 80 5d 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00
[  554.751889][T17527] RSP: 002b:00000000f506555c EFLAGS: 00000296
[  554.751903][T17527] RAX: 000000000000017a RBX: 0000000000000006 RCX: 0000000080000180
[  554.751913][T17527] RDX: 0000000000000001 RSI: 0000000000000005 RDI: 0000000000000004
[  554.751923][T17527] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  554.751932][T17527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  554.751941][T17527] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  554.751962][T17527]  </TASK>
[  554.815224][    C3] vkms_vblank_simulate: vblank timer overrun
[  555.699653][   T40] audit: type=1804 audit(2000000249.243:1015): pid=17548 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3156" name="bus" dev="tmpfs" ino=2687 res=1 errno=0
[  555.865753][T17531] ALSA: mixer_oss: invalid index 40000
[  556.363370][ T8513] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  556.525815][ T8513] usb 7-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  556.528753][ T8513] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  556.531140][ T8513] usb 7-1: Product: syz
[  556.532413][ T8513] usb 7-1: Manufacturer: syz
[  556.533980][ T8513] usb 7-1: SerialNumber: syz
[  556.565484][ T8513] usb 7-1: config 0 descriptor??
[  556.757222][T17556] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3159'.
[  556.759909][T17556] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3159'.
[  556.836241][   T34] usb 7-1: USB disconnect, device number 18
[  557.526577][T17569] netlink: 'syz.5.3162': attribute type 4 has an invalid length.
[  557.534380][T17569] netlink: 'syz.5.3162': attribute type 4 has an invalid length.
[  557.997151][T17581] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3165'.
[  558.193597][T17586] overlayfs: failed to clone upperpath
[  558.240399][T17589] overlayfs: missing 'workdir'
[  559.161422][T17602] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3172'.
[  559.165370][T17602] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3172'.
[  560.786585][T17612] ALSA: mixer_oss: invalid index 40000
[  561.577363][T17634] fuse: Bad value for 'fd'
[  561.789741][T17637] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  561.792915][T17637] netlink: 'syz.2.3183': attribute type 39 has an invalid length.
[  562.345925][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  563.020129][T17655] netlink: 'syz.1.3175': attribute type 4 has an invalid length.
[  563.028368][T17655] netlink: 'syz.1.3175': attribute type 4 has an invalid length.
[  563.167314][T17645] ALSA: mixer_oss: invalid index 40000
[  564.578980][T17678] netlink: 40 bytes leftover after parsing attributes in process `syz.6.3194'.
[  564.690879][ T6004] libceph: connect (1)[c::]:6789 error -101
[  564.700914][ T6004] libceph: mon0 (1)[c::]:6789 connect error
[  565.065466][ T6004] libceph: connect (1)[c::]:6789 error -101
[  565.073855][ T6004] libceph: mon0 (1)[c::]:6789 connect error
[  565.239377][T17678] ceph: No mds server is up or the cluster is laggy
[  565.536363][T17686] ALSA: mixer_oss: invalid index 40000
[  565.649757][T17702] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3199'.
[  567.289685][T17735] overlayfs: failed to resolve './file1': -2
[  567.415861][T17742] overlayfs: failed to clone upperpath
[  567.606966][T17747] fuse: Bad value for 'fd'
[  567.803404][T17752] siw: device registration error -23
[  568.779778][T17762] overlayfs: failed to resolve './file1': -2
[  568.826405][T17773] overlayfs: failed to clone upperpath
[  568.899154][T17776] trusted_key: encrypted_key: hex blob is missing
[  569.031396][T17778] overlayfs: failed to clone upperpath
[  570.246694][   T40] audit: type=1804 audit(2000000263.723:1016): pid=17807 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3233" name="/newroot/420/bus" dev="tmpfs" ino=2452 res=1 errno=0
[  570.383506][   T40] audit: type=1804 audit(2000000263.923:1017): pid=17808 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3236" name="bus" dev="tmpfs" ino=2836 res=1 errno=0
[  572.842441][T13815] Bluetooth: hci2: unexpected event for opcode 0x2060
[  572.919189][T17835] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3245'.
[  572.923246][T17835] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3245'.
[  573.880915][   T40] audit: type=1804 audit(2000000267.433:1018): pid=17849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3248" name="bus" dev="tmpfs" ino=2858 res=1 errno=0
[  574.115078][T17851] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3249'.
[  574.117983][T17851] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3249'.
[  575.090718][T17870] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3254'.
[  575.094845][T17870] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3254'.
[  575.480461][T17880] overlayfs: failed to clone upperpath
[  575.773395][T10485] usb 11-1: new high-speed USB device number 9 using dummy_hcd
[  575.779621][T17888] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3261'.
[  575.782801][T17888] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3261'.
[  575.933356][T10485] usb 11-1: Using ep0 maxpacket: 32
[  575.938638][T10485] usb 11-1: config index 0 descriptor too short (expected 156, got 27)
[  575.941720][T10485] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  575.946135][T10485] usb 11-1: config 0 interface 0 has no altsetting 0
[  575.951074][T10485] usb 11-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  575.957312][T10485] usb 11-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  575.960341][T10485] usb 11-1: Product: syz
[  575.961859][T10485] usb 11-1: Manufacturer: syz
[  575.963673][T10485] usb 11-1: SerialNumber: syz
[  575.970391][T10485] usb 11-1: config 0 descriptor??
[  575.974245][T10485] ldusb 11-1:0.0: Interrupt in endpoint not found
[  576.180538][T10485] usb 11-1: USB disconnect, device number 9
[  576.313722][T17898] overlayfs: failed to resolve './file1': -2
[  576.681389][   T40] audit: type=1804 audit(2000000270.233:1019): pid=17910 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3267" name="/newroot/384/bus" dev="tmpfs" ino=2236 res=1 errno=0
[  576.828090][T17912] syz.1.3269: attempt to access beyond end of device
[  576.828090][T17912] loop1: rw=6144, sector=128, nr_sectors = 8 limit=0
[  576.832197][T17912] gfs2: error -5 reading superblock
[  576.940578][T17915] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3270'.
[  576.944447][T17915] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3270'.
[  577.224698][T17924] syz.1.3273 (17924): drop_caches: 2
[  577.467842][T17933] random: crng reseeded on system resumption
[  577.559011][T17934] pimreg: entered allmulticast mode
[  577.574149][T17934] dump_vmcs: 55 callbacks suppressed
[  577.575546][T17934] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  577.917039][T17939] random: crng reseeded on system resumption
[  578.682429][T17955] overlayfs: failed to clone upperpath
[  578.817807][T17963] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3287'.
[  578.820572][T17963] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3287'.
[  579.095112][   T40] audit: type=1804 audit(2000000272.633:1020): pid=17974 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3288" name="bus" dev="tmpfs" ino=2904 res=1 errno=0
[  579.269451][T17950] ALSA: mixer_oss: invalid index 40000
[  580.407878][T17994] syz.6.3296 (17994): drop_caches: 2
[  580.454015][T17996] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3297'.
[  580.456932][T17996] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3297'.
[  580.605641][T18004] overlayfs: failed to clone upperpath
[  581.179403][T18023] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3306'.
[  581.182300][T18023] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3306'.
[  581.532642][T18012] ALSA: mixer_oss: invalid index 40000
[  581.624465][   T40] audit: type=1804 audit(2000000275.153:1021): pid=18029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3307" name="/newroot/439/bus" dev="tmpfs" ino=2594 res=1 errno=0
[  581.628366][T18032] syz.6.3309 (18032): drop_caches: 2
[  582.375308][T18053] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3315'.
[  582.378182][T18053] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3315'.
[  583.250544][T18064] syz.1.3318 (18064): drop_caches: 2
[  583.391631][T18075] overlayfs: failed to clone upperpath
[  583.880422][   T40] audit: type=1804 audit(2000000277.433:1022): pid=18093 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3326" name="/newroot/441/bus" dev="tmpfs" ino=2606 res=1 errno=0
[  584.168598][T18072] ALSA: mixer_oss: invalid index 40000
[  585.001762][T18103] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3329'.
[  585.004789][T18103] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3329'.
[  586.548318][T18131] lo speed is unknown, defaulting to 1000
[  586.550828][T18131] lo speed is unknown, defaulting to 1000
[  586.609892][T18131] netlink: 14 bytes leftover after parsing attributes in process `syz.5.3338'.
[  586.617861][T18131] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3338'.
[  586.643396][   T40] audit: type=1804 audit(2000000280.183:1023): pid=18135 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3337" name="/newroot/397/bus" dev="tmpfs" ino=2325 res=1 errno=0
[  586.932225][T18142] siw: device registration error -23
[  587.220734][T18145] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3341'.
[  587.224729][T18145] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3341'.
[  587.959347][T18154] netlink: 'syz.5.3343': attribute type 4 has an invalid length.
[  587.965987][T18154] netlink: 'syz.5.3343': attribute type 4 has an invalid length.
[  588.297779][T18171] FAULT_INJECTION: forcing a failure.
[  588.297779][T18171] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  588.301983][T18171] CPU: 3 UID: 0 PID: 18171 Comm: syz.1.3348 Not tainted 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  588.301998][T18171] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  588.302005][T18171] Call Trace:
[  588.302010][T18171]  <TASK>
[  588.302014][T18171]  dump_stack_lvl+0x16c/0x1f0
[  588.302038][T18171]  should_fail_ex+0x512/0x640
[  588.302062][T18171]  _copy_from_user+0x2e/0xd0
[  588.302086][T18171]  get_compat_msghdr+0xa7/0x170
[  588.302102][T18171]  ? __pfx_get_compat_msghdr+0x10/0x10
[  588.302116][T18171]  ? __pfx__kstrtoull+0x10/0x10
[  588.302131][T18171]  ___sys_sendmsg+0x1ae/0x1d0
[  588.302146][T18171]  ? __pfx____sys_sendmsg+0x10/0x10
[  588.302165][T18171]  ? find_held_lock+0x2b/0x80
[  588.302186][T18171]  __sys_sendmmsg+0x2f9/0x420
[  588.302201][T18171]  ? __pfx___sys_sendmmsg+0x10/0x10
[  588.302219][T18171]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  588.302257][T18171]  ? fput+0x70/0xf0
[  588.302271][T18171]  ? ksys_write+0x1b9/0x240
[  588.302281][T18171]  ? __pfx_ksys_write+0x10/0x10
[  588.302294][T18171]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  588.302308][T18171]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  588.302329][T18171]  __do_fast_syscall_32+0x73/0x120
[  588.302346][T18171]  do_fast_syscall_32+0x32/0x80
[  588.302363][T18171]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  588.302376][T18171] RIP: 0023:0xf709e579
[  588.302385][T18171] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  588.302396][T18171] RSP: 002b:00000000f506d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  588.302406][T18171] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000080002340
[  588.302413][T18171] RDX: 00000000000003e8 RSI: 0000000000000000 RDI: 0000000000000000
[  588.302419][T18171] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  588.302425][T18171] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  588.302431][T18171] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  588.302444][T18171]  </TASK>
[  588.302662][T18171] IPVS: length: 78 != 8
[  590.170493][T18184] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3352'.
[  590.173471][T18184] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3352'.
[  590.633779][   T40] audit: type=1804 audit(2000000284.193:1024): pid=18198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3355" name="/newroot/450/bus" dev="tmpfs" ino=2652 res=1 errno=0
[  591.482215][T18208] overlayfs: failed to resolve './file1': -2
[  591.484671][ T5985] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  591.503438][   T34] usb 11-1: new high-speed USB device number 10 using dummy_hcd
[  591.653420][ T5985] usb 7-1: Using ep0 maxpacket: 32
[  591.673397][   T34] usb 11-1: Using ep0 maxpacket: 32
[  591.674695][ T5985] usb 7-1: config index 0 descriptor too short (expected 156, got 27)
[  591.676381][   T34] usb 11-1: config index 0 descriptor too short (expected 156, got 27)
[  591.677614][ T5985] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  591.680330][   T34] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  591.683510][ T5985] usb 7-1: config 0 has no interfaces?
[  591.686710][   T34] usb 11-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  591.692296][   T34] usb 11-1: config 0 interface 0 altsetting 191 has 0 endpoint descriptors, different from the interface descriptor's value: 144
[  591.696478][   T34] usb 11-1: config 0 interface 0 has no altsetting 0
[  591.697960][ T5985] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  591.700234][   T34] usb 11-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  591.701449][ T5985] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  591.704384][   T34] usb 11-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  591.704397][   T34] usb 11-1: Product: syz
[  591.707004][ T5985] usb 7-1: Product: syz
[  591.712398][ T5985] usb 7-1: Manufacturer: syz
[  591.712997][   T34] usb 11-1: Manufacturer: syz
[  591.713993][ T5985] usb 7-1: SerialNumber: syz
[  591.715490][   T34] usb 11-1: SerialNumber: syz
[  591.719398][ T5985] usb 7-1: config 0 descriptor??
[  591.719891][   T34] usb 11-1: config 0 descriptor??
[  591.724544][   T34] ldusb 11-1:0.0: Interrupt in endpoint not found
[  591.933843][ T3229] usb 7-1: USB disconnect, device number 19
[  591.940478][   T24] usb 11-1: USB disconnect, device number 10
[  592.142250][T18213] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3362'.
[  592.143822][T18204] netlink: 'syz.2.3357': attribute type 4 has an invalid length.
[  592.146305][T18213] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3362'.
[  592.150605][ T3229] lo speed is unknown, defaulting to 1000
[  592.155215][ T3229] sĖR4: Port: 1 Link DOWN
[  592.155450][T18204] netlink: 'syz.2.3357': attribute type 4 has an invalid length.
[  592.162892][ T5985] lo speed is unknown, defaulting to 1000
[  592.165589][ T5985] sĖR4: Port: 1 Link ACTIVE
[  592.700823][   T40] audit: type=1326 audit(2000000286.253:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18229 comm="syz.6.3366" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x0
[  592.774542][T18235] loop2: detected capacity change from 0 to 7
[  592.780429][T18235]  loop2:
[  592.781757][T18235] loop2: partition table partially beyond EOD, truncated
[  593.011223][T18241] overlayfs: failed to resolve './file1': -2
[  593.373159][ T5354]  loop2:
[  593.374610][ T5354] loop2: partition table partially beyond EOD, truncated
[  593.644545][T18237] ALSA: mixer_oss: invalid index 40000
[  593.815524][   T40] audit: type=1804 audit(2000000287.363:1026): pid=18251 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.3371" name="/newroot/185/bus" dev="tmpfs" ino=1191 res=1 errno=0
[  595.263547][ T3229] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  595.423479][ T3229] usb 7-1: Using ep0 maxpacket: 32
[  595.429282][ T3229] usb 7-1: config index 0 descriptor too short (expected 156, got 27)
[  595.431924][T18265] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3377'.
[  595.432952][ T3229] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  595.436017][T18265] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3377'.
[  595.440688][ T3229] usb 7-1: config 0 interface 0 has no altsetting 0
[  595.450229][ T3229] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  595.454285][ T3229] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  595.457922][ T3229] usb 7-1: Product: syz
[  595.459775][ T3229] usb 7-1: Manufacturer: syz
[  595.461839][ T3229] usb 7-1: SerialNumber: syz
[  595.466711][ T3229] usb 7-1: config 0 descriptor??
[  595.471254][ T3229] ldusb 7-1:0.0: Interrupt in endpoint not found
[  595.679586][   T24] usb 7-1: USB disconnect, device number 20
[  595.879518][T18263] netlink: 'syz.2.3376': attribute type 4 has an invalid length.
[  595.884332][   T24] lo speed is unknown, defaulting to 1000
[  595.886237][   T24] sĖR4: Port: 1 Link DOWN
[  595.886324][T18263] netlink: 'syz.2.3376': attribute type 4 has an invalid length.
[  595.892373][ T5985] lo speed is unknown, defaulting to 1000
[  595.894869][ T5985] sĖR4: Port: 1 Link ACTIVE
[  596.692145][T18289] netlink: 22 bytes leftover after parsing attributes in process `syz.6.3382'.
[  596.696750][T18289] netlink: zone id is out of range
[  596.698393][T18289] netlink: zone id is out of range
[  596.699984][T18289] netlink: zone id is out of range
[  596.701730][T18289] netlink: zone id is out of range
[  596.703424][T18289] netlink: zone id is out of range
[  596.705208][T18289] netlink: zone id is out of range
[  596.707545][T18289] netlink: del zone limit has 4 unknown bytes
[  596.809921][   T40] audit: type=1804 audit(2000000290.323:1027): pid=18290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3383" name="bus" dev="tmpfs" ino=3076 res=1 errno=0
[  596.898970][T18296] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3386'.
[  596.911387][T18296] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3386'.
[  597.325697][T18300] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3387'.
[  597.573455][ T5985] usb 11-1: new high-speed USB device number 11 using dummy_hcd
[  597.728915][T18305] overlayfs: failed to resolve './file1': -2
[  597.743405][ T5985] usb 11-1: Using ep0 maxpacket: 8
[  597.747552][ T5985] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  597.751872][ T5985] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  597.756459][ T5985] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  597.759763][ T5985] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  597.763925][ T5985] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  597.766983][ T5985] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  598.007736][ T5985] usb 11-1: usb_control_msg returned -71
[  598.007760][ T5985] usbtmc 11-1:16.0: can't read capabilities
[  598.013700][ T5985] usb 11-1: USB disconnect, device number 11
[  598.374807][T18322] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3395'.
[  598.374843][T18322] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3395'.
[  598.613392][   T40] audit: type=1804 audit(2000000292.153:1028): pid=18329 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3397" name="bus" dev="tmpfs" ino=3097 res=1 errno=0
[  599.294058][   T34] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  599.418927][T18339] fuse: Bad value for 'fd'
[  599.443471][   T34] usb 7-1: Using ep0 maxpacket: 8
[  599.467708][   T34] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  599.471906][   T34] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  599.477625][   T34] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  599.481831][   T34] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  599.487457][   T34] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  599.491335][   T34] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  599.543447][    C2] 
[  599.543459][    C2] ========================================================
[  599.543468][    C2] WARNING: possible irq lock inversion dependency detected
[  599.543476][    C2] 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 Not tainted
[  599.543489][    C2] --------------------------------------------------------
[  599.543495][    C2] swapper/2/0 just changed the state of lock:
[  599.543507][    C2] ffff888026231230 (&dev->event_lock#2){..-.}-{3:3}, at: input_inject_event+0x9f/0x390
[  599.543567][    C2] but this lock took another, SOFTIRQ-READ-unsafe lock in the past:
[  599.543577][    C2]  (tasklist_lock){.+.+}-{3:3}
[  599.543595][    C2] 
[  599.543595][    C2] 
[  599.543595][    C2] and interrupts could create inverse lock ordering between them.
[  599.543595][    C2] 
[  599.543603][    C2] 
[  599.543603][    C2] other info that might help us debug this:
[  599.543609][    C2] Chain exists of:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  599.543609][    C2]   &dev->event_lock#2 --> &client->buffer_lock --> tasklist_lock
[  599.543609][    C2] 
[  599.543645][    C2]  Possible interrupt unsafe locking scenario:
[  599.543645][    C2] 
[  599.543652][    C2]        CPU0                    CPU1
[  599.543658][    C2]        ----                    ----
[  599.543663][    C2]   lock(tasklist_lock);
[  599.543677][    C2]                                local_irq_disable();
[  599.543683][    C2]                                lock(&dev->event_lock#2);
[  599.543702][    C2]                                lock(&client->buffer_lock);
[  599.543716][    C2]   <Interrupt>
[  599.543721][    C2]     lock(&dev->event_lock#2);
[  599.543740][    C2] 
[  599.543740][    C2]  *** DEADLOCK ***
[  599.543740][    C2] 
[  599.543745][    C2] 1 lock held by swapper/2/0:
[  599.543756][    C2]  #0: ffffffff8e3bfa80 (rcu_read_lock){....}-{1:3}, at: led_trigger_event+0x61/0x270
[  599.543806][    C2] 
[  599.543806][    C2] the shortest dependencies between 2nd lock and 1st lock:
[  599.543820][    C2]     -> (tasklist_lock){.+.+}-{3:3} {
[  599.543847][    C2]        HARDIRQ-ON-R at:
[  599.543858][    C2]                             lock_acquire+0x179/0x350
[  599.543883][    C2]                             _raw_read_lock+0x5f/0x70
[  599.543909][    C2]                             __do_wait+0x105/0x890
[  599.543934][    C2]                             do_wait+0x21e/0x5a0
[  599.543962][    C2]                             kernel_wait+0x9f/0x160
[  599.543989][    C2]                             call_usermodehelper_exec_work+0xf1/0x170
[  599.544009][    C2]                             process_one_work+0x9cc/0x1b70
[  599.544037][    C2]                             worker_thread+0x6c8/0xf10
[  599.544064][    C2]                             kthread+0x3c5/0x780
[  599.544089][    C2]                             ret_from_fork+0x48/0x80
[  599.544103][    C2]                             ret_from_fork_asm+0x1a/0x30
[  599.544127][    C2]        SOFTIRQ-ON-R at:
[  599.544139][    C2]                             lock_acquire+0x179/0x350
[  599.544161][    C2]                             _raw_read_lock+0x5f/0x70
[  599.544189][    C2]                             __do_wait+0x105/0x890
[  599.544213][    C2]                             do_wait+0x21e/0x5a0
[  599.544236][    C2]                             kernel_wait+0x9f/0x160
[  599.544261][    C2]                             call_usermodehelper_exec_work+0xf1/0x170
[  599.544279][    C2]                             process_one_work+0x9cc/0x1b70
[  599.544305][    C2]                             worker_thread+0x6c8/0xf10
[  599.544331][    C2]                             kthread+0x3c5/0x780
[  599.544355][    C2]                             ret_from_fork+0x48/0x80
[  599.544371][    C2]                             ret_from_fork_asm+0x1a/0x30
[  599.544396][    C2]        INITIAL USE at:
[  599.544407][    C2]                            lock_acquire+0x179/0x350
[  599.544429][    C2]                            _raw_write_lock_irq+0x36/0x50
[  599.544454][    C2]                            copy_process+0x3f09/0x91a0
[  599.544476][    C2]                            kernel_clone+0xfc/0x960
[  599.544499][    C2]                            user_mode_thread+0xc7/0x110
[  599.544522][    C2]                            rest_init+0x23/0x2b0
[  599.544541][    C2]                            start_kernel+0x3e9/0x4d0
[  599.544578][    C2]                            x86_64_start_reservations+0x18/0x30
[  599.544606][    C2]                            x86_64_start_kernel+0xb0/0xc0
[  599.544631][    C2]                            common_startup_64+0x13e/0x148
[  599.544653][    C2]        INITIAL READ USE at:
[  599.544686][    C2]                                 lock_acquire+0x179/0x350
[  599.544710][    C2]                                 _raw_read_lock+0x5f/0x70
[  599.544733][    C2]                                 __do_wait+0x105/0x890
[  599.544758][    C2]                                 do_wait+0x21e/0x5a0
[  599.544783][    C2]                                 kernel_wait+0x9f/0x160
[  599.544809][    C2]                                 call_usermodehelper_exec_work+0xf1/0x170
[  599.544828][    C2]                                 process_one_work+0x9cc/0x1b70
[  599.544855][    C2]                                 worker_thread+0x6c8/0xf10
[  599.544882][    C2]                                 kthread+0x3c5/0x780
[  599.544920][    C2]                                 ret_from_fork+0x48/0x80
[  599.544936][    C2]                                 ret_from_fork_asm+0x1a/0x30
[  599.544962][    C2]      }
[  599.544968][    C2]      ... key      at: [<ffffffff8e00c098>] tasklist_lock+0x18/0x40
[  599.544991][    C2]      ... acquired at:
[  599.544998][    C2]    _raw_read_lock+0x5f/0x70
[  599.545019][    C2]    send_sigio+0xb8/0x3e0
[  599.545041][    C2]    dnotify_handle_event+0x15e/0x2b0
[  599.545060][    C2]    fsnotify_handle_inode_event.isra.0+0x1df/0x3f0
[  599.545086][    C2]    fsnotify+0x13d6/0x1dc0
[  599.545109][    C2]    vfs_mkdir+0x71d/0x8c0
[  599.545130][    C2]    do_mkdirat+0x304/0x3e0
[  599.545148][    C2]    __ia32_sys_mkdir+0x61/0x80
[  599.545164][    C2]    __do_fast_syscall_32+0x73/0x120
[  599.545193][    C2]    do_fast_syscall_32+0x32/0x80
[  599.545217][    C2]    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  599.545238][    C2] 
[  599.545243][    C2]    -> (&f_owner->lock){....}-{3:3} {
[  599.545267][    C2]       INITIAL USE at:
[  599.545277][    C2]                          lock_acquire+0x179/0x350
[  599.545299][    C2]                          _raw_write_lock_irq+0x36/0x50
[  599.545320][    C2]                          __f_setown+0x61/0x3c0
[  599.545337][    C2]                          generic_setlease+0xef2/0x1300
[  599.545360][    C2]                          kernel_setlease+0x106/0x140
[  599.545378][    C2]                          vfs_setlease+0x258/0x2d0
[  599.545396][    C2]                          fcntl_setlease+0x3ed/0x5a0
[  599.545415][    C2]                          do_fcntl+0x75a/0x1590
[  599.545436][    C2]                          do_compat_fcntl64+0x370/0x700
[  599.545459][    C2]                          __do_fast_syscall_32+0x73/0x120
[  599.545482][    C2]                          do_fast_syscall_32+0x32/0x80
[  599.545507][    C2]                          entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  599.545527][    C2]       INITIAL READ USE at:
[  599.545538][    C2]                               lock_acquire+0x179/0x350
[  599.545559][    C2]                               _raw_read_lock_irqsave+0x74/0x90
[  599.545580][    C2]                               send_sigio+0x31/0x3e0
[  599.545599][    C2]                               dnotify_handle_event+0x15e/0x2b0
[  599.545615][    C2]                               fsnotify_handle_inode_event.isra.0+0x1df/0x3f0
[  599.545637][    C2]                               fsnotify+0x13d6/0x1dc0
[  599.545655][    C2]                               vfs_mkdir+0x71d/0x8c0
[  599.545674][    C2]                               do_mkdirat+0x304/0x3e0
[  599.545687][    C2]                               __ia32_sys_mkdirat+0x82/0xb0
[  599.545702][    C2]                               __do_fast_syscall_32+0x73/0x120
[  599.545737][    C2]                               do_fast_syscall_32+0x32/0x80
[  599.545763][    C2]                               entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  599.545784][    C2]     }
[  599.545790][    C2]     ... key      at: [<ffffffff9ab5f040>] __key.1+0x0/0x40
[  599.545814][    C2]     ... acquired at:
[  599.545822][    C2]    _raw_read_lock_irqsave+0x74/0x90
[  599.545839][    C2]    send_sigio+0x31/0x3e0
[  599.545854][    C2]    kill_fasync+0x214/0x510
[  599.545871][    C2]    lease_break_callback+0x23/0x30
[  599.545889][    C2]    __break_lease+0x674/0x1810
[  599.545910][    C2]    vfs_truncate+0x4d3/0x6e0
[  599.545927][    C2]    __ia32_compat_sys_truncate+0x171/0x1e0
[  599.545947][    C2]    __do_fast_syscall_32+0x73/0x120
[  599.545972][    C2]    do_fast_syscall_32+0x32/0x80
[  599.545995][    C2]    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  599.546015][    C2] 
[  599.546019][    C2]   -> (&new->fa_lock){....}-{3:3} {
[  599.546044][    C2]      INITIAL USE at:
[  599.546055][    C2]                        lock_acquire+0x179/0x350
[  599.546075][    C2]                        _raw_write_lock_irq+0x36/0x50
[  599.546099][    C2]                        fasync_remove_entry+0xb2/0x1e0
[  599.546120][    C2]                        fasync_helper+0xaf/0xd0
[  599.546139][    C2]                        sock_fasync+0x92/0x140
[  599.546163][    C2]                        __fput+0x96b/0xb70
[  599.546188][    C2]                        task_work_run+0x14d/0x240
[  599.546213][    C2]                        get_signal+0x1d1/0x26d0
[  599.546233][    C2]                        arch_do_signal_or_restart+0x8f/0x7a0
[  599.546255][    C2]                        syscall_exit_to_user_mode+0x150/0x2a0
[  599.546279][    C2]                        __do_fast_syscall_32+0x80/0x120
[  599.546305][    C2]                        do_fast_syscall_32+0x32/0x80
[  599.546329][    C2]                        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  599.546350][    C2]      INITIAL READ USE at:
[  599.546360][    C2]                             lock_acquire+0x179/0x350
[  599.546381][    C2]                             _raw_read_lock_irqsave+0x74/0x90
[  599.546402][    C2]                             kill_fasync+0x138/0x510
[  599.546423][    C2]                             sock_wake_async+0x132/0x160
[  599.546445][    C2]                             unix_release_sock+0xb7d/0x12e0
[  599.546470][    C2]                             unix_release+0x91/0xf0
[  599.546494][    C2]                             __sock_release+0xb0/0x270
[  599.546513][    C2]                             sock_close+0x1c/0x30
[  599.546533][    C2]                             __fput+0x3ff/0xb70
[  599.546553][    C2]                             task_work_run+0x14d/0x240
[  599.546577][    C2]                             syscall_exit_to_user_mode+0x27b/0x2a0
[  599.546599][    C2]                             __do_fast_syscall_32+0x80/0x120
[  599.546624][    C2]                             do_fast_syscall_32+0x32/0x80
[  599.546649][    C2]                             entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  599.546669][    C2]    }
[  599.546675][    C2]    ... key      at: [<ffffffff9ab5f000>] __key.0+0x0/0x40
[  599.546702][    C2]    ... acquired at:
[  599.546708][    C2]    _raw_read_lock_irqsave+0x74/0x90
[  599.546732][    C2]    kill_fasync+0x138/0x510
[  599.546753][    C2]    evdev_pass_values+0x619/0x9b0
[  599.546775][    C2]    evdev_events+0x1bb/0x390
[  599.546797][    C2]    input_pass_values+0x6c7/0x890
[  599.546821][    C2]    input_handle_event+0xf00/0x14d0
[  599.546845][    C2]    input_inject_event+0x1cd/0x390
[  599.546869][    C2]    evdev_write+0x2e1/0x440
[  599.546891][    C2]    vfs_write+0x25c/0x1180
[  599.546908][    C2]    ksys_write+0x205/0x240
[  599.546924][    C2]    __do_fast_syscall_32+0x73/0x120
[  599.546950][    C2]    do_fast_syscall_32+0x32/0x80
[  599.546977][    C2]    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  599.546998][    C2] 
[  599.547003][    C2]  -> (&client->buffer_lock){....}-{3:3} {
[  599.547030][    C2]     INITIAL USE at:
[  599.547039][    C2]                      lock_acquire+0x179/0x350
[  599.547060][    C2]                      _raw_spin_lock+0x2e/0x40
[  599.547080][    C2]                      evdev_pass_values+0x10e/0x9b0
[  599.547101][    C2]                      evdev_events+0x1bb/0x390
[  599.547123][    C2]                      input_pass_values+0x6c7/0x890
[  599.547146][    C2]                      input_handle_event+0xf00/0x14d0
[  599.547175][    C2]                      input_inject_event+0x1cd/0x390
[  599.547200][    C2]                      evdev_write+0x2e1/0x440
[  599.547222][    C2]                      vfs_write+0x25c/0x1180
[  599.547239][    C2]                      ksys_write+0x205/0x240
[  599.547257][    C2]                      __do_fast_syscall_32+0x73/0x120
[  599.547284][    C2]                      do_fast_syscall_32+0x32/0x80
[  599.547312][    C2]                      entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  599.547334][    C2]   }
[  599.547340][    C2]   ... key      at: [<ffffffff9ae30c60>] __key.1+0x0/0x40
[  599.547367][    C2]   ... acquired at:
[  599.547373][    C2]    _raw_spin_lock+0x2e/0x40
[  599.547393][    C2]    evdev_pass_values+0x10e/0x9b0
[  599.547415][    C2]    evdev_events+0x1bb/0x390
[  599.547437][    C2]    input_pass_values+0x6c7/0x890
[  599.547457][    C2]    input_handle_event+0xf00/0x14d0
[  599.547479][    C2]    input_inject_event+0x1cd/0x390
[  599.547502][    C2]    evdev_write+0x2e1/0x440
[  599.547519][    C2]    vfs_write+0x25c/0x1180
[  599.547532][    C2]    ksys_write+0x205/0x240
[  599.547543][    C2]    __do_fast_syscall_32+0x73/0x120
[  599.547565][    C2]    do_fast_syscall_32+0x32/0x80
[  599.547589][    C2]    entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  599.547609][    C2] 
[  599.547613][    C2] -> (&dev->event_lock#2){..-.}-{3:3} {
[  599.547642][    C2]    IN-SOFTIRQ-W at:
[  599.547652][    C2]                     lock_acquire+0x179/0x350
[  599.547673][    C2]                     _raw_spin_lock_irqsave+0x3a/0x60
[  599.547691][    C2]                     input_inject_event+0x9f/0x390
[  599.547713][    C2]                     led_set_brightness+0x217/0x290
[  599.547730][    C2]                     led_trigger_event+0xda/0x270
[  599.547750][    C2]                     kbd_bh+0x21b/0x300
[  599.547771][    C2]                     tasklet_action_common+0x281/0x400
[  599.547792][    C2]                     handle_softirqs+0x219/0x8e0
[  599.547809][    C2]                     __irq_exit_rcu+0x109/0x170
[  599.547828][    C2]                     irq_exit_rcu+0x9/0x30
[  599.547845][    C2]                     sysvec_apic_timer_interrupt+0xa4/0xc0
[  599.547867][    C2]                     asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  599.547884][    C2]                     pv_native_safe_halt+0xf/0x20
[  599.547903][    C2]                     default_idle+0x13/0x20
[  599.547916][    C2]                     default_idle_call+0x6d/0xb0
[  599.547932][    C2]                     do_idle+0x391/0x510
[  599.547949][    C2]                     cpu_startup_entry+0x4f/0x60
[  599.547967][    C2]                     start_secondary+0x21d/0x2b0
[  599.547989][    C2]                     common_startup_64+0x13e/0x148
[  599.548005][    C2]    INITIAL USE at:
[  599.548014][    C2]                    lock_acquire+0x179/0x350
[  599.548032][    C2]                    _raw_spin_lock_irqsave+0x3a/0x60
[  599.548053][    C2]                    input_inject_event+0x9f/0x390
[  599.548075][    C2]                    led_set_brightness+0x217/0x290
[  599.548089][    C2]                    kbd_led_trigger_activate+0xcb/0x110
[  599.548110][    C2]                    led_trigger_set+0x59a/0xc50
[  599.548128][    C2]                    led_trigger_set_default+0x1bd/0x2a0
[  599.548148][    C2]                    led_classdev_register_ext+0x7b8/0xa10
[  599.548171][    C2]                    input_leds_connect+0x552/0x8e0
[  599.548191][    C2]                    input_attach_handler.isra.0+0x184/0x260
[  599.548214][    C2]                    input_register_device+0xa84/0x1130
[  599.548237][    C2]                    atkbd_connect+0x5da/0xa20
[  599.548263][    C2]                    serio_driver_probe+0x77/0xb0
[  599.548284][    C2]                    really_probe+0x241/0xa90
[  599.548305][    C2]                    __driver_probe_device+0x1de/0x440
[  599.548327][    C2]                    driver_probe_device+0x4c/0x1b0
[  599.548348][    C2]                    __driver_attach+0x283/0x580
[  599.548368][    C2]                    bus_for_each_dev+0x13e/0x1d0
[  599.548395][    C2]                    serio_handle_event+0x247/0xa50
[  599.548417][    C2]                    process_one_work+0x9cc/0x1b70
[  599.548444][    C2]                    worker_thread+0x6c8/0xf10
[  599.548470][    C2]                    kthread+0x3c5/0x780
[  599.548494][    C2]                    ret_from_fork+0x48/0x80
[  599.548510][    C2]                    ret_from_fork_asm+0x1a/0x30
[  599.548535][    C2]  }
[  599.548541][    C2]  ... key      at: [<ffffffff9ae307e0>] __key.7+0x0/0x40
[  599.548564][    C2]  ... acquired at:
[  599.548568][    C2]    __lock_acquire+0x9b9/0x1ba0
[  599.548587][    C2]    lock_acquire+0x179/0x350
[  599.548609][    C2]    _raw_spin_lock_irqsave+0x3a/0x60
[  599.548631][    C2]    input_inject_event+0x9f/0x390
[  599.548655][    C2]    led_set_brightness+0x217/0x290
[  599.548692][    C2]    led_trigger_event+0xda/0x270
[  599.548714][    C2]    kbd_bh+0x21b/0x300
[  599.548736][    C2]    tasklet_action_common+0x281/0x400
[  599.548757][    C2]    handle_softirqs+0x219/0x8e0
[  599.548776][    C2]    __irq_exit_rcu+0x109/0x170
[  599.548795][    C2]    irq_exit_rcu+0x9/0x30
[  599.548814][    C2]    sysvec_apic_timer_interrupt+0xa4/0xc0
[  599.548837][    C2]    asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  599.548857][    C2]    pv_native_safe_halt+0xf/0x20
[  599.548881][    C2]    default_idle+0x13/0x20
[  599.548896][    C2]    default_idle_call+0x6d/0xb0
[  599.548913][    C2]    do_idle+0x391/0x510
[  599.548929][    C2]    cpu_startup_entry+0x4f/0x60
[  599.548947][    C2]    start_secondary+0x21d/0x2b0
[  599.548972][    C2]    common_startup_64+0x13e/0x148
[  599.548992][    C2] 
[  599.548996][    C2] 
[  599.548996][    C2] stack backtrace:
[  599.549007][    C2] CPU: 2 UID: 0 PID: 0 Comm: swapper/2 Not tainted 6.15.0-rc6-syzkaller-00208-g3c21441eeffc #0 PREEMPT(full) 
[  599.549031][    C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  599.549042][    C2] Call Trace:
[  599.549049][    C2]  <IRQ>
[  599.549056][    C2]  dump_stack_lvl+0x116/0x1f0
[  599.549086][    C2]  print_irq_inversion_bug.part.0+0x212/0x270
[  599.549111][    C2]  mark_lock+0x2e5/0x610
[  599.549138][    C2]  __lock_acquire+0x9b9/0x1ba0
[  599.549162][    C2]  ? do_raw_spin_lock+0x12c/0x2b0
[  599.549194][    C2]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  599.549224][    C2]  lock_acquire+0x179/0x350
[  599.549247][    C2]  ? input_inject_event+0x9f/0x390
[  599.549275][    C2]  _raw_spin_lock_irqsave+0x3a/0x60
[  599.549299][    C2]  ? input_inject_event+0x9f/0x390
[  599.549324][    C2]  input_inject_event+0x9f/0x390
[  599.549349][    C2]  ? find_held_lock+0x2b/0x80
[  599.549366][    C2]  ? __pfx_input_leds_brightness_set+0x10/0x10
[  599.549388][    C2]  led_set_brightness+0x217/0x290
[  599.549407][    C2]  led_trigger_event+0xda/0x270
[  599.549430][    C2]  kbd_bh+0x21b/0x300
[  599.549452][    C2]  ? rcu_is_watching+0x12/0xc0
[  599.549471][    C2]  tasklet_action_common+0x281/0x400
[  599.549495][    C2]  handle_softirqs+0x219/0x8e0
[  599.549518][    C2]  ? __pfx_handle_softirqs+0x10/0x10
[  599.549541][    C2]  __irq_exit_rcu+0x109/0x170
[  599.549562][    C2]  irq_exit_rcu+0x9/0x30
[  599.549582][    C2]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  599.549608][    C2]  </IRQ>
[  599.549615][    C2]  <TASK>
[  599.549622][    C2]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  599.549642][    C2] RIP: 0010:pv_native_safe_halt+0xf/0x20
[  599.549669][    C2] Code: 06 65 02 e9 83 fc 02 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d c3 6e 20 00 fb f4 <c3> cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
[  599.549688][    C2] RSP: 0018:ffffc9000047fdf8 EFLAGS: 00000282
[  599.549704][    C2] RAX: 0000000000ba36c1 RBX: 0000000000000002 RCX: ffffffff8b6983e9
[  599.549715][    C2] RDX: 0000000000000000 RSI: ffffffff8dbdcd2f RDI: ffffffff8bf47460
[  599.549726][    C2] RBP: ffffed1003b52910 R08: 0000000000000001 R09: ffffed10056865bd
[  599.549739][    C2] R10: ffff88802b432deb R11: 0000000000000000 R12: 0000000000000002
[  599.549749][    C2] R13: ffff88801da94880 R14: ffffffff90851f10 R15: 0000000000000000
[  599.549763][    C2]  ? ct_kernel_exit+0x139/0x190
[  599.549791][    C2]  default_idle+0x13/0x20
[  599.549804][    C2]  default_idle_call+0x6d/0xb0
[  599.549824][    C2]  do_idle+0x391/0x510
[  599.549840][    C2]  ? __pfx_do_idle+0x10/0x10
[  599.549860][    C2]  ? trace_sched_exit_tp+0x31/0x130
[  599.549883][    C2]  cpu_startup_entry+0x4f/0x60
[  599.549902][    C2]  start_secondary+0x21d/0x2b0
[  599.549927][    C2]  ? __pfx_start_secondary+0x10/0x10
[  599.549954][    C2]  common_startup_64+0x13e/0x148
[  599.549982][    C2]  </TASK>
[  599.573473][T18347] binder: BINDER_SET_CONTEXT_MGR bad uid 60928 != 0
[  600.208548][T18347] binder: 18340:18347 ioctl 4018620d 80000080 returned -1
[  600.273544][   T34] usb 7-1: usb_control_msg returned -71
[  600.285616][   T34] usbtmc 7-1:16.0: can't read capabilities
[  600.303612][   T34] usb 7-1: USB disconnect, device number 21
[  600.596027][ T9081] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  600.655436][ T9081] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  600.716808][ T9081] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  600.806938][ T9081] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  600.856865][ T9081] bridge_slave_1: left allmulticast mode
[  600.858656][ T9081] bridge_slave_1: left promiscuous mode
[  600.860479][ T9081] bridge0: port 2(bridge_slave_1) entered disabled state
[  600.863449][ T9081] bridge_slave_0: left allmulticast mode
[  600.865250][ T9081] bridge_slave_0: left promiscuous mode
[  600.867225][ T9081] bridge0: port 1(bridge_slave_0) entered disabled state
[  600.938046][ T9081] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  600.942125][ T9081] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  600.945724][ T9081] bond0 (unregistering): Released all slaves
[  601.275908][ T9081] hsr_slave_0: left promiscuous mode
[  601.277947][ T9081] hsr_slave_1: left promiscuous mode
[  601.280209][ T9081] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  601.282691][ T9081] batman_adv: batadv0: Removing interface: batadv_slave_0
[  601.285958][ T9081] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  601.288414][ T9081] batman_adv: batadv0: Removing interface: batadv_slave_1
[  601.293098][ T9081] veth1_macvtap: left promiscuous mode
[  601.295441][ T9081] veth0_macvtap: left promiscuous mode
[  601.297860][ T9081] veth1_vlan: left promiscuous mode
[  601.300126][ T9081] veth0_vlan: left promiscuous mode
[  601.332633][ T9081] pimreg (unregistering): left allmulticast mode
[  601.532875][ T9081] team0 (unregistering): Port device team_slave_1 removed
[  601.539051][ T9081] team0 (unregistering): Port device team_slave_0 removed
[  601.766426][   T34] lo speed is unknown, defaulting to 1000
[  601.768398][   T34] syz0: Port: 1 Link DOWN
[  602.159064][ T9081] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  602.207723][ T9081] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  602.247121][ T9081] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  602.288569][ T9081] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  602.350209][ T9081] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  602.353677][ T9081] netdevsim netdevsim5 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  602.425775][ T9081] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  602.429887][ T9081] netdevsim netdevsim5 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  602.485991][ T9081] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  602.489796][ T9081] netdevsim netdevsim5 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  602.585126][ T9081] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0
[  602.588571][ T9081] netdevsim netdevsim5 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[  602.669225][ T9081] bridge_slave_1: left allmulticast mode
[  602.671474][ T9081] bridge_slave_1: left promiscuous mode
[  602.674266][ T9081] bridge0: port 2(bridge_slave_1) entered disabled state
[  602.678284][ T9081] bridge_slave_0: left allmulticast mode
[  602.680697][ T9081] bridge_slave_0: left promiscuous mode
[  602.683029][ T9081] bridge0: port 1(bridge_slave_0) entered disabled state
[  602.903087][ T9081] team0: Port device bridge2 removed
[  603.121903][ T9081] bond0 (unregistering): Released all slaves
[  603.130475][ T9081] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  603.135542][ T9081] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  603.140096][ T9081] bond0 (unregistering): Released all slaves
[  603.245132][ T9081] bond1 (unregistering): Released all slaves
[  603.322190][ T9081] bond2 (unregistering): Released all slaves
[  603.383736][ T9081] : left promiscuous mode
[  603.476724][ T9081] IPVS: stopping master sync thread 16083 ...
[  604.018019][ T9081] hsr_slave_0: left promiscuous mode
[  604.020569][ T9081] hsr_slave_1: left promiscuous mode
[  604.024979][ T9081] hsr_slave_0: left promiscuous mode
[  604.027687][ T9081] hsr_slave_1: left promiscuous mode
[  604.030322][ T9081] batman_adv: batadv0: Interface deactivated: dummy0
[  604.033185][ T9081] batman_adv: batadv0: Removing interface: dummy0
[  604.036731][ T9081] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  604.039889][ T9081] batman_adv: batadv0: Removing interface: batadv_slave_0
[  604.043473][ T9081] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  604.046651][ T9081] batman_adv: batadv0: Removing interface: batadv_slave_1
[  604.055390][ T9081] veth1_macvtap: left promiscuous mode
[  604.057704][ T9081] veth0_macvtap: left promiscuous mode
[  604.060173][ T9081] veth1_vlan: left promiscuous mode
[  604.062258][ T9081] veth0_vlan: left promiscuous mode
[  604.064677][ T9081] veth1_macvtap: left promiscuous mode
[  604.066489][ T9081] veth0_macvtap: left promiscuous mode
[  604.068270][ T9081] veth1_vlan: left promiscuous mode
[  604.070023][ T9081] veth0_vlan: left promiscuous mode
[  604.925437][ T9081] team0 (unregistering): Port device team_slave_1 removed
[  604.971923][ T9081] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
01:19:11  Registers:
info registers vcpu 0

CPU#0
EAX=8207ce38 EBX=00000000 ECX=00000000 EDX=00000e38
ESI=8207ce38 EDI=ffffffff EBP=f7440000 ESP=ff8eb998
EIP=f70de6ae EFL=00000246 [---Z-P-] CPL=3 II=0 A20=1 SMM=0 HLT=0
ES =002b 00000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0023 00000000 ffffffff 00c0fb00 DPL=3 CS32 [-RA]
SS =002b 00000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
DS =002b 00000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 00000000 ffffffff 00c00000
GS =0063 56ffb440 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 00000000 ffffffff 00c00000
TR =0040 00003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c338396 CR3=0000000023c45000 CR4=00352ef0
DR0=0000000000000000 DR1=000000000000ff99 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=00000001000008fd RBX=ffff888000830000 RCX=0000000000000830 RDX=0000000000000001
RSI=00000000000000fd RDI=0000000000000001 RBP=0000000000000008 RSP=ffffc9000046fb98
R8 =0000000000000000 R9 =fffffbfff210a3e2 R10=ffffffff90851f17 R11=0000000000000001
R12=0000000000000003 R13=1ffff9200008df74 R14=0000000000000000 R15=ffffc9000046fbc0
RIP=ffffffff81684cd8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880978e9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7456188 CR3=000000007398b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000006f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854c43f5 RDI=ffffffff9ade2c40 RBP=ffffffff9ade2c00 RSP=ffffc9000051f8c8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e35312e36
R12=0000000000000000 R13=000000000000006f R14=ffffffff9ade2c00 R15=ffffffff854c4390
RIP=ffffffff854c441f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979e9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000056ffb4c0 CR3=0000000049f92000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcfffc00 Opmask01=000000000000007f Opmask02=00000000fffeff7f Opmask03=0000000000000000
Opmask04=00000000ffffefff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055c835a86ce0 000055c835a85ce0
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055c835a85ce0 000055c835a85ce0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055c835aa2a38
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f32f47f1b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f32f47f1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffff00ffffff00 ffff00000000ff00
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000ffff000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f5c4f5f05040405 19694645585e4445
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4905194e584b4905 4e445f4559051a04
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4a414d003d454d 414e564544003d58 45444e494649003d 4550595456454400
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4a414d0018454d 414e564544001858 45444e4946490018 4550595456454400
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7361647c2a737369 63637c2a65686361 63627c2a6476787c 2a64767c2a64737c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055c835a6a4d0 000055c835a749d0 000055c835a7bee0 000055c835a76170
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055c835a76930 000055c835a6e000 000055c835a7db70 000055c835a6c9e0
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055c835a6cc60 000055c835a71080 000055c835a6ac80 000055c835a6ac00
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055c835a79da0 000055c835a79d20 000055c835a706c0 000055c835a70660
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7265747369676572 6e755f7665647465 6e2e65726f632e74 656e2e6c74637379
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000080c6b4 RBX=0000000000000003 RCX=ffffffff8b6983e9 RDX=ffffed10056a65be
RSI=ffffffff8bf473e0 RDI=ffffffff81913781 RBP=ffffed10037e4000 RSP=ffffc9000048fdf8
R8 =0000000000000000 R9 =ffffed10056a65bd R10=ffff88802b532deb R11=0000000000000001
R12=0000000000000003 R13=ffff88801bf20000 R14=ffffffff90851f10 R15=0000000000000000
RIP=ffffffff8b696c7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097ae9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000002602e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000