last executing test programs:

13m53.676374414s ago: executing program 2 (id=303):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001800)={0x9, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x100000, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0xffffffffffffff58)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000001540)=0xb)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x4, &(0x7f0000000280)=0x5)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r2, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x2c)
r3 = socket$inet6(0xa, 0x5, 0x33)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000140)={{{@in=@multicast2, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x7ff, 0x0, 0x0, 0x0, 0xf42, 0x8}, {0x1, 0x0, 0x0, 0xb843}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x0, 0x32}, 0x0, @in=@local, 0x0, 0x3, 0x2, 0x4, 0x0, 0x0, 0x1}}, 0xe8)
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
mmap(&(0x7f00001f7000/0x3000)=nil, 0x3000, 0xb635773f07ebbee7, 0x4000010, r3, 0xffffa000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
r5 = socket(0xa, 0x3, 0x3a)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000001500), 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1ca)
epoll_create1(0x0)
unshare(0x20000600)
epoll_pwait(r0, &(0x7f00000015c0)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x9, 0x800001, 0x0, 0x0)
ioctl$sock_SIOCOUTQ(r5, 0x5411, &(0x7f00000000c0))
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
r6 = open$dir(&(0x7f00000068c0)='./file0\x00', 0x6be48a7ba229e510, 0x281)
getdents64(r6, &(0x7f0000000000)=""/30, 0x1e)
ioctl$USBDEVFS_ALLOC_STREAMS(0xffffffffffffffff, 0x8008551c, &(0x7f0000000100)=ANY=[@ANYBLOB="4a18000006000000028586860b8fea7cb25b1424b9a900ff3cffea15864e943cf8ef"])
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000200)={0xfffffffc, 0xfffffffd, 0x6, 0x0, 0xff, "db8f2d2b3b7596160c6981acf8805944823a7f"})
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0)

13m52.411031817s ago: executing program 2 (id=304):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0xa0000, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, &(0x7f0000000100)={0x4, <r3=>r1})
ioctl$DMA_BUF_SET_NAME_A(r3, 0x40046201, &(0x7f0000000040)='/dev/dma_heap/system\x00')
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086201, &(0x7f0000000080)=0x20)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1a1)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r4}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
sendmsg$NFT_BATCH(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a0b040000000000000000020000000900010073797a30000000000900020073797a3200000000140000001100", @ANYRES8], 0x54}, 0x1, 0x0, 0x0, 0x24068045}, 0x0)
get_mempolicy(&(0x7f0000005a40), &(0x7f0000005a80), 0x3, &(0x7f0000ffc000/0x4000)=nil, 0x4)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000080a01010000000000000000020000000900010073797a300000000038000000060a17d50000000000000000020000000900020073797a32000000000900010073797a30000000000c0003400000000000000002"], 0xcdc}}, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000009eb000030000380140002000063616e300000000000000000000000080003000000000008000500ac1414aa0800010000000000"], 0x44}}, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
r8 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCBRDELBR(r8, 0x89a2, &(0x7f0000000000)='bridge0\x00')
ppoll(&(0x7f0000000340)=[{r0, 0x80}, {r6, 0x4000}], 0x2, &(0x7f0000000380)={0x77359400}, &(0x7f00000003c0)={[0xa, 0xe93f]}, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00'})
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})

13m52.246484956s ago: executing program 3 (id=306):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x106, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYRES32, @ANYRES8=r0, @ANYRESHEX=r0], 0x3c}}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r3}, 0x10)
setitimer(0x1, 0x0, 0x0)

13m51.931523556s ago: executing program 2 (id=308):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB="1808000000000000000000000020000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7060000000000008500000005000000bf0900000000000035090100000000009500000000000000b7020000000000007b9af8ff00000000b5090000000000007baaf0ff00000000ae8900000000000007080000f8ffffffbf8400000000000007040000f0ffffffc70200000800000018260000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf980000000000005608f8ffffff00008500000007000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sk_reuseport=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

13m51.29830115s ago: executing program 3 (id=311):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000400), 0x401, 0xffffffffffffffff, 0x0, 0xa002a0}, 0x38)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="740000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b030040000000004c0012800b00010067656e65766500"], 0x74}}, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xa0, 0x30, 0xffff, 0xfffffffe, 0x0, {}, [{0x8c, 0x1, [@m_gact={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_sample={0x58, 0x1, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PARMS={0x18, 0x2, {0x2, 0x5f, 0x0, 0x101, 0x8cb8}}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x6}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x3}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}]}]}, 0xa0}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14080, 0x10000}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FLAGS={0x8, 0x3, 0x2}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7060000000000008500000005000000bf090000000000003509010000000fff9500000000000000b7020000000000007b9af8ff00000000b5090000000000007baaf0ff00000000ae8900000000000007080000f8ffffffbf8400000000000007040000f0ffffffc70200000800000018260000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf980000000000005608f8ffffff00008500000007000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sk_reuseport=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f0000000040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x6a55c0c4ada8324e)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000380)={0x2})
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r7)
ptrace$getregset(0x4205, r7, 0x202, 0x0)

13m51.284051538s ago: executing program 2 (id=312):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0xc000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x1c, "fee8a2ab78fc5e3ed1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac0000000000000000fffffffffffffffd00", "90be8b1c551265406c7f306003d8a0f4bd00"}})

13m51.199946363s ago: executing program 2 (id=314):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}, 0x1, 0xe4ff}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=@delchain={0x24, 0x64, 0xf31, 0xfffffff8, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {}, {0xb, 0xffff}, {0x0, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000840}, 0x48800)

13m50.286351996s ago: executing program 2 (id=316):
bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
openat$tun(0xffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100), 0x0, 0xffff}, 0x38)
syz_emit_ethernet(0x9e, &(0x7f0000000280)=ANY=[@ANYBLOB="aa0000000000003465aaaaaa88a800008100000086dd60f81fcb00603b00fc000000000000000000000000000000ff0200000000000000000000000000010400907800000000604aa1d300000000fc01000000000000000000000000000000000000000000000000ffff7f0000012b00000000000000000304010000000000000000000000000000ffffac1414bb00a10400"/158], 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
r4 = syz_io_uring_setup(0x29c, &(0x7f0000000300)={0x0, 0x14ba, 0x8, 0x1, 0x133}, &(0x7f0000000040)=<r5=>0x0, &(0x7f00000000c0)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd, 0xc000000, &(0x7f0000000000), 0x0, 0x12})
io_uring_enter(r4, 0x847ba, 0x0, 0x8, 0x0, 0x0)

13m50.210335008s ago: executing program 32 (id=316):
bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
openat$tun(0xffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100), 0x0, 0xffff}, 0x38)
syz_emit_ethernet(0x9e, &(0x7f0000000280)=ANY=[@ANYBLOB="aa0000000000003465aaaaaa88a800008100000086dd60f81fcb00603b00fc000000000000000000000000000000ff0200000000000000000000000000010400907800000000604aa1d300000000fc01000000000000000000000000000000000000000000000000ffff7f0000012b00000000000000000304010000000000000000000000000000ffffac1414bb00a10400"/158], 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
r4 = syz_io_uring_setup(0x29c, &(0x7f0000000300)={0x0, 0x14ba, 0x8, 0x1, 0x133}, &(0x7f0000000040)=<r5=>0x0, &(0x7f00000000c0)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd, 0xc000000, &(0x7f0000000000), 0x0, 0x12})
io_uring_enter(r4, 0x847ba, 0x0, 0x8, 0x0, 0x0)

13m50.140051549s ago: executing program 3 (id=318):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
socket$kcm(0x10, 0x2, 0x0)
r1 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)
recvmsg$unix(r6, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x2002)
close(r7)
prlimit64(0x0, 0x7, &(0x7f0000000440), 0x0)
io_uring_setup(0x3819, &(0x7f00000003c0))
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x11c0, 0x0)
acct(&(0x7f00000001c0)='./file0\x00')
ioctl$PTP_PIN_SETFUNC2(0xffffffffffffffff, 0x40603d10, &(0x7f0000000140)={'\x00', 0xd5, 0x0, 0x3})
connect$qrtr(r5, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r8 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x4661, 0x400, 0x3, 0x288}, &(0x7f0000000340)=<r9=>0x0, &(0x7f0000000280)=<r10=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r9, r10, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0})
io_uring_enter(r8, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
getpeername$qrtr(r5, 0x0, 0x0)
close_range(r4, r5, 0x0)
socket$inet6(0xa, 0x3, 0xff)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
syz_usb_disconnect(r1)

13m46.992891531s ago: executing program 3 (id=326):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0xc000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x1c, "fee8a2ab78fc5e3ed1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac0000000000000000003fffffffffffff00", "90be8b1c551265406c7f306003d8a0f4bd00"}})

13m46.917890107s ago: executing program 3 (id=327):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x22, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x1, 0x48001)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="180000000000000000000095000000000010009c07b346cb5e13f8772644f4971e732de04fedad572bac3404f614c6921cc6566233111a04388a1dd9abd53082a556d3870cc36484b7afd31929aee457d4af6b6ec2d0aec2be5822d676d4d9c11f086b9ee55435fa635bf655e9a79e6ef3c3e8ad04cf1da9c1a928f766b975a31f0c49d8"], &(0x7f0000000140)='syzkaller\x00'}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4040001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
writev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f0000000080)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb0100", 0x25}, {&(0x7f0000000040)="aa1d484ea0a00000f7fc08fcd111fbdf23ea32db0e8f21d5bc27bd49eb067a0689fff2a41cfb", 0x26}], 0x2)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0)
recvmsg(r3, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x2062)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

13m45.821380071s ago: executing program 3 (id=332):
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe8000000000000000000400000000aa"], 0x0) (async)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xa, 0x4}, 0x20) (async)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0}) (async)
r2 = dup3(r1, r0, 0x80000) (async)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a}) (async)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000e00)=[@acquire], 0x0, 0x0, 0x0}) (async)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000300)={0x8, 0x0, &(0x7f0000000540)=[@increfs={0x400c6314, 0x1}], 0x0, 0x0, 0x0}) (async)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) (async)
r5 = socket$nl_route(0x10, 0x3, 0x0) (async)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000c80)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4c, 0x2, [@TCA_FQ_INITIAL_QUANTUM={0x8, 0xe}, @TCA_FQ_TIMER_SLACK={0x8}, @TCA_FQ_TIMER_SLACK={0x8}, @TCA_FQ_FLOW_DEFAULT_RATE={0x8}, @TCA_FQ_FLOW_PLIMIT={0x8, 0x8, 0x2000}, @TCA_FQ_TIMER_SLACK={0x8}, @TCA_FQ_LOW_RATE_THRESHOLD={0x8}, @TCA_FQ_FLOW_DEFAULT_RATE={0x8}, @TCA_FQ_QUANTUM={0x8, 0xf}]}}]}, 0x78}}, 0x0) (async)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r8, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) (async)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r8, 0x84, 0x1b, &(0x7f00000011c0), &(0x7f0000000280)=0x8)
r9 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r4, 0xf503, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0xdddd6000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0) (async)
write$sndseq(0xffffffffffffffff, &(0x7f0000000600)=[{0x4a, 0x6, 0x5, 0x6c, @tick=0x12c1, {0x4, 0x81}, {0x2, 0x7}, @ext={0x3f, &(0x7f0000000300)="306bb32f785208d29440dcf0b2f615397505cbd7558ad7fffd786b3383981d725def188c5fb04613c477750b6bc4937f95128413e6301a411952d4a96e36d1"}}, {0x3, 0x9, 0x1, 0x6, @time={0x8, 0x1}, {0x6, 0x3}, {0x7, 0x90}, @ext={0x4, &(0x7f0000000080)="082bbe5b"}}], 0x38) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)) (async)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x441c2, 0x0)

13m45.715319091s ago: executing program 33 (id=332):
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe8000000000000000000400000000aa"], 0x0) (async)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xa, 0x4}, 0x20) (async)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0}) (async)
r2 = dup3(r1, r0, 0x80000) (async)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a}) (async)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000e00)=[@acquire], 0x0, 0x0, 0x0}) (async)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000300)={0x8, 0x0, &(0x7f0000000540)=[@increfs={0x400c6314, 0x1}], 0x0, 0x0, 0x0}) (async)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) (async)
r5 = socket$nl_route(0x10, 0x3, 0x0) (async)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000c80)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4c, 0x2, [@TCA_FQ_INITIAL_QUANTUM={0x8, 0xe}, @TCA_FQ_TIMER_SLACK={0x8}, @TCA_FQ_TIMER_SLACK={0x8}, @TCA_FQ_FLOW_DEFAULT_RATE={0x8}, @TCA_FQ_FLOW_PLIMIT={0x8, 0x8, 0x2000}, @TCA_FQ_TIMER_SLACK={0x8}, @TCA_FQ_LOW_RATE_THRESHOLD={0x8}, @TCA_FQ_FLOW_DEFAULT_RATE={0x8}, @TCA_FQ_QUANTUM={0x8, 0xf}]}}]}, 0x78}}, 0x0) (async)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r8, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) (async)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r8, 0x84, 0x1b, &(0x7f00000011c0), &(0x7f0000000280)=0x8)
r9 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r4, 0xf503, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0xdddd6000, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0) (async)
write$sndseq(0xffffffffffffffff, &(0x7f0000000600)=[{0x4a, 0x6, 0x5, 0x6c, @tick=0x12c1, {0x4, 0x81}, {0x2, 0x7}, @ext={0x3f, &(0x7f0000000300)="306bb32f785208d29440dcf0b2f615397505cbd7558ad7fffd786b3383981d725def188c5fb04613c477750b6bc4937f95128413e6301a411952d4a96e36d1"}}, {0x3, 0x9, 0x1, 0x6, @time={0x8, 0x1}, {0x6, 0x3}, {0x7, 0x90}, @ext={0x4, &(0x7f0000000080)="082bbe5b"}}], 0x38) (async)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)) (async)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x441c2, 0x0)

13m35.91042839s ago: executing program 1 (id=381):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x22, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x1, 0x48001)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000e00)=ANY=[@ANYBLOB="180000000000000000000095000000000010009c07b346cb5e13f8772644f4971e732de04fedad572bac3404f614c6921cc6566233111a04388a1dd9abd53082a556d3870cc36484b7afd31929aee457d4af6b6ec2d0aec2be5822d676d4d9c11f086b9ee55435fa635bf655e9a79e6ef3c3e8ad04cf1da9c1a928f766b975a31f0c49d8b56581c9304a570a7c27812e5da8d9143ea1ecc8e0f700befc1d70bf4fa9b153672e1e6924fddc5f747e8013"], &(0x7f0000000140)='syzkaller\x00'}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x4040001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
writev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f0000000080)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb0100", 0x25}, {&(0x7f0000000040)="aa1d484ea0a00000f7fc08fcd111fbdf23ea32db0e8f21d5bc27bd49eb067a0689fff2a41cfb", 0x26}], 0x2)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0)
recvmsg(r3, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x2062)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000003000000400001802c0004001400010002000000ac1414aa00000000000000001400020002000000e000000200000000000004000d0001007564703a73"], 0x54}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

13m34.360300199s ago: executing program 1 (id=388):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB="180800000000ffffffffffffff80000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7060000000000008500000005000000bf0900000000000035090100000000009500000000000000b7020000000000007b9af8ff00000000b5090000000000007baaf0ff00000000ae8900000000000007080000f8ffffffbf8400000000000007040000f0ffffffc70200000800000018260000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf980000000000005608f8ffffff00008500000007000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sk_reuseport=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

13m32.904333334s ago: executing program 1 (id=403):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
socket$kcm(0x10, 0x2, 0x0)
r1 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)
recvmsg$unix(r6, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x2002)
close(r7)
prlimit64(0x0, 0x7, &(0x7f0000000440), 0x0)
io_uring_setup(0x3819, &(0x7f00000003c0))
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x11c0, 0x0)
acct(&(0x7f00000001c0)='./file0\x00')
ioctl$PTP_PIN_SETFUNC2(0xffffffffffffffff, 0x40603d10, &(0x7f0000000140)={'\x00', 0xd5, 0x0, 0x3})
connect$qrtr(r5, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r8 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x4661, 0x400, 0x3, 0x288}, &(0x7f0000000340)=<r9=>0x0, &(0x7f0000000280)=<r10=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r9, r10, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0})
io_uring_enter(r8, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
getpeername$qrtr(r5, 0x0, 0x0)
close_range(r4, r5, 0x0)
socket$inet6(0xa, 0x3, 0xff)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
syz_usb_disconnect(r1)

13m29.551989307s ago: executing program 1 (id=404):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0xc000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x1c, "fee8a2ab78fc5e3ed1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac000000000000000000000300", "90be8b1c551265406c7f306003d8a0f4bd00"}})

13m29.509971049s ago: executing program 1 (id=405):
bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
openat$tun(0xffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100), 0x0, 0xffff}, 0x38)
syz_emit_ethernet(0x9e, &(0x7f0000000280)=ANY=[@ANYBLOB="aa0000000000003465aaaaaa88a800008100000086dd60f81fcb00603b00fc000000000000000000000000000000ff0200000000000000000000000000010400907800000000604aa1d300000000fc01000000000000000000000000000000000000000000000000ffff7f0000012b00000000000000000304010000000000000000000000000000ffffac1414bb00a10400"/158], 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
r4 = syz_io_uring_setup(0x29c, &(0x7f0000000300)={0x0, 0x14ba, 0x8, 0x1, 0x133}, 0x0, &(0x7f00000000c0)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r5, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd, 0xc000000, &(0x7f0000000000), 0x0, 0x12})
io_uring_enter(r4, 0x847ba, 0x0, 0x8, 0x0, 0x0)

13m28.976466748s ago: executing program 1 (id=407):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0xc000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x1c, "fee8a2ab78fc5e3ed1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac0000000000000000000000000000fe00", "90be8b1c551265406c7f306003d8a0f4bd00"}})

13m28.913456448s ago: executing program 34 (id=407):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0xc000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x1c, "fee8a2ab78fc5e3ed1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac0000000000000000000000000000fe00", "90be8b1c551265406c7f306003d8a0f4bd00"}})

31.45330576s ago: executing program 0 (id=3338):
pipe2$9p(&(0x7f00000001c0), 0x0)
io_setup(0x8, &(0x7f0000004200))
recvmsg(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x10000)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000380)="1400000036000b63d25a595c779f10ce0630fc60", 0x14}], 0x1}, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
landlock_create_ruleset(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x10)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r1, r1, 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r3 = fanotify_init(0x200, 0x0)
fanotify_mark(r3, 0x1, 0x4800003e, r2, 0x0)
r4 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000000)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r4, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
r7 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r8 = dup(r7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r8, 0x2000)

29.837343776s ago: executing program 0 (id=3345):
pipe2$9p(0x0, 0x0)
io_setup(0x8, &(0x7f0000004200)=<r0=>0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
recvmsg(r1, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x10000)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000380)="1400000036000b63d25a595c779f10ce0630fc60", 0x14}], 0x1}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
landlock_create_ruleset(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x84, 0x81, &(0x7f00000001c0)={'broute\x00', 0x0, 0x9, 0x0, [0x1ff, 0x9, 0x7975, 0x3, 0x9, 0xffffffff80000000], 0x0, 0x0, 0x0}, &(0x7f0000000080)=0x78)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x10)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, r3, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r5 = fanotify_init(0x200, 0x0)
fanotify_mark(r5, 0x1, 0x4800003e, r4, 0x0)
r6 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000340)=<r7=>0x0, &(0x7f0000000000)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r6, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
io_submit(r0, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffac}])
r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
dup(r9)

28.76727418s ago: executing program 0 (id=3347):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
socket$inet6_sctp(0xa, 0x801, 0x84)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_open_dev$vim2m(&(0x7f0000000040), 0x0, 0x2)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="1400000024000b47564cb6288200eb1405000000", 0x14}], 0x1}, 0x44014) (fail_nth: 7)

27.75738818s ago: executing program 0 (id=3351):
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x800000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0xa, 0x4, &(0x7f0000000180)=ANY=[@ANYRES32=r0], 0x0, 0x9, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, &(0x7f0000000180))
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000c40)=ANY=[@ANYBLOB="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"], 0x110}}, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)

24.580994057s ago: executing program 0 (id=3359):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
setsockopt$netrom_NETROM_IDLE(r2, 0x103, 0x7, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
unshare(0x22020600)
r3 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
openat$cgroup_ro(r4, &(0x7f0000000000)='cpu.stat\x00', 0x300, 0x0)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000240)="682488bdfd3ad87752824f58fea08a8281d9ab6b0ae2397d43590e7bcf", 0x1d}], 0x1)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x10040, 0x0)
io_uring_enter(0xffffffffffffffff, 0xdb4, 0x0, 0x0, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000009006000000000000000000000a44000000090a0000000000fa82a3fa211411fa0008000a40000000000900020073797a31000000000900010073797a30000000000800054000000000080008400000000014000000110001"], 0x6c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001c08000640ffffff000800034000000028580000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c0003802800008008000340000000021c00028018000280080001"], 0xec}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001940)=ANY=[@ANYRES32=r0], 0xc0}, 0x1, 0x0, 0x0, 0x4050}, 0x400)

23.757467918s ago: executing program 0 (id=3364):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}, 0x1, 0x0, 0x40000000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=@delchain={0x24, 0x64, 0xf31, 0xfffffff8, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {}, {0xb, 0xffff}, {0x0, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000840}, 0x48800)

23.406186546s ago: executing program 35 (id=3364):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r3, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}, 0x1, 0x0, 0x40000000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=@delchain={0x24, 0x64, 0xf31, 0xfffffff8, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {}, {0xb, 0xffff}, {0x0, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000840}, 0x48800)

6.420377353s ago: executing program 4 (id=3421):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, 0x0)
r3 = socket(0x200000000000011, 0x2, 0xd)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000c40)=ANY=[@ANYBLOB="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"], 0x58}}, 0x0)
bind$packet(r3, &(0x7f0000000080)={0x11, 0x1b, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000200)={'syzkaller0\x00', @random="e5db029ea53c"})
read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020}, 0x2020)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f00000001c0), 0x185802, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
sendfile(r5, r5, 0x0, 0x200000)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000200), r0)

4.571588529s ago: executing program 4 (id=3434):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x5c, 0x10, 0x403, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x74, r4, 0x800}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERIER={0x5, 0x19, 0x2}, @IFLA_BR_MCAST_STARTUP_QUERY_INTVL={0xc, 0x23, 0x7}, @IFLA_BR_MCAST_STATS_ENABLED={0x5, 0x2a, 0x1}, @IFLA_BR_MULTI_BOOLOPT={0xc, 0x2e, {0x0, 0x1}}]}}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
ioctl$sock_SIOCGSKNS(r3, 0x894c, &(0x7f0000000380)=0xe0)
ppoll(&(0x7f00000000c0)=[{r6, 0x740}], 0x1, 0x0, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r6, 0xc0405405, &(0x7f0000000340)={{0xffffffffffffffff, 0x2, 0x9, 0x4, 0xe68}, 0x2, 0x3, 0x8})
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r7}, 0x10)
setitimer(0x1, 0x0, 0x0)
futex(&(0x7f0000000040), 0x8, 0x0, &(0x7f0000000080)={0x77359400}, 0x0, 0x2)

4.175063484s ago: executing program 7 (id=3427):
pipe2$9p(&(0x7f00000001c0), 0x0)
io_setup(0x8, 0x0)
r0 = socket$kcm(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x10000)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000380)="1400000036000b63d25a595c779f10ce0630fc60", 0x14}], 0x1}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
landlock_create_ruleset(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x84, 0x81, &(0x7f00000001c0)={'broute\x00', 0x0, 0x9, 0x0, [0x1ff, 0x9, 0x7975, 0x3, 0x9, 0xffffffff80000000], 0x0, 0x0, 0x0}, &(0x7f0000000080)=0x78)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x10)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r2, r2, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r4 = fanotify_init(0x200, 0x0)
fanotify_mark(r4, 0x1, 0x4800003e, r3, 0x0)
r5 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000340)=<r6=>0x0, &(0x7f0000000000)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r5, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
io_submit(0x0, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffac}])
r8 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
dup(r8)

3.63747879s ago: executing program 4 (id=3428):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000500)=ANY=[], 0x180}, 0x1, 0x0, 0x0, 0x4075}, 0x4880)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC, @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$igmp(0x2, 0x3, 0x2)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000900), r5)
sendmsg$NL802154_CMD_SET_CHANNEL(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000940)={0x2c, r6, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0x7}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x1}]}, 0x2c}}, 0x64000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x118)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x19d)
write$P9_RREADLINK(r7, &(0x7f0000000180)={0xffffffffffffff9e, 0x17, 0xfffd, {0x7, './file0'}}, 0x10)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x2, 0xd, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x4, 0x0, @private1}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x6, 0x32, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@private=0xa010101}}, @sadb_lifetime={0x4, 0x4}]}, 0xc0}}, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x33f, 0x0)
fcntl$lock(r3, 0x24, &(0x7f0000000280)={0x2, 0x3, 0x10000, 0xe3, r2})
chdir(&(0x7f0000000100)='./file0\x00')

3.18800031s ago: executing program 6 (id=3429):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
syz_usbip_server_init(0x6)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'veth1_to_batadv\x00', 0x20})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x183081, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000500)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
write$cgroup_subtree(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="8fedcb5d07081196f37538e486dd6372ce22667f2c00dbf6e97158b33d4fec877f1b6d76745b686158bbcfe8875afdef0001000000ff89"], 0x280)
mremap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000ffc000/0x3000)=nil)
capset(&(0x7f0000000c00)={0x20080522}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r3, 0x4020aeb2, &(0x7f0000000740)={0x0, 0x12c, @pic={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80200, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
mknodat(0xffffffffffffff9c, 0x0, 0xc000, 0x0)
mmap(&(0x7f00004fe000/0x2000)=nil, 0x2000, 0x2000004, 0x10, 0xffffffffffffffff, 0xf028000)
r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x672, 0x200)
ioctl$EVIOCGMTSLOTS(r4, 0x8040450a, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
madvise(&(0x7f0000400000/0x3000)=nil, 0x3000, 0xb)
r5 = syz_open_dev$dri(&(0x7f0000002580), 0x200, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r5, 0xc06864a2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, "427f4d05618664ecb7f952ed7667675bc32afc7ebbfea1deee1e2e520cc38c6a"}})
syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2)

3.177873863s ago: executing program 5 (id=3430):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newlink={0xb4, 0x10, 0x40d, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x8c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x7c, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_FLAGS={0x6, 0x2, 0x1}, @IFLA_MACVLAN_FLAGS={0x6, 0x2, 0x1}, @IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x2}, @IFLA_MACVLAN_FLAGS={0x6, 0x2, 0x3}, @IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x1}, @IFLA_MACVLAN_FLAGS={0x6}, @IFLA_MACVLAN_MACADDR_DATA={0x10, 0x5, 0x0, 0x1, [{0xa, 0x4, @random="65444a5fb2f7"}]}, @IFLA_MACVLAN_MACADDR={0xa, 0x4, @broadcast}, @IFLA_MACVLAN_MODE={0x8, 0x1, 0x8}, @IFLA_MACVLAN_MACADDR_DATA={0x1c, 0x5, 0x0, 0x1, [{0xa}, {0xa, 0x4, @multicast}]}, @IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x3}]}}}, @IFLA_CARRIER_CHANGES={0x8, 0x23, 0x10000}]}, 0xb4}}, 0x0)
sendmsg$RDMA_NLDEV_CMD_SYS_GET(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, 0x1406, 0xd00, 0x70bd29, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x4040840)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[], 0x38}}, 0x0)

3.068879776s ago: executing program 5 (id=3431):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x800, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e24, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @private0}, 0x1c)
setsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x2, 0x0, 0x3}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000002180)={'ip6tnl0\x00', &(0x7f0000002240)={'ip6tnl0\x00', 0x0, 0x4, 0x1, 0x5, 0x7, 0x16, @empty, @local, 0x10, 0x8000, 0x1ff, 0x9}})
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f0000002200)={&(0x7f0000002100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000021c0)={0x0}, 0x1, 0x0, 0x0, 0x20040010}, 0x8000)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000020c0), 0x21183, 0x0)
read$FUSE(r1, &(0x7f0000000040)={0x2020}, 0x2084)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x3, 0x0)
bpf$ITER_CREATE(0xb, 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e22, @local}, 0x10)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}, 0x700}], 0x40000cf, 0x0)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_MIUX(r2, 0x118, 0x1, 0x0, 0x0)

2.614259254s ago: executing program 5 (id=3432):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000a0db000000000000000000850000000e000000c50000002a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@ipv4_newroute={0x24, 0x18, 0x1, 0x0, 0x0, {0x2, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, [@RTA_GATEWAY={0x8, 0x5, @remote}]}, 0x24}}, 0x0)
syz_emit_ethernet(0x72, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "e400ff", 0x3c, 0x3a, 0x0, @private2, @mcast2, {[], @param_prob={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, '\x00', 0x0, 0x11, 0x0, @empty, @ipv4={'\x00', '\xff\xff', @multicast1}, [], "17c1ff070000000003006558"}}}}}}}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x2, &(0x7f0000000100)=[{0xc}, {0x6}]})
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
mremap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000, 0x7, &(0x7f0000ffc000/0x3000)=nil)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000000), 0xc0000, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_DESTROY(r3, 0xc00864c0, &(0x7f0000000140))
sendmsg$nl_xfrm(r2, 0x0, 0x4040080)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mknodat(0xffffffffffffff9c, 0x0, 0xc000, 0x0)
mmap(&(0x7f0000400000/0x3000)=nil, 0x3000, 0x2000009, 0x4d032, 0xffffffffffffffff, 0x0)
syz_open_dev$evdev(&(0x7f0000000000), 0x672, 0x200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000002580), 0x200, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f00000026c0)={0x0, &(0x7f0000002600)=[<r6=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_SETCRTC(r5, 0xc06864a2, &(0x7f0000000200)={0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, "427f4d05618664ecb7f952ed7667675bc32afc7ebbfea1deee1e2e520cc38c6a"}})
r7 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2)
read(r7, 0x0, 0x0)

2.59610365s ago: executing program 4 (id=3441):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000500)=ANY=[], 0x180}, 0x1, 0x0, 0x0, 0x4075}, 0x4880)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC, @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$igmp(0x2, 0x3, 0x2)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000900), r5)
sendmsg$NL802154_CMD_SET_CHANNEL(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000940)={0x2c, r6, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0x7}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x1}]}, 0x2c}}, 0x64000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x118)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x19d)
write$P9_RREADLINK(r7, &(0x7f0000000180)={0xffffffffffffff9e, 0x17, 0xfffd, {0x7, './file0'}}, 0x10)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x2, 0xd, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x4, 0x0, @private1}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x6, 0x32, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@private=0xa010101}}, @sadb_lifetime={0x4, 0x4}]}, 0xc0}}, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x33f, 0x0)
fcntl$lock(r3, 0x24, &(0x7f0000000280)={0x2, 0x3, 0x10000, 0xe3, r2})
chdir(&(0x7f0000000100)='./file0\x00')

2.488445652s ago: executing program 7 (id=3433):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
socket$inet6_sctp(0xa, 0x801, 0x84)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_open_dev$vim2m(&(0x7f0000000040), 0x0, 0x2)
r3 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r3, &(0x7f0000000040)={0x0, 0xd00, &(0x7f0000000140)=[{&(0x7f0000000000)="1400000024000b47564cb6288200eb1405000000", 0x14}], 0x1}, 0x44014)

2.266521982s ago: executing program 6 (id=3435):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$RDMA_NLDEV_CMD_RES_PD_GET(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x38, 0x140e, 0x300, 0x70bd2b, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_RES_PDN={0x8, 0x3c, 0x3}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x2}, @RDMA_NLDEV_ATTR_RES_PDN={0x8, 0x3c, 0x3}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_RES_PDN={0x8, 0x3c, 0x5}]}, 0x38}, 0x1, 0x0, 0x0, 0xc880}, 0x1)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/mdstat\x00', 0x0, 0x0)
r2 = syz_io_uring_setup(0x5169, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
ioctl$I2C_SLAVE(r1, 0x703, 0x322)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd=r1, 0x0, 0x0})
io_uring_enter(r2, 0x7368, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_START_NAN(r1, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0xc000020}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x68, 0x0, 0x100, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x7, 0x76}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x5}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x6}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x5}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x8}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x6}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x5}]}, 0x68}, 0x1, 0x0, 0x0, 0x20004044}, 0x20000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000003900010326bd7000fcffffff0800000086c04e69845392420816ec0d17c4452ef7ac8750ca4af088fe1eafe9dfb86fea77c66c72f94335d319543cb2bcd51963930129f60af50ee05267819740c39883e89323ff5fc316b5799ea2a2a8285f4ff66ebd710c60e3be94f393e4d73a05b371ed8fec1f7a4ea96cd48194843e8978706881da483b8aea1d84e4fe35d599e4973b780fe6a8"], 0x14}, 0x1, 0x0, 0x0, 0x4004097}, 0x0)
openat$kvm(0xffffff9c, &(0x7f0000000040), 0x301000, 0x0)

1.769073484s ago: executing program 6 (id=3436):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x9a974000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
getsockopt$bt_l2cap_L2CAP_CONNINFO(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x40000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)={0x1})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x4, 0x0, 0x3, 0x7d}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, {0xeda7, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x77}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x20004000, 0x3, 0xd, 0xc, 0x0, 0x2004cb, 0x3, 0x0, 0xfffffffffffffff8, 0x0, 0xfffffffffffff2a5, 0x2000000000003ff, 0x8], 0x0, 0x317253})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
fanotify_init(0x8, 0x800)

1.367091085s ago: executing program 4 (id=3437):
pipe2$9p(&(0x7f00000001c0), 0x0)
io_setup(0x8, &(0x7f0000004200)=<r0=>0x0)
r1 = socket$kcm(0x10, 0x3, 0x10)
recvmsg(r1, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x10000)
sendmsg$kcm(r1, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
landlock_create_ruleset(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x84, 0x81, &(0x7f00000001c0)={'broute\x00', 0x0, 0x9, 0x0, [0x1ff, 0x9, 0x7975, 0x3, 0x9, 0xffffffff80000000], 0x0, 0x0, 0x0}, &(0x7f0000000080)=0x78)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x10)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, r3, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r5 = fanotify_init(0x200, 0x0)
fanotify_mark(r5, 0x1, 0x4800003e, r4, 0x0)
r6 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000340)=<r7=>0x0, &(0x7f0000000000)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x80})
io_uring_enter(r6, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
io_submit(r0, 0x1, &(0x7f0000004540)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffac}])
r9 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
dup(r9)

1.277778983s ago: executing program 5 (id=3438):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
r2 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
write$sysctl(r2, &(0x7f00000000c0)='2\x00', 0x2)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
ioctl$VHOST_GET_VRING_BASE(r1, 0xc008af12, &(0x7f0000000200))
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x7c8})
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000200)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
readv(r4, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/85, 0x20}], 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x4008032, 0xffffffffffffffff, 0xd06d000)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace00000000000000002100000002ff02000000000000000000000000000104004e200023b0"], 0x0)
sendmmsg$inet6(r3, &(0x7f0000001800)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x3fc, @dev={0xfe, 0x80, '\x00', 0x2d}, 0x10000007}, 0x1c, 0x0}}], 0x1, 0x0)
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r0, &(0x7f0000000200)={0xa0000004})

1.259118999s ago: executing program 7 (id=3439):
bpf$ITER_CREATE(0x21, 0x0, 0xfffffffffffffe7d)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006180)={0x2020, 0x0, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
write$binfmt_register(0xffffffffffffffff, &(0x7f00000000c0)={0x3a, 'syz0', 0x3a, 'E', 0x3a, 0x8, 0x3a, '\x9a%}\x1ff!', 0x3a, '\xa5\x97\x9d\xd1m*\x89\xd0\x85\xbe\xdb(\xcbP\xc4\xf6\xff\xf6\x86V,\xb2#\xf6W\foc\x19\xe2\xd3\xf1\xd4?\xe9\xc4\xa3\xe30F\xafUx\x81\t\xc3K\x994@&2\xa4\xfc\x92*y\xbc\x12[\x80\xb1\xd9\xfe\xeb\xda\xf1LS\x84.Y~\xf1\xb8\xd8h\x04\xf0\x83\x8c\x8e\xf0m\aU:_2\x82N\xb4\xeb\xbf\xfc\\&\xa3\xe4\xcd\xc2\x96\xb7Y#L\xe7\xf28.!V\xf0d\xdb\xbf\xbc\xc7\xdc\xdav\xcf\xaf\xd6\x15w\"x\x9cQ=EX%\xbf`\xd8\x84\xad\x00\x00\x00\x00\x00\x00\x00\xa6\xd1\a%\x99\x87%J\xda\x06P\xe9\xfbU\xbc\x1d\x87\xf5\x13\tDV\xe6\x06l\xc7\\U}\x9aBac\xe9\xf0/!\x15\xad\x1d\xcc\xe0\x91xF\xa7\xce\xfb7\xd6\x8d\x92\xf9?q\xf7r1\xe6)\xb6\xe2\xb7\x9b\x9e\x92c\xcd\x19\xe6\xc5\x91\xb9\xa8\x80\x83\x9e\xe5D\x04\x91\xa3Y\a\xf2%l_\xe5\xf1\x106', 0x3a, './file0'}, 0x11b)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x3a})
syz_open_dev$vim2m(&(0x7f0000000340), 0x7, 0x2)
syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x1, {0x6, 0x2, 0xffffffffffffeffe, 0xfffffffffffffffd, 0x0, 0x0, {0x40, 0x8, 0xb, 0xffff, 0x0, 0x1, 0x0, 0x0, 0x120, 0x2000, 0x0, r1, r2, 0x501, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0, <r5=>0x0, <r6=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000000080)={0x50, 0x0, r4, {0x7, 0x29, 0x9, 0xffffffff9080edc4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x9}}, 0x50)
syz_fuse_handle_req(r3, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r3, &(0x7f00000063c0)="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", 0x2000, &(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f000000a3c0)={0x240, 0x0, 0xfffffffffffffff9, [{{0x5, 0x2, 0x3, 0x2, 0x5, 0x8, {0x6, 0x9, 0x0, 0xff, 0x4, 0x0, 0x7fffffff, 0x57, 0x3, 0x8000, 0x3ff, 0x0, r6, 0x4, 0x4}}, {0x20000000000000, 0x537, 0x2b, 0x9, ':-(\\\xc9\x80\x00\x00\x00\xc3\x00\x00\xf39}\xd8mM\x92\x8d$\xd3\xa4a\xb6\x02E\x89\x85V\xc6\x00\x00\x00\x00\x00\x00+\x13;\x00\x00\x00'}}, {{0x5, 0x1, 0x8, 0x503c, 0xe, 0xf088, {0x6, 0xaf, 0x94, 0x8, 0x8, 0x7, 0x50c, 0x9, 0x3, 0xa000, 0xf, r5, 0x0, 0x9, 0x8000}}, {0x0, 0x400000000, 0x29, 0x5, ':-(\\\xc9\x80\x00\x00\x00\xc3\x00\x00\xf39}\xd8mM\x92\x8d$\xd3\xa4a\xb6\x02E\x89\x85V\xc6\x00\x00\x00\x00\x00\x00+\x13;\x00'}}, {{0x3, 0x3, 0x4, 0x7, 0x7, 0xa1, {0x0, 0x0, 0x7, 0x9, 0xfffffffffffffff9, 0x3e, 0xf1a3, 0x3, 0x2, 0x4000, 0xeb, r5, 0x0, 0xeb}}, {0x4, 0xbd0, 0x4, 0x9, '^\\[+'}}]}, 0x0, 0x0, 0x0})
setuid(r5)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
r8 = syz_open_dev$loop(&(0x7f0000001380), 0x10, 0x4a003)
ioctl$BLKGETSIZE(r8, 0x1260, &(0x7f0000000040))
keyctl$session_to_parent(0x12)
openat$ipvs(0xffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)

1.15681444s ago: executing program 6 (id=3440):
r0 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000480)={0x1ff, 0x200, 0x2, {0x4, @vbi={0x4, 0x0, 0xec9e, 0x34424752, [0x5, 0x80000001], [0x4, 0x2], 0x1}}, 0x9})
fcntl$addseals(0xffffffffffffffff, 0x409, 0x27)
syz_io_uring_setup(0x2af8, 0x0, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sync_file_range(r1, 0x9d0, 0x4000000006, 0x2)
io_submit(0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(0xffffffffffffffff, 0x54a2)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
sched_setscheduler(0xffffffffffffffff, 0x3, &(0x7f0000000000)=0xb)

1.028735195s ago: executing program 6 (id=3442):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x800, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e24, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @private0}, 0x1c)
setsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x2, 0x0, 0x3}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000002180)={'ip6tnl0\x00', &(0x7f0000002240)={'ip6tnl0\x00', 0x0, 0x4, 0x1, 0x5, 0x7, 0x16, @empty, @local, 0x10, 0x8000, 0x1ff, 0x9}})
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f0000002200)={&(0x7f0000002100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000021c0)={0x0}, 0x1, 0x0, 0x0, 0x20040010}, 0x8000)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000020c0), 0x21183, 0x0)
read$FUSE(r1, &(0x7f0000000040)={0x2020}, 0x2084)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x3, 0x0)
bpf$ITER_CREATE(0xb, 0x0, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e22, @local}, 0x10)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}, 0x700}], 0x40000cf, 0x0)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_MIUX(r2, 0x118, 0x1, 0x0, 0x0)

907.685322ms ago: executing program 5 (id=3443):
r0 = eventfd2(0xfffffffa, 0x80000)
r1 = dup(r0)
r2 = syz_io_uring_setup(0x118d, &(0x7f00000000c0)={0x0, 0x8d2dc, 0x0, 0xffffffff, 0xc2}, &(0x7f00000003c0)=<r3=>0x0, &(0x7f0000000200)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0x8, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x5, r1, 0x0, 0x0, 0x0, 0x80000})
io_uring_enter(r2, 0x47f5, 0x0, 0x0, 0x0, 0x0)

528.935793ms ago: executing program 6 (id=3444):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
socket$kcm(0x10, 0x2, 0x0)
r1 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000083667d1040206402d14e0102030109021b000100000000090400000190f19c00090584"], 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)
recvmsg$unix(r6, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x2002)
close(r7)
prlimit64(0x0, 0x7, &(0x7f0000000440), 0x0)
io_uring_setup(0x3819, &(0x7f00000003c0))
acct(&(0x7f00000001c0)='./file0\x00')
ioctl$PTP_PIN_SETFUNC2(0xffffffffffffffff, 0x40603d10, &(0x7f0000000140)={'\x00', 0xd5, 0x0, 0x3})
connect$qrtr(r5, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r8 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x4661, 0x400, 0x3, 0x288}, &(0x7f0000000340)=<r9=>0x0, &(0x7f0000000280)=<r10=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r9, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r9, r10, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0})
io_uring_enter(r8, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
getpeername$qrtr(r5, 0x0, 0x0)
close_range(r4, r5, 0x0)
socket$inet6(0xa, 0x3, 0xff)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000002740), 0x101002)
syz_usb_disconnect(r1)

371.93371ms ago: executing program 5 (id=3445):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = syz_usbip_server_init(0x1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYRES32=0x0, @ANYBLOB="000000000000000008001b000000000010001a800c000a80"], 0x38}}, 0x0)
r3 = syz_open_dev$audion(&(0x7f0000000040), 0x4, 0x0)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, 0x0, 0x7, r1, &(0x7f00000003c0)={r3, r2, 0xe8})
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[], 0x34}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(r5)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0500000004000000060000000b00000000000000", @ANYRES32, @ANYBLOB="00000000000000052e52dd000000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/25], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r8}, 0xc)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000680)={'bridge0\x00'})
syz_io_uring_setup(0x49f, &(0x7f0000000400)={0x0, 0xe7a8, 0x1000, 0x7ffe, 0x40024f}, &(0x7f0000000340), &(0x7f0000000040))

355.080827ms ago: executing program 7 (id=3446):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0xa0000, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, &(0x7f0000000100)={0x4, <r3=>r1})
ioctl$DMA_BUF_SET_NAME_A(r3, 0x40046201, &(0x7f0000000040)='/dev/dma_heap/system\x00')
ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086201, &(0x7f0000000080)=0x20)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1a1)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r4}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
chroot(&(0x7f00000001c0)='./file0\x00')
sendmsg$NFT_BATCH(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a0b040000000000000000020000000900010073797a30000000000900020073797a3200000000140000001100", @ANYRES8], 0x54}, 0x1, 0x0, 0x0, 0x24068045}, 0x0)
get_mempolicy(&(0x7f0000005a40), &(0x7f0000005a80), 0x3, &(0x7f0000ffc000/0x4000)=nil, 0x4)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000080a01010000000000000000020000000900010073797a300000000038000000060a17d50000000000000000020000000900020073797a32000000000900010073797a30000000000c0003400000000000000002"], 0xcdc}}, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000009eb000030000380140002000063616e300000000000000000000000080003000000000008000500ac1414aa0800010000000000"], 0x44}}, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
r8 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCBRDELBR(r8, 0x89a2, &(0x7f0000000000)='bridge0\x00')
ppoll(&(0x7f0000000340)=[{r0, 0x80}, {r6, 0x4000}], 0x2, &(0x7f0000000380)={0x77359400}, &(0x7f00000003c0)={[0xa, 0xe93f]}, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00'})
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})

161.629439ms ago: executing program 4 (id=3447):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000500)=ANY=[], 0x180}, 0x1, 0x0, 0x0, 0x4075}, 0x4880)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC, @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$igmp(0x2, 0x3, 0x2)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000900), r5)
sendmsg$NL802154_CMD_SET_CHANNEL(r5, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000940)={0x2c, r6, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0x7}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x1}]}, 0x2c}}, 0x64000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x118)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f00000000c0)='./file0\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x62881, 0x19d)
write$P9_RREADLINK(r7, &(0x7f0000000180)={0xffffffffffffff9e, 0x17, 0xfffd, {0x7, './file0'}}, 0x10)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x2, 0xd, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x4, 0x0, @private1}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x6, 0x32, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@private=0xa010101}}, @sadb_lifetime={0x4, 0x4}]}, 0xc0}}, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x33f, 0x0)
fcntl$lock(r3, 0x24, &(0x7f0000000280)={0x2, 0x3, 0x10000, 0xe3, r2})
chdir(&(0x7f0000000100)='./file0\x00')

7.301553ms ago: executing program 7 (id=3448):
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='timers\x00')
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
sendfile(r1, r2, 0x0, 0xc01)
read$FUSE(r0, &(0x7f0000002240)={0x2020}, 0xd6e)
openat$dlm_plock(0xffffff9c, &(0x7f0000000000), 0x408080, 0x0)

0s ago: executing program 7 (id=3449):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/custom1\x00', 0x800, 0x0)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x2, 0x0, 0x3}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000020c0), 0x21183, 0x0)
read$FUSE(r2, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x40)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$ITER_CREATE(0xb, 0x0, 0x0)
openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r3 = socket$l2tp(0x2, 0x2, 0x73) (fail_nth: 5)
sendmmsg$inet(r3, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}, 0x700}], 0x40000cf, 0x0)

kernel console output (not intermixed with test programs):

e 75 has an invalid length.
[  795.890447][T16978] netlink: 9896 bytes leftover after parsing attributes in process `syz.6.2858'.
[  796.735376][   T54] vhci_hcd: vhci_device speed not set
[  796.941354][T16978] tty tty3: ldisc open failed (-12), clearing slot 2
[  797.579795][T16970] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2859'.
[  798.575342][ T6032] usb 10-1: new high-speed USB device number 18 using dummy_hcd
[  798.685029][   T40] audit: type=1804 audit(1760529300.693:15004): pid=17008 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2865" name="/newroot/22/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  798.725210][ T6032] usb 10-1: Using ep0 maxpacket: 16
[  798.735723][ T6032] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  798.745007][ T6032] usb 10-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  798.749556][ T6032] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  798.755380][ T6032] usb 10-1: Product: syz
[  798.757011][ T6032] usb 10-1: Manufacturer: syz
[  798.760022][ T6032] usb 10-1: SerialNumber: syz
[  798.779044][ T6032] usb 10-1: config 0 descriptor??
[  798.792442][ T6032] em28xx 10-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  798.797435][ T6032] em28xx 10-1:0.0: DVB interface 0 found: bulk
[  799.235713][ T6032] em28xx 10-1:0.0: unknown em28xx chip ID (0)
[  799.307364][ T6032] em28xx 10-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  799.310178][ T6032] em28xx 10-1:0.0: board has no eeprom
[  799.378883][   T40] audit: type=1326 audit(1760529301.393:15005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17017 comm="syz.0.2869" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x0
[  799.387311][ T6032] em28xx 10-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  799.391639][ T6032] em28xx 10-1:0.0: dvb set to bulk mode.
[  799.396338][T15355] em28xx 10-1:0.0: Binding DVB extension
[  799.406942][ T6032] usb 10-1: USB disconnect, device number 18
[  799.411488][ T6032] em28xx 10-1:0.0: Disconnecting em28xx
[  799.878579][T15355] em28xx 10-1:0.0: Registering input extension
[  799.882250][ T6032] em28xx 10-1:0.0: Closing input extension
[  799.891306][T17021] Cache volume key already in use (9p,syz,)
[  799.895747][ T6032] em28xx 10-1:0.0: Freeing device
[  802.474536][T17045] tipc: Started in network mode
[  802.479060][T17045] tipc: Node identity ac1414aa, cluster identity 4711
[  802.489015][T17045] tipc: Enabled bearer <udp:s>, priority 10
[  803.388757][T17065] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2881'.
[  803.495253][T15355] tipc: Node number set to 2886997162
[  803.770798][   T40] audit: type=1804 audit(1760529305.693:15006): pid=17071 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.2879" name="/newroot/51/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  804.121919][T17077] netlink: 'syz.0.2878': attribute type 75 has an invalid length.
[  804.495217][T15917] usb 9-1: new high-speed USB device number 26 using dummy_hcd
[  804.776694][T15917] usb 9-1: Using ep0 maxpacket: 16
[  804.842202][T15917] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  805.091860][T15917] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  805.096675][T15917] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  805.100633][T15917] usb 9-1: Product: syz
[  805.102406][T15917] usb 9-1: Manufacturer: syz
[  805.104392][T15917] usb 9-1: SerialNumber: syz
[  805.128165][T15917] usb 9-1: config 0 descriptor??
[  805.140711][T15917] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  805.156905][T15917] em28xx 9-1:0.0: DVB interface 0 found: bulk
[  805.805321][T17101] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(6)
[  805.808084][T17101] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  805.811916][T17101] vhci_hcd vhci_hcd.0: Device attached
[  806.065898][   T53] usb 49-1: new low-speed USB device number 10 using vhci_hcd
[  806.263927][T15917] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  806.828196][T17102] vhci_hcd: connection reset by peer
[  806.886222][   T12] vhci_hcd: stop threads
[  806.887794][   T12] vhci_hcd: release socket
[  806.889896][   T12] vhci_hcd: disconnect device
[  806.899037][T15917] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  806.902506][T15917] em28xx 9-1:0.0: board has no eeprom
[  806.965217][T15917] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  806.985286][T15917] em28xx 9-1:0.0: dvb set to bulk mode.
[  806.988973][T11220] em28xx 9-1:0.0: Binding DVB extension
[  807.162665][T15917] usb 9-1: USB disconnect, device number 26
[  807.178698][T15917] em28xx 9-1:0.0: Disconnecting em28xx
[  807.196654][T11220] em28xx 9-1:0.0: Registering input extension
[  807.201902][T15917] em28xx 9-1:0.0: Closing input extension
[  807.226961][T15917] em28xx 9-1:0.0: Freeing device
[  808.296889][T17130] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  808.299846][T17130] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  808.303643][T17130] vhci_hcd vhci_hcd.0: Device attached
[  808.578528][ T6032] usb 47-1: new low-speed USB device number 7 using vhci_hcd
[  809.133834][T17131] vhci_hcd: connection reset by peer
[  809.139130][ T1241] vhci_hcd: stop threads
[  809.142493][ T1241] vhci_hcd: release socket
[  809.146336][ T1241] vhci_hcd: disconnect device
[  809.684537][T17153] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2901'.
[  809.689122][T17153] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2901'.
[  809.788126][   T40] audit: type=1804 audit(1760529311.803:15007): pid=17148 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2899" name="/newroot/31/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  809.936839][T17157] 9pnet_virtio: no channels available for device syz
[  810.092315][T17158] netlink: 'syz.5.2902': attribute type 75 has an invalid length.
[  810.398993][    C3] vkms_vblank_simulate: vblank timer overrun
[  810.751117][   T40] audit: type=1326 audit(1760529312.763:15008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17167 comm="syz.6.2906" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x0
[  810.990959][T17171] FAULT_INJECTION: forcing a failure.
[  810.990959][T17171] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  810.997384][T17171] CPU: 1 UID: 0 PID: 17171 Comm: syz.6.2906 Not tainted syzkaller #0 PREEMPT(full) 
[  810.997419][T17171] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  810.997434][T17171] Call Trace:
[  810.997463][T17171]  <TASK>
[  810.997473][T17171]  dump_stack_lvl+0x16c/0x1f0
[  810.997790][T17171]  should_fail_ex+0x512/0x640
[  810.997958][T17171]  _copy_to_user+0x32/0xd0
[  810.997997][T17171]  simple_read_from_buffer+0xcb/0x170
[  810.998100][T17171]  proc_fail_nth_read+0x197/0x240
[  810.998147][T17171]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  810.998178][T17171]  ? rw_verify_area+0xcf/0x6c0
[  810.998217][T17171]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  810.998251][T17171]  vfs_read+0x1e4/0xcf0
[  810.998295][T17171]  ? __pfx_vfs_read+0x10/0x10
[  810.998325][T17171]  ? find_held_lock+0x2b/0x80
[  810.998429][T17171]  ? __fget_files+0x20e/0x3c0
[  810.998475][T17171]  ksys_read+0x12a/0x250
[  810.998508][T17171]  ? __pfx_ksys_read+0x10/0x10
[  810.998552][T17171]  ? rcu_is_watching+0x12/0xc0
[  810.998608][T17171]  __do_fast_syscall_32+0x7c/0x300
[  810.998652][T17171]  do_fast_syscall_32+0x32/0x80
[  810.998690][T17171]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  810.998753][T17171] RIP: 0023:0xf7f63579
[  810.998777][T17171] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  810.998802][T17171] RSP: 002b:00000000f5414590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  810.998849][T17171] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f5414620
[  810.998866][T17171] RDX: 000000000000000f RSI: 00000000f73f5ff4 RDI: 0000000000000000
[  810.998882][T17171] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  810.998897][T17171] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  810.998913][T17171] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  810.998950][T17171]  </TASK>
[  811.225288][   T53] vhci_hcd: vhci_device speed not set
[  812.377129][T17188] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  812.379606][T17188] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  812.383349][T17188] vhci_hcd vhci_hcd.0: Device attached
[  812.605195][   T29] usb 9-1: new high-speed USB device number 27 using dummy_hcd
[  812.622770][T17193] vhci_hcd: connection closed
[  812.623124][T16795] vhci_hcd: stop threads
[  812.626736][T16795] vhci_hcd: release socket
[  812.628681][T16795] vhci_hcd: disconnect device
[  812.665162][T15355] usb 37-1: new low-speed USB device number 9 using vhci_hcd
[  812.668394][T15355] usb 37-1: enqueue for inactive port 0
[  812.738037][T15355] vhci_hcd: vhci_device speed not set
[  812.755208][   T29] usb 9-1: Using ep0 maxpacket: 16
[  812.760239][   T29] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  812.771208][   T29] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  812.775353][   T29] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  812.785182][   T29] usb 9-1: Product: syz
[  812.787319][   T29] usb 9-1: Manufacturer: syz
[  812.795159][   T29] usb 9-1: SerialNumber: syz
[  812.807377][   T29] usb 9-1: config 0 descriptor??
[  812.819644][   T29] em28xx 9-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  812.833165][   T29] em28xx 9-1:0.0: DVB interface 0 found: bulk
[  813.165358][    C3] vkms_vblank_simulate: vblank timer overrun
[  813.495676][   T29] em28xx 9-1:0.0: unknown em28xx chip ID (0)
[  813.557531][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  813.638448][   T29] em28xx 9-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  813.641033][   T29] em28xx 9-1:0.0: board has no eeprom
[  813.698655][ T6032] vhci_hcd: vhci_device speed not set
[  813.725178][   T29] em28xx 9-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  813.727801][   T29] em28xx 9-1:0.0: dvb set to bulk mode.
[  813.735574][T12714] em28xx 9-1:0.0: Binding DVB extension
[  813.745416][   T29] usb 9-1: USB disconnect, device number 27
[  813.749132][   T29] em28xx 9-1:0.0: Disconnecting em28xx
[  813.797861][T12714] em28xx 9-1:0.0: Registering input extension
[  813.800122][   T29] em28xx 9-1:0.0: Closing input extension
[  813.816837][   T29] em28xx 9-1:0.0: Freeing device
[  814.058367][T17213] netlink: 'syz.6.2916': attribute type 75 has an invalid length.
[  815.867742][T17236] FAULT_INJECTION: forcing a failure.
[  815.867742][T17236] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  815.871902][T17236] CPU: 1 UID: 0 PID: 17236 Comm: syz.0.2921 Not tainted syzkaller #0 PREEMPT(full) 
[  815.871919][T17236] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  815.871927][T17236] Call Trace:
[  815.871953][T17236]  <TASK>
[  815.871958][T17236]  dump_stack_lvl+0x16c/0x1f0
[  815.872168][T17236]  should_fail_ex+0x512/0x640
[  815.872283][T17236]  _copy_from_user+0x2e/0xd0
[  815.872306][T17236]  get_compat_msghdr+0xa7/0x170
[  815.872395][T17236]  ? __pfx_get_compat_msghdr+0x10/0x10
[  815.872415][T17236]  ___sys_sendmsg+0x1ae/0x1d0
[  815.872446][T17236]  ? __pfx____sys_sendmsg+0x10/0x10
[  815.872468][T17236]  ? find_held_lock+0x2b/0x80
[  815.872540][T17236]  __sys_sendmsg+0x16d/0x220
[  815.872557][T17236]  ? __pfx___sys_sendmsg+0x10/0x10
[  815.872580][T17236]  ? rcu_is_watching+0x12/0xc0
[  815.872608][T17236]  __do_fast_syscall_32+0x7c/0x300
[  815.872632][T17236]  do_fast_syscall_32+0x32/0x80
[  815.872651][T17236]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  815.872690][T17236] RIP: 0023:0xf7fd2579
[  815.872706][T17236] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  815.872719][T17236] RSP: 002b:00000000f548455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  815.872744][T17236] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000040
[  815.872751][T17236] RDX: 0000000000044014 RSI: 0000000000000000 RDI: 0000000000000000
[  815.872759][T17236] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  815.872766][T17236] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  815.872772][T17236] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  815.872787][T17236]  </TASK>
[  816.440643][T17241] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(6)
[  816.442867][T17241] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  816.445845][T17241] vhci_hcd vhci_hcd.0: Device attached
[  816.695393][T11752] usb 49-1: new low-speed USB device number 11 using vhci_hcd
[  818.135193][T17245] vhci_hcd: connection reset by peer
[  818.137519][T16795] vhci_hcd: stop threads
[  818.139055][T16795] vhci_hcd: release socket
[  818.141280][T16795] vhci_hcd: disconnect device
[  820.325326][T17294] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  820.326137][T17290] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  820.328166][T17294] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  820.332344][T17290] bridge0: port 2(bridge_slave_1) entered disabled state
[  820.335298][T17294] vhci_hcd vhci_hcd.0: Device attached
[  820.338213][T17290] bridge0: port 1(bridge_slave_0) entered disabled state
[  820.745719][   T54] usb 45-1: new low-speed USB device number 8 using vhci_hcd
[  821.125422][T17295] vhci_hcd: connection reset by peer
[  821.165267][T16795] vhci_hcd: stop threads
[  821.167222][T16795] vhci_hcd: release socket
[  821.221585][T16795] vhci_hcd: disconnect device
[  821.786226][T11752] vhci_hcd: vhci_device speed not set
[  822.173640][   T40] audit: type=1804 audit(1760529324.183:15009): pid=17327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2944" name="/newroot/43/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  822.444687][T17330] tipc: Started in network mode
[  822.446894][T17330] tipc: Node identity ac1414aa, cluster identity 4711
[  822.450809][T17330] tipc: Enabled bearer <udp:s>, priority 10
[  823.346342][T17343] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  823.575644][   T53] tipc: Node number set to 2886997162
[  823.848986][T17353] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  823.852199][T17353] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  823.855906][T17353] vhci_hcd vhci_hcd.0: Device attached
[  824.656612][T17354] vhci_hcd: connection closed
[  824.660723][   T13] vhci_hcd: stop threads
[  824.677518][   T13] vhci_hcd: release socket
[  824.703895][   T13] vhci_hcd: disconnect device
[  824.746041][T17359] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  825.857997][   T40] audit: type=1804 audit(1760529327.863:15010): pid=17378 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.2957" name="/newroot/37/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  826.135400][   T54] vhci_hcd: vhci_device speed not set
[  826.317423][T17383] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  827.921494][T17401] netfs: Couldn't get user pages (rc=-14)
[  827.967525][T17406] 9pnet_virtio: no channels available for device syz
[  827.978358][T17406] FAULT_INJECTION: forcing a failure.
[  827.978358][T17406] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  827.990836][T17406] CPU: 1 UID: 0 PID: 17406 Comm: syz.5.2966 Not tainted syzkaller #0 PREEMPT(full) 
[  827.990859][T17406] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  827.990870][T17406] Call Trace:
[  827.990908][T17406]  <TASK>
[  827.990916][T17406]  dump_stack_lvl+0x16c/0x1f0
[  827.991256][T17406]  should_fail_ex+0x512/0x640
[  827.991571][T17406]  _copy_from_user+0x2e/0xd0
[  827.991610][T17406]  get_compat_msghdr+0xa7/0x170
[  827.991810][T17406]  ? __pfx_get_compat_msghdr+0x10/0x10
[  827.991846][T17406]  ___sys_sendmsg+0x1ae/0x1d0
[  827.991896][T17406]  ? __pfx____sys_sendmsg+0x10/0x10
[  827.991933][T17406]  ? find_held_lock+0x2b/0x80
[  827.992050][T17406]  __sys_sendmsg+0x16d/0x220
[  827.992076][T17406]  ? __pfx___sys_sendmsg+0x10/0x10
[  827.992102][T17406]  ? __pfx_bpf_trace_run2+0x10/0x10
[  827.992179][T17406]  ? syscall_trace_enter+0x1cb/0x240
[  827.992218][T17406]  ? rcu_is_watching+0x12/0xc0
[  827.992248][T17406]  __do_fast_syscall_32+0x7c/0x300
[  827.992281][T17406]  do_fast_syscall_32+0x32/0x80
[  827.992308][T17406]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  827.992372][T17406] RIP: 0023:0xf708d579
[  827.992388][T17406] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  827.992406][T17406] RSP: 002b:00000000f547d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  827.992441][T17406] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  827.992452][T17406] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  827.992463][T17406] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  827.992473][T17406] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  827.992483][T17406] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  827.992508][T17406]  </TASK>
[  828.074138][    C1] vkms_vblank_simulate: vblank timer overrun
[  828.273402][   T40] audit: type=1326 audit(1760529330.273:15011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17396 comm="syz.4.2963" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000
[  828.294175][   T40] audit: type=1326 audit(1760529330.273:15012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17396 comm="syz.4.2963" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000
[  828.400685][T17408] 9pnet_virtio: no channels available for device syz
[  828.928824][T17421] 9pnet_virtio: no channels available for device syz
[  829.251890][T17422] tipc: Started in network mode
[  829.253907][T17422] tipc: Node identity ac1414aa, cluster identity 4711
[  829.259368][T17422] tipc: Enabled bearer <udp:s>, priority 10
[  829.304080][T17410] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  829.316901][T17410] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  829.331914][T17410] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  829.340727][T17410] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  829.360346][T17410] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  829.379383][T17410] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  829.385453][T17410] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  829.412438][T17410] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  829.421784][T17410] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  829.423974][T17410] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  829.428706][T17410] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  829.494296][T17424] FAULT_INJECTION: forcing a failure.
[  829.494296][T17424] name failslab, interval 1, probability 0, space 0, times 0
[  829.499559][T17424] CPU: 3 UID: 0 PID: 17424 Comm: syz.5.2971 Not tainted syzkaller #0 PREEMPT(full) 
[  829.499591][T17424] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  829.499607][T17424] Call Trace:
[  829.499616][T17424]  <TASK>
[  829.499626][T17424]  dump_stack_lvl+0x16c/0x1f0
[  829.499674][T17424]  should_fail_ex+0x512/0x640
[  829.499710][T17424]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  829.499841][T17424]  should_failslab+0xc2/0x120
[  829.499881][T17424]  kmem_cache_alloc_node_noprof+0x78/0x770
[  829.499911][T17424]  ? copy_process+0x4b5/0x76a0
[  829.499991][T17424]  ? copy_process+0x4b5/0x76a0
[  829.500023][T17424]  copy_process+0x4b5/0x76a0
[  829.500071][T17424]  ? __pfx_copy_process+0x10/0x10
[  829.500155][T17424]  ? _copy_from_user+0x59/0xd0
[  829.500184][T17424]  kernel_clone+0xfc/0x930
[  829.500218][T17424]  ? get_pid_task+0xfc/0x250
[  829.500268][T17424]  ? __pfx_kernel_clone+0x10/0x10
[  829.500327][T17424]  __do_sys_clone3+0x212/0x290
[  829.500347][T17424]  ? __pfx___do_sys_clone3+0x10/0x10
[  829.500381][T17424]  ? __fget_files+0x20e/0x3c0
[  829.500425][T17424]  ? handle_mm_fault+0x1f0/0xd10
[  829.500488][T17424]  ? rcu_is_watching+0x12/0xc0
[  829.500524][T17424]  __do_fast_syscall_32+0x7c/0x300
[  829.500563][T17424]  do_fast_syscall_32+0x32/0x80
[  829.500597][T17424]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  829.500624][T17424] RIP: 0023:0xf708d579
[  829.500651][T17424] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  829.500669][T17424] RSP: 002b:00000000f547d42c EFLAGS: 00000286 ORIG_RAX: 00000000000001b3
[  829.500691][T17424] RAX: ffffffffffffffda RBX: 00000000f547d460 RCX: 0000000000000058
[  829.500706][T17424] RDX: 0000000000000000 RSI: 0000000085200080 RDI: 0000000000000003
[  829.500719][T17424] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  829.500733][T17424] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  829.500748][T17424] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  829.500774][T17424]  </TASK>
[  830.375557][T12714] tipc: Node number set to 2886997162
[  830.745272][ T5943] Bluetooth: hci4: command 0x0406 tx timeout
[  831.466351][ T5943] Bluetooth: hci2: command 0x0c1a tx timeout
[  831.468943][T15271] Bluetooth: hci1: command 0x0c1a tx timeout
[  831.477897][T15271] Bluetooth: hci3: command 0x0c1a tx timeout
[  832.129453][T17458] FAULT_INJECTION: forcing a failure.
[  832.129453][T17458] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  832.133670][T17458] CPU: 2 UID: 0 PID: 17458 Comm: syz.4.2980 Not tainted syzkaller #0 PREEMPT(full) 
[  832.133722][T17458] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  832.133729][T17458] Call Trace:
[  832.133738][T17458]  <TASK>
[  832.133744][T17458]  dump_stack_lvl+0x16c/0x1f0
[  832.133770][T17458]  should_fail_ex+0x512/0x640
[  832.133792][T17458]  _copy_to_user+0x32/0xd0
[  832.133805][T17458]  simple_read_from_buffer+0xcb/0x170
[  832.133836][T17458]  proc_fail_nth_read+0x197/0x240
[  832.133861][T17458]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  832.133878][T17458]  ? rw_verify_area+0xcf/0x6c0
[  832.133893][T17458]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  832.133908][T17458]  vfs_read+0x1e4/0xcf0
[  832.133927][T17458]  ? __pfx_vfs_read+0x10/0x10
[  832.133940][T17458]  ? find_held_lock+0x2b/0x80
[  832.133961][T17458]  ? __fget_files+0x20e/0x3c0
[  832.133980][T17458]  ksys_read+0x12a/0x250
[  832.133995][T17458]  ? __pfx_ksys_read+0x10/0x10
[  832.134010][T17458]  ? rcu_is_watching+0x12/0xc0
[  832.134029][T17458]  __do_fast_syscall_32+0x7c/0x300
[  832.134048][T17458]  do_fast_syscall_32+0x32/0x80
[  832.134065][T17458]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  832.134081][T17458] RIP: 0023:0xf7f16579
[  832.134091][T17458] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  832.134101][T17458] RSP: 002b:00000000f5406590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  832.134113][T17458] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f5406620
[  832.134120][T17458] RDX: 000000000000000f RSI: 00000000f73a5ff4 RDI: 0000000000000000
[  832.134126][T17458] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  832.134132][T17458] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  832.134138][T17458] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  832.134152][T17458]  </TASK>
[  832.548785][   T40] audit: type=1804 audit(1760529334.523:15013): pid=17463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2981" name="/newroot/54/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  832.825324][T15271] Bluetooth: hci4: command 0x0406 tx timeout
[  832.976676][T17471] netlink: 'syz.6.2984': attribute type 1 has an invalid length.
[  832.997529][T17471] 8021q: adding VLAN 0 to HW filter on device bond1
[  833.032329][T17471] 8021q: adding VLAN 0 to HW filter on device bond1
[  833.035955][T17471] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  833.041112][T17471] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  833.087764][T17475] veth3: entered promiscuous mode
[  833.093328][T17475] bond1: (slave veth3): Enslaving as an active interface with a down link
[  833.102910][T17475] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2984'.
[  833.109051][T17475] 8021q: adding VLAN 0 to HW filter on device bond1
[  833.325905][    C1] vkms_vblank_simulate: vblank timer overrun
[  833.556516][ T5943] Bluetooth: hci1: command 0x0c1a tx timeout
[  833.557733][T15271] Bluetooth: hci3: command 0x0c1a tx timeout
[  833.561996][T15271] Bluetooth: hci2: command 0x0c1a tx timeout
[  834.492427][   T40] audit: type=1326 audit(1760529336.503:15014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17496 comm="syz.4.2991" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000
[  834.500715][   T40] audit: type=1326 audit(1760529336.503:15015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17496 comm="syz.4.2991" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000
[  834.675916][    C1] vkms_vblank_simulate: vblank timer overrun
[  835.725205][   T40] audit: type=1804 audit(1760529337.713:15016): pid=17524 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.2995" name="/newroot/136/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  836.045346][ T5302] Bluetooth: hci1: command 0x0c1a tx timeout
[  836.045436][T17483] Bluetooth: hci2: command 0x0c1a tx timeout
[  836.047367][ T5302] Bluetooth: hci3: command 0x0c1a tx timeout
[  836.973903][T17535] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  837.112570][    C1] vkms_vblank_simulate: vblank timer overrun
[  837.581322][T17539] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  837.583946][T17539] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  837.587930][T17539] vhci_hcd vhci_hcd.0: Device attached
[  837.774241][T17540] vhci_hcd: connection closed
[  837.774719][   T13] vhci_hcd: stop threads
[  837.780845][   T13] vhci_hcd: release socket
[  837.784049][   T13] vhci_hcd: disconnect device
[  837.806602][ T6023] vhci_hcd: vhci_device speed not set
[  839.678600][   T40] audit: type=1804 audit(1760529341.623:15017): pid=17576 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3011" name="/newroot/139/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  840.111954][T17589] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  841.033782][T17599] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(6)
[  841.036368][T17599] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  841.039949][T17599] vhci_hcd vhci_hcd.0: Device attached
[  841.325286][   T34] usb 49-1: new low-speed USB device number 12 using vhci_hcd
[  841.545285][   T40] audit: type=1326 audit(1760529343.553:15018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17604 comm="syz.5.3020" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  841.552693][   T40] audit: type=1326 audit(1760529343.553:15019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17604 comm="syz.5.3020" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf708d598 code=0x7ffc0000
[  841.572345][   T40] audit: type=1326 audit(1760529343.553:15020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17604 comm="syz.5.3020" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  841.579824][   T40] audit: type=1326 audit(1760529343.573:15021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17604 comm="syz.5.3020" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  841.586593][   T40] audit: type=1326 audit(1760529343.573:15022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17604 comm="syz.5.3020" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf708d598 code=0x7ffc0000
[  841.601109][   T40] audit: type=1326 audit(1760529343.573:15023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17604 comm="syz.5.3020" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf708d598 code=0x7ffc0000
[  841.613634][   T40] audit: type=1326 audit(1760529343.573:15024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17604 comm="syz.5.3020" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf708d598 code=0x7ffc0000
[  841.630150][   T40] audit: type=1326 audit(1760529343.573:15025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17604 comm="syz.5.3020" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf708d598 code=0x7ffc0000
[  841.645771][   T40] audit: type=1326 audit(1760529343.573:15026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17604 comm="syz.5.3020" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf708d598 code=0x7ffc0000
[  841.797555][T17601] vhci_hcd: connection reset by peer
[  841.799980][ T1234] vhci_hcd: stop threads
[  841.801439][ T1234] vhci_hcd: release socket
[  841.802947][ T1234] vhci_hcd: disconnect device
[  843.156888][T17629] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  844.949674][T17647] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3031'.
[  845.187170][T17657] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  845.190147][T17657] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  845.222555][T17657] vhci_hcd vhci_hcd.0: Device attached
[  845.317448][T17658] vhci_hcd: connection closed
[  845.317733][ T1234] vhci_hcd: stop threads
[  845.320617][ T1234] vhci_hcd: release socket
[  845.322043][ T1234] vhci_hcd: disconnect device
[  845.457070][T17663] FAULT_INJECTION: forcing a failure.
[  845.457070][T17663] name failslab, interval 1, probability 0, space 0, times 0
[  845.465356][T17663] CPU: 1 UID: 0 PID: 17663 Comm: syz.4.3036 Not tainted syzkaller #0 PREEMPT(full) 
[  845.465375][T17663] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  845.465384][T17663] Call Trace:
[  845.465404][T17663]  <TASK>
[  845.465409][T17663]  dump_stack_lvl+0x16c/0x1f0
[  845.465655][T17663]  should_fail_ex+0x512/0x640
[  845.465789][T17663]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  845.465891][T17663]  should_failslab+0xc2/0x120
[  845.465921][T17663]  kmem_cache_alloc_node_noprof+0x78/0x770
[  845.465940][T17663]  ? __alloc_skb+0x2b2/0x380
[  845.466055][T17663]  ? __alloc_skb+0x2b2/0x380
[  845.466069][T17663]  ? __pfx_netlink_insert+0x10/0x10
[  845.466100][T17663]  __alloc_skb+0x2b2/0x380
[  845.466127][T17663]  ? __pfx___alloc_skb+0x10/0x10
[  845.466143][T17663]  ? netlink_autobind.isra.0+0x158/0x370
[  845.466165][T17663]  netlink_alloc_large_skb+0x69/0x140
[  845.466189][T17663]  netlink_sendmsg+0x698/0xdd0
[  845.466210][T17663]  ? __pfx_netlink_sendmsg+0x10/0x10
[  845.466230][T17663]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  845.466271][T17663]  ____sys_sendmsg+0xa98/0xc70
[  845.466287][T17663]  ? __pfx_____sys_sendmsg+0x10/0x10
[  845.466299][T17663]  ? get_compat_msghdr+0x11a/0x170
[  845.466338][T17663]  ___sys_sendmsg+0x134/0x1d0
[  845.466356][T17663]  ? __pfx____sys_sendmsg+0x10/0x10
[  845.466380][T17663]  ? find_held_lock+0x2b/0x80
[  845.466450][T17663]  __sys_sendmsg+0x16d/0x220
[  845.466467][T17663]  ? __pfx___sys_sendmsg+0x10/0x10
[  845.466484][T17663]  ? __pfx_bpf_trace_run2+0x10/0x10
[  845.466516][T17663]  ? syscall_trace_enter+0x1cb/0x240
[  845.466540][T17663]  ? rcu_is_watching+0x12/0xc0
[  845.466559][T17663]  __do_fast_syscall_32+0x7c/0x300
[  845.466581][T17663]  do_fast_syscall_32+0x32/0x80
[  845.466599][T17663]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  845.466638][T17663] RIP: 0023:0xf7f16579
[  845.466649][T17663] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  845.466660][T17663] RSP: 002b:00000000f540655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  845.466684][T17663] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  845.466692][T17663] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  845.466699][T17663] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  845.466705][T17663] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  845.466712][T17663] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  845.466726][T17663]  </TASK>
[  845.675793][   T40] kauditd_printk_skb: 918 callbacks suppressed
[  845.675809][   T40] audit: type=1326 audit(1760529347.683:15945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17648 comm="syz.5.3032" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  845.713267][   T40] audit: type=1326 audit(1760529347.683:15946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17648 comm="syz.5.3032" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  845.960188][T17674] FAULT_INJECTION: forcing a failure.
[  845.960188][T17674] name failslab, interval 1, probability 0, space 0, times 0
[  845.967021][T17674] CPU: 2 UID: 0 PID: 17674 Comm: syz.5.3040 Not tainted syzkaller #0 PREEMPT(full) 
[  845.967049][T17674] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  845.967062][T17674] Call Trace:
[  845.967069][T17674]  <TASK>
[  845.967077][T17674]  dump_stack_lvl+0x16c/0x1f0
[  845.967113][T17674]  should_fail_ex+0x512/0x640
[  845.967145][T17674]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  845.967173][T17674]  should_failslab+0xc2/0x120
[  845.967192][T17674]  kmem_cache_alloc_noprof+0x75/0x6e0
[  845.967216][T17674]  ? prepare_creds+0x2c/0x7d0
[  845.967288][T17674]  ? prepare_creds+0x2c/0x7d0
[  845.967308][T17674]  prepare_creds+0x2c/0x7d0
[  845.967348][T17674]  copy_creds+0xa7/0xa50
[  845.967373][T17674]  copy_process+0xffc/0x76a0
[  845.967436][T17674]  ? __pfx_copy_process+0x10/0x10
[  845.967475][T17674]  ? _copy_from_user+0x59/0xd0
[  845.967515][T17674]  kernel_clone+0xfc/0x930
[  845.967542][T17674]  ? get_pid_task+0xfc/0x250
[  845.967562][T17674]  ? __pfx_kernel_clone+0x10/0x10
[  845.967617][T17674]  __do_sys_clone3+0x212/0x290
[  845.967635][T17674]  ? __pfx___do_sys_clone3+0x10/0x10
[  845.967665][T17674]  ? __fget_files+0x20e/0x3c0
[  845.967705][T17674]  ? handle_mm_fault+0x1f0/0xd10
[  845.967760][T17674]  ? rcu_is_watching+0x12/0xc0
[  845.967788][T17674]  __do_fast_syscall_32+0x7c/0x300
[  845.967818][T17674]  do_fast_syscall_32+0x32/0x80
[  845.967845][T17674]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  845.967868][T17674] RIP: 0023:0xf708d579
[  845.967883][T17674] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  845.967901][T17674] RSP: 002b:00000000f547d42c EFLAGS: 00000286 ORIG_RAX: 00000000000001b3
[  845.967922][T17674] RAX: ffffffffffffffda RBX: 00000000f547d460 RCX: 0000000000000058
[  845.967933][T17674] RDX: 0000000000000000 RSI: 0000000085200080 RDI: 0000000000000003
[  845.967944][T17674] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  845.967981][T17674] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  845.967991][T17674] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  845.968016][T17674]  </TASK>
[  846.060084][    C2] vkms_vblank_simulate: vblank timer overrun
[  846.391091][T17682] 9pnet_virtio: no channels available for device syz
[  846.495242][   T34] vhci_hcd: vhci_device speed not set
[  846.510568][T17680] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  847.357969][   T40] audit: type=1326 audit(1760529349.373:15947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17697 comm="syz.5.3047" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  847.370678][   T40] audit: type=1326 audit(1760529349.373:15948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17697 comm="syz.5.3047" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  848.090170][   T40] audit: type=1326 audit(1760529350.103:15949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17707 comm="syz.5.3051" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x0
[  849.385560][   T54] usb 11-1: new high-speed USB device number 19 using dummy_hcd
[  849.518346][   T54] usb 11-1: device descriptor read/64, error -71
[  849.689829][   T40] audit: type=1326 audit(1760529351.703:15950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17731 comm="syz.5.3057" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  849.708822][   T40] audit: type=1326 audit(1760529351.703:15951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17731 comm="syz.5.3057" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  849.717830][T17725] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  849.724924][   T40] audit: type=1804 audit(1760529351.733:15952): pid=17723 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.3054" name="/newroot/71/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  849.759674][   T54] usb 11-1: new high-speed USB device number 20 using dummy_hcd
[  849.885260][   T54] usb 11-1: device descriptor read/64, error -71
[  850.026519][   T54] usb usb11-port1: attempt power cycle
[  851.123291][T17747] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3061'.
[  851.157694][   T54] usb 11-1: new high-speed USB device number 21 using dummy_hcd
[  851.178047][   T54] usb 11-1: device descriptor read/8, error -71
[  851.283234][T17757] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  851.286041][T17757] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  851.290009][T17757] vhci_hcd vhci_hcd.0: Device attached
[  851.436317][   T54] usb 11-1: new high-speed USB device number 22 using dummy_hcd
[  851.455943][   T54] usb 11-1: device descriptor read/8, error -71
[  851.503828][T17758] vhci_hcd: connection closed
[  851.504382][   T46] vhci_hcd: stop threads
[  851.509280][   T46] vhci_hcd: release socket
[  851.510822][   T46] vhci_hcd: disconnect device
[  851.545395][T16233] usb 47-1: new low-speed USB device number 9 using vhci_hcd
[  851.547847][T16233] usb 47-1: enqueue for inactive port 0
[  851.565563][   T54] usb usb11-port1: unable to enumerate USB device
[  851.569755][   T40] audit: type=1326 audit(1760529353.583:15953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17763 comm="syz.0.3066" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x0
[  851.615270][T16233] vhci_hcd: vhci_device speed not set
[  852.508573][T17774] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  852.510534][T17774] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  852.525981][T17774] vhci_hcd vhci_hcd.0: Device attached
[  852.601391][T17771] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  852.785432][   T34] usb 45-1: new low-speed USB device number 9 using vhci_hcd
[  853.059067][T17776] vhci_hcd: connection reset by peer
[  853.094867][   T46] vhci_hcd: stop threads
[  853.096498][   T46] vhci_hcd: release socket
[  853.099204][   T46] vhci_hcd: disconnect device
[  854.507132][  T843] usb 9-1: new high-speed USB device number 28 using dummy_hcd
[  854.635323][  T843] usb 9-1: device descriptor read/64, error -71
[  855.057091][  T843] usb 9-1: new high-speed USB device number 29 using dummy_hcd
[  855.198273][  T843] usb 9-1: device descriptor read/64, error -71
[  855.315493][  T843] usb usb9-port1: attempt power cycle
[  855.335414][T17814] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3079'.
[  855.579348][   T40] audit: type=1326 audit(1760529357.593:15954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17822 comm="syz.6.3082" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  855.587205][   T40] audit: type=1326 audit(1760529357.593:15955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17822 comm="syz.6.3082" exe="/syz-executor" sig=0 arch=40000003 syscall=293 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  855.594608][   T40] audit: type=1326 audit(1760529357.593:15956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17822 comm="syz.6.3082" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  855.602577][   T40] audit: type=1326 audit(1760529357.593:15957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17822 comm="syz.6.3082" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  855.611798][   T40] audit: type=1326 audit(1760529357.603:15958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17822 comm="syz.6.3082" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  855.621687][   T40] audit: type=1326 audit(1760529357.603:15959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17822 comm="syz.6.3082" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  855.632910][   T40] audit: type=1326 audit(1760529357.603:15960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17822 comm="syz.6.3082" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  855.642816][   T40] audit: type=1326 audit(1760529357.603:15961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17822 comm="syz.6.3082" exe="/syz-executor" sig=0 arch=40000003 syscall=11 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  855.651350][   T40] audit: type=1326 audit(1760529357.623:15962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17822 comm="syz.6.3082" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f63579 code=0x7ffc0000
[  855.665304][  T843] usb 9-1: new high-speed USB device number 30 using dummy_hcd
[  855.676184][T17830] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  855.676184][T17830]    program syz.6.3082 not setting count and/or reply_len properly
[  855.685915][  T843] usb 9-1: device descriptor read/8, error -71
[  855.935198][  T843] usb 9-1: new high-speed USB device number 31 using dummy_hcd
[  855.966742][  T843] usb 9-1: device descriptor read/8, error -71
[  856.091836][  T843] usb usb9-port1: unable to enumerate USB device
[  857.966713][   T34] vhci_hcd: vhci_device speed not set
[  859.472861][T17873] FAULT_INJECTION: forcing a failure.
[  859.472861][T17873] name failslab, interval 1, probability 0, space 0, times 0
[  859.482810][T17873] CPU: 3 UID: 0 PID: 17873 Comm: syz.0.3095 Not tainted syzkaller #0 PREEMPT(full) 
[  859.482839][T17873] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  859.482852][T17873] Call Trace:
[  859.482883][T17873]  <TASK>
[  859.482891][T17873]  dump_stack_lvl+0x16c/0x1f0
[  859.483177][T17873]  should_fail_ex+0x512/0x640
[  859.483303][T17873]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  859.483394][T17873]  should_failslab+0xc2/0x120
[  859.483423][T17873]  kmem_cache_alloc_node_noprof+0x78/0x770
[  859.483446][T17873]  ? alloc_vmap_area+0x648/0x29e0
[  859.483475][T17873]  ? __pfx___might_resched+0x10/0x10
[  859.483554][T17873]  ? alloc_vmap_area+0x648/0x29e0
[  859.483579][T17873]  alloc_vmap_area+0x648/0x29e0
[  859.483617][T17873]  ? __pfx_alloc_vmap_area+0x10/0x10
[  859.483651][T17873]  __get_vm_area_node+0x1ca/0x330
[  859.483675][T17873]  __vmalloc_node_range_noprof+0x271/0x1480
[  859.483695][T17873]  ? kernel_clone+0xfc/0x930
[  859.483752][T17873]  ? find_held_lock+0x2b/0x80
[  859.483802][T17873]  ? kernel_clone+0xfc/0x930
[  859.483861][T17873]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  859.483885][T17873]  ? rcu_is_watching+0x12/0xc0
[  859.483940][T17873]  ? kernel_clone+0xfc/0x930
[  859.483960][T17873]  __vmalloc_node_noprof+0xad/0xf0
[  859.483975][T17873]  ? kernel_clone+0xfc/0x930
[  859.483997][T17873]  copy_process+0x2c77/0x76a0
[  859.484030][T17873]  ? __pfx_copy_process+0x10/0x10
[  859.484056][T17873]  ? _copy_from_user+0x59/0xd0
[  859.484085][T17873]  kernel_clone+0xfc/0x930
[  859.484105][T17873]  ? get_pid_task+0xfc/0x250
[  859.484134][T17873]  ? __pfx_kernel_clone+0x10/0x10
[  859.484165][T17873]  __do_sys_clone3+0x212/0x290
[  859.484178][T17873]  ? __pfx___do_sys_clone3+0x10/0x10
[  859.484200][T17873]  ? __fget_files+0x20e/0x3c0
[  859.484229][T17873]  ? handle_mm_fault+0x1f0/0xd10
[  859.484266][T17873]  ? rcu_is_watching+0x12/0xc0
[  859.484287][T17873]  __do_fast_syscall_32+0x7c/0x300
[  859.484313][T17873]  do_fast_syscall_32+0x32/0x80
[  859.484333][T17873]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  859.484377][T17873] RIP: 0023:0xf7fd2579
[  859.484390][T17873] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  859.484404][T17873] RSP: 002b:00000000f54c642c EFLAGS: 00000286 ORIG_RAX: 00000000000001b3
[  859.484430][T17873] RAX: ffffffffffffffda RBX: 00000000f54c6460 RCX: 0000000000000058
[  859.484439][T17873] RDX: 0000000000000000 RSI: 0000000085200080 RDI: 0000000000000003
[  859.484448][T17873] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  859.484456][T17873] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  859.484465][T17873] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  859.484484][T17873]  </TASK>
[  859.484525][T17873] warn_alloc: 1 callbacks suppressed
[  859.484534][T17873] syz.0.3095: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  859.619026][T17873] CPU: 3 UID: 0 PID: 17873 Comm: syz.0.3095 Not tainted syzkaller #0 PREEMPT(full) 
[  859.619050][T17873] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  859.619060][T17873] Call Trace:
[  859.619067][T17873]  <TASK>
[  859.619075][T17873]  dump_stack_lvl+0x16c/0x1f0
[  859.619118][T17873]  warn_alloc+0x248/0x3a0
[  859.619146][T17873]  ? __pfx_warn_alloc+0x10/0x10
[  859.619169][T17873]  ? __get_vm_area_node+0x2cd/0x330
[  859.619192][T17873]  ? __get_vm_area_node+0x2cd/0x330
[  859.619209][T17873]  ? __get_vm_area_node+0x1dc/0x330
[  859.619225][T17873]  ? __get_vm_area_node+0x208/0x330
[  859.619248][T17873]  __vmalloc_node_range_noprof+0xaf5/0x1480
[  859.619276][T17873]  ? find_held_lock+0x2b/0x80
[  859.619302][T17873]  ? kernel_clone+0xfc/0x930
[  859.619336][T17873]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  859.619361][T17873]  ? rcu_is_watching+0x12/0xc0
[  859.619389][T17873]  ? kernel_clone+0xfc/0x930
[  859.619415][T17873]  __vmalloc_node_noprof+0xad/0xf0
[  859.619434][T17873]  ? kernel_clone+0xfc/0x930
[  859.619463][T17873]  copy_process+0x2c77/0x76a0
[  859.619498][T17873]  ? __pfx_copy_process+0x10/0x10
[  859.619527][T17873]  ? _copy_from_user+0x59/0xd0
[  859.619547][T17873]  kernel_clone+0xfc/0x930
[  859.619569][T17873]  ? get_pid_task+0xfc/0x250
[  859.619587][T17873]  ? __pfx_kernel_clone+0x10/0x10
[  859.619624][T17873]  __do_sys_clone3+0x212/0x290
[  859.619640][T17873]  ? __pfx___do_sys_clone3+0x10/0x10
[  859.619669][T17873]  ? __fget_files+0x20e/0x3c0
[  859.619692][T17873]  ? handle_mm_fault+0x1f0/0xd10
[  859.619728][T17873]  ? rcu_is_watching+0x12/0xc0
[  859.619755][T17873]  __do_fast_syscall_32+0x7c/0x300
[  859.619785][T17873]  do_fast_syscall_32+0x32/0x80
[  859.619812][T17873]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  859.619869][T17873] RIP: 0023:0xf7fd2579
[  859.619885][T17873] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  859.619903][T17873] RSP: 002b:00000000f54c642c EFLAGS: 00000286 ORIG_RAX: 00000000000001b3
[  859.619922][T17873] RAX: ffffffffffffffda RBX: 00000000f54c6460 RCX: 0000000000000058
[  859.619936][T17873] RDX: 0000000000000000 RSI: 0000000085200080 RDI: 0000000000000003
[  859.619950][T17873] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  859.619962][T17873] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  859.619973][T17873] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  859.620020][T17873]  </TASK>
[  859.620029][T17873] Mem-Info:
[  859.729650][T17873] active_anon:5542 inactive_anon:631 isolated_anon:0
[  859.729650][T17873]  active_file:6045 inactive_file:16230 isolated_file:0
[  859.729650][T17873]  unevictable:1768 dirty:463 writeback:0
[  859.729650][T17873]  slab_reclaimable:6959 slab_unreclaimable:57611
[  859.729650][T17873]  mapped:26279 shmem:4644 pagetables:1441
[  859.729650][T17873]  sec_pagetables:331 bounce:0
[  859.729650][T17873]  kernel_misc_reclaimable:0
[  859.729650][T17873]  free:64521 free_pcp:13525 free_cma:0
[  859.748652][T17873] Node 0 active_anon:904kB inactive_anon:12kB active_file:4kB inactive_file:808kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:744kB dirty:0kB writeback:0kB shmem:3548kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8912kB pagetables:1432kB sec_pagetables:1176kB all_unreclaimable? no Balloon:0kB
[  859.761395][T17873] Node 1 active_anon:21264kB inactive_anon:2512kB active_file:24176kB inactive_file:64112kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:104372kB dirty:1852kB writeback:0kB shmem:15028kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:4784kB pagetables:4332kB sec_pagetables:148kB all_unreclaimable? no Balloon:0kB
[  859.773946][T17873] Node 0 DMA free:2208kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:20kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:384kB local_pcp:24kB free_cma:0kB
[  859.785685][T17873] lowmem_reserve[]: 0 292 292 292 292
[  859.788387][T17873] Node 0 DMA32 free:18932kB boost:0kB min:13448kB low:16808kB high:20168kB reserved_highatomic:2048KB free_highatomic:480KB active_anon:904kB inactive_anon:12kB active_file:4kB inactive_file:808kB unevictable:3536kB writepending:0kB zspages:776kB present:1032196kB managed:299668kB mlocked:0kB bounce:0kB free_pcp:12168kB local_pcp:3056kB free_cma:0kB
[  859.812108][T17873] lowmem_reserve[]: 0 0 0 0 0
[  859.833456][T17873] Node 1 DMA32 free:236944kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:21164kB inactive_anon:2512kB active_file:24176kB inactive_file:64112kB unevictable:3536kB writepending:1852kB zspages:10272kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:42388kB local_pcp:13396kB free_cma:0kB
[  859.849520][T17873] lowmem_reserve[]: 0 0 0 0 0
[  859.852360][T17873] Node 0 DMA: 28*4kB (UM) 22*8kB (UM) 6*16kB (UM) 11*32kB (UM) 3*64kB (UM) 0*128kB 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2208kB
[  859.860428][T17873] Node 0 DMA32: 478*4kB (UMEH) 112*8kB (UEH) 42*16kB (UMEH) 117*32kB (UMEH) 96*64kB (UME) 27*128kB (UME) 6*256kB (UE) 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 18872kB
[  859.867769][T17873] Node 1 DMA32: 1822*4kB (UE) 921*8kB (UME) 519*16kB (UE) 533*32kB (UME) 423*64kB (UME) 245*128kB (UME) 145*256kB (UME) 70*512kB (UME) 44*1024kB (UM) 8*2048kB (UM) 1*4096kB (M) = 236944kB
[  859.877020][T17873] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  859.881217][T17873] Node 0 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  859.892521][T17873] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  859.898857][T17873] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  859.902540][T17873] 27591 total pagecache pages
[  859.904826][T17873] 676 pages in swap cache
[  859.907557][T17873] Free swap  = 97780kB
[  859.909761][T17873] Total swap = 124996kB
[  859.911764][T17873] 524155 pages RAM
[  859.913739][T17873] 0 pages HighMem/MovableOnly
[  859.916521][T17873] 208343 pages reserved
[  859.918072][T17873] 0 pages cma reserved
[  860.125462][   T34] usb 10-1: new high-speed USB device number 19 using dummy_hcd
[  860.255385][   T34] usb 10-1: device descriptor read/64, error -71
[  860.322565][T17865] FAULT_INJECTION: forcing a failure.
[  860.322565][T17865] name failslab, interval 1, probability 0, space 0, times 0
[  860.327315][T17865] CPU: 2 UID: 0 PID: 17865 Comm: syz.6.3092 Not tainted syzkaller #0 PREEMPT(full) 
[  860.327333][T17865] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  860.327342][T17865] Call Trace:
[  860.327347][T17865]  <TASK>
[  860.327352][T17865]  dump_stack_lvl+0x16c/0x1f0
[  860.327378][T17865]  should_fail_ex+0x512/0x640
[  860.327398][T17865]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  860.327418][T17865]  should_failslab+0xc2/0x120
[  860.327430][T17865]  kmem_cache_alloc_noprof+0x75/0x6e0
[  860.327446][T17865]  ? security_file_alloc+0x34/0x2b0
[  860.327507][T17865]  ? security_file_alloc+0x34/0x2b0
[  860.327522][T17865]  security_file_alloc+0x34/0x2b0
[  860.327538][T17865]  init_file+0x93/0x4c0
[  860.327552][T17865]  alloc_empty_file+0x73/0x1e0
[  860.327565][T17865]  path_openat+0xda/0x2cb0
[  860.327586][T17865]  ? stack_trace_save+0x8e/0xc0
[  860.327608][T17865]  ? __pfx_path_openat+0x10/0x10
[  860.327623][T17865]  ? stack_depot_save_flags+0x29/0x9c0
[  860.327647][T17865]  do_filp_open+0x20b/0x470
[  860.327662][T17865]  ? kmem_cache_alloc_noprof+0x250/0x6e0
[  860.327677][T17865]  ? __pfx_do_filp_open+0x10/0x10
[  860.327692][T17865]  ? do_fast_syscall_32+0x32/0x80
[  860.327711][T17865]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  860.327744][T17865]  do_open_execat+0xf9/0x3a0
[  860.327759][T17865]  ? __pfx_do_open_execat+0x10/0x10
[  860.327779][T17865]  alloc_bprm+0x2d/0x710
[  860.327795][T17865]  do_execveat_common.isra.0+0x1ce/0x610
[  860.327838][T17865]  __ia32_compat_sys_execveat+0xe0/0x120
[  860.327859][T17865]  __do_fast_syscall_32+0x7c/0x300
[  860.327878][T17865]  do_fast_syscall_32+0x32/0x80
[  860.327897][T17865]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  860.327911][T17865] RIP: 0023:0xf7f63579
[  860.327922][T17865] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  860.327934][T17865] RSP: 002b:00000000f543555c EFLAGS: 00000296 ORIG_RAX: 0000000000000166
[  860.327947][T17865] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000040
[  860.327954][T17865] RDX: 0000000000000000 RSI: 0000000080004780 RDI: 0000000000001000
[  860.327961][T17865] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  860.327968][T17865] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  860.327975][T17865] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  860.327989][T17865]  </TASK>
[  860.476819][   T40] kauditd_printk_skb: 11 callbacks suppressed
[  860.476832][   T40] audit: type=1804 audit(1760529362.493:15974): pid=17887 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3098" name="/newroot/159/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  860.545207][   T34] usb 10-1: new high-speed USB device number 20 using dummy_hcd
[  860.675293][   T34] usb 10-1: device descriptor read/64, error -71
[  860.796808][   T34] usb usb10-port1: attempt power cycle
[  861.116079][T17893] FAULT_INJECTION: forcing a failure.
[  861.116079][T17893] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  861.122214][T17893] CPU: 1 UID: 0 PID: 17893 Comm: syz.6.3100 Not tainted syzkaller #0 PREEMPT(full) 
[  861.122239][T17893] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  861.122252][T17893] Call Trace:
[  861.122261][T17893]  <TASK>
[  861.122270][T17893]  dump_stack_lvl+0x16c/0x1f0
[  861.122306][T17893]  should_fail_ex+0x512/0x640
[  861.122341][T17893]  _copy_from_user+0x2e/0xd0
[  861.122360][T17893]  get_compat_msghdr+0xa7/0x170
[  861.122515][T17893]  ? __pfx_get_compat_msghdr+0x10/0x10
[  861.122549][T17893]  ___sys_sendmsg+0x1ae/0x1d0
[  861.122595][T17893]  ? __pfx____sys_sendmsg+0x10/0x10
[  861.122633][T17893]  ? find_held_lock+0x2b/0x80
[  861.122674][T17893]  __sys_sendmsg+0x16d/0x220
[  861.122700][T17893]  ? __pfx___sys_sendmsg+0x10/0x10
[  861.122736][T17893]  ? rcu_is_watching+0x12/0xc0
[  861.122766][T17893]  __do_fast_syscall_32+0x7c/0x300
[  861.122797][T17893]  do_fast_syscall_32+0x32/0x80
[  861.122824][T17893]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  861.122847][T17893] RIP: 0023:0xf7f63579
[  861.122862][T17893] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  861.122879][T17893] RSP: 002b:00000000f541455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  861.122900][T17893] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000100
[  861.122910][T17893] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  861.122921][T17893] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  861.122931][T17893] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  861.122942][T17893] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  861.122967][T17893]  </TASK>
[  861.145197][   T34] usb 10-1: new high-speed USB device number 21 using dummy_hcd
[  861.205726][   T34] usb 10-1: device descriptor read/8, error -71
[  861.445346][   T34] usb 10-1: new high-speed USB device number 22 using dummy_hcd
[  861.469764][   T34] usb 10-1: device descriptor read/8, error -71
[  861.575783][   T34] usb usb10-port1: unable to enumerate USB device
[  863.142426][T17914] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  864.281050][T17924] netfs: Couldn't get user pages (rc=-14)
[  865.545214][T11220] usb 11-1: new high-speed USB device number 23 using dummy_hcd
[  865.696539][T11220] usb 11-1: Using ep0 maxpacket: 16
[  865.708227][T11220] usb 11-1: config 0 has no interfaces?
[  865.713170][T11220] usb 11-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  865.717451][T11220] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  865.720092][T11220] usb 11-1: Product: syz
[  865.722099][T11220] usb 11-1: Manufacturer: syz
[  865.724229][T11220] usb 11-1: SerialNumber: syz
[  865.726256][   T40] audit: type=1326 audit(1760529367.733:15975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17946 comm="syz.0.3115" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x0
[  865.739337][T11220] usb 11-1: config 0 descriptor??
[  866.165969][T11220] usb 11-1: USB disconnect, device number 23
[  866.541375][   T40] audit: type=1326 audit(1760529368.553:15976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17953 comm="syz.5.3116" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  866.551294][   T40] audit: type=1326 audit(1760529368.553:15977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17953 comm="syz.5.3116" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x7ffc0000
[  866.802009][   T40] audit: type=1326 audit(1760529368.813:15978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17958 comm="syz.4.3118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000
[  866.845395][   T40] audit: type=1326 audit(1760529368.823:15979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17958 comm="syz.4.3118" exe="/syz-executor" sig=0 arch=40000003 syscall=293 compat=1 ip=0xf7f16579 code=0x7ffc0000
[  866.865189][   T40] audit: type=1326 audit(1760529368.823:15980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17958 comm="syz.4.3118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000
[  866.872866][   T40] audit: type=1326 audit(1760529368.863:15981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17958 comm="syz.4.3118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7ffc0000
[  866.883219][   T40] audit: type=1326 audit(1760529368.873:15982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17958 comm="syz.4.3118" exe="/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf7f16579 code=0x7ffc0000
[  866.893437][   T40] audit: type=1326 audit(1760529368.873:15983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17958 comm="syz.4.3118" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f16579 code=0x7ffc0000
[  866.902140][   T40] audit: type=1326 audit(1760529368.873:15984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17958 comm="syz.4.3118" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f16579 code=0x7ffc0000
[  866.927796][T17962] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  866.927796][T17962]    program syz.4.3118 not setting count and/or reply_len properly
[  868.553099][T17970] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  870.575944][T18003] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3130'.
[  871.462648][T18016] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  871.465598][T18016] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  871.470788][T18016] vhci_hcd vhci_hcd.0: Device attached
[  871.765591][   T53] usb 45-1: new low-speed USB device number 10 using vhci_hcd
[  871.795734][   T40] kauditd_printk_skb: 16 callbacks suppressed
[  871.795756][   T40] audit: type=1804 audit(1760529373.793:16001): pid=18020 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3132" name="/newroot/122/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  872.625435][T18018] vhci_hcd: connection reset by peer
[  872.630475][   T13] vhci_hcd: stop threads
[  872.631974][   T13] vhci_hcd: release socket
[  872.633816][   T13] vhci_hcd: disconnect device
[  872.952174][T18036] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3138'.
[  873.156857][T18041] FAULT_INJECTION: forcing a failure.
[  873.156857][T18041] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  873.162806][T18041] CPU: 1 UID: 0 PID: 18041 Comm: syz.6.3139 Not tainted syzkaller #0 PREEMPT(full) 
[  873.162827][T18041] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  873.162836][T18041] Call Trace:
[  873.162861][T18041]  <TASK>
[  873.162888][T18041]  dump_stack_lvl+0x16c/0x1f0
[  873.163157][T18041]  should_fail_ex+0x512/0x640
[  873.163285][T18041]  _copy_from_iter+0x29f/0x1720
[  873.163323][T18041]  ? __alloc_skb+0x200/0x380
[  873.163429][T18041]  ? __pfx__copy_from_iter+0x10/0x10
[  873.163450][T18041]  ? netlink_autobind.isra.0+0x158/0x370
[  873.163492][T18041]  netlink_sendmsg+0x820/0xdd0
[  873.163517][T18041]  ? __pfx_netlink_sendmsg+0x10/0x10
[  873.163540][T18041]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  873.163585][T18041]  ____sys_sendmsg+0xa98/0xc70
[  873.163603][T18041]  ? __pfx_____sys_sendmsg+0x10/0x10
[  873.163618][T18041]  ? get_compat_msghdr+0x11a/0x170
[  873.163660][T18041]  ___sys_sendmsg+0x134/0x1d0
[  873.163680][T18041]  ? __pfx____sys_sendmsg+0x10/0x10
[  873.163735][T18041]  ? find_held_lock+0x2b/0x80
[  873.163824][T18041]  __sys_sendmsg+0x16d/0x220
[  873.163844][T18041]  ? __pfx___sys_sendmsg+0x10/0x10
[  873.163871][T18041]  ? rcu_is_watching+0x12/0xc0
[  873.163902][T18041]  __do_fast_syscall_32+0x7c/0x300
[  873.163926][T18041]  do_fast_syscall_32+0x32/0x80
[  873.163947][T18041]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  873.163991][T18041] RIP: 0023:0xf7f63579
[  873.164004][T18041] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  873.164017][T18041] RSP: 002b:00000000f541455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  873.164047][T18041] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000040
[  873.164055][T18041] RDX: 0000000000044014 RSI: 0000000000000000 RDI: 0000000000000000
[  873.164063][T18041] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  873.164072][T18041] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  873.164079][T18041] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  873.164096][T18041]  </TASK>
[  874.082845][T18052] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  874.085581][T18052] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  874.089935][T18052] vhci_hcd vhci_hcd.0: Device attached
[  874.355738][   T54] usb 37-1: new low-speed USB device number 10 using vhci_hcd
[  874.914488][T18053] vhci_hcd: connection closed
[  874.965715][ T1234] vhci_hcd: stop threads
[  874.969286][ T1234] vhci_hcd: release socket
[  874.970807][ T1234] vhci_hcd: disconnect device
[  875.004236][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  875.290252][   T40] audit: type=1804 audit(1760529377.303:16002): pid=18061 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.3147" name="/newroot/82/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  875.295808][   T54] usb 37-1: enqueue for inactive port 0
[  875.365887][   T54] vhci_hcd: vhci_device speed not set
[  876.851275][T18086] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  877.004414][   T53] vhci_hcd: vhci_device speed not set
[  877.343339][T18089] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  878.881604][T18096] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  879.285905][T18100] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  879.288625][T18100] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  879.296914][T18100] vhci_hcd vhci_hcd.0: Device attached
[  879.385010][   T40] audit: type=1800 audit(1760529381.393:16003): pid=18100 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3155" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  879.582935][T18101] vhci_hcd: connection closed
[  879.583325][ T1234] vhci_hcd: stop threads
[  879.587479][ T1234] vhci_hcd: release socket
[  879.589579][ T1234] vhci_hcd: disconnect device
[  879.635258][T12714] usb 48-1: enqueue for inactive port 0
[  880.236594][T12714] usb usb48-port1: attempt power cycle
[  880.558671][   T40] audit: type=1326 audit(1760529382.573:16004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18118 comm="syz.4.3163" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[  880.811377][T18128] FAULT_INJECTION: forcing a failure.
[  880.811377][T18128] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  880.820066][T18128] CPU: 2 UID: 0 PID: 18128 Comm: syz.5.3165 Not tainted syzkaller #0 PREEMPT(full) 
[  880.820097][T18128] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  880.820110][T18128] Call Trace:
[  880.820117][T18128]  <TASK>
[  880.820125][T18128]  dump_stack_lvl+0x16c/0x1f0
[  880.820166][T18128]  should_fail_ex+0x512/0x640
[  880.820199][T18128]  _copy_from_iter+0x29f/0x1720
[  880.820228][T18128]  ? __alloc_skb+0x200/0x380
[  880.820253][T18128]  ? __pfx__copy_from_iter+0x10/0x10
[  880.820281][T18128]  ? netlink_autobind.isra.0+0x158/0x370
[  880.820317][T18128]  netlink_sendmsg+0x820/0xdd0
[  880.820347][T18128]  ? __pfx_netlink_sendmsg+0x10/0x10
[  880.820377][T18128]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  880.820402][T18128]  ____sys_sendmsg+0xa98/0xc70
[  880.820425][T18128]  ? __pfx_____sys_sendmsg+0x10/0x10
[  880.820443][T18128]  ? get_compat_msghdr+0x11a/0x170
[  880.820480][T18128]  ___sys_sendmsg+0x134/0x1d0
[  880.820508][T18128]  ? __pfx____sys_sendmsg+0x10/0x10
[  880.820542][T18128]  ? find_held_lock+0x2b/0x80
[  880.820583][T18128]  __sys_sendmsg+0x16d/0x220
[  880.820609][T18128]  ? __pfx___sys_sendmsg+0x10/0x10
[  880.820638][T18128]  ? rcu_is_watching+0x12/0xc0
[  880.820666][T18128]  __do_fast_syscall_32+0x7c/0x300
[  880.820690][T18128]  do_fast_syscall_32+0x32/0x80
[  880.820714][T18128]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  880.820736][T18128] RIP: 0023:0xf708d579
[  880.820751][T18128] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  880.820769][T18128] RSP: 002b:00000000f547d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  880.820789][T18128] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  880.820801][T18128] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  880.820812][T18128] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  880.820821][T18128] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  880.820833][T18128] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  880.820856][T18128]  </TASK>
[  880.828258][T12714] usb usb48-port1: unable to enumerate USB device
[  880.859246][T18128] netfs: Couldn't get user pages (rc=-14)
[  881.053329][T18110] FAULT_INJECTION: forcing a failure.
[  881.053329][T18110] name failslab, interval 1, probability 0, space 0, times 0
[  881.060076][T18110] CPU: 0 UID: 0 PID: 18110 Comm: syz.0.3159 Not tainted syzkaller #0 PREEMPT(full) 
[  881.060098][T18110] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  881.060107][T18110] Call Trace:
[  881.060113][T18110]  <TASK>
[  881.060119][T18110]  dump_stack_lvl+0x16c/0x1f0
[  881.060151][T18110]  should_fail_ex+0x512/0x640
[  881.060188][T18110]  ? __kmalloc_cache_noprof+0x5f/0x780
[  881.060290][T18110]  should_failslab+0xc2/0x120
[  881.060319][T18110]  __kmalloc_cache_noprof+0x72/0x780
[  881.060336][T18110]  ? alloc_bprm+0x86/0x710
[  881.060372][T18110]  ? alloc_bprm+0x86/0x710
[  881.060388][T18110]  alloc_bprm+0x86/0x710
[  881.060406][T18110]  do_execveat_common.isra.0+0x1ce/0x610
[  881.060428][T18110]  __ia32_compat_sys_execveat+0xe0/0x120
[  881.060448][T18110]  __do_fast_syscall_32+0x7c/0x300
[  881.060472][T18110]  do_fast_syscall_32+0x32/0x80
[  881.060492][T18110]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  881.060510][T18110] RIP: 0023:0xf7fd2579
[  881.060522][T18110] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  881.060535][T18110] RSP: 002b:00000000f54a555c EFLAGS: 00000296 ORIG_RAX: 0000000000000166
[  881.060548][T18110] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000040
[  881.060556][T18110] RDX: 0000000000000000 RSI: 0000000080004780 RDI: 0000000000001000
[  881.060563][T18110] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  881.060570][T18110] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  881.060578][T18110] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  881.060594][T18110]  </TASK>
[  881.123552][    C0] vkms_vblank_simulate: vblank timer overrun
[  881.388742][   T40] audit: type=1326 audit(1760529383.393:16005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18118 comm="syz.4.3163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x7fc00000
[  881.715259][   T34] usb 9-1: new high-speed USB device number 32 using dummy_hcd
[  881.915673][   T34] usb 9-1: Using ep0 maxpacket: 16
[  881.915991][T18141] 9pnet_virtio: no channels available for device syz
[  882.457208][   T34] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  882.466872][   T34] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  882.470666][   T34] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  882.473632][   T34] usb 9-1: Product: syz
[  882.475010][   T34] usb 9-1: Manufacturer: syz
[  882.476929][   T34] usb 9-1: SerialNumber: syz
[  882.484246][   T34] usb 9-1: config 0 descriptor??
[  882.912140][T11752] usb 9-1: USB disconnect, device number 32
[  884.180830][T18173] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  884.184389][T18173] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  884.196068][T18173] vhci_hcd vhci_hcd.0: Device attached
[  884.298146][   T40] audit: type=1800 audit(1760529386.313:16006): pid=18173 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3173" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  884.475264][   T29] usb 38-1: SetAddress Request (7) to port 0
[  884.478241][   T29] usb 38-1: new SuperSpeed USB device number 7 using vhci_hcd
[  884.654993][T18174] vhci_hcd: connection reset by peer
[  884.795642][T16795] vhci_hcd: stop threads
[  884.797312][T16795] vhci_hcd: release socket
[  884.799088][T16795] vhci_hcd: disconnect device
[  885.522447][T18186] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  885.925176][   T40] audit: type=1804 audit(1760529387.933:16007): pid=18198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.3183" name="/newroot/93/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  886.212667][T18201] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3182'.
[  886.615153][   T34] usb 11-1: new high-speed USB device number 24 using dummy_hcd
[  886.675441][T18216] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  886.677821][T18216] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  886.681478][T18216] vhci_hcd vhci_hcd.0: Device attached
[  886.697321][T18217] vhci_hcd: connection closed
[  886.697839][   T46] vhci_hcd: stop threads
[  886.701325][   T46] vhci_hcd: release socket
[  886.708046][   T46] vhci_hcd: disconnect device
[  886.795202][   T34] usb 11-1: Using ep0 maxpacket: 16
[  886.957635][   T34] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  886.962725][   T34] usb 11-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  886.965671][   T34] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  886.968230][   T34] usb 11-1: Product: syz
[  886.969574][   T34] usb 11-1: Manufacturer: syz
[  886.971121][   T34] usb 11-1: SerialNumber: syz
[  886.976726][   T34] usb 11-1: config 0 descriptor??
[  887.436171][T11220] usb 11-1: USB disconnect, device number 24
[  888.169357][   T40] audit: type=1804 audit(1760529390.183:16008): pid=18237 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3192" name="/newroot/139/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  889.545555][   T29] usb 38-1: device descriptor read/8, error -110
[  889.656040][T18241] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  889.727606][T18253] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3197'.
[  889.838618][T18257] FAULT_INJECTION: forcing a failure.
[  889.838618][T18257] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  889.846132][T18257] CPU: 1 UID: 0 PID: 18257 Comm: syz.0.3195 Not tainted syzkaller #0 PREEMPT(full) 
[  889.846163][T18257] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  889.846172][T18257] Call Trace:
[  889.846177][T18257]  <TASK>
[  889.846182][T18257]  dump_stack_lvl+0x16c/0x1f0
[  889.846208][T18257]  should_fail_ex+0x512/0x640
[  889.846231][T18257]  _copy_from_iter+0x29f/0x1720
[  889.846252][T18257]  ? __alloc_skb+0x200/0x380
[  889.846270][T18257]  ? __pfx__copy_from_iter+0x10/0x10
[  889.846289][T18257]  ? netlink_autobind.isra.0+0xa8/0x370
[  889.846325][T18257]  netlink_sendmsg+0x820/0xdd0
[  889.846348][T18257]  ? __pfx_netlink_sendmsg+0x10/0x10
[  889.846367][T18257]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  889.846383][T18257]  ____sys_sendmsg+0xa98/0xc70
[  889.846398][T18257]  ? __pfx_____sys_sendmsg+0x10/0x10
[  889.846410][T18257]  ? get_compat_msghdr+0x11a/0x170
[  889.846434][T18257]  ___sys_sendmsg+0x134/0x1d0
[  889.846452][T18257]  ? __pfx____sys_sendmsg+0x10/0x10
[  889.846474][T18257]  ? find_held_lock+0x2b/0x80
[  889.846500][T18257]  __sys_sendmsg+0x16d/0x220
[  889.846517][T18257]  ? __pfx___sys_sendmsg+0x10/0x10
[  889.846539][T18257]  ? rcu_is_watching+0x12/0xc0
[  889.846558][T18257]  __do_fast_syscall_32+0x7c/0x300
[  889.846577][T18257]  do_fast_syscall_32+0x32/0x80
[  889.846594][T18257]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  889.846610][T18257] RIP: 0023:0xf7fd2579
[  889.846620][T18257] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  889.846631][T18257] RSP: 002b:00000000f548455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  889.846642][T18257] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000040
[  889.846649][T18257] RDX: 0000000000044014 RSI: 0000000000000000 RDI: 0000000000000000
[  889.846656][T18257] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  889.846662][T18257] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  889.846668][T18257] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  889.846682][T18257]  </TASK>
[  889.983620][   T29] usb usb38-port1: attempt power cycle
[  890.834797][   T29] usb usb38-port1: unable to enumerate USB device
[  890.928032][ T1112] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[  890.930219][ T1112] ata1: failed to read log page 10h (errno=-5)
[  890.936974][ T1112] ata1.00: exception Emask 0x1 SAct 0x40 SErr 0x0 action 0x0
[  890.945346][ T1112] ata1.00: irq_stat 0x40000000
[  890.947128][ T1112] ata1.00: failed command: READ FPDMA QUEUED
[  890.949193][ T1112] ata1.00: cmd 60/00:30:0e:16:08/01:00:00:00:00/40 tag 6 ncq dma 131072 in
[  890.949193][ T1112]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  891.085228][ T1112] ata1.00: status: { DRDY }
[  891.087055][ T1112] ata1.00: error: { ABRT }
[  891.110708][ T1112] ata1.00: configured for UDMA/100
[  891.113554][ T1112] sd 0:0:0:0: [sda] tag#6 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  891.117993][ T1112] sd 0:0:0:0: [sda] tag#6 Sense Key : Aborted Command [current] 
[  891.121303][ T1112] sd 0:0:0:0: [sda] tag#6 Add. Sense: No additional sense information
[  891.124675][ T1112] sd 0:0:0:0: [sda] tag#6 CDB: Read(10) 28 00 00 08 16 0e 00 01 00 00
[  891.129191][ T1112] I/O error, dev sda, sector 529934 op 0x0:(READ) flags 0x84700 phys_seg 32 prio class 2
[  891.133358][ T1112] ata1: EH complete
[  891.435214][   T34] usb 11-1: new high-speed USB device number 25 using dummy_hcd
[  891.585227][   T34] usb 11-1: Using ep0 maxpacket: 16
[  891.589541][   T34] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  891.596234][   T34] usb 11-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  891.600028][   T34] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  891.603655][   T34] usb 11-1: Product: syz
[  891.606837][   T34] usb 11-1: Manufacturer: syz
[  891.608880][   T34] usb 11-1: SerialNumber: syz
[  891.613215][   T34] usb 11-1: config 0 descriptor??
[  892.136428][ T5947] usb 11-1: USB disconnect, device number 25
[  893.844643][T18307] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  894.679296][T18312] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  894.858290][T18325] FAULT_INJECTION: forcing a failure.
[  894.858290][T18325] name failslab, interval 1, probability 0, space 0, times 0
[  894.863082][T18325] CPU: 0 UID: 0 PID: 18325 Comm: syz.5.3215 Not tainted syzkaller #0 PREEMPT(full) 
[  894.863097][T18325] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  894.863105][T18325] Call Trace:
[  894.863110][T18325]  <TASK>
[  894.863115][T18325]  dump_stack_lvl+0x16c/0x1f0
[  894.863139][T18325]  should_fail_ex+0x512/0x640
[  894.863159][T18325]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  894.863171][T18325]  should_failslab+0xc2/0x120
[  894.863185][T18325]  kmem_cache_alloc_noprof+0x75/0x6e0
[  894.863201][T18325]  ? skb_clone+0x190/0x3f0
[  894.863223][T18325]  ? skb_clone+0x190/0x3f0
[  894.863238][T18325]  skb_clone+0x190/0x3f0
[  894.863255][T18325]  netlink_deliver_tap+0xabd/0xd30
[  894.863276][T18325]  netlink_unicast+0x64c/0x870
[  894.863296][T18325]  ? __pfx_netlink_unicast+0x10/0x10
[  894.863318][T18325]  netlink_sendmsg+0x8c8/0xdd0
[  894.863354][T18325]  ? __pfx_netlink_sendmsg+0x10/0x10
[  894.863373][T18325]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  894.863390][T18325]  ____sys_sendmsg+0xa98/0xc70
[  894.863404][T18325]  ? __pfx_____sys_sendmsg+0x10/0x10
[  894.863416][T18325]  ? get_compat_msghdr+0x11a/0x170
[  894.863440][T18325]  ___sys_sendmsg+0x134/0x1d0
[  894.863457][T18325]  ? __pfx____sys_sendmsg+0x10/0x10
[  894.863480][T18325]  ? find_held_lock+0x2b/0x80
[  894.863548][T18325]  __sys_sendmsg+0x16d/0x220
[  894.863566][T18325]  ? __pfx___sys_sendmsg+0x10/0x10
[  894.863588][T18325]  ? rcu_is_watching+0x12/0xc0
[  894.863606][T18325]  __do_fast_syscall_32+0x7c/0x300
[  894.863626][T18325]  do_fast_syscall_32+0x32/0x80
[  894.863643][T18325]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  894.863658][T18325] RIP: 0023:0xf708d579
[  894.863667][T18325] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  894.863678][T18325] RSP: 002b:00000000f547d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  894.863689][T18325] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  894.863696][T18325] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  894.863702][T18325] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  894.863708][T18325] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  894.863714][T18325] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  894.863733][T18325]  </TASK>
[  895.362925][   T40] audit: type=1326 audit(1760529397.373:16009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18331 comm="syz.0.3218" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x0
[  895.391348][T18334] 9pnet_fd: Insufficient options for proto=fd
[  895.566478][ T1112] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[  895.568825][ T1112] ata1: failed to read log page 10h (errno=-5)
[  895.570917][ T1112] ata1.00: exception Emask 0x1 SAct 0x8000 SErr 0x0 action 0x0
[  895.573382][ T1112] ata1.00: irq_stat 0x40000000
[  895.575017][ T1112] ata1.00: failed command: WRITE FPDMA QUEUED
[  895.577707][ T1112] ata1.00: cmd 61/18:78:de:21:10/00:00:00:00:00/40 tag 15 ncq dma 12288 out
[  895.577707][ T1112]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  895.583514][ T1112] ata1.00: status: { DRDY }
[  895.585936][ T1112] ata1.00: error: { ABRT }
[  895.588382][ T1112] ata1.00: configured for UDMA/100
[  895.590426][ T1112] ata1: EH complete
[  895.610395][T18336] binder: 18331:18336 ioctl e284 800003c0 returned -22
[  895.620074][T18338] xt_CT: You must specify a L4 protocol and not use inversions on it
[  896.419074][T18344] x_tables: duplicate underflow at hook 3
[  896.445863][T18326] FAULT_INJECTION: forcing a failure.
[  896.445863][T18326] name failslab, interval 1, probability 0, space 0, times 0
[  896.449925][T18326] CPU: 0 UID: 0 PID: 18326 Comm: syz.4.3214 Not tainted syzkaller #0 PREEMPT(full) 
[  896.449942][T18326] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  896.449951][T18326] Call Trace:
[  896.449956][T18326]  <TASK>
[  896.449962][T18326]  dump_stack_lvl+0x16c/0x1f0
[  896.449989][T18326]  should_fail_ex+0x512/0x640
[  896.450010][T18326]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  896.450029][T18326]  should_failslab+0xc2/0x120
[  896.450042][T18326]  kmem_cache_alloc_noprof+0x75/0x6e0
[  896.450058][T18326]  ? mm_alloc+0x1c/0xc0
[  896.450121][T18326]  ? mm_alloc+0x1c/0xc0
[  896.450137][T18326]  mm_alloc+0x1c/0xc0
[  896.450153][T18326]  alloc_bprm+0x2af/0x710
[  896.450174][T18326]  do_execveat_common.isra.0+0x1ce/0x610
[  896.450193][T18326]  __ia32_compat_sys_execveat+0xe0/0x120
[  896.450212][T18326]  __do_fast_syscall_32+0x7c/0x300
[  896.450233][T18326]  do_fast_syscall_32+0x32/0x80
[  896.450252][T18326]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  896.450269][T18326] RIP: 0023:0xf7f16579
[  896.450279][T18326] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  896.450291][T18326] RSP: 002b:00000000f53e555c EFLAGS: 00000296 ORIG_RAX: 0000000000000166
[  896.450303][T18326] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000080000040
[  896.450311][T18326] RDX: 0000000000000000 RSI: 0000000080004780 RDI: 0000000000001000
[  896.450318][T18326] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  896.450324][T18326] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  896.450332][T18326] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  896.450347][T18326]  </TASK>
[  897.071255][T18363] loop3: detected capacity change from 0 to 7
[  897.077396][T17798] Dev loop3: unable to read RDB block 7
[  897.079811][T17798]  loop3: unable to read partition table
[  897.084196][T17798] loop3: partition table beyond EOD, truncated
[  897.091008][T18363] Dev loop3: unable to read RDB block 7
[  897.092905][T18363]  loop3: unable to read partition table
[  897.094973][T18363] loop3: partition table beyond EOD, truncated
[  897.097177][T18363] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[  897.135029][T18366] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3227'.
[  898.224882][T18381] netlink: 'syz.6.3231': attribute type 1 has an invalid length.
[  898.238830][T18381] 8021q: adding VLAN 0 to HW filter on device bond2
[  898.328000][T18386] FAULT_INJECTION: forcing a failure.
[  898.328000][T18386] name failslab, interval 1, probability 0, space 0, times 0
[  898.332365][T18386] CPU: 0 UID: 0 PID: 18386 Comm: syz.4.3232 Not tainted syzkaller #0 PREEMPT(full) 
[  898.332388][T18386] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  898.332417][T18386] Call Trace:
[  898.332424][T18386]  <TASK>
[  898.332432][T18386]  dump_stack_lvl+0x16c/0x1f0
[  898.332466][T18386]  should_fail_ex+0x512/0x640
[  898.332493][T18386]  ? fs_reclaim_acquire+0xae/0x150
[  898.332513][T18386]  should_failslab+0xc2/0x120
[  898.332531][T18386]  kmem_cache_alloc_noprof+0x75/0x6e0
[  898.332553][T18386]  ? __pfx_map_id_range_down+0x10/0x10
[  898.332600][T18386]  ? security_inode_alloc+0x3b/0x2b0
[  898.332643][T18386]  ? security_inode_alloc+0x3b/0x2b0
[  898.332659][T18386]  security_inode_alloc+0x3b/0x2b0
[  898.332685][T18386]  inode_init_always_gfp+0xce4/0x1030
[  898.332715][T18386]  alloc_inode+0x86/0x240
[  898.332732][T18386]  sock_alloc+0x40/0x280
[  898.332751][T18386]  __sock_create+0xc1/0x8d0
[  898.332776][T18386]  __sys_socket+0x14d/0x260
[  898.332797][T18386]  ? __pfx___sys_socket+0x10/0x10
[  898.332815][T18386]  ? ksys_write+0x1ac/0x250
[  898.332841][T18386]  ? __pfx_ksys_write+0x10/0x10
[  898.332870][T18386]  __ia32_sys_socket+0x72/0xb0
[  898.332890][T18386]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  898.332919][T18386]  __do_fast_syscall_32+0x7c/0x300
[  898.332948][T18386]  do_fast_syscall_32+0x32/0x80
[  898.332973][T18386]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  898.332994][T18386] RIP: 0023:0xf7f16579
[  898.333009][T18386] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  898.333025][T18386] RSP: 002b:00000000f53e555c EFLAGS: 00000296 ORIG_RAX: 0000000000000167
[  898.333044][T18386] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000000002
[  898.333055][T18386] RDX: 0000000000000073 RSI: 0000000000000000 RDI: 0000000000000000
[  898.333065][T18386] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  898.333076][T18386] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  898.333086][T18386] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  898.333110][T18386]  </TASK>
[  898.333247][T18386] socket: no more sockets
[  898.410601][T18381] bond2 (unregistering): Released all slaves
[  899.164795][   T40] audit: type=1326 audit(1760529401.173:16010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18397 comm="syz.4.3236" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[  901.014585][T18419] netlink: 'syz.4.3243': attribute type 4 has an invalid length.
[  901.571081][T18426] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  903.032734][T18454] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(9)
[  903.035500][T18454] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  903.040018][T18454] vhci_hcd vhci_hcd.0: Device attached
[  903.315299][T12714] usb 50-1: SetAddress Request (2) to port 0
[  903.318514][T12714] usb 50-1: new SuperSpeed USB device number 2 using vhci_hcd
[  903.665837][T18455] vhci_hcd: connection reset by peer
[  903.669132][   T61] vhci_hcd: stop threads
[  903.670551][   T61] vhci_hcd: release socket
[  903.672264][   T61] vhci_hcd: disconnect device
[  904.164633][T18469] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  905.616514][T18497] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3262'.
[  905.621525][T18497] netlink: 5948 bytes leftover after parsing attributes in process `syz.0.3262'.
[  905.632869][T18497] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3262'.
[  907.082541][T18520] 9pnet_virtio: no channels available for device syz
[  907.105195][   T40] audit: type=1804 audit(1760529409.103:16011): pid=18518 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.3266" name="/newroot/116/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  907.592599][T18524] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  907.756368][T18517] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  908.032871][T18536] loop2: detected capacity change from 0 to 7
[  908.057145][T18519] Dev loop2: unable to read RDB block 7
[  908.059889][T18519]  loop2: unable to read partition table
[  908.078698][T18519] loop2: partition table beyond EOD, truncated
[  908.098753][T18536] Dev loop2: unable to read RDB block 7
[  908.100823][T18536]  loop2: unable to read partition table
[  908.106649][T18536] loop2: partition table beyond EOD, truncated
[  908.114627][T18536] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  908.200449][T18540] netfs: Couldn't get user pages (rc=-14)
[  908.345883][T12714] usb 50-1: device descriptor read/8, error -110
[  908.574844][T18552] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  908.577023][T18552] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  908.579839][T18552] vhci_hcd vhci_hcd.0: Device attached
[  908.750660][T12714] usb usb50-port1: attempt power cycle
[  909.018785][ T6023] usb 45-1: new low-speed USB device number 11 using vhci_hcd
[  909.396830][T18553] vhci_hcd: connection reset by peer
[  909.426667][T16795] vhci_hcd: stop threads
[  909.428189][T16795] vhci_hcd: release socket
[  909.429698][T16795] vhci_hcd: disconnect device
[  910.186296][T12714] usb usb50-port1: unable to enumerate USB device
[  910.200690][T18565] 9pnet_virtio: no channels available for device syz
[  911.251898][   T40] audit: type=1326 audit(1760529413.263:16012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18579 comm="syz.0.3284" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x0
[  911.329792][T18576] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  913.277528][   T40] audit: type=1804 audit(1760529415.293:16013): pid=18614 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.3298" name="/newroot/122/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  914.059219][   T40] audit: type=1804 audit(1760529416.073:16014): pid=18627 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.3293" name="/newroot/163/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  914.186438][ T6023] vhci_hcd: vhci_device speed not set
[  915.073302][T18639] loop3: detected capacity change from 0 to 7
[  915.076938][T18639] Dev loop3: unable to read RDB block 7
[  915.079573][T18639]  loop3: unable to read partition table
[  915.082593][T18639] loop3: partition table beyond EOD, truncated
[  915.085686][T18639] loop_reread_partitions: partition scan of loop3 (þ被xü—ŸÑà– ) failed (rc=-5)
[  915.158369][T18643] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3299'.
[  915.223592][T18636] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  915.229713][T18644] 9pnet: Could not find request transport: vir_éq0¢ÈZy(âµio
[  917.365296][T15312] usb 9-1: new high-speed USB device number 33 using dummy_hcd
[  917.516919][T15312] usb 9-1: Using ep0 maxpacket: 16
[  917.520310][T15312] usb 9-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  917.527033][T15312] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  917.530624][T15312] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  917.533333][T15312] usb 9-1: Product: syz
[  917.534784][T15312] usb 9-1: Manufacturer: syz
[  917.536925][T15312] usb 9-1: SerialNumber: syz
[  917.544122][T15312] usb 9-1: config 0 descriptor??
[  917.981404][T15312] usb 9-1: USB disconnect, device number 33
[  918.140543][T18695] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  918.987834][T18705] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3318'.
[  918.994134][T18705] netlink: 5948 bytes leftover after parsing attributes in process `syz.6.3318'.
[  919.000525][T18705] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3318'.
[  920.367572][T18726] FAULT_INJECTION: forcing a failure.
[  920.367572][T18726] name failslab, interval 1, probability 0, space 0, times 0
[  920.371556][T18726] CPU: 0 UID: 0 PID: 18726 Comm: syz.5.3324 Not tainted syzkaller #0 PREEMPT(full) 
[  920.371571][T18726] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  920.371578][T18726] Call Trace:
[  920.371596][T18726]  <TASK>
[  920.371602][T18726]  dump_stack_lvl+0x16c/0x1f0
[  920.371897][T18726]  should_fail_ex+0x512/0x640
[  920.372002][T18726]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  920.372073][T18726]  should_failslab+0xc2/0x120
[  920.372094][T18726]  kmem_cache_alloc_noprof+0x75/0x6e0
[  920.372109][T18726]  ? sk_prot_alloc+0x60/0x2a0
[  920.372196][T18726]  ? sk_prot_alloc+0x60/0x2a0
[  920.372218][T18726]  sk_prot_alloc+0x60/0x2a0
[  920.372230][T18726]  sk_alloc+0x36/0xc20
[  920.372247][T18726]  inet_create+0x3a1/0x1040
[  920.372296][T18726]  ? inet_create+0x93/0x1040
[  920.372312][T18726]  __sock_create+0x338/0x8d0
[  920.372340][T18726]  __sys_socket+0x14d/0x260
[  920.372355][T18726]  ? __pfx___sys_socket+0x10/0x10
[  920.372368][T18726]  ? syscall_trace_enter+0x1cb/0x240
[  920.372425][T18726]  __ia32_sys_socket+0x72/0xb0
[  920.372438][T18726]  __do_fast_syscall_32+0x7c/0x300
[  920.372463][T18726]  do_fast_syscall_32+0x32/0x80
[  920.372480][T18726]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  920.372517][T18726] RIP: 0023:0xf708d579
[  920.372527][T18726] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  920.372538][T18726] RSP: 002b:00000000f547d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000167
[  920.372559][T18726] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000000002
[  920.372566][T18726] RDX: 0000000000000073 RSI: 0000000000000000 RDI: 0000000000000000
[  920.372572][T18726] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  920.372579][T18726] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  920.372585][T18726] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  920.372599][T18726]  </TASK>
[  920.446980][   T40] audit: type=1326 audit(1760529422.413:16015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18718 comm="syz.0.3322" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  920.465396][   T40] audit: type=1326 audit(1760529422.413:16016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18718 comm="syz.0.3322" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2579 code=0x7ffc0000
[  920.483540][T18729] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  921.135654][   T29] usb 11-1: new high-speed USB device number 26 using dummy_hcd
[  921.296539][   T29] usb 11-1: Using ep0 maxpacket: 16
[  921.302215][   T29] usb 11-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  921.310511][   T29] usb 11-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  921.314822][   T29] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  921.318999][   T29] usb 11-1: Product: syz
[  921.321166][   T29] usb 11-1: Manufacturer: syz
[  921.323606][   T29] usb 11-1: SerialNumber: syz
[  921.328043][   T29] usb 11-1: config 0 descriptor??
[  921.725757][    T9] usb 11-1: USB disconnect, device number 26
[  922.236243][T18762] binder: 18761:18762 ioctl c0306201 80000300 returned -22
[  924.199537][T18793] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(8)
[  924.202045][T18793] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  924.225788][T18793] vhci_hcd vhci_hcd.0: Device attached
[  924.466217][    T9] vhci_hcd: vhci_device speed not set
[  924.625190][    T9] usb 47-1: new full-speed USB device number 10 using vhci_hcd
[  925.405145][T18794] vhci_hcd: connection reset by peer
[  925.408219][ T1143] vhci_hcd: stop threads
[  925.409699][ T1143] vhci_hcd: release socket
[  925.411525][ T1143] vhci_hcd: disconnect device
[  926.136766][T18815] FAULT_INJECTION: forcing a failure.
[  926.136766][T18815] name failslab, interval 1, probability 0, space 0, times 0
[  926.142805][T18815] CPU: 1 UID: 0 PID: 18815 Comm: syz.0.3347 Not tainted syzkaller #0 PREEMPT(full) 
[  926.142835][T18815] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  926.142848][T18815] Call Trace:
[  926.142860][T18815]  <TASK>
[  926.142870][T18815]  dump_stack_lvl+0x16c/0x1f0
[  926.142909][T18815]  should_fail_ex+0x512/0x640
[  926.142941][T18815]  ? kmem_cache_alloc_node_noprof+0x65/0x770
[  926.142973][T18815]  should_failslab+0xc2/0x120
[  926.142994][T18815]  kmem_cache_alloc_node_noprof+0x78/0x770
[  926.143019][T18815]  ? kasan_save_track+0x14/0x30
[  926.143046][T18815]  ? __alloc_skb+0x2b2/0x380
[  926.143073][T18815]  ? genl_start+0x1e8/0x980
[  926.143131][T18815]  ? __alloc_skb+0x2b2/0x380
[  926.143153][T18815]  __alloc_skb+0x2b2/0x380
[  926.143181][T18815]  ? __pfx___alloc_skb+0x10/0x10
[  926.143245][T18815]  netlink_dump+0x19b/0xd30
[  926.143279][T18815]  ? __pfx_netlink_dump+0x10/0x10
[  926.143318][T18815]  ? __asan_memset+0x23/0x50
[  926.143346][T18815]  ? genl_start+0x67f/0x980
[  926.143369][T18815]  __netlink_dump_start+0x6d6/0x990
[  926.143402][T18815]  genl_family_rcv_msg_dumpit+0x1e2/0x2e0
[  926.143434][T18815]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  926.143457][T18815]  ? genl_op_from_small+0x25/0x440
[  926.143482][T18815]  ? __pfx_genl_get_cmd+0x10/0x10
[  926.143500][T18815]  ? __pfx_genl_start+0x10/0x10
[  926.143517][T18815]  ? __pfx_genl_dumpit+0x10/0x10
[  926.143535][T18815]  ? __pfx_genl_done+0x10/0x10
[  926.143559][T18815]  ? __radix_tree_lookup+0x21f/0x2c0
[  926.143590][T18815]  genl_rcv_msg+0x46e/0x800
[  926.143615][T18815]  ? __pfx_genl_rcv_msg+0x10/0x10
[  926.143636][T18815]  ? __pfx_nl80211_dump_interface+0x10/0x10
[  926.143735][T18815]  netlink_rcv_skb+0x158/0x420
[  926.143753][T18815]  ? __pfx_genl_rcv_msg+0x10/0x10
[  926.143777][T18815]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  926.143807][T18815]  ? netlink_deliver_tap+0x1ae/0xd30
[  926.143840][T18815]  genl_rcv+0x28/0x40
[  926.143859][T18815]  netlink_unicast+0x5aa/0x870
[  926.143893][T18815]  ? __pfx_netlink_unicast+0x10/0x10
[  926.143933][T18815]  netlink_sendmsg+0x8c8/0xdd0
[  926.143968][T18815]  ? __pfx_netlink_sendmsg+0x10/0x10
[  926.144001][T18815]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  926.144078][T18815]  ____sys_sendmsg+0xa98/0xc70
[  926.144104][T18815]  ? __pfx_____sys_sendmsg+0x10/0x10
[  926.144124][T18815]  ? get_compat_msghdr+0x11a/0x170
[  926.144185][T18815]  ___sys_sendmsg+0x134/0x1d0
[  926.144214][T18815]  ? __pfx____sys_sendmsg+0x10/0x10
[  926.144256][T18815]  ? find_held_lock+0x2b/0x80
[  926.144318][T18815]  __sys_sendmsg+0x16d/0x220
[  926.144347][T18815]  ? __pfx___sys_sendmsg+0x10/0x10
[  926.144386][T18815]  ? rcu_is_watching+0x12/0xc0
[  926.144418][T18815]  __do_fast_syscall_32+0x7c/0x300
[  926.144456][T18815]  do_fast_syscall_32+0x32/0x80
[  926.144485][T18815]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  926.144508][T18815] RIP: 0023:0xf7fd2579
[  926.144526][T18815] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  926.144543][T18815] RSP: 002b:00000000f548455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  926.144565][T18815] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000040
[  926.144577][T18815] RDX: 0000000000044014 RSI: 0000000000000000 RDI: 0000000000000000
[  926.144590][T18815] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  926.144601][T18815] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  926.144612][T18815] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  926.144639][T18815]  </TASK>
[  926.303010][    C1] vkms_vblank_simulate: vblank timer overrun
[  927.024230][T18836] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3351'.
[  927.096050][T18836] netfs: Couldn't get user pages (rc=-14)
[  927.155220][T12714] usb 9-1: new high-speed USB device number 34 using dummy_hcd
[  927.325316][T12714] usb 9-1: Using ep0 maxpacket: 16
[  927.753810][T12714] usb 9-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  927.760846][T12714] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  927.764999][T12714] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  927.768842][T12714] usb 9-1: Product: syz
[  927.770655][T12714] usb 9-1: Manufacturer: syz
[  927.772846][T12714] usb 9-1: SerialNumber: syz
[  927.791132][T12714] usb 9-1: config 0 descriptor??
[  928.345410][T12714] usb 9-1: USB disconnect, device number 34
[  929.777391][    T9] vhci_hcd: vhci_device speed not set
[  930.558525][T18873] FAULT_INJECTION: forcing a failure.
[  930.558525][T18873] name failslab, interval 1, probability 0, space 0, times 0
[  930.563575][T18873] CPU: 1 UID: 0 PID: 18873 Comm: syz.6.3361 Not tainted syzkaller #0 PREEMPT(full) 
[  930.563613][T18873] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  930.563622][T18873] Call Trace:
[  930.563630][T18873]  <TASK>
[  930.563638][T18873]  dump_stack_lvl+0x16c/0x1f0
[  930.563669][T18873]  should_fail_ex+0x512/0x640
[  930.563695][T18873]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  930.563712][T18873]  should_failslab+0xc2/0x120
[  930.563729][T18873]  kmem_cache_alloc_noprof+0x75/0x6e0
[  930.563750][T18873]  ? skb_clone+0x190/0x3f0
[  930.563778][T18873]  ? skb_clone+0x190/0x3f0
[  930.563798][T18873]  skb_clone+0x190/0x3f0
[  930.563818][T18873]  netlink_deliver_tap+0xabd/0xd30
[  930.563843][T18873]  netlink_unicast+0x64c/0x870
[  930.563865][T18873]  ? __pfx_netlink_unicast+0x10/0x10
[  930.563891][T18873]  netlink_sendmsg+0x8c8/0xdd0
[  930.563914][T18873]  ? __pfx_netlink_sendmsg+0x10/0x10
[  930.563936][T18873]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  930.563953][T18873]  ____sys_sendmsg+0xa98/0xc70
[  930.563970][T18873]  ? __pfx_____sys_sendmsg+0x10/0x10
[  930.563984][T18873]  ? get_compat_msghdr+0x11a/0x170
[  930.564010][T18873]  ___sys_sendmsg+0x134/0x1d0
[  930.564029][T18873]  ? __pfx____sys_sendmsg+0x10/0x10
[  930.564056][T18873]  ? find_held_lock+0x2b/0x80
[  930.564085][T18873]  __sys_sendmsg+0x16d/0x220
[  930.564104][T18873]  ? __pfx___sys_sendmsg+0x10/0x10
[  930.564130][T18873]  ? rcu_is_watching+0x12/0xc0
[  930.564151][T18873]  __do_fast_syscall_32+0x7c/0x300
[  930.564174][T18873]  do_fast_syscall_32+0x32/0x80
[  930.564193][T18873]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  930.564211][T18873] RIP: 0023:0xf7f63579
[  930.564222][T18873] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  930.564234][T18873] RSP: 002b:00000000f541455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  930.564247][T18873] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000100
[  930.564255][T18873] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  930.564262][T18873] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  930.564269][T18873] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  930.564276][T18873] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  930.564293][T18873]  </TASK>
[  930.564912][T18873] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  930.858868][ T1143] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  931.084745][ T1143] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  931.181651][ T1143] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  931.290151][ T1143] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  931.441658][ T1143] bridge_slave_1: left allmulticast mode
[  931.444375][ T1143] bridge_slave_1: left promiscuous mode
[  931.455912][ T1143] bridge0: port 2(bridge_slave_1) entered disabled state
[  931.468798][ T1143] bridge_slave_0: left allmulticast mode
[  931.470729][ T1143] bridge_slave_0: left promiscuous mode
[  931.472721][ T1143] bridge0: port 1(bridge_slave_0) entered disabled state
[  931.566490][ T5943] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  931.570312][ T5943] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  931.573183][ T5943] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  931.577809][ T5943] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  931.580457][ T5943] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  931.586087][   T53] usb 9-1: new high-speed USB device number 35 using dummy_hcd
[  931.750989][   T53] usb 9-1: Using ep0 maxpacket: 16
[  931.758604][   T53] usb 9-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  931.779953][   T53] usb 9-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  931.791188][   T53] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  931.807019][   T53] usb 9-1: Product: syz
[  931.808730][   T53] usb 9-1: Manufacturer: syz
[  931.810494][   T53] usb 9-1: SerialNumber: syz
[  931.894499][   T53] usb 9-1: config 0 descriptor??
[  932.343122][    C1] vkms_vblank_simulate: vblank timer overrun
[  932.432592][ T1143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  932.447239][ T1143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  932.461114][ T1143] bond0 (unregistering): Released all slaves
[  932.467025][T15312] usb 9-1: USB disconnect, device number 35
[  932.814199][T18890] chnl_net:caif_netlink_parms(): no params data found
[  932.927829][ T1143] hsr_slave_0: left promiscuous mode
[  932.931967][ T1143] hsr_slave_1: left promiscuous mode
[  932.934582][ T1143] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  932.938358][ T1143] batman_adv: batadv0: Removing interface: batadv_slave_0
[  932.942920][ T1143] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  932.946774][ T1143] batman_adv: batadv0: Removing interface: batadv_slave_1
[  932.982334][ T1143] veth1_macvtap: left promiscuous mode
[  932.984274][ T1143] veth0_macvtap: left promiscuous mode
[  932.986794][ T1143] veth1_vlan: left promiscuous mode
[  932.988752][ T1143] veth0_vlan: left promiscuous mode
[  933.625914][ T5302] Bluetooth: hci0: command tx timeout
[  934.211325][ T1143] team0 (unregistering): Port device team_slave_1 removed
[  934.378683][ T1143] team0 (unregistering): Port device team_slave_0 removed
[  935.517478][T18939] 9pnet_virtio: no channels available for device syz
[  935.692540][T18890] bridge0: port 1(bridge_slave_0) entered blocking state
[  935.696612][T18890] bridge0: port 1(bridge_slave_0) entered disabled state
[  935.700596][T18890] bridge_slave_0: entered allmulticast mode
[  935.704699][T18890] bridge_slave_0: entered promiscuous mode
[  935.710001][T18890] bridge0: port 2(bridge_slave_1) entered blocking state
[  935.712636][T18890] bridge0: port 2(bridge_slave_1) entered disabled state
[  935.715364][ T5302] Bluetooth: hci0: command tx timeout
[  935.715765][T18890] bridge_slave_1: entered allmulticast mode
[  935.720924][T18890] bridge_slave_1: entered promiscuous mode
[  935.831644][T18890] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  935.844942][T18890] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  935.983198][T18890] team0: Port device team_slave_0 added
[  935.987714][T18890] team0: Port device team_slave_1 added
[  936.057315][T18890] batman_adv: batadv0: Adding interface: batadv_slave_0
[  936.060002][T18890] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  936.069344][T18890] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  936.075613][T18890] batman_adv: batadv0: Adding interface: batadv_slave_1
[  936.078259][T18890] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  936.087804][T18890] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  936.140234][T18890] hsr_slave_0: entered promiscuous mode
[  936.143068][T18890] hsr_slave_1: entered promiscuous mode
[  936.146734][T18890] debugfs: 'hsr0' already exists in 'hsr'
[  936.148958][T18890] Cannot create hsr debugfs directory
[  936.360700][T18959] fuse: Invalid rootmode
[  936.484258][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  936.671632][T18969] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3381'.
[  936.706115][T18890] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  936.719429][T18890] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  936.736159][T18890] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  936.745973][T18890] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  936.865876][T18890] 8021q: adding VLAN 0 to HW filter on device bond0
[  936.875566][T18890] 8021q: adding VLAN 0 to HW filter on device team0
[  936.903720][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  936.906532][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  936.920863][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  936.923209][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  937.167485][T18890] 8021q: adding VLAN 0 to HW filter on device batadv0
[  937.434250][T18890] veth0_vlan: entered promiscuous mode
[  937.628893][T18890] veth1_vlan: entered promiscuous mode
[  937.795481][ T5302] Bluetooth: hci0: command tx timeout
[  937.868038][T18890] veth0_macvtap: entered promiscuous mode
[  937.931965][T18890] veth1_macvtap: entered promiscuous mode
[  937.962996][T18890] batman_adv: batadv0: Interface activated: batadv_slave_0
[  937.977330][T18890] batman_adv: batadv0: Interface activated: batadv_slave_1
[  937.986480][ T1234] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  937.989541][ T1234] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  937.993183][ T1234] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  937.998019][ T1234] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  938.040109][ T1234] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  938.043497][ T1234] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  938.059959][ T1234] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  938.062695][ T1234] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  938.100943][T19008] FAULT_INJECTION: forcing a failure.
[  938.100943][T19008] name failslab, interval 1, probability 0, space 0, times 0
[  938.109235][T19008] CPU: 2 UID: 0 PID: 19008 Comm: syz.6.3385 Not tainted syzkaller #0 PREEMPT(full) 
[  938.109254][T19008] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  938.109262][T19008] Call Trace:
[  938.109278][T19008]  <TASK>
[  938.109283][T19008]  dump_stack_lvl+0x16c/0x1f0
[  938.109504][T19008]  should_fail_ex+0x512/0x640
[  938.109603][T19008]  ? kmem_cache_alloc_noprof+0x62/0x6e0
[  938.109671][T19008]  should_failslab+0xc2/0x120
[  938.109691][T19008]  kmem_cache_alloc_noprof+0x75/0x6e0
[  938.109706][T19008]  ? __kernfs_new_node+0xd2/0x8e0
[  938.109738][T19008]  ? __kernfs_new_node+0xd2/0x8e0
[  938.109754][T19008]  __kernfs_new_node+0xd2/0x8e0
[  938.109773][T19008]  ? __pfx___kernfs_new_node+0x10/0x10
[  938.109793][T19008]  ? find_held_lock+0x2b/0x80
[  938.109851][T19008]  ? kernfs_root+0xee/0x2a0
[  938.109864][T19008]  kernfs_new_node+0x13c/0x1e0
[  938.109879][T19008]  kernfs_create_dir_ns+0x4c/0x1a0
[  938.109893][T19008]  sysfs_create_dir_ns+0x13a/0x2b0
[  938.109934][T19008]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  938.109950][T19008]  ? find_held_lock+0x2b/0x80
[  938.109966][T19008]  ? class_dir_child_ns_type+0xd/0x60
[  938.110032][T19008]  kobject_add_internal+0x2c4/0x9b0
[  938.110043][T19008]  ? kobject_add+0x101/0x240
[  938.110055][T19008]  kobject_add+0x16e/0x240
[  938.110065][T19008]  ? __pfx_kobject_add+0x10/0x10
[  938.110077][T19008]  ? kobject_put+0xab/0x5a0
[  938.110095][T19008]  ? device_add+0xbff/0x1aa0
[  938.110107][T19008]  device_add+0x288/0x1aa0
[  938.110117][T19008]  ? __pfx_dev_set_name+0x10/0x10
[  938.110129][T19008]  ? __pfx_device_add+0x10/0x10
[  938.110138][T19008]  ? lockdep_init_map_type+0x5c/0x280
[  938.110151][T19008]  ? __init_waitqueue_head+0xca/0x150
[  938.110169][T19008]  wakeup_source_device_create+0x243/0x2e0
[  938.110201][T19008]  wakeup_source_sysfs_add+0x1c/0x90
[  938.110213][T19008]  wakeup_source_register+0x154/0x3e0
[  938.110229][T19008]  ep_create_wakeup_source+0x1dd/0x2e0
[  938.110256][T19008]  ? __pfx_ep_create_wakeup_source+0x10/0x10
[  938.110273][T19008]  ? do_epoll_ctl+0x1565/0x3790
[  938.110295][T19008]  do_epoll_ctl+0x1f60/0x3790
[  938.110327][T19008]  ? __pfx_do_epoll_ctl+0x10/0x10
[  938.110342][T19008]  ? find_held_lock+0x2b/0x80
[  938.110355][T19008]  ? __might_fault+0xe3/0x190
[  938.110385][T19008]  ? __ia32_sys_epoll_ctl+0x15b/0x1e0
[  938.110399][T19008]  __ia32_sys_epoll_ctl+0x15b/0x1e0
[  938.110415][T19008]  ? __pfx___ia32_sys_epoll_ctl+0x10/0x10
[  938.110432][T19008]  ? rcu_is_watching+0x12/0xc0
[  938.110461][T19008]  __do_fast_syscall_32+0x7c/0x300
[  938.110481][T19008]  do_fast_syscall_32+0x32/0x80
[  938.110497][T19008]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  938.110537][T19008] RIP: 0023:0xf7f63579
[  938.110548][T19008] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  938.110558][T19008] RSP: 002b:00000000f545655c EFLAGS: 00000296 ORIG_RAX: 00000000000000ff
[  938.110593][T19008] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000001
[  938.110600][T19008] RDX: 0000000000000003 RSI: 0000000080000200 RDI: 0000000000000000
[  938.110616][T19008] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  938.110621][T19008] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  938.110627][T19008] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  938.110641][T19008]  </TASK>
[  938.110663][T19008] kobject: kobject_add_internal failed for wakeup21 (error: -12 parent: wakeup)
[  938.197826][   T40] audit: type=1326 audit(1760529440.213:16017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19009 comm="syz.7.3365" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf705d579 code=0x0
[  938.201660][T19010] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(6)
[  938.248422][T19010] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  938.261810][T19010] vhci_hcd vhci_hcd.0: Device attached
[  938.294741][T19013] vhci_hcd: connection closed
[  938.299802][ T1241] vhci_hcd: stop threads
[  938.304733][ T1241] vhci_hcd: release socket
[  938.311672][ T1241] vhci_hcd: disconnect device
[  939.865750][ T5302] Bluetooth: hci0: command tx timeout
[  941.823748][   T40] audit: type=1326 audit(1760529443.833:16018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19078 comm="syz.4.3402" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f16579 code=0x0
[  944.082066][T19104] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  944.304498][T19104] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  944.414514][T19104] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  944.497039][T19104] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  944.609405][   T46] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  944.621151][   T46] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  944.645161][   T46] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  944.662039][   T46] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  945.746040][T19120] dlm: Unknown command passed to DLM device : 3
[  945.746040][T19120] 
[  945.754411][T19121] dlm: non-version read from control device 34
[  945.758070][T19120] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3412'.
[  946.271494][T19132] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(10)
[  946.274298][T19132] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  946.280828][T19132] vhci_hcd vhci_hcd.0: Device attached
[  946.599743][T19128] sch_fq: defrate 53322 ignored.
[  946.605359][T12714] usb 46-1: SetAddress Request (10) to port 0
[  946.608158][T12714] usb 46-1: new SuperSpeed USB device number 10 using vhci_hcd
[  946.998067][T19133] vhci_hcd: connection reset by peer
[  947.011616][   T13] vhci_hcd: stop threads
[  947.013628][   T13] vhci_hcd: release socket
[  947.016176][   T13] vhci_hcd: disconnect device
[  947.026012][T19125] Bluetooth: hci3: Opcode 0x0401 failed: -4
[  947.566897][T19145] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  947.945367][ T5302] Bluetooth: hci3: command 0x0c1a tx timeout
[  948.084645][T19152] loop2: detected capacity change from 0 to 7
[  948.090359][T18819] Dev loop2: unable to read RDB block 7
[  948.092763][T18819]  loop2: unable to read partition table
[  948.095501][T18819] loop2: partition table beyond EOD, truncated
[  948.152621][T19152] Dev loop2: unable to read RDB block 7
[  948.154543][T19152]  loop2: unable to read partition table
[  948.156611][T19152] loop2: partition table beyond EOD, truncated
[  948.158634][T19152] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  949.256570][T19170] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3423'.
[  949.259854][T19170] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  949.262525][T19170] batman_adv: batadv0: Removing interface: batadv_slave_0
[  949.328383][T19170] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  949.332170][T19170] batman_adv: batadv0: Removing interface: batadv_slave_1
[  950.327335][T19184] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  951.023035][T19191] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  951.064616][T19191] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  951.067718][T19191] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  951.069656][T19191] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  951.071650][T19191] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  951.096379][T19191] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  951.215600][   T40] audit: type=1804 audit(1760529453.203:16019): pid=19217 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.3428" name="/newroot/166/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  951.472125][T19219] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(4)
[  951.474852][T19219] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  951.479308][T19219] vhci_hcd vhci_hcd.0: Device attached
[  951.705408][T12714] usb 46-1: device descriptor read/8, error -110
[  951.745269][   T53] usb 50-1: SetAddress Request (6) to port 0
[  951.750252][T19220] vhci_hcd: connection closed
[  951.773675][   T53] usb 50-1: new SuperSpeed USB device number 6 using vhci_hcd
[  951.786828][ T1234] vhci_hcd: stop threads
[  951.788756][ T1234] vhci_hcd: release socket
[  951.791275][ T1234] vhci_hcd: disconnect device
[  951.857207][   T53] usb 50-1: enqueue for inactive port 0
[  951.991135][   T40] audit: type=1326 audit(1760529454.003:16020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19231 comm="syz.5.3432" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf708d579 code=0x0
[  952.135691][T12714] usb usb46-port1: attempt power cycle
[  952.252326][   T53] usb usb50-port1: attempt power cycle
[  952.364100][ T5302] Bluetooth: hci1: command 0x0c1a tx timeout
[  952.653026][   T40] audit: type=1804 audit(1760529454.633:16021): pid=19245 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.3441" name="/newroot/167/file0/file0" dev="9p" ino=71827863 res=1 errno=0
[  952.871821][T12714] usb usb46-port1: unable to enumerate USB device
[  952.976994][    C3] vkms_vblank_simulate: vblank timer overrun
[  953.047352][   T53] usb usb50-port1: unable to enumerate USB device
[  953.146057][ T5302] Bluetooth: hci0: command 0x0c1a tx timeout
[  953.149350][ T5302] Bluetooth: hci3: command 0x0c1a tx timeout
[  953.155318][ T5943] Bluetooth: hci2: command 0x0c1a tx timeout
[  953.256909][T19248] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  953.411364][T19259] overlayfs: only single ':' or double '::' sequences of unescaped colons in lowerdir mount option allowed.
[  954.365900][T12714] usb 11-1: new high-speed USB device number 27 using dummy_hcd
[  954.370314][T19279] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  954.372619][T19279] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  954.378251][T19279] vhci_hcd vhci_hcd.0: Device attached
[  954.413177][T19280] vhci_hcd: connection closed
[  954.413456][ T1234] vhci_hcd: stop threads
[  954.421133][ T1234] vhci_hcd: release socket
[  954.423362][ T1234] vhci_hcd: disconnect device
[  954.427993][   T40] audit: type=1326 audit(1760529456.443:16022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19277 comm="syz.7.3446" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705d579 code=0x7ffc0000
[  954.437865][   T40] audit: type=1326 audit(1760529456.443:16023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19277 comm="syz.7.3446" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705d579 code=0x7ffc0000
[  954.645457][T12714] usb 11-1: Using ep0 maxpacket: 16
[  954.649883][T12714] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  954.657173][T12714] usb 11-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  954.661331][T12714] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  954.664725][T12714] usb 11-1: Product: syz
[  954.666695][T12714] usb 11-1: Manufacturer: syz
[  954.668308][T19290] FAULT_INJECTION: forcing a failure.
[  954.668308][T19290] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  954.670981][T19290] 
[  954.670991][T19290] ======================================================
[  954.671022][T19290] WARNING: possible circular locking dependency detected
[  954.671032][T19290] syzkaller #0 Not tainted
[  954.671042][T19290] ------------------------------------------------------
[  954.671048][T19290] syz.7.3449/19290 is trying to acquire lock:
[  954.671060][T19290] ffffffff8e2d1500 (console_owner){-.-.}-{0:0}, at: vprintk_emit+0x493/0x680
[  954.671341][T19290] 
[  954.671341][T19290] but task is already holding lock:
[  954.671348][T19290] ffff88802b43a4d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  954.671436][T19290] 
[  954.671436][T19290] which lock already depends on the new lock.
[  954.671436][T19290] 
[  954.671442][T19290] 
[  954.671442][T19290] the existing dependency chain (in reverse order) is:
[  954.671450][T19290] 
[  954.671450][T19290] -> #4 (&rq->__lock){-.-.}-{2:2}:
[  954.671499][T19290]        _raw_spin_lock_nested+0x31/0x40
[  954.671669][T19290]        raw_spin_rq_lock_nested+0x29/0x130
[  954.671693][T19290]        task_rq_lock+0xcf/0x490
[  954.671715][T19290]        cgroup_move_task+0x81/0x2a0
[  954.671742][T19290]        css_set_move_task+0x288/0x5f0
[  954.671775][T19290]        cgroup_post_fork+0x201/0x9d0
[  954.671796][T19290]        copy_process+0x602d/0x76a0
[  954.671842][T19290]        kernel_clone+0xfc/0x930
[  954.671867][T19290]        user_mode_thread+0xc8/0x110
[  954.671880][T19290]        rest_init+0x23/0x2b0
[  954.671898][T19290]        start_kernel+0x3f6/0x4e0
SYZFAIL: failed to recv rpc
[  954.671980][T19290]        x86_64_start_reservations+0x18/0x30
[  954.672003][T19290]        x86_64_start_kernel+0x130/0x190
[  954.672023][T19290]        common_startup_64+0x13e/0x148
[  954.672072][T19290] 
[  954.672072][T19290] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[  954.672116][T19290]        _raw_spin_lock_irqsave+0x3a/0x60
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  954.672138][T19290]        try_to_wake_up+0xb7/0x1870
[  954.672157][T19290]        __wake_up_common+0x135/0x1f0
[  954.672174][T19290]        __wake_up+0x31/0x60
[  954.672197][T19290]        tty_port_default_wakeup+0x47/0x60
[  954.672293][T19290]        serial8250_tx_chars+0x68e/0x860
[  954.672368][T19290]        serial8250_handle_irq+0x761/0xcb0
[  954.672390][T19290]        serial8250_default_handle_irq+0x9e/0x270
[  954.672417][T19290]        serial8250_interrupt+0xf8/0x1d0
[  954.672441][T19290]        __handle_irq_event_percpu+0x236/0x920
[  954.672476][T19290]        handle_irq_event+0xab/0x1e0
[  954.672497][T19290]        handle_edge_irq+0x3ca/0x9e0
[  954.672517][T19290]        __common_interrupt+0xd0/0x2f0
[  954.672533][T19290]        common_interrupt+0xba/0xe0
[  954.672551][T19290]        asm_common_interrupt+0x26/0x40
[  954.672569][T19290]        pv_native_safe_halt+0xf/0x20
[  954.672591][T19290]        default_idle+0x13/0x20
[  954.672606][T19290]        default_idle_call+0x6c/0xb0
[  954.672620][T19290]        do_idle+0x38d/0x500
[  954.672642][T19290]        cpu_startup_entry+0x4f/0x60
[  954.672664][T19290]        start_secondary+0x21d/0x2b0
[  954.672694][T19290]        common_startup_64+0x13e/0x148
[  954.672716][T19290] 
[  954.672716][T19290] -> #2 (&tty->write_wait){-...}-{3:3}:
[  954.672738][T19290]        _raw_spin_lock_irqsave+0x3a/0x60
[  954.672760][T19290]        __wake_up+0x1c/0x60
[  954.672782][T19290]        tty_port_default_wakeup+0x47/0x60
[  954.672801][T19290]        serial8250_tx_chars+0x68e/0x860
[  954.672821][T19290]        __start_tx+0x3df/0x490
[  954.672840][T19290]        serial8250_start_tx+0x368/0x530
[  954.672860][T19290]        __uart_start+0x295/0x500
[  954.672875][T19290]        uart_write+0x218/0xb30
[  954.672892][T19290]        n_tty_write+0x41e/0x11e0
[  954.672915][T19290]        file_tty_write.constprop.0+0x503/0x9b0
[  954.672934][T19290]        redirected_tty_write+0xd4/0x150
[  954.672951][T19290]        vfs_write+0x7d3/0x11d0
[  954.673017][T19290]        ksys_write+0x12a/0x250
[  954.673038][T19290]        do_syscall_64+0xcd/0xfa0
[  954.673062][T19290]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  954.673078][T19290] 
[  954.673078][T19290] -> #1 (&port_lock_key){-.-.}-{3:3}:
[  954.673100][T19290]        _raw_spin_lock_irqsave+0x3a/0x60
[  954.673121][T19290]        serial8250_console_write+0x181/0x1890
[  954.673145][T19290]        console_flush_all+0x801/0xc60
[  954.673164][T19290]        console_unlock+0xd8/0x210
[  954.673185][T19290]        vprintk_emit+0x3d7/0x680
[  954.673206][T19290]        _printk+0xc7/0x100
[  954.673222][T19290]        register_console+0xc2d/0x11b0
[  954.673243][T19290]        univ8250_console_init+0x5f/0x90
[  954.673318][T19290]        console_init+0x152/0x680
[  954.673340][T19290]        start_kernel+0x29f/0x4e0
[  954.673358][T19290]        x86_64_start_reservations+0x18/0x30
[  954.673378][T19290]        x86_64_start_kernel+0x130/0x190
[  954.673398][T19290]        common_startup_64+0x13e/0x148
[  954.673424][T19290] 
[  954.673424][T19290] -> #0 (console_owner){-.-.}-{0:0}:
[  954.673445][T19290]        __lock_acquire+0x126f/0x1c90
[  954.673463][T19290]        lock_acquire+0x179/0x350
[  954.673478][T19290]        vprintk_emit+0x4a4/0x680
[  954.673499][T19290]        _printk+0xc7/0x100
[  954.673514][T19290]        should_fail_ex+0x4e7/0x640
[  954.673553][T19290]        strncpy_from_user+0x3b/0x2e0
[  954.673575][T19290]        strncpy_from_user_nofault+0x7f/0x180
[  954.673612][T19290]        bpf_bprintf_prepare+0xe90/0x13f0
[  954.673651][T19290]        bpf_trace_printk+0xda/0x190
[  954.673670][T19290]        bpf_prog_930ede9872f2967c+0x3e/0x44
[  954.673698][T19290]        bpf_trace_run2+0x239/0x590
[  954.673718][T19290]        __bpf_trace_contention_begin+0xc9/0x110
[  954.673735][T19290]        trace_contention_begin.constprop.0+0xde/0x160
[  954.673753][T19290]        __pv_queued_spin_lock_slowpath+0x109/0xcf0
[  954.673777][T19290]        do_raw_spin_lock+0x20e/0x2b0
[  954.673794][T19290]        raw_spin_rq_lock_nested+0x7e/0x130
[  954.673815][T19290]        __schedule+0x307/0x5de0
[  954.673836][T19290]        preempt_schedule_irq+0x51/0x90
[  954.673859][T19290]        irqentry_exit+0x36/0x90
[  954.673881][T19290]        asm_sysvec_reschedule_ipi+0x1a/0x20
[  954.673899][T19290]        __slab_free+0xbc/0x4e0
[  954.673935][T19290]        qlist_free_all+0x4d/0x120
[  954.673970][T19290]        kasan_quarantine_reduce+0x195/0x1e0
[  954.673994][T19290]        __kasan_slab_alloc+0x69/0x90
[  954.674020][T19290]        kmem_cache_alloc_lru_noprof+0x254/0x6e0
[  954.674042][T19290]        sock_alloc_inode+0x25/0x1c0
[  954.674136][T19290]        alloc_inode+0x64/0x240
[  954.674153][T19290]        sock_alloc+0x40/0x280
[  954.674166][T19290]        __sock_create+0xc1/0x8d0
[  954.674184][T19290]        __sys_socket+0x14d/0x260
[  954.674202][T19290]        __ia32_sys_socket+0x72/0xb0
[  954.674221][T19290]        __do_fast_syscall_32+0x7c/0x300
[  954.674246][T19290]        do_fast_syscall_32+0x32/0x80
[  954.674271][T19290]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  954.674316][T19290] 
[  954.674316][T19290] other info that might help us debug this:
[  954.674316][T19290] 
[  954.674321][T19290] Chain exists of:
[  954.674321][T19290]   console_owner
[  954.674322][T12714] usb 11-1: SerialNumber: syz
[  954.674331][T19290]  --> &p->pi_lock --> &rq->__lock
[  954.674331][T19290] 
[  954.674349][T19290]  Possible unsafe locking scenario:
[  954.674349][T19290] 
[  954.674355][T19290]        CPU0                    CPU1
[  954.674360][T19290]        ----                    ----
[  954.674365][T19290]   lock(&rq->__lock);
[  954.674376][T19290]                                lock(&p->pi_lock);
[  954.674388][T19290]                                lock(&rq->__lock);
[  954.674405][T19290]   lock(console_owner);
[  954.674415][T19290] 
[  954.674415][T19290]  *** DEADLOCK ***
[  954.674415][T19290] 
[  954.674420][T19290] 3 locks held by syz.7.3449/19290:
[  954.674430][T19290]  #0: ffffffff8e5911b0 (remove_cache_srcu){.+.+}-{0:0}, at: kasan_quarantine_reduce+0x88/0x1e0
[  954.674476][T19290]  #1: ffff88802b43a4d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  954.674519][T19290]  #2: ffffffff8e3c42e0 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x1bc/0x590
[  954.674560][T19290] 
[  954.674560][T19290] stack backtrace:
[  954.674583][T19290] CPU: 2 UID: 0 PID: 19290 Comm: syz.7.3449 Not tainted syzkaller #0 PREEMPT(full) 
[  954.674603][T19290] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  954.674616][T19290] Call Trace:
[  954.674637][T19290]  <TASK>
[  954.674645][T19290]  dump_stack_lvl+0x116/0x1f0
[  954.674688][T19290]  print_circular_bug+0x275/0x350
[  954.674706][T19290]  check_noncircular+0x14c/0x170
[  954.674727][T19290]  __lock_acquire+0x126f/0x1c90
[  954.674749][T19290]  lock_acquire+0x179/0x350
[  954.674765][T19290]  ? vprintk_emit+0x493/0x680
[  954.674789][T19290]  ? vprintk_emit+0x481/0x680
[  954.674814][T19290]  vprintk_emit+0x4a4/0x680
[  954.674837][T19290]  ? vprintk_emit+0x493/0x680
[  954.674860][T19290]  ? __pfx_vprintk_emit+0x10/0x10
[  954.674885][T19290]  ? __rb_reserve_next.constprop.0+0x723/0x16c0
[  954.674906][T19290]  _printk+0xc7/0x100
[  954.674951][T19290]  ? __pfx__printk+0x10/0x10
[  954.674971][T19290]  ? ring_buffer_lock_reserve+0x6ca/0x11b0
[  954.674989][T19290]  ? __pfx____ratelimit+0x10/0x10
[  954.675012][T19290]  ? rcu_is_watching+0x12/0xc0
[  954.675039][T19290]  should_fail_ex+0x4e7/0x640
[  954.675066][T19290]  strncpy_from_user+0x3b/0x2e0
[  954.675092][T19290]  strncpy_from_user_nofault+0x7f/0x180
[  954.675118][T19290]  bpf_bprintf_prepare+0xe90/0x13f0
[  954.675153][T19290]  ? __pfx_bpf_bprintf_prepare+0x10/0x10
[  954.675187][T19290]  ? bpf_trace_run2+0x3e1/0x590
[  954.675207][T19290]  bpf_trace_printk+0xda/0x190
[  954.675226][T19290]  ? __pfx_bpf_trace_printk+0x10/0x10
[  954.675247][T19290]  ? bpf_trace_run2+0x3e1/0x590
[  954.675269][T19290]  ? __pfx_bpf_trace_printk+0x10/0x10
[  954.675290][T19290]  bpf_prog_930ede9872f2967c+0x3e/0x44
[  954.675306][T19290]  bpf_trace_run2+0x239/0x590
[  954.675327][T19290]  ? __pfx_bpf_trace_run2+0x10/0x10
[  954.675348][T19290]  ? bpf_trace_run2+0x26b/0x590
[  954.675372][T19290]  __bpf_trace_contention_begin+0xc9/0x110
[  954.675391][T19290]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  954.675418][T19290]  ? __bpf_trace_contention_begin+0xc9/0x110
[  954.675437][T19290]  trace_contention_begin.constprop.0+0xde/0x160
[  954.675459][T19290]  __pv_queued_spin_lock_slowpath+0x109/0xcf0
[  954.675488][T19290]  ? __lock_acquire+0xb8a/0x1c90
[  954.675504][T19290]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  954.675531][T19290]  ? __pv_queued_spin_lock_slowpath+0x28d/0xcf0
[  954.675561][T19290]  do_raw_spin_lock+0x20e/0x2b0
[  954.675582][T19290]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  954.675602][T19290]  ? rcu_qs+0x2b/0xe0
[  954.675623][T19290]  ? rcu_note_context_switch+0x192/0x1e00
[  954.675650][T19290]  raw_spin_rq_lock_nested+0x7e/0x130
[  954.675674][T19290]  ? preempt_schedule_irq+0x51/0x90
[  954.675698][T19290]  __schedule+0x307/0x5de0
[  954.675719][T19290]  ? find_held_lock+0x2b/0x80
[  954.675744][T19290]  ? rcu_is_watching+0x12/0xc0
[  954.675769][T19290]  ? __schedule+0x11a3/0x5de0
[  954.675790][T19290]  ? trace_sched_exit_tp+0xd1/0x120
[  954.675811][T19290]  ? __schedule+0x11a3/0x5de0
[  954.675835][T19290]  ? __pfx___schedule+0x10/0x10
[  954.675859][T19290]  ? __lock_acquire+0xb8a/0x1c90
[  954.675878][T19290]  ? mark_held_locks+0x49/0x80
[  954.675896][T19290]  preempt_schedule_irq+0x51/0x90
[  954.675920][T19290]  irqentry_exit+0x36/0x90
[  954.675945][T19290]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  954.675963][T19290] RIP: 0010:__slab_free+0xbc/0x4e0
[  954.675986][T19290] Code: 44 89 7c 24 68 66 45 85 ff 74 07 45 31 f6 84 c0 74 0e 45 31 f6 80 7c 24 38 00 0f 84 0c 01 00 00 48 8b 44 24 30 48 8b 4c 24 68 <f6> 40 22 20 74 64 4c 89 e0 48 8b 5c 24 08 f0 49 0f c7 4d 20 0f 94
[  954.676002][T19290] RSP: 0018:ffffc90004ff7bb0 EFLAGS: 00000246
[  954.676032][T19290] RAX: ffff88802258f040 RBX: ffff88802258f040 RCX: 0000000000190015
[  954.676044][T19290] RDX: 0000000000190016 RSI: ffff888050b39a40 RDI: ffffc90004ff7c30
[  954.676056][T19290] RBP: ffffc90004ff7c60 R08: 0000000000000001 R09: ffffffff82244db8
[  954.676067][T19290] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888050b39b80
[  954.676078][T19290] R13: ffffea000142ce00 R14: 0000000000000000 R15: 0000000000190015
[  954.676092][T19290]  ? qlist_free_all+0x48/0x120
[  954.676122][T19290]  ? qlist_free_all+0x48/0x120
[  954.676147][T19290]  qlist_free_all+0x4d/0x120
[  954.676170][T19290]  kasan_quarantine_reduce+0x195/0x1e0
[  954.676196][T19290]  __kasan_slab_alloc+0x69/0x90
[  954.676222][T19290]  kmem_cache_alloc_lru_noprof+0x254/0x6e0
[  954.676247][T19290]  ? sock_alloc_inode+0x25/0x1c0
[  954.676280][T19290]  ? __pfx_sock_alloc_inode+0x10/0x10
[  954.676297][T19290]  ? sock_alloc_inode+0x25/0x1c0
[  954.676313][T19290]  sock_alloc_inode+0x25/0x1c0
[  954.676331][T19290]  alloc_inode+0x64/0x240
[  954.676348][T19290]  sock_alloc+0x40/0x280
[  954.676365][T19290]  __sock_create+0xc1/0x8d0
[  954.676387][T19290]  __sys_socket+0x14d/0x260
[  954.676411][T19290]  ? __pfx___sys_socket+0x10/0x10
[  954.676430][T19290]  ? ksys_write+0x1ac/0x250
[  954.676457][T19290]  __ia32_sys_socket+0x72/0xb0
[  954.676477][T19290]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  954.676504][T19290]  __do_fast_syscall_32+0x7c/0x300
[  954.676529][T19290]  do_fast_syscall_32+0x32/0x80
[  954.676550][T19290]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  954.676569][T19290] RIP: 0023:0xf705d579
[  954.676582][T19290] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  954.676612][T19290] RSP: 002b:00000000f542c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000167
[  954.676628][T19290] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000000002
[  954.676639][T19290] RDX: 0000000000000073 RSI: 0000000000000000 RDI: 0000000000000000
[  954.676650][T19290] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  954.676660][T19290] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  954.676671][T19290] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  954.676687][T19290]  </TASK>
[  954.703650][T12714] usb 11-1: config 0 descriptor??
[  954.705433][T19290] CPU: 2 UID: 0 PID: 19290 Comm: syz.7.3449 Not tainted syzkaller #0 PREEMPT(full) 
[  954.705450][T19290] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  954.705458][T19290] Call Trace:
[  954.705463][T19290]  <TASK>
[  954.705468][T19290]  dump_stack_lvl+0x116/0x1f0
[  954.705492][T19290]  should_fail_ex+0x512/0x640
[  954.705513][T19290]  strncpy_from_user+0x3b/0x2e0
[  954.705529][T19290]  strncpy_from_user_nofault+0x7f/0x180
[  954.705548][T19290]  bpf_bprintf_prepare+0xe90/0x13f0
[  954.705569][T19290]  ? __pfx_bpf_bprintf_prepare+0x10/0x10
[  954.705587][T19290]  ? bpf_trace_run2+0x3e1/0x590
[  954.705602][T19290]  bpf_trace_printk+0xda/0x190
[  954.705614][T19290]  ? __pfx_bpf_trace_printk+0x10/0x10
[  954.705628][T19290]  ? bpf_trace_run2+0x3e1/0x590
[  954.705640][T19290]  ? __pfx_bpf_trace_printk+0x10/0x10
[  954.705653][T19290]  bpf_prog_930ede9872f2967c+0x3e/0x44
[  954.705663][T19290]  bpf_trace_run2+0x239/0x590
[  954.705676][T19290]  ? __pfx_bpf_trace_run2+0x10/0x10
[  954.705688][T19290]  ? bpf_trace_run2+0x26b/0x590
[  954.705703][T19290]  __bpf_trace_contention_begin+0xc9/0x110
[  954.705716][T19290]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  954.705728][T19290]  ? __bpf_trace_contention_begin+0xc9/0x110
[  954.705739][T19290]  trace_contention_begin.constprop.0+0xde/0x160
[  954.705754][T19290]  __pv_queued_spin_lock_slowpath+0x109/0xcf0
[  954.705773][T19290]  ? __lock_acquire+0xb8a/0x1c90
[  954.705783][T19290]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  954.705820][T19290]  ? __pv_queued_spin_lock_slowpath+0x28d/0xcf0
[  954.705838][T19290]  do_raw_spin_lock+0x20e/0x2b0
[  954.705851][T19290]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  954.705864][T19290]  ? rcu_qs+0x2b/0xe0
[  954.705878][T19290]  ? rcu_note_context_switch+0x192/0x1e00
[  954.705895][T19290]  raw_spin_rq_lock_nested+0x7e/0x130
[  954.705911][T19290]  ? preempt_schedule_irq+0x51/0x90
[  954.705926][T19290]  __schedule+0x307/0x5de0
[  954.705940][T19290]  ? find_held_lock+0x2b/0x80
[  954.705960][T19290]  ? rcu_is_watching+0x12/0xc0
[  954.705980][T19290]  ? __schedule+0x11a3/0x5de0
[  954.705997][T19290]  ? trace_sched_exit_tp+0xd1/0x120
[  954.706015][T19290]  ? __schedule+0x11a3/0x5de0
[  954.706034][T19290]  ? __pfx___schedule+0x10/0x10
[  954.706054][T19290]  ? __lock_acquire+0xb8a/0x1c90
[  954.706071][T19290]  ? mark_held_locks+0x49/0x80
[  954.706087][T19290]  preempt_schedule_irq+0x51/0x90
[  954.706110][T19290]  irqentry_exit+0x36/0x90
[  954.706134][T19290]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  954.706154][T19290] RIP: 0010:__slab_free+0xbc/0x4e0
[  954.706177][T19290] Code: 44 89 7c 24 68 66 45 85 ff 74 07 45 31 f6 84 c0 74 0e 45 31 f6 80 7c 24 38 00 0f 84 0c 01 00 00 48 8b 44 24 30 48 8b 4c 24 68 <f6> 40 22 20 74 64 4c 89 e0 48 8b 5c 24 08 f0 49 0f c7 4d 20 0f 94
[  954.706198][T19290] RSP: 0018:ffffc90004ff7bb0 EFLAGS: 00000246
[  954.706214][T19290] RAX: ffff88802258f040 RBX: ffff88802258f040 RCX: 0000000000190015
[  954.706227][T19290] RDX: 0000000000190016 RSI: ffff888050b39a40 RDI: ffffc90004ff7c30
[  954.706237][T19290] RBP: ffffc90004ff7c60 R08: 0000000000000001 R09: ffffffff82244db8
[  954.706248][T19290] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888050b39b80
[  954.706260][T19290] R13: ffffea000142ce00 R14: 0000000000000000 R15: 0000000000190015
[  954.706273][T19290]  ? qlist_free_all+0x48/0x120
[  954.706302][T19290]  ? qlist_free_all+0x48/0x120
[  954.706322][T19290]  qlist_free_all+0x4d/0x120
[  954.706337][T19290]  kasan_quarantine_reduce+0x195/0x1e0
[  954.706354][T19290]  __kasan_slab_alloc+0x69/0x90
[  954.706372][T19290]  kmem_cache_alloc_lru_noprof+0x254/0x6e0
[  954.706387][T19290]  ? sock_alloc_inode+0x25/0x1c0
[  954.706401][T19290]  ? __pfx_sock_alloc_inode+0x10/0x10
[  954.706411][T19290]  ? sock_alloc_inode+0x25/0x1c0
[  954.706421][T19290]  sock_alloc_inode+0x25/0x1c0
[  954.706432][T19290]  alloc_inode+0x64/0x240
[  954.706445][T19290]  sock_alloc+0x40/0x280
[  954.706456][T19290]  __sock_create+0xc1/0x8d0
[  954.706470][T19290]  __sys_socket+0x14d/0x260
[  954.706482][T19290]  ? __pfx___sys_socket+0x10/0x10
[  954.706494][T19290]  ? ksys_write+0x1ac/0x250
[  954.706516][T19290]  __ia32_sys_socket+0x72/0xb0
[  954.706534][T19290]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  954.706558][T19290]  __do_fast_syscall_32+0x7c/0x300
[  954.706581][T19290]  do_fast_syscall_32+0x32/0x80
[  954.706603][T19290]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  954.706621][T19290] RIP: 0023:0xf705d579
[  954.706634][T19290] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  954.706649][T19290] RSP: 002b:00000000f542c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000167
[  954.706667][T19290] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000000002
[  954.706677][T19290] RDX: 0000000000000073 RSI: 0000000000000000 RDI: 0000000000000000
[  954.706688][T19290] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  954.706698][T19290] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  954.706708][T19290] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  954.706724][T19290]  </TASK>
[  955.481233][ T5302] Bluetooth: hci0: command 0x0c1a tx timeout
[  955.822554][ T1241] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  955.968375][T12714] usb 11-1: can't set config #0, error -71
[  955.986293][T12714] usb 11-1: USB disconnect, device number 27
[  955.992288][ T1241] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  956.081348][ T1241] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  956.181996][ T1241] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  956.314502][ T1241] bridge_slave_1: left allmulticast mode
[  956.317142][ T1241] bridge_slave_1: left promiscuous mode
[  956.319868][ T1241] bridge0: port 2(bridge_slave_1) entered disabled state
[  956.324729][ T1241] bridge_slave_0: left allmulticast mode
[  956.327000][ T1241] bridge_slave_0: left promiscuous mode
[  956.329143][ T1241] bridge0: port 1(bridge_slave_0) entered disabled state
[  956.471532][ T1241] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  956.477785][ T1241] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  956.483743][ T1241] bond0 (unregistering): Released all slaves
[  956.639720][ T1241] tipc: Disabling bearer <udp:s>
[  956.642354][ T1241] tipc: Left network mode
[  956.848188][ T1241] hsr_slave_0: left promiscuous mode
[  956.851369][ T1241] hsr_slave_1: left promiscuous mode
[  956.854277][ T1241] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  956.861668][ T1241] batman_adv: batadv0: Removing interface: batadv_slave_0
[  956.865781][ T1241] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  956.869448][ T1241] batman_adv: batadv0: Removing interface: batadv_slave_1
[  956.877871][ T1241] veth1_macvtap: left promiscuous mode
[  956.880284][ T1241] veth0_macvtap: left promiscuous mode
[  956.882691][ T1241] veth1_vlan: left promiscuous mode
[  956.884982][ T1241] veth0_vlan: left promiscuous mode
[  957.072751][ T1241] team0 (unregistering): Port device team_slave_1 removed
[  957.140798][ T1241] team0 (unregistering): Port device team_slave_0 removed
[  957.726696][ T1241] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  957.792985][ T1241] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  957.850938][ T1241] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  957.949645][ T1241] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  958.047069][ T1241] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  958.088850][ T1241] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  958.169671][ T1241] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  958.250245][ T1241] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  958.363382][ T1241] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  958.439171][ T1241] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  958.516868][ T1241] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  958.597936][ T1241] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  958.684182][ T1241] bridge_slave_1: left allmulticast mode
[  958.687370][ T1241] bridge_slave_1: left promiscuous mode
[  958.689598][ T1241] bridge0: port 2(bridge_slave_1) entered disabled state
[  958.693527][ T1241] bridge_slave_0: left allmulticast mode
[  958.695648][ T1241] bridge_slave_0: left promiscuous mode
[  958.697598][ T1241] bridge0: port 1(bridge_slave_0) entered disabled state
[  958.701849][ T1241] bridge_slave_1: left allmulticast mode
[  958.703891][ T1241] bridge_slave_1: left promiscuous mode
[  958.706280][ T1241] bridge0: port 2(bridge_slave_1) entered disabled state
[  958.710152][ T1241] bridge_slave_0: left allmulticast mode
[  958.712438][ T1241] bridge_slave_0: left promiscuous mode
[  958.714420][ T1241] bridge0: port 1(bridge_slave_0) entered disabled state
[  958.718763][ T1241] bridge_slave_1: left allmulticast mode
[  958.720874][ T1241] bridge_slave_1: left promiscuous mode
[  958.722851][ T1241] bridge0: port 2(bridge_slave_1) entered disabled state
[  958.727139][ T1241] bridge_slave_0: left allmulticast mode
[  958.729153][ T1241] bridge_slave_0: left promiscuous mode
[  958.731273][ T1241] bridge0: port 1(bridge_slave_0) entered disabled state
[  958.868104][ T1241] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  958.871616][ T1241] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  958.874769][ T1241] bond0 (unregistering): Released all slaves
[  958.960050][ T1241] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  958.964042][ T1241] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  958.967713][ T1241] bond0 (unregistering): Released all slaves
[  959.054973][ T1241] bond1 (unregistering): (slave veth3): Releasing active interface
[  959.059164][ T1241] bond1 (unregistering): Released all slaves
[  959.145218][ T1241] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  959.148993][ T1241] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  959.152676][ T1241] bond0 (unregistering): Released all slaves
[  959.266840][ T1241] tipc: Disabling bearer <udp:s>
[  959.268758][ T1241] tipc: Left network mode
[  959.278993][ T1241] tipc: Disabling bearer <udp:s>
[  959.280738][ T1241] tipc: Left network mode
[  959.792539][ T1241] hsr_slave_0: left promiscuous mode
[  959.794871][ T1241] hsr_slave_1: left promiscuous mode
[  959.797210][ T1241] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  959.799597][ T1241] batman_adv: batadv0: Removing interface: batadv_slave_0
[  959.802824][ T1241] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  959.805668][ T1241] batman_adv: batadv0: Removing interface: batadv_slave_1
[  959.810201][ T1241] hsr_slave_0: left promiscuous mode
[  959.812275][ T1241] hsr_slave_1: left promiscuous mode
[  959.815871][ T1241] hsr_slave_0: left promiscuous mode
[  959.817858][ T1241] hsr_slave_1: left promiscuous mode
[  959.819842][ T1241] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  959.822282][ T1241] batman_adv: batadv0: Removing interface: batadv_slave_0
[  959.825543][ T1241] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  959.828106][ T1241] batman_adv: batadv0: Removing interface: batadv_slave_1
[  959.839755][ T1241] veth1_macvtap: left promiscuous mode
[  959.842697][ T1241] veth0_macvtap: left promiscuous mode
[  959.844644][ T1241] veth1_vlan: left promiscuous mode
[  959.846588][ T1241] veth0_vlan: left promiscuous mode
[  959.849084][ T1241] veth1_macvtap: left promiscuous mode
[  959.850984][ T1241] veth0_macvtap: left promiscuous mode
[  959.852855][ T1241] veth1_vlan: left promiscuous mode
[  959.854662][ T1241] veth0_vlan: left promiscuous mode
[  959.858395][ T1241] veth1_macvtap: left promiscuous mode
[  959.860887][ T1241] veth0_macvtap: left promiscuous mode
[  959.863312][ T1241] veth1_vlan: left promiscuous mode
[  959.866034][ T1241] veth0_vlan: left promiscuous mode
[  960.093997][ T1241] team0 (unregistering): Port device team_slave_1 removed
[  960.171733][ T1241] team0 (unregistering): Port device team_slave_0 removed
[  960.509228][ T1241] team0 (unregistering): Port device team_slave_1 removed
[  960.589075][ T1241] team0 (unregistering): Port device team_slave_0 removed
[  961.056809][ T1241] team0 (unregistering): Port device team_slave_1 removed
[  961.131328][ T1241] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
11:57:36  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000db5e34 RBX=0000000000000000 RCX=ffffffff8b6302a9 RDX=ffffed1005646656
RSI=ffffffff8bf1e740 RDI=ffffffff81920f4d RBP=fffffbfff1c12f40 RSP=ffffffff8e007df8
R8 =0000000000000000 R9 =ffffed1005646655 R10=ffff88802b2332ab R11=0000000000000001
R12=0000000000000000 R13=ffffffff8e097a00 R14=ffffffff908363d0 R15=0000000000000000
RIP=ffffffff8b62ed5f RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977e1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000024d7a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=000000000534c002 Opmask01=0000000000000000 Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055dd677b6c50 000055dd677b6c50
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffeb0e67000 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c737973007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49565c56005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 303030303030203a 3431522030303030 3030303030303030 30303030203a3331
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3030203030203030 2030302036322034 6220643820303020 3030203030203030
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2036322034622064 3820303920303920 3039203039203363 203935206135203e
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 64353c2030382064 6320343320663020 3565203938203535 2032352031352030
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3020303020303020 3030203030203030 2030302030302030 3020303020303020
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000007 RBX=ffff8880523060f0 RCX=0000000000000000 RDX=0000000000000000
RSI=0000000000000008 RDI=ffff8880523060f0 RBP=ffffe8ffac14b4c0 RSP=ffffc900065f73d8
R8 =0000000000000000 R9 =0000000000000001 R10=dffffc0000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=ffff888052306000
RIP=ffffffff822441c0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880978e1000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000064646000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff852db115 RDI=ffffffff9adf1e40 RBP=ffffffff9adf1e00 RSP=ffffc90004ff6e38
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=000000000000002d R14=ffffffff9adf1e00 R15=ffffffff852db0b0
RIP=ffffffff852db13f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880979e1000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000005d338000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=ffffed100815742e RBX=ffffed100815742f RCX=ffffffff81965e46 RDX=ffffed100815742f
RSI=0000000000000008 RDI=ffff888040aba170 RBP=ffffed100815742e RSP=ffffc900237bf890
R8 =0000000000000001 R9 =ffffed100815742e R10=ffff888040aba177 R11=ffff88802b53adb8
R12=ffff888040aba168 R13=0000000000000003 R14=ffff888040a9330c R15=ffff888040aba168
RIP=ffffffff82243380 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097ae1000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000005d338000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000