last executing test programs:

39m36.009977615s ago: executing program 32 (id=2799):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = epoll_create(0x0)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(0xffffffffffffffff, 0xc01064c1, &(0x7f0000000040)={0x0, 0x1, <r2=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r2, &(0x7f0000000080)={0x10000002})
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x3c, 0x3, 0x6, 0x5, 0x0, 0x0, {0x7, 0x0, 0xffff}, [@IPSET_ATTR_PROTOCOL={0x3}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x3c}}, 0x20000090)

31m29.980239435s ago: executing program 1 (id=5221):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x9, 0x2)
ioctl$USBDEVFS_FREE_STREAMS(r0, 0x8008551d, &(0x7f0000000140)={0x384, 0x19, [{0x2, 0x1}, {0x5, 0x1}, {0xb, 0x1}, {0x4, 0x1}, {}, {0x7, 0x1}, {0xe, 0x1}, {0xc}, {0x4e}, {0xc}, {0x3, 0x1}, {}, {0x5, 0x1}, {0x9}, {0x6}, {0x8, 0x1}, {0x2}, {0x9, 0x1}, {0x5, 0x1}, {0x7}, {0x1, 0x1}, {0xc}, {0x5, 0x1}, {0x5, 0x1}, {0x0, 0x1}]})
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x3, &(0x7f0000000080)=0x4000005)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(aes)\x00'}, 0x4c)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d05c164a534308", 0x10)
r2 = accept4(r1, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f0000004c00)=[{{0x0, 0x0, &(0x7f0000000240)}, 0x2ca998c3}], 0x4000032, 0x40000021, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000240)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x4051}, 0x20008001)
recvmsg$can_raw(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000340)=""/197, 0xc5}], 0x1}, 0x1)

31m26.594661181s ago: executing program 1 (id=5230):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000500)=@security={'security\x00', 0xe, 0x4, 0x388, 0xffffffff, 0x0, 0x0, 0x110, 0xffffffff, 0xffffffff, 0x2c0, 0x2c0, 0x2c0, 0xffffffff, 0x4, &(0x7f00000002c0), {[{{@uncond, 0x0, 0xa4, 0x110}, @common=@unspec=@NFLOG={0x6c, 'NFLOG\x00', 0x0, {0x8, 0x14c, 0xfa09, 0x1, 0x0, "c3e3ddf97432736cf58aebc8e59d8e658da487d6a0db576833fa7f4a7e00e790f91f9dea4283587f801dfeb24d5f7f70109d592d5b456e5e4341ee7643871e99"}}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', [0x0, 0xff000000, 0xffffffff, 0xff], [0xff, 0xffffffff, 0xff, 0xffffff00], 'nr0\x00', 'bond_slave_0\x00', {0xff}, {0xff}, 0x3c, 0x6, 0x5, 0x8}, 0x0, 0xa4, 0xe4}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0x5, 0xa47, 0x97a0, 0x1, 0x0, 0x1, 0x7, 0x8]}}}, {{@uncond, 0x0, 0xa4, 0xcc}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x10, 0x1}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x3e4)
mkdir(&(0x7f0000000000)='./file0\x00', 0x19)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
openat$dlm_monitor(0xffffff9c, &(0x7f0000000000), 0x40, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x0, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x3, 0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='maps\x00')
io_uring_setup(0x2e34, &(0x7f0000000180))
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0xc0686611, &(0x7f0000000180)={0x67, 0x0, 0x3f, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
pwritev2(r6, &(0x7f0000000980)=[{0x0}, {&(0x7f0000000500)="be81e1310fb465f31a42f6efa58772d291c57be2782f6ff63ea3517e50771580447f7d195ee15e186027d518b2c77a051895fece1dc014c33d6928ab0376cf4077399b51451472f53be50af6897bc0fa353cad9156d19de3665191fdf17a2f07f4286cea5c10fbb81feb85e406524a47b1978139eaa8", 0x76}, {0x0}], 0x3, 0x5, 0xa, 0x14)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)

31m25.527022151s ago: executing program 1 (id=5234):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000bc0)=@newtaction={0x48, 0x30, 0x48b, 0x0, 0x0, {}, [{0x34, 0x1, [@m_simple={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x48}}, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000040)=0xd)
write$binfmt_aout(r5, &(0x7f0000000940)=ANY=[], 0xff2e)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000180)=0x5)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000010000304000000000000000000000400", @ANYRES32=0x0, @ANYBLOB="0003000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32], 0x3c}, 0x1, 0x0, 0x0, 0x20004084}, 0x8044)
ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000040)={0x0, 0x0})
ioctl$KDFONTOP_SET_DEF(r0, 0x4b72, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000003900)=ANY=[], 0x1660}], 0x1}, 0x0)

31m24.521264001s ago: executing program 1 (id=5238):
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000080)="370000006400031a680907070000000f00e9ff3f13000000170a00170000000004003700b0fa77647f6b4a6aaa58b9a6c011f6bbf40820", 0x37}], 0x1)
syz_fuse_handle_req(r0, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, {0x40, 0x4, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x80000, 0x120, 0x6000, 0x2, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x14c0348, 0x0, 0x1, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)
ioctl$TIOCGPTPEER(r4, 0x90000915, 0x8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000400000005"], 0x48)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x8, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f00000000c0)=r9, 0x4)
sendmsg$unix(r6, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0xb}, 0x48)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0xfffffffa}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000300000a7c000000060a0b04000000000000800b000100736f636b65740000140002800800024000000003080001400000000228000180080001006e6174001c0002800800054000000003080001400000000008000240000000020900010073797a30001000000900020073797a3200000000140000110001000000000000c4215d2700000a"], 0xa4}}, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000440)={@local, @random='\x00 \x00\x00\x00\b', @void, {@ipv4={0x800, @tcp={{0x9, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0xd}, {[@lsrr={0x83, 0x7, 0xd7, [@multicast2]}, @cipso={0x86, 0x6}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
r11 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r11, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])

31m24.379025807s ago: executing program 1 (id=5241):
socket$nl_generic(0x10, 0x3, 0x10)
mkdir(0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x5c, 0x30, 0x1, 0x0, 0x40, {}, [{0x48, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000001, 0xe95, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x804}, 0x24008000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x40000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000021c0)={0x0, 0x0, &(0x7f0000002180)={&(0x7f0000002100)=@can_delroute={0x34, 0x19, 0x9e375f50053bd037, 0x70bd28, 0x25dfdbfe, {0x1d, 0x1, 0x2}, [@CGW_MOD_SET={0x15, 0x4, {{{0x3, 0x1, 0x1, 0x1}, 0x4, 0x0, 0x0, 0x0, "c0bc6bbcf086168b"}, 0x1}}, @CGW_CS_XOR={0x8, 0x5, {0x0, 0xfffffffffffffff9, 0x4, 0x7a}}]}, 0x34}, 0x1, 0x0, 0x0, 0x8045}, 0x40000)
r4 = syz_io_uring_setup(0x117, &(0x7f0000000300), &(0x7f0000000280)=<r5=>0x0, &(0x7f0000000200)=<r6=>0x0)
openat$tun(0xffffff9c, &(0x7f0000000000), 0x80102, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
socket(0x1e, 0x5, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r4, 0x47f6, 0x71e, 0x0, 0x0, 0x0)

31m23.621782954s ago: executing program 1 (id=5245):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
mkdirat(0xffffffffffffffff, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000500000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r2}, 0x18)
fchdir(r1)
sendmmsg$unix(r0, &(0x7f0000000d40)=[{{&(0x7f0000000080)=@abs={0x1, 0x30, 0x30}, 0x6e, 0x0}}], 0x1, 0x0)

31m23.597584077s ago: executing program 33 (id=5245):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
mkdirat(0xffffffffffffffff, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000500000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r2}, 0x18)
fchdir(r1)
sendmmsg$unix(r0, &(0x7f0000000d40)=[{{&(0x7f0000000080)=@abs={0x1, 0x30, 0x30}, 0x6e, 0x0}}], 0x1, 0x0)

22m53.505725437s ago: executing program 5 (id=7641):
syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={0x28, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x7ff, 0x5d}}}}}, 0x28}}, 0x24044884)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2={0xff, 0x3}}, 0x1c)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe8000000000000000000400000000aa"], 0x0)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0xa, 0x4}, 0x20)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000002840)={0x1, &(0x7f0000000100)=[{0x80000006, 0x0, 0x0, 0x4}]}, 0x8)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x68, 0x9, 0x6, 0x403, 0x0, 0x0, {0x7, 0x0, 0x4}, [@IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e22}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x40}, @IPSET_ATTR_MARK={0x8}]}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP2={0x18, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @private0}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x1}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0xfe3}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x20}, 0x80)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

22m53.285551038s ago: executing program 5 (id=7642):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = openat$dlm_plock(0xffffff9c, 0x0, 0x1, 0x0)
openat$cgroup_subtree(0xffffffffffffffff, 0x0, 0x2, 0x0)
openat$udambuf(0xffffff9c, &(0x7f0000000140), 0x2)
socket(0x2c, 0x809, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
r2 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x3f73, 0x100, 0x0, 0x1a}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000600)=<r4=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r2, 0x16, &(0x7f0000000040)={&(0x7f0000001000)={[{0x0, 0xfffffeca, 0x0, 0xf4}]}, 0x1, 0xfffd}, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
socket$inet_mptcp(0x2, 0x1, 0x106)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
iopl(0x3)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x40, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x102, 0x1})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)
r5 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOCTL_STOP_ACCEL_DEV(r5, 0x40096101, &(0x7f0000000800)={{}, 0xfe})
socket$kcm(0x10, 0x2, 0x4)
r6 = openat$cgroup_ro(r0, &(0x7f00000001c0)='blkio.bfq.sectors\x00', 0x7a44, 0x1700)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0xe, 0x8010, r6, 0x952de000)

22m52.422074399s ago: executing program 5 (id=7645):
socket$inet(0x2, 0x4000000000000001, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1c3880, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = dup(r0)
r2 = io_uring_setup(0x5bf0, &(0x7f0000000040)={0x0, 0xfffffffd, 0x0, 0xfffffffe, 0x1})
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000140)=[r2], 0x400002ff)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="b4020000000000007911300000000000850000002e0000009500000000000000358bb9f43d86b13600"/50], &(0x7f0000000100)='syzkaller\x00', 0x4, 0xc5, &(0x7f0000000300)=""/197, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000002c0), 0xffffffffffffff35}, 0x54)
ioctl$int_in(r3, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f0000000740)=""/51, 0x0})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000040)={'tunl0\x00', &(0x7f0000000400)={'gretap0\x00', <r4=>0x0, 0x10, 0x8000, 0x6, 0x401, {{0x2d, 0x4, 0x0, 0x2b, 0xb4, 0x67, 0x0, 0x5, 0x29, 0x0, @empty, @rand_addr=0x64010101, {[@timestamp={0x44, 0x10, 0x9e, 0x0, 0x5, [0x93a3, 0x3, 0x2]}, @timestamp_addr={0x44, 0x24, 0x75, 0x1, 0x1, [{@remote, 0x5}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x9}, {@broadcast, 0x9}, {@remote, 0xfffffbff}]}, @cipso={0x86, 0x5c, 0x1, [{0x6, 0xc, "8b65017982021eefb82e"}, {0x5, 0xf, "1011a4b995d894652074718a03"}, {0x0, 0x8, "f11c051a40bc"}, {0x6, 0xe, "7b856cad82601a0e6c899549"}, {0x7, 0xe, "b53d0186da7b0c561b2112cd"}, {0x6, 0xe, "c8e10ed0c969597b58ab4254"}, {0x5, 0x9, "57b055576e9f29"}]}, @lsrr={0x83, 0xf, 0xd1, [@multicast2, @broadcast, @rand_addr=0x64010102]}]}}}}})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000140)={'syztnl1\x00', &(0x7f0000000080)={'ip6_vti0\x00', r4, 0x2f, 0x2, 0x7, 0x8, 0x2, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x40, 0x8000, 0x1}})
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000340))
r6 = dup(r5)
ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000000240)={0x9, 0x4000, 0x8, r1, 0x2})
ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af30, &(0x7f0000000000)={0x1, r6})
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xeffffffffffffffd, 0x0, 0x80000000000000}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x3, 0x6, 0x7fffffff}, 0x0, 0x0)
ioctl$VHOST_SET_FEATURES(r3, 0x4008af00, &(0x7f00000001c0)=0x304008000)
ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af30, 0x0)

22m51.59769613s ago: executing program 5 (id=7648):
syz_open_dev$amidi(&(0x7f00000000c0), 0xc, 0x321200)
socket(0x400000000010, 0x3, 0x0)
openat$binfmt(0xffffff9c, 0x0, 0x41, 0x1ff)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[], 0x50)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000000040)={r1, 0x58, &(0x7f0000000240)}, 0x10)
syz_open_dev$evdev(0x0, 0x0, 0x60000)
sendto(0xffffffffffffffff, &(0x7f00000003c0)="b6e40d1830ece56af1567b1c64a8b8c877cf82da519383b342a5bea2ff6586b20a998502a9d2a4ed37c78904e72c2815bb6e5e0b8eb84c0d9e2b6b79202d8c1dba5f98dda2cc2e248c7b282ef81669745c7c5081714b68d569d1641502a4b0faef401984ff3404b89dfaf40c26b19f6e763df0fc9b2dcee802730b7b3ffa14a587a713d755b82883c439dbafe7bfe93f18993f8f6f06b9b01b41ecea33ac192c2de8d70c53c626915a17b89f021c26db1ba7ff7a91753e2703", 0xb9, 0x4000091, &(0x7f0000000100)=@nl=@unspec, 0x80)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$incfs(0xffffffffffffffff, 0x0, 0x24000, 0x122)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="05000000000000000000", @ANYRES16=0x0, @ANYBLOB="0100000004000000040000f50300"/28], 0x50)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000240)='syzkaller\x00'}, 0x94)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000600)='/sys/power/pm_trace_dev_match', 0x2000, 0x108)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x18, 0x1401, 0x1, 0x70bd27, 0x25dfdbfb, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}]}, 0x18}, 0x1, 0x0, 0x0, 0x24004085}, 0x800)
read$FUSE(r4, &(0x7f0000003840)={0x2020}, 0x2020)
openat$cgroup_freezer_state(r3, &(0x7f0000000140), 0x2, 0x0)
mkdirat$cgroup(r3, 0x0, 0x1ff)

22m50.620934151s ago: executing program 5 (id=7655):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x4000, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22, 0x0, @rand_addr, 0x99f}, 0x1c)
connect$inet6(r0, &(0x7f0000000340)={0x2, 0x4e21, 0x0, @private2}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000080)="580000001500add427323b472545b45602117fffffff81000e224e217f000001925aa80020007b00090080007f000001e809000000ff0000f03ac71006000000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x4e24, 0x3, @mcast1, 0x7}, 0x1c)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x1, 0x7fff7ffd}]})
r3 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r3, &(0x7f0000000100)={0x18, 0x2, {0x7fc, @loopback}}, 0x1e)
connect$pptp(r3, &(0x7f0000000080)={0x18, 0x2, {0x0, @rand_addr=0x64010102}}, 0x1e)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f00000015c0), 0x2300, 0x0)
ioctl$PPPIOCATTCHAN(r4, 0x40047438, &(0x7f0000000040)=0x1)
ppoll(&(0x7f0000000240)=[{r4}], 0x1, 0x0, &(0x7f00000002c0)={[0x1]}, 0x8)
close_range(r2, 0xffffffffffffffff, 0x0)

22m49.66730801s ago: executing program 5 (id=7659):
ioctl$TIOCL_GETSHIFTSTATE(0xffffffffffffffff, 0x541c, &(0x7f0000000180)={0x6, 0xf8})
r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000001080))
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000140)={0x60, 0x2, &(0x7f000071a000/0x4000)=nil, &(0x7f0000ca5000/0x4000)=nil, 0x0, 0x0, 0x0, 0x4000000000c00, 0x18, 0x29, 0x9, 0x40})
r1 = syz_open_dev$ndb(&(0x7f0000000380), 0x0, 0x10f080)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_DEV_CREATE(r2, 0x5501)
ioctl$NBD_DO_IT(r1, 0x40041271)
fstatfs(r2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x1a9d42, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mlock2(&(0x7f000000e000/0x1000)=nil, 0x1000, 0x0)
mlock(&(0x7f00001f7000/0x2000)=nil, 0x2000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', 0x0, 0x0, 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={0x0, 0xfffffde2}, 0x1, 0x0, 0x0, 0x80d4}, 0x0)
socket(0x10, 0x80002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="1d8c00ee07005635241af554218ecfc60c2796bbc8f49f7c92f2ca1bc34579009f756de1b607178793b7ae62702f18222951b59c16d2608def87b2ab0490548e10dd7b7fea9e54faba542182f52e4bc12a3940fb11a3f5fa0fa804c3ed5126f28d3634d0cc43e29e3f96812eff9b7100d05141a6386b01e6155f51f9e282676541a525753662c8c6920ac15955a6e93c6332bbfa6a33"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045011, 0x0)
openat$rtc(0xffffff9c, 0x0, 0x400000, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x0, @pix_mp={0x80000000, 0x9, 0x41415270, 0x0, 0xa, [{0x2, 0x7}, {0x6, 0x7f36}, {0x200, 0x70}, {0x3, 0xf}, {0xa, 0x100}, {0x6, 0x589}, {0x8, 0x7}, {0x1003f, 0x8}], 0x10, 0x8, 0x2, 0x1, 0x3}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
openat$uinput(0xffffff9c, 0x0, 0x802, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f0000000240), 0x20000000, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102378, 0xffffffffffffff8b)
socket$kcm(0x10, 0x2, 0x4)
openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x121600, 0x0)

22m35.183984609s ago: executing program 34 (id=7659):
ioctl$TIOCL_GETSHIFTSTATE(0xffffffffffffffff, 0x541c, &(0x7f0000000180)={0x6, 0xf8})
r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000001080))
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000140)={0x60, 0x2, &(0x7f000071a000/0x4000)=nil, &(0x7f0000ca5000/0x4000)=nil, 0x0, 0x0, 0x0, 0x4000000000c00, 0x18, 0x29, 0x9, 0x40})
r1 = syz_open_dev$ndb(&(0x7f0000000380), 0x0, 0x10f080)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_DEV_CREATE(r2, 0x5501)
ioctl$NBD_DO_IT(r1, 0x40041271)
fstatfs(r2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x1a9d42, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mlock2(&(0x7f000000e000/0x1000)=nil, 0x1000, 0x0)
mlock(&(0x7f00001f7000/0x2000)=nil, 0x2000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
syz_80211_join_ibss(&(0x7f0000000040)='wlan0\x00', 0x0, 0x0, 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={0x0, 0xfffffde2}, 0x1, 0x0, 0x0, 0x80d4}, 0x0)
socket(0x10, 0x80002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="1d8c00ee07005635241af554218ecfc60c2796bbc8f49f7c92f2ca1bc34579009f756de1b607178793b7ae62702f18222951b59c16d2608def87b2ab0490548e10dd7b7fea9e54faba542182f52e4bc12a3940fb11a3f5fa0fa804c3ed5126f28d3634d0cc43e29e3f96812eff9b7100d05141a6386b01e6155f51f9e282676541a525753662c8c6920ac15955a6e93c6332bbfa6a33"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045011, 0x0)
openat$rtc(0xffffff9c, 0x0, 0x400000, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x0, @pix_mp={0x80000000, 0x9, 0x41415270, 0x0, 0xa, [{0x2, 0x7}, {0x6, 0x7f36}, {0x200, 0x70}, {0x3, 0xf}, {0xa, 0x100}, {0x6, 0x589}, {0x8, 0x7}, {0x1003f, 0x8}], 0x10, 0x8, 0x2, 0x1, 0x3}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
openat$uinput(0xffffff9c, 0x0, 0x802, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f0000000240), 0x20000000, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102378, 0xffffffffffffff8b)
socket$kcm(0x10, 0x2, 0x4)
openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x121600, 0x0)

16m37.039921696s ago: executing program 6 (id=9703):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r0)
sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)={0x100, r1, 0xe701ac47a3d23ccd, 0x0, 0x2, {}, [@NLBL_MGMT_A_DOMAIN={0xda, 0x1, 'C\xec\xf8\xa0w\x15|\xd8\xbcs\xe1\xb93\x14\xcd\xcb\xb6\xb9\xbb\x84\xe5\xbc\xdb\x7f\x9a\xf2\xea\xcc\x91:v@\xe83-\x1d\xaagQl\x7f\tKt\fc\x1f\x17]\xd5\xd0\xf0\xa8\xeb\xd2g\x92\x04\x02\v\x00od\xe6,\xd3@I\x17\xf3\xbees0\xad\xc6\xbf/*\xb6(o\x91t\x12\x93UK\xf4@n\xdc\xdc\x8a7y\x81FY\xbe\xbbc\xd2\xc3\x01\xa5\xe2V\x8c\xb3i\xb0Z\xbf_\xfe~gJ\x13\xfc\x15om~\xd2V\xdaG\xbdbF\xc8n\x86\xac\x9c\xfb\xda\xe2&\"\xb4:\x13\xe9\tc\x85\xb4\xcb\x17\a\x00\x00\x00\xe7\x7fp\x9eCdb\xad;\xa2\x8fs\xbf6\xe8\xe3Xg3&\xe2 \xd6\n\x9d=~=\xe5\xdc\x90\a\xe7M\x9c<\x93/\xaf\x89\x06+\x96]\xb5+\xee\xff8^D*\xdb\xb8\xd8t\x80\xd4'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x28}]}, 0x100}, 0x1, 0x0, 0x0, 0x20084880}, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
ioperm(0x1, 0x2, 0x3)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)

16m36.680638564s ago: executing program 6 (id=9708):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f0000000740)=""/51, 0x0})
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r1}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x60, 0x30, 0x1, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$UI_DEV_DESTROY(0xffffffffffffffff, 0x5502)
setgroups(0x352, &(0x7f0000000080)=[0x0, 0xee00])
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000019140)={0x1, 0x0, [{0x8000000, 0xae, &(0x7f0000019080)=""/174}]})
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000000)={0x1})
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f00000001c0)=0x304008000)
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, 0x0)

16m35.776859672s ago: executing program 6 (id=9713):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000240), 0x401, 0x0)
socket$kcm(0x29, 0x5, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
fanotify_init(0x40, 0x1)
r1 = openat$cachefiles(0xffffff9c, &(0x7f0000000000), 0x80002, 0x0)
write$snddsp(r1, &(0x7f0000000040)="8a5dda41ff4d8ec8336a3c26e39c10b6df78d58c7dc2fd43d4a2fa8e215bbbf0a30c807c962982780bc78bce38392d9f580d44c3dcb64484090a480949ee3deb0975f2ceec84e138c364d21326188d6f79b1acae5852f9cc7a45b57e2f00f51672b57adc0bafbfc173cd160645c0873ab5efad0083e7048a323c6f22509b0cf630e7c4c7742b5ce0c4c113cc58fd4e90226a4d5ce0996f878d771e9af31c60455d03734b50ea208a37969cace086b3d6e6f0049c0b05e6c2b988e1c9", 0xbc)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f00000001c0)={'erspan0\x00', &(0x7f0000000100)={'syztnl0\x00', <r3=>0x0, 0xe3482469cc1bc92f, 0x1, 0x0, 0x401, {{0x1b, 0x4, 0x1, 0x19, 0x6c, 0x68, 0x0, 0xc9, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr=0x64010100, {[@noop, @timestamp_prespec={0x44, 0x1c, 0xad, 0x3, 0x9, [{@multicast2, 0x2}, {@loopback, 0x400}, {@remote, 0xffffffff}]}, @generic={0x83, 0x12, "6c1cc1e04ea8c21e557aeac4bcd7d121"}, @ssrr={0x89, 0x17, 0x6f, [@multicast1, @multicast1, @loopback, @local, @local]}, @lsrr={0x83, 0xf, 0xff, [@multicast2, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @noop, @end, @end]}}}}})
stat(&(0x7f0000000200)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
sendmsg$nl_xfrm(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000500)=@updpolicy={0xe4, 0x19, 0x100, 0x70bd25, 0x25dfdbfd, {{@in=@broadcast, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x4e22, 0xe, 0x4e24, 0x3, 0x2, 0x20, 0x80, 0x73, r3, r4}, {0x1fe, 0x100000001, 0xb, 0x8, 0x9, 0x8000000000000000, 0x1000000000006, 0x9}, {0x9c, 0x4, 0xdb10, 0x7}, 0x8, 0x6e6bb2, 0x2, 0x1, 0x1, 0x1}, [@coaddr={0x14, 0xe, @in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}, @replay_thresh={0x8, 0xb, 0x80000001}, @srcaddr={0x14, 0xd, @in6=@private2={0xfc, 0x2, '\x00', 0x1}}]}, 0xe4}, 0x1, 0x0, 0x0, 0x20004011}, 0x0)
r5 = syz_clone(0x80842111, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_pidfd_open(r5, 0x0)
ioctl$F2FS_IOC_GET_FEATURES(r6, 0xff09, 0x0)
ioctl$TCSETSW2(r0, 0x5453, 0x0)
bind$xdp(r1, &(0x7f0000000380)={0x2c, 0x1, r3, 0x40, r1}, 0x10)

16m35.718465592s ago: executing program 6 (id=9714):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000811}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x64, 0x30, 0x871a15abc695fb3d, 0x70bd2a, 0x25dfdbfd, {}, [{0x50, 0x1, [@m_vlan={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0x81, 0xffffadf3, 0x4, 0x6, 0x10000}, 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x4000044}, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0) (fail_nth: 17)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x3)
bind$inet(r1, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={0x0, 0x4}}, 0x0)
connect$inet(r1, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r1, &(0x7f0000004d00)=[{{0x0, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf00)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x3)
ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f00000003c0)={0x2, 0x0, [{0x1, 0x401, 0x0, 0x9, 0x100, 0x6, 0x6e8}, {0x1, 0xf08, 0x4, 0xfffffffc, 0xbe, 0xffff, 0x14}]})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e21, @empty}, 0x10)

16m35.651240062s ago: executing program 6 (id=9715):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$SIOCAX25NOUID(0xffffffffffffffff, 0x89e3, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0xffff, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r3 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNADD(r3, 0x400448c8, &(0x7f00000001c0)={r2, r1, 0x8, 0x0, 0x0, 0x83, 0x5, 0x15c2, 0x5882, 0x1, 0x1, 0xa8, 'syz1\x00'})
prctl$PR_MCE_KILL(0x35, 0x0, 0x8)
prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x0)
r4 = accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0xffffffff, @host}, 0x10, 0x0)
poll(&(0x7f0000000080)=[{r4, 0x410c}, {r0, 0x19}, {r0, 0xb040c137b7889c54}, {r0, 0xa500}], 0x4, 0x9)
ioctl$IOCTL_VMCI_GET_CONTEXT_ID(0xffffffffffffffff, 0x7b3, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r5, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
r7 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r7, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800000000000000000000000000020000000000b890"], 0x0, 0x1a}, 0x28)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
recvmmsg(r7, &(0x7f00000057c0)=[{{0x0, 0x0, 0x0}, 0x3}, {{0x0, 0x0, &(0x7f0000002cc0)=[{0x0}, {&(0x7f00000017c0)=""/130, 0x94}], 0x2}, 0xa1}], 0x2, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r6, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)=[<r9=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r5, 0xc05064a7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000040), 0xfffffffffffffd8b, 0x5, 0x0, 0x0, r9})
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x22401)
ioctl$DRM_IOCTL_MODESET_CTL(r5, 0x40086408, &(0x7f00000000c0)={0x1d})
recvmmsg(r4, &(0x7f00000019c0)=[{{&(0x7f0000000100)=@in={0x2, 0x0, @multicast2}, 0x80, &(0x7f0000000280)=[{&(0x7f00000003c0)=""/183, 0xb7}, {&(0x7f00000001c0)}, {&(0x7f0000000300)=""/92, 0x5c}, {&(0x7f0000000480)=""/79, 0x4f}], 0x4}, 0x28c}, {{&(0x7f0000000500)=@caif=@dbg, 0x80, &(0x7f0000000840)=[{&(0x7f0000000580)=""/73, 0x49}, {&(0x7f0000000600)=""/216, 0xd8}, {&(0x7f0000000700)=""/73, 0x49}, {&(0x7f0000000780)=""/18, 0x12}, {&(0x7f00000007c0)=""/91, 0x5b}], 0x5}, 0xe0}, {{&(0x7f0000000880)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000ac0)=[{&(0x7f0000000900)=""/204, 0xcc}, {&(0x7f0000000a00)=""/33, 0x21}, {&(0x7f0000000a40)=""/120, 0x78}], 0x3, &(0x7f0000000b00)=""/175, 0xaf}, 0x3}, {{&(0x7f0000000bc0)=@alg, 0x80, &(0x7f0000000ec0)=[{&(0x7f0000000c40)=""/125, 0x7d}, {&(0x7f0000000cc0)}, {&(0x7f0000000d00)=""/50, 0x32}, {&(0x7f0000000d40)=""/45, 0x2d}, {&(0x7f0000000d80)=""/11, 0xb}, {&(0x7f0000000dc0)=""/191, 0xbf}, {&(0x7f0000000e80)=""/35, 0x23}], 0x7, &(0x7f0000000f00)=""/79, 0x4f}, 0x1}, {{&(0x7f0000000f80)=@alg, 0x80, &(0x7f0000001540)=[{&(0x7f0000001000)=""/117, 0x75}, {&(0x7f0000001080)=""/139, 0x8b}, {&(0x7f0000001140)=""/113, 0x71}, {&(0x7f00000011c0)=""/136, 0x88}, {&(0x7f0000001280)=""/183, 0xb7}, {&(0x7f0000001340)=""/53, 0x35}, {&(0x7f0000001380)=""/175, 0xaf}, {&(0x7f0000001440)=""/201, 0xc9}], 0x8}, 0x401}, {{&(0x7f0000001580)=@generic, 0x80, &(0x7f0000001880)=[{&(0x7f0000001600)=""/123, 0x7b}, {&(0x7f0000001680)=""/229, 0xe5}, {&(0x7f0000001780)=""/35, 0x23}, {&(0x7f00000017c0)=""/37, 0x25}, {&(0x7f0000001800)=""/77, 0x4d}], 0x5, &(0x7f00000018c0)=""/255, 0xff}}], 0x6, 0x2200, 0xfffffffffffffffe)

16m34.83461614s ago: executing program 6 (id=9718):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x3, 0x8, &(0x7f0000005c00)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x2000}, 0x10}, 0x94)
syz_open_dev$radio(&(0x7f0000000100), 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=@newnexthop={0x24, 0x68, 0x1, 0x70bd27, 0x7ffffffd, {}, [@NHA_GROUP={0x4}, @NHA_FDB={0x4}, @NHA_BLACKHOLE={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x4008018}, 0x4000080)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd74)
r4 = syz_io_uring_setup(0x917, &(0x7f00000003c0)={0x0, 0x400, 0x1, 0x1000001, 0xf7fffffc}, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffbfd, 0x0, 0x4)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
open(&(0x7f0000000240)='./file0\x00', 0x101200, 0x0)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(0xffffffffffffffff, 0x13, 0x0, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r6, 0x400448cb, 0x0)
r7 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
r8 = mmap$KVM_VCPU(&(0x7f0000b8b000/0x3000)=nil, 0x930, 0x300000b, 0x12, r7, 0x0)
r9 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r9)
ptrace$peeksig(0x4209, r9, &(0x7f0000000700)={0x0, 0x0, 0x1}, &(0x7f0000000fc0)=[{}])
syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f00000002c0)="c733a3b8ec3522cb25092845f6a5eb4aaea8a15348ec54876d8adc72a63fdd4a0c1baa7dca9b5d8476dce91d60fda13bc231dd2156fb06845058a7b15982dca1278276c5eaec0ddc", 0x0, 0x48)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)

16m20.519081003s ago: executing program 35 (id=9718):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x3, 0x8, &(0x7f0000005c00)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x2000}, 0x10}, 0x94)
syz_open_dev$radio(&(0x7f0000000100), 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=@newnexthop={0x24, 0x68, 0x1, 0x70bd27, 0x7ffffffd, {}, [@NHA_GROUP={0x4}, @NHA_FDB={0x4}, @NHA_BLACKHOLE={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x4008018}, 0x4000080)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd74)
r4 = syz_io_uring_setup(0x917, &(0x7f00000003c0)={0x0, 0x400, 0x1, 0x1000001, 0xf7fffffc}, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000200))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffbfd, 0x0, 0x4)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
open(&(0x7f0000000240)='./file0\x00', 0x101200, 0x0)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(0xffffffffffffffff, 0x13, 0x0, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r6, 0x400448cb, 0x0)
r7 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
r8 = mmap$KVM_VCPU(&(0x7f0000b8b000/0x3000)=nil, 0x930, 0x300000b, 0x12, r7, 0x0)
r9 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r9)
ptrace$peeksig(0x4209, r9, &(0x7f0000000700)={0x0, 0x0, 0x1}, &(0x7f0000000fc0)=[{}])
syz_memcpy_off$KVM_EXIT_HYPERCALL(r8, 0x20, &(0x7f00000002c0)="c733a3b8ec3522cb25092845f6a5eb4aaea8a15348ec54876d8adc72a63fdd4a0c1baa7dca9b5d8476dce91d60fda13bc231dd2156fb06845058a7b15982dca1278276c5eaec0ddc", 0x0, 0x48)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)

2m16.348891674s ago: executing program 3 (id=13813):
socket$netlink(0x10, 0x3, 0xf)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
socket$netlink(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x3b9ac9ff, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000140))
r2 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0684113, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file5\x00', 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0x5, 0x0, 0x0)
writev(r3, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f9cc3f4ff7f4e32f61bcdf1e422000000000100804824cabecc4b381eaadc28f23457e792945f64009400050028925aaa000000c600000000000000feff2c", 0x53}], 0x1)
ioctl$VIDIOC_SUBSCRIBE_EVENT(0xffffffffffffffff, 0x4020565a, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff})
connect$inet6(r4, &(0x7f0000000140)={0xa, 0x4e20, 0xa86c, @dev={0xfe, 0x80, '\x00', 0x1a}, 0x8}, 0x1c)
ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc008561c, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000440)=[&(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x9, r0, &(0x7f00000005c0), 0x0, 0xce49}])

2m15.590646537s ago: executing program 3 (id=13816):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8f}, 0x0)
r0 = getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x4, 0xc, &(0x7f0000001180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002e000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0xe, 0x0, &(0x7f0000000400)="e4e647c9e0b8e9a2f2ab3026da58", 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4, <r5=>0xffffffffffffffff}, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000007c0)='rcu_utilization\x00', r6, 0x0, 0xfffffffbffffffff}, 0x18)
r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreq(r7, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x2a, &(0x7f0000000240)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0xfb, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @echo_reply={0x0, 0x0, 0x0, 0x64, 0xd2}}}}}, 0x0)
socketpair(0x18, 0x0, 0x2, &(0x7f0000000000))
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r8 = getpid()
r9 = syz_pidfd_open(r8, 0x0)
r10 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$TIOCSLCKTRMIOS(r10, 0x5457, 0x0)
process_madvise(r9, 0x0, 0x0, 0x9, 0x0)
r11 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0)
preadv(r11, &(0x7f0000001200)=[{&(0x7f0000000dc0)=""/72, 0x48}], 0x1, 0x40, 0x3)

2m14.466110682s ago: executing program 3 (id=13818):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, 0x0, 0x0)
sendmmsg$sock(r0, &(0x7f00000005c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000940)=[@mark={{0x10, 0x1, 0x41, 0x3}}], 0x10}}, {{0x0, 0x0, 0x0}}], 0x2, 0x20000000)

2m14.379838512s ago: executing program 3 (id=13820):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x6, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x50)
stat(0x0, 0x0)
r0 = getpid()
syz_pidfd_open(r0, 0x0)
setns(0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt(r3, 0xeb, 0x10, &(0x7f0000000340)=""/45, &(0x7f0000000400)=0x2d)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0x0}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000002380)={0x1f, 0x18, &(0x7f0000001540)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000c0000008500000006000000b7080000000000007baaf8ff00000000b5080000040000007b8af0fffbffffffbfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008621386ff230000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70500000800000085000000b30000009500000000000000"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r7}, 0xc)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)

2m14.143973355s ago: executing program 3 (id=13821):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="20000000000701030000000000000003740000000900010073"], 0x20}, 0x1, 0x0, 0x0, 0x20040800}, 0x0)

2m13.764304816s ago: executing program 3 (id=13823):
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x6a)
close(r0) (async)
socket$inet_sctp(0x2, 0x5, 0x84) (async)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_STATION(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x48, r3, 0x302, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_OPMODE_NOTIF={0x5, 0xc2, 0x9a}, @NL80211_ATTR_STA_FLAGS2={0xc, 0x43, {0x0, 0xd}}, @NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x6e7}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xc}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0xf7}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x11)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f00000002c0), 0x8000, &(0x7f00000005c0)=ANY=[@ANYBLOB="7472616e733d6664040000006e6f3d", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',\x00'])
unshare(0x8040000)

2m13.69634303s ago: executing program 36 (id=13823):
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x6a)
close(r0) (async)
socket$inet_sctp(0x2, 0x5, 0x84) (async)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_STATION(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x48, r3, 0x302, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_OPMODE_NOTIF={0x5, 0xc2, 0x9a}, @NL80211_ATTR_STA_FLAGS2={0xc, 0x43, {0x0, 0xd}}, @NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x6e7}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xc}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0xf7}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x11)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f00000002c0), 0x8000, &(0x7f00000005c0)=ANY=[@ANYBLOB="7472616e733d6664040000006e6f3d", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',\x00'])
unshare(0x8040000)

1m33.171423873s ago: executing program 8 (id=13989):
landlock_create_ruleset(&(0x7f0000000000)={0x10, 0x0, 0x3}, 0x18, 0x0)
open(&(0x7f0000000280)='.\x00', 0x141080, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
removexattr(&(0x7f0000000200)='./cgroup\x00', &(0x7f0000000240)=@known='user.incfs.metadata\x00')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
set_mempolicy(0x2, &(0x7f0000000080)=0x51e1, 0x3ff)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x400c2, 0x1e9)
ftruncate(r2, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000001b80)=""/112, 0x70}], 0x1}}], 0x1, 0x700, 0x0)
sendfile(r3, r2, 0x0, 0x578410eb)
socket$kcm(0x10, 0x2, 0x0)
process_vm_readv(0x0, &(0x7f0000008400), 0x0, &(0x7f0000008640), 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
socket$kcm(0x29, 0x5, 0x0)
pipe(&(0x7f0000000040))
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000001a40), 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x0, @thr={0x0, &(0x7f0000000380)="c75f16175bb69c4013d0479f629c0ba46ff8ac8dc98098b878545ed70bb5bc1bacf36b28b91a23b1365fa8e67059f7c1fc1ade5eb855207f7066f96bdafb14234e8d9afeee1f3fd22e4b4fe5a61f4afde21805ae5206b87bb22d882df14583a3e6616fce86827ba486d004155a4450ce7bc978b14dadd17103787da46b699548"}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
accept4(r0, 0x0, 0x0, 0x0)

1m31.763205183s ago: executing program 8 (id=13998):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_int(r0, 0x29, 0x4e, &(0x7f0000000040)=0x2, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @local, 0x5}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000001d80)=[{{&(0x7f00000003c0)={0xa, 0x4e20, 0x9, @local, 0x9}, 0x1c, &(0x7f0000001c00)=[{&(0x7f0000001740)='p', 0x1}], 0x1, 0x0, 0x0, 0x3f}}], 0x1, 0x5dc)

1m31.355312706s ago: executing program 8 (id=14000):
r0 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r0, 0x40045542, &(0x7f00000001c0)=0x1)

1m30.995141602s ago: executing program 8 (id=14001):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
setxattr$trusted_overlay_origin(&(0x7f0000000440)='./file0\x00', &(0x7f0000000500), 0x0, 0x0, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e78, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x4}, 0x80}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket(0x2c, 0x4, 0x0)
sched_setscheduler(r2, 0x1, &(0x7f0000000280)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000300)='./file0\x00')
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='rpc_pipefs\x00', 0x0, 0x0)
r6 = inotify_init()
inotify_add_watch(r6, 0x0, 0x20000002)
getsockname$packet(r5, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000640)={'#! ', './file0', [{}, {0x20, 'rp\xee\xff\xe4'}, {0x20, '\x12~\x85\xecZ@\xb5\x18\xec\x182\xc9L\xdc\xb2\x81\xdam\xa8\xc5{\x92\x14\xce\xf2\xb8\xf7\xa9\xa7\x00X \x93t\x91!%\xff\x13\xdc\aIY\x0e\xb4zh\\\x06\r\xe8^Z\x81\xb8$:P\x83\x98_\xa1\x98\xd6\xd2g-\xefr\x14<\xd1\xb84\x94\xa09\x9f\x12I\xed\xd5dT#f\xb4\xf3\x88\xcf\xde\x00\xd4\x81WN\xca\xb5c\xbf\r\xb0Q\xa9\xbaC\xd2\xa2\x1d~\xc5D(\x92A\x12f\x83fn\xd0\xb6\x02\x116t:|\x94\xc7\xac\xf6\xbc~m\xd6\xd1\xe5\xe0\xdd\xc2\x9cl#\x85\xab\xe7\xa9\xcb\"\xd2\x97\x10\xa5\xa8\xc1\x8d@U\a]Gi^\xd2\xdf\xb0\xa5!\x836\x92\xc9\x92\xe4'}], 0xa, "7bad65c4da5338577feb172ca63250224c76e2027f000000000000007e2ac7fe2e31a2e87e3ee43ed92dfbb6bc0700de24db4ec870b8000000000000002c65e7495fe9afeb28bb60e91e23e104f6dbbf40e1fc2ab1a77fd9f6414e438f03"}, 0xfffffc43)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000000)={0x0, 0x2c, &(0x7f00000001c0)={&(0x7f00000000c0)={0x28, r1, 0x105, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_PEER_LINKS={0x6, 0x4, 0x65}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x20008000}, 0x50)
socket$kcm(0x10, 0x2, 0x0)

1m29.943485926s ago: executing program 8 (id=14008):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
close(0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r1)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
socket$packet(0x11, 0x3, 0x300)
openat$rtc(0xffffffffffffff9c, 0x0, 0x902, 0x0)
r2 = syz_io_uring_setup(0x110, &(0x7f00000003c0)={0x0, 0xfad6, 0x800, 0x1, 0x3}, &(0x7f00000000c0)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r2, 0xdb4, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r2, 0x18, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x1, {0x6, 0x6d4}, 0xf0}, 0x1)

1m28.683175758s ago: executing program 8 (id=14009):
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)={0xc0, 0x0, 0x2, 0x70bd2c, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8a0c}, @TIPC_NLA_PUBL_UPPER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xffff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1ff}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6315}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x558f}]}, @TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xfffffffd}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xfffffffc}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xae7}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xffffffff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}]}, @TIPC_NLA_NET={0x4}]}, 0xc0}, 0x1, 0x0, 0x0, 0x8006}, 0x80)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sys_enter\x00', r0}, 0x18)
arch_prctl$ARCH_GET_CPUID(0x1011)
pipe(&(0x7f0000000480)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x14, 0x15, 0x301, 0x0, 0x25dfdbfc, {0x5}}, 0x14}}, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
fcntl$setstatus(r3, 0x4, 0x2000)
socket$packet(0x11, 0x2, 0x300)
syz_emit_vhci(&(0x7f0000000340)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x0, 0x81}, @l2cap_cid_signaling={{0x7d}, [@l2cap_create_chan_rsp={{0xd, 0x5, 0x8}, {0x0, 0x6, 0xfff, 0x6}}, @l2cap_disconn_rsp={{0x7, 0x8, 0x4}, {0x932, 0x9}}, @l2cap_move_chan_req={{0xe, 0x48, 0x3}, {0x9, 0x10}}, @l2cap_disconn_rsp={{0x7, 0x1, 0x4}, {0x5}}, @l2cap_conf_rsp={{0x5, 0x8, 0x3e}, {0x8, 0x10, 0x1, [@l2cap_conf_efs={0x6, 0x10, {0x9, 0x2, 0x92, 0x0, 0x81, 0x7}}, @l2cap_conf_mtu={0x1, 0x2, 0x5}, @l2cap_conf_mtu={0x1, 0x2, 0x1ff}, @l2cap_conf_flushto={0x2, 0x2, 0xff}, @l2cap_conf_ews={0x7, 0x2, 0x4}, @l2cap_conf_fcs={0x5, 0x1}, @l2cap_conf_ews={0x7, 0x2, 0x3}, @l2cap_conf_rfc={0x4, 0x9, {0x4, 0xf, 0xf7, 0xa, 0x100, 0x9}}, @l2cap_conf_mtu={0x1, 0x2, 0x6}]}}, @l2cap_disconn_req={{0x6, 0x3, 0x4}, {0x5, 0x800}}, @l2cap_disconn_req={{0x6, 0xb, 0x4}, {0x401, 0x80}}, @l2cap_disconn_req={{0x6, 0xf9, 0x4}, {0x5e, 0x2}}]}}, 0x86)
r4 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000380)={'syz_tun\x00', <r5=>0x0})
getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bind$packet(r4, &(0x7f0000000080)={0x11, 0x800, r5, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14)
sendmsg$NFNL_MSG_ACCT_GET(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x28}}, 0x48080)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="4400000010000100"/20, @ANYRES32, @ANYBLOB="000024000000000024001200140001006272696467655f736c617665800000000c000500080005"], 0x3}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1m28.682917821s ago: executing program 37 (id=14009):
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)={0xc0, 0x0, 0x2, 0x70bd2c, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8a0c}, @TIPC_NLA_PUBL_UPPER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xffff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1ff}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6315}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x558f}]}, @TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xfffffffd}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xfffffffc}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xae7}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xffffffff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}]}, @TIPC_NLA_NET={0x4}]}, 0xc0}, 0x1, 0x0, 0x0, 0x8006}, 0x80)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sys_enter\x00', r0}, 0x18)
arch_prctl$ARCH_GET_CPUID(0x1011)
pipe(&(0x7f0000000480)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x14, 0x15, 0x301, 0x0, 0x25dfdbfc, {0x5}}, 0x14}}, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
fcntl$setstatus(r3, 0x4, 0x2000)
socket$packet(0x11, 0x2, 0x300)
syz_emit_vhci(&(0x7f0000000340)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x0, 0x81}, @l2cap_cid_signaling={{0x7d}, [@l2cap_create_chan_rsp={{0xd, 0x5, 0x8}, {0x0, 0x6, 0xfff, 0x6}}, @l2cap_disconn_rsp={{0x7, 0x8, 0x4}, {0x932, 0x9}}, @l2cap_move_chan_req={{0xe, 0x48, 0x3}, {0x9, 0x10}}, @l2cap_disconn_rsp={{0x7, 0x1, 0x4}, {0x5}}, @l2cap_conf_rsp={{0x5, 0x8, 0x3e}, {0x8, 0x10, 0x1, [@l2cap_conf_efs={0x6, 0x10, {0x9, 0x2, 0x92, 0x0, 0x81, 0x7}}, @l2cap_conf_mtu={0x1, 0x2, 0x5}, @l2cap_conf_mtu={0x1, 0x2, 0x1ff}, @l2cap_conf_flushto={0x2, 0x2, 0xff}, @l2cap_conf_ews={0x7, 0x2, 0x4}, @l2cap_conf_fcs={0x5, 0x1}, @l2cap_conf_ews={0x7, 0x2, 0x3}, @l2cap_conf_rfc={0x4, 0x9, {0x4, 0xf, 0xf7, 0xa, 0x100, 0x9}}, @l2cap_conf_mtu={0x1, 0x2, 0x6}]}}, @l2cap_disconn_req={{0x6, 0x3, 0x4}, {0x5, 0x800}}, @l2cap_disconn_req={{0x6, 0xb, 0x4}, {0x401, 0x80}}, @l2cap_disconn_req={{0x6, 0xf9, 0x4}, {0x5e, 0x2}}]}}, 0x86)
r4 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000380)={'syz_tun\x00', <r5=>0x0})
getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bind$packet(r4, &(0x7f0000000080)={0x11, 0x800, r5, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14)
sendmsg$NFNL_MSG_ACCT_GET(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x28}}, 0x48080)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="4400000010000100"/20, @ANYRES32, @ANYBLOB="000024000000000024001200140001006272696467655f736c617665800000000c000500080005"], 0x3}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

1m26.754724011s ago: executing program 2 (id=14018):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
creat(&(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000001500)='./file0\x00', &(0x7f0000001540), 0x0, &(0x7f00000015c0)={[{@mpol={'mpol', 0x3d, {'local', '=static', @void}}}]})
sendmsg$nl_xfrm(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000f80)=@allocspi={0x104, 0x16, 0x1, 0x0, 0x0, {{{@in6=@private1={0xfc, 0x1, '\x00', 0x2}, @in=@remote, 0x0, 0xfb, 0x0, 0x0, 0x0, 0x20, 0x0, 0x4}, {@in6=@empty, 0x4d3, 0x6c}, @in=@remote, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {0x9}, {0x0, 0x0, 0x2}, 0x70bd26, 0x10000002, 0x2}, 0x4, 0x5}, [@sec_ctx={0xc, 0x8, {0x8, 0x8, 0x0, 0x17}}]}, 0x104}, 0x1, 0x0, 0x0, 0x48001}, 0x4044050)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r6)
sendmsg$TIPC_CMD_ENABLE_BEARER(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000d40)={'syztnl2\x00', &(0x7f0000000bc0)={'gretap0\x00', <r8=>r4, 0x8000, 0x700, 0x80000001, 0x2, {{0x4e, 0x4, 0x0, 0x27, 0x138, 0x68, 0x0, 0x8, 0x4, 0x0, @private=0xa010102, @loopback, {[@generic={0x89, 0x11, "85025caaa2cc73d9328b609c3e17ba"}, @cipso={0x86, 0x71, 0x3, [{0x5, 0xd, "bf2b40c0988951494ed232"}, {0x5, 0xc, "dd1c209aab53d408e1f7"}, {0x7, 0x12, "2f88acdb99611fe1ee3d606e2823d402"}, {0x7, 0x3, "aa"}, {0x2, 0x9, "20216b28569618"}, {0x6, 0xa, "c880dec9817ecf87"}, {0x1, 0x11, "9afb910a9d2159db7f3d3bce079217"}, {0x0, 0x9, "6fce2044ef6b5a"}, {0x3, 0x10, "474deb41ff17f492ee3ffea1241f"}]}, @rr={0x7, 0x2b, 0xe4, [@dev={0xac, 0x14, 0x14, 0x1e}, @local, @rand_addr=0x64010102, @remote, @broadcast, @local, @dev={0xac, 0x14, 0x14, 0x3a}, @empty, @broadcast, @loopback]}, @timestamp_prespec={0x44, 0x3c, 0x4b, 0x3, 0x3, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0xff}, {@rand_addr=0x64010102, 0x1ff}, {@remote, 0x87}, {@remote, 0xffffffff}, {@remote, 0x2}, {@multicast2, 0x6}, {@broadcast, 0x5}]}, @lsrr={0x83, 0x13, 0x80, [@multicast2, @loopback, @loopback, @rand_addr=0x64010101]}, @timestamp={0x44, 0x18, 0x2, 0x0, 0xd, [0xfff, 0x80000000, 0x3, 0x8000, 0x4]}, @rr={0x7, 0xf, 0xb, [@broadcast, @remote, @dev={0xac, 0x14, 0x14, 0x1b}]}]}}}}})
sendmmsg$inet6(r2, &(0x7f0000000e80)=[{{&(0x7f0000000080)={0xa, 0x4e21, 0x40, @mcast2, 0x8000}, 0x1c, &(0x7f0000000200)=[{&(0x7f0000000300)="ee3dc446c8a331b6376aff2e708375d6113b0eb4de71429262aaf4ccb6b8972096650cf27e91ddf2856903cd4a43ea2fd318ce5a1791a8d2f74191bf17ac0ea347bbc0d8941b458a36c34ca1c502a55a9908cff1dfecd6d793c13af6e26b407052f3819a711da3457cd7f4101f91c207a44580c04e571ffe9f7a2389f0f242aa68d26c8616023c45dd76c59f2a734a1c139fa1408f060ade95a466c12decdec6bbd5516099de794682f948bb33a19b8dae81272ed67d46824875d367506a215f4c2450cc29079aeb77ae2de4146e8272275274b11e91becb64ef95f8ff64eb3c445d7db5e5ede382058a18702f00a03391a03ee83f0d72d2", 0xf8}, {&(0x7f0000000440)="b870c4a279e7b9c077a5280c2786ef70d8749510d9933f275140d1b3c55695a9da5a81ea323b32dc80d817256c8214df48cb63c362f1d9e1a85984916b822f2c0d41df1f5b98e0655bfddc9fde19cb9893ce8919d5c816a78d6779ff6d6da5e4fff4041c9d5c65b9fad02c59dec68e1fd1e595cf80ae18f3e0d4470629f2638df4292f12759e267be5fd7707406c6089dedf010dfbf43518bb8db6db24abab19f060d9f07bffa1a9f76d7e01ff8479ad911f0690fedb22560ca44ce73077b624479f85b4e2593e0d561bd8d366ac6c9ea8f32c7ab105704f98784df1c0", 0xdd}, {&(0x7f0000000540)="1b753a33c26d6be9d16187d5aa22420f334f3a2dc87f5d79d2196d745e7cc3a506a9e40c3df42b76533e2dcc92b7394bc7c044cd14c178a9aa18c235caf63d634163a3342b92bd3184542ea7008e43cc4733d7bf6433b0fe05538be99198f71374cdf8749209acc8e4098803fb92327988d3b98839a56c2106612ce25e181d71662a158207138d5c7031982f37d86dd4558369da2dd96b1a986b13bebc88bb5ad6897db565e6ba0a7272b2398c92f631d837145ee68d6c819277a54afe82fe1fa18beda554b6b40dadd6d34011e8f84ddef205348984ce9288e4435595c1bf", 0xdf}, {&(0x7f00000022c0)="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", 0x1000}, {&(0x7f0000000740)="6d33f18fa168391c0c1aea318ba60dd92a3de134268d9ce4d890cf2b6c236678260266d652e2e6836a2753cef6b5935279c78bc100f75197f01e4b3cc83d4a882346802f4a7df3d6c8653bb1c4468d177a5e31d8e1e38994b1836b489f530039f616da94383955894b5a818adf7fc1ba61ce89075ffd39f6e67d24f2a470a73d648a101073a29b6df5a0d4cde2e49285a7968e466802adfb8076d59dab6fd28736c103af154dbab26b51c7bb9db936e052bb19a4c687acac4cfe7fd4c23fd11de5b4ea5ae435ed49f41bfef6d4bfc3e48f1e", 0xd2}, {&(0x7f00000032c0)="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", 0x1000}, {&(0x7f0000000140)="84d25414dbab3797004c0469638cdfdf50fb7fa3d68ce541", 0x18}, {&(0x7f00000042c0)="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", 0x1000}], 0x8}}, {{&(0x7f0000000640)={0xa, 0x4e23, 0xfffffffb, @mcast1, 0x8}, 0x1c, &(0x7f0000000b80)=[{&(0x7f00000052c0)="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", 0x1000}, {&(0x7f0000000840)="6deeefd5bb4f77d98e1f67d7d4235710cd49feaf1cf09ee206ce8927664020bb729f7ffafb97434825c87b0d6b243effbf3610eb704fd6ceef163a246105f802169a93fe21a262786e23bb3a50320fa7aeaacc432c7e2a12baf35d20f47916abf78e0429367167fff12570addc60fc3e4cceb7222e7966f0f2e81116bb1a40251f9eff2be196e080e6cce2940fba4ef1f7e0423d11fd2c1774e4e11ed0", 0x9d}, {&(0x7f0000000900)="581df5d36cc6e54a009d3906657cc2684186501d85a5bef15e7ea7e9f7e5d9f6eabfa919485d24e8118fa9f22187b4a4e038dd853810470ecf9c223d58948968d4ebacd7d545cf26a484622286425d43a95b8379fafa8acbcc7c9d3272d55d624e91c61ed392b0a208a0970981f05a834a7b330e8d7d95a8ab9e3e90f46138710d05d4baa7006b40c436d31c4b4c55b6277b82c864f6d12963b5e823f068f4a01a5d0af82b8e7a8fbfd2ab3d53b454f6bd9f7b0cbdec55c94d4049d389e9ec0d876a7b2d73a210308ca5314202ff07", 0xcf}, {&(0x7f0000000a00)="2e313ea7f85742f867217a91df9c60188ae2750b9e5c697626067f686cbe615c048d6d178f701b6ae37202824451256a9c99faf7b725cee77eb46ee514c2a862a3131045c70d59cd21e3fbfc96386f05e8411825d52cb6706d8ffaf5ad56059cf9497d84f43f16c3f6663d260a3255357e79336084fc3f86d071d9cf922a381b65669f4a713f8422be51fb1ca7be03ae87bdf19db1d77b75b3be644aea379823cfebb0610a8b595d2a769c601e9abb33bdc545d4e737fbc0abf9421a", 0xbc}, {&(0x7f0000000ac0)="d07aee25849fb2055ccaa7a8bd21d7fb0b6e69bf3f93afc63435c4f034630d844726f251b9a202356a584231dd51c2e4ac75365c35c5e3e8b5171df6e1fab9578519981d118417ff15cd978223ba792015b729c982f01e1fbd06d346b9909ed37003fa324bd98e73a49b880b786b8358f55b2530d090fd94d7a433a41229f2fcf2aec918250a72182c08722d85900b51ac8bd9857845b933ca7bfe43f73ae3", 0x9f}], 0x5, &(0x7f0000000d80)=[@hoplimit={{0x10, 0x29, 0x34, 0x8}}, @rthdr_2292={{0x64, 0x29, 0x39, {0x2f, 0xa, 0x2, 0x6, 0x0, [@mcast1, @mcast2, @mcast2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1={0xfc, 0x1, '\x00', 0x1}]}}}, @pktinfo={{0x20, 0x29, 0x32, {@private2, r8}}}, @hopopts_2292={{0x64, 0x29, 0x36, {0x73, 0x9, '\x00', [@jumbo={0xc2, 0x4, 0x6}, @enc_lim={0x4, 0x1, 0x40}, @padn={0x1, 0x1, [0x0]}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x10, {0x1, 0x2, 0x7, 0xfed9, [0xc5e]}}, @ra={0x5, 0x2, 0x9}, @jumbo={0xc2, 0x4, 0xb}, @calipso={0x7, 0x18, {0x1, 0x4, 0x8, 0xaa, [0x7, 0x99]}}, @pad1]}}}], 0xf8}}], 0x2, 0x8000)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x200100, 0x0)
close(r9)
r10 = socket$unix(0x1, 0x1, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r12=>0x0})
sendmsg$nl_route_sched(r11, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, r12, {0x0, 0xb}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x7, 0x7, 0x6361, 0x5, 0xf, 0x6}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
ioctl$SIOCSIFHWADDR(r9, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

1m21.545474538s ago: executing program 2 (id=14029):
landlock_create_ruleset(&(0x7f0000000000)={0x10, 0x0, 0x3}, 0x18, 0x0)
open(&(0x7f0000000280)='.\x00', 0x141080, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
removexattr(&(0x7f0000000200)='./cgroup\x00', &(0x7f0000000240)=@known='user.incfs.metadata\x00')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
set_mempolicy(0x2, &(0x7f0000000080)=0x51e1, 0x3ff)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x400c2, 0x1e9)
ftruncate(r2, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000001b80)=""/112, 0x70}], 0x1}}], 0x1, 0x700, 0x0)
sendfile(r3, r2, 0x0, 0x578410eb)
socket$kcm(0x10, 0x2, 0x0)
process_vm_readv(0x0, &(0x7f0000008400), 0x0, &(0x7f0000008640), 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
socket$kcm(0x29, 0x5, 0x0)
pipe(&(0x7f0000000040))
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000001a40), 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x0, @thr={0x0, &(0x7f0000000380)="c75f16175bb69c4013d0479f629c0ba46ff8ac8dc98098b878545ed70bb5bc1bacf36b28b91a23b1365fa8e67059f7c1fc1ade5eb855207f7066f96bdafb14234e8d9afeee1f3fd22e4b4fe5a61f4afde21805ae5206b87bb22d882df14583a3e6616fce86827ba486d004155a4450ce7bc978b14dadd17103787da46b699548"}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
accept4(r0, 0x0, 0x0, 0x0)

1m20.150641328s ago: executing program 2 (id=14030):
socket$netlink(0x10, 0x3, 0xf)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
socket$netlink(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x3b9ac9ff, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000140))
r2 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0684113, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file5\x00', 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0x5, 0x0, 0x0)
writev(r3, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f9cc3f4ff7f4e32f61bcdf1e422000000000100804824cabecc4b381eaadc28f23457e792945f64009400050028925aaa000000c600000000000000feff2c", 0x53}], 0x1)
ioctl$VIDIOC_SUBSCRIBE_EVENT(0xffffffffffffffff, 0x4020565a, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff})
connect$inet6(r4, &(0x7f0000000140)={0xa, 0x4e20, 0xa86c, @dev={0xfe, 0x80, '\x00', 0x1a}, 0x8}, 0x1c)
ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc008561c, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000440)=[&(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x9, r0, &(0x7f00000005c0)="0d6cf014c1eae8d5163e42f8a2e32f572c816e6256bd299b41701444c9c42b299d17fe21dce4b0a269130d358b5a0e2fd56ae20288778b2f7af105c80b4f096f4514e7c6ce5e764faf31e3f77b42eb2b26e3eccf89548e6286c7af59fb", 0x5d, 0xce49}])

1m19.212464739s ago: executing program 2 (id=14034):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
setxattr$trusted_overlay_origin(&(0x7f0000000440)='./file0\x00', &(0x7f0000000500), 0x0, 0x0, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e78, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x4}, 0x80}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket(0x2c, 0x4, 0x0)
sched_setscheduler(r2, 0x1, &(0x7f0000000280)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
chdir(&(0x7f0000000300)='./file0\x00')
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='rpc_pipefs\x00', 0x0, 0x0)
r6 = inotify_init()
inotify_add_watch(r6, 0x0, 0x20000002)
getsockname$packet(r5, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000640)={'#! ', './file0', [{}, {0x20, 'rp\xee\xff\xe4'}, {0x20, '\x12~\x85\xecZ@\xb5\x18\xec\x182\xc9L\xdc\xb2\x81\xdam\xa8\xc5{\x92\x14\xce\xf2\xb8\xf7\xa9\xa7\x00X \x93t\x91!%\xff\x13\xdc\aIY\x0e\xb4zh\\\x06\r\xe8^Z\x81\xb8$:P\x83\x98_\xa1\x98\xd6\xd2g-\xefr\x14<\xd1\xb84\x94\xa09\x9f\x12I\xed\xd5dT#f\xb4\xf3\x88\xcf\xde\x00\xd4\x81WN\xca\xb5c\xbf\r\xb0Q\xa9\xbaC\xd2\xa2\x1d~\xc5D(\x92A\x12f\x83fn\xd0\xb6\x02\x116t:|\x94\xc7\xac\xf6\xbc~m\xd6\xd1\xe5\xe0\xdd\xc2\x9cl#\x85\xab\xe7\xa9\xcb\"\xd2\x97\x10\xa5\xa8\xc1\x8d@U\a]Gi^\xd2\xdf\xb0\xa5!\x836\x92\xc9\x92\xe4'}], 0xa, "7bad65c4da5338577feb172ca63250224c76e2027f000000000000007e2ac7fe2e31a2e87e3ee43ed92dfbb6bc0700de24db4ec870b8000000000000002c65e7495fe9afeb28bb60e91e23e104f6dbbf40e1fc2ab1a77fd9f6414e438f03"}, 0xfffffc43)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000000)={0x0, 0x2c, &(0x7f00000001c0)={&(0x7f00000000c0)={0x28, r1, 0x105, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_PEER_LINKS={0x6, 0x4, 0x65}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x20008000}, 0x50)
socket$kcm(0x10, 0x2, 0x0)

1m18.229570474s ago: executing program 2 (id=14043):
socket$netlink(0x10, 0x3, 0xf)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
socket$netlink(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x3b9ac9ff, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000140))
r2 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0684113, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file5\x00', 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0x5, 0x0, 0x0)
writev(r3, &(0x7f0000000100)=[{&(0x7f0000000000)="580000001400192340834b80043f679a10ff3d425f9cc3f4ff7f4e32f61bcdf1e422000000000100804824cabecc4b381eaadc28f23457e792945f64009400050028925aaa000000c600000000000000feff2c", 0x53}], 0x1)
ioctl$VIDIOC_SUBSCRIBE_EVENT(0xffffffffffffffff, 0x4020565a, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff})
connect$inet6(r4, &(0x7f0000000140)={0xa, 0x4e20, 0xa86c, @dev={0xfe, 0x80, '\x00', 0x1a}, 0x8}, 0x1c)
ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc008561c, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000440)=[&(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x9, r0, &(0x7f00000005c0)="0d6cf014c1eae8d5163e42f8a2e32f572c816e6256bd299b41701444c9c42b299d17fe21dce4b0a269130d358b5a0e2fd56ae20288778b2f7af105c80b4f096f4514e7c6ce5e764faf31e3f77b42eb2b26e3eccf89548e6286c7af59fbaf4d", 0x5f, 0xce49}])

1m17.760043237s ago: executing program 2 (id=14044):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r0}, 0x10)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0xb, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r1, 0x802c550a, &(0x7f0000000000)=ANY=[])
ioctl$USBDEVFS_REAPURB(r1, 0x4008550c, &(0x7f00000002c0))

1m17.587370118s ago: executing program 38 (id=14044):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r0}, 0x10)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0xb, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0})
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r1, 0x802c550a, &(0x7f0000000000)=ANY=[])
ioctl$USBDEVFS_REAPURB(r1, 0x4008550c, &(0x7f00000002c0))

6.187764267s ago: executing program 7 (id=14373):
landlock_create_ruleset(&(0x7f0000000000)={0x10, 0x0, 0x3}, 0x18, 0x0)
open(&(0x7f0000000280)='.\x00', 0x141080, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @pix={0x434c, 0x8, 0x584e4f53, 0x4, 0x2, 0x7, 0x0, 0x5, 0x1, 0x4, 0x2, 0x7}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
removexattr(&(0x7f0000000200)='./cgroup\x00', &(0x7f0000000240)=@known='user.incfs.metadata\x00')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
set_mempolicy(0x2, &(0x7f0000000080)=0x51e1, 0x3ff)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x400c2, 0x1e9)
ftruncate(r2, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r3, r2, 0x0, 0x578410eb)
socket$kcm(0x10, 0x2, 0x0)
process_vm_readv(0x0, &(0x7f0000008400), 0x0, &(0x7f0000008640), 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
socket$kcm(0x29, 0x5, 0x0)
pipe(&(0x7f0000000040))
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000001a40), 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x0, @thr={0x0, &(0x7f0000000380)="c75f16175bb69c4013d0479f629c0ba46ff8ac8dc98098b878545ed70bb5bc1bacf36b28b91a23b1365fa8e67059f7c1fc1ade5eb855207f7066f96bdafb14234e8d9afeee1f3fd22e4b4fe5a61f4afde21805ae5206b87bb22d882df14583a3"}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

5.415814234s ago: executing program 0 (id=14375):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424d", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x40f00}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x9}, 0x94)
socket(0x10, 0x2, 0x6)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000340)={'ip6tnl0\x00', &(0x7f00000002c0)=@ethtool_cmd={0x35, 0x5, 0x8, 0x4fec, 0x4, 0x8, 0x1, 0x4, 0x6, 0x3, 0x95, 0x400, 0xfff7, 0x8, 0xc, 0xc3, [0x41, 0x9]}})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYRES8=0x0], 0x14}}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000a40), 0x40400, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x3, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @cgroup_sysctl=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4048ae9b, &(0x7f0000000300)={0x70001, 0x0, [0x40000000000, 0x64f, 0x6, 0x6, 0xfffffffffffffffc, 0x4fffc, 0x29]})
bind$inet6(r3, &(0x7f0000000200)={0xa, 0x4e22, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8}, 0x1c)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000000)="f20f1c0166b864912c870f23c80f21f866350c0080000f23f80f01fc0f20e06635000010000f22e00f20c06635000000400f22c00f1c9700000f01c566b9a001000066b80400000066ba000000000f30c0dbb6660f3adf932700de", 0x5b}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = socket(0x2, 0x3, 0xff)
sendto$inet(r6, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x2, 0x0, @dev}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

4.918938639s ago: executing program 7 (id=14377):
r0 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f00000002c0)=@req3={0x7, 0x36, 0x9, 0x3ff, 0x2, 0x4, 0x7}, 0x1c)
r1 = socket(0x1e, 0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmsg$kcm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000500)="652d46c17c9d1905fdb3049700660d408ec1397b9103d25920891c7f5a2c9fcd06e2c6bb35dedb9ee737f0a8a69087bceb982dc60c83a8aef60b676e903c0310427c9fad4e0244b187dc0270b03a666c0855f559cffe084ee5dfd2f8d5849f2efa39c9dc496560e8b5225c0c27b03c70dc4d1e2a6ce3337623174931c0f45fc86f2d468f85927bb75416ee345735a0406a26d9e24afa62e8fd6c6093e392ad7cbf4a931778382c998d154544f81662ee8d6eedc97c91b3fbc5e23516d95a8fb40e6a228f7dec2ebda07ee284b8498b514271c0e3272dc9015db2d52b139643e8ed1722c570416087c4c663a7ed92d681585a35", 0xf3}, {&(0x7f00000003c0)="dd003bb7bac14b10", 0x8}], 0x2}, 0x20000880)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x2, 0x2, 0x0, 0x1000, &(0x7f0000fff000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x3, 0xcccc0000, 0x1000, &(0x7f0000000000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x1ff, 0x0, 0x6000, 0x1000, &(0x7f0000fd3000/0x1000)=nil})
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x1a)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
openat$rdma_cm(0xffffff9c, &(0x7f0000000140), 0x2, 0x0)
r5 = openat$dir(0xffffff9c, &(0x7f0000000200)='./file0\x00', 0x80000, 0x11c)
mkdirat(r5, &(0x7f00000001c0)='./file0\x00', 0x7c)
mount$cgroup2(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='nsdelegate,memory_localevents,memory_localevents,pids_localevents'])
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_GET(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000380)=ANY=[@ANYRESHEX=r2, @ANYRESHEX=r6, @ANYBLOB="002826bd70000001007063690019000200303030303a30303a31302e"], 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f00000000c0)={0x4, 0x0, 0xeeee8000, 0x2000, &(0x7f0000004000/0x2000)=nil})
mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fff000/0x1000)=nil})
close(0x3)
socket$nl_netfilter(0x10, 0x3, 0xc)

4.715129222s ago: executing program 7 (id=14379):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
socket$igmp6(0xa, 0x3, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xfe5d, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x00\x00\x00\x00\x00\x00dn\x00\x00\x00', 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000000280), 0x3, 0x389001)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r3, 0x400455c8, 0x4)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000180))
r5 = openat$audio(0xffffffffffffff9c, &(0x7f00000001c0), 0x200c3, 0x0)
ioctl$USBDEVFS_CONTROL(r4, 0xc0105500, &(0x7f0000000500)={0x40, 0xf, 0x5, 0x1ff, 0x0, 0x5, 0x0})
ioctl$SNDCTL_DSP_CHANNELS(r5, 0xc0045006, &(0x7f0000000080)=0x7f)
ioctl$SNDCTL_DSP_SPEED(r5, 0xc0045002, &(0x7f0000000000)=0x40000001)
r6 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r7 = socket$l2tp6(0xa, 0x2, 0x73)
bind$inet6(r7, &(0x7f0000000000)={0xa, 0x4e20, 0x80000000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xf}, 0x1c)
ioctl$FBIOPUT_VSCREENINFO(r6, 0x4601, &(0x7f0000000380)={0x320, 0x78, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {0x101}, {}, {0xffffffff}, {}, 0x0, 0x0, 0x0, 0x0, 0x1, 0x14, 0x8, 0x3, 0x1ff, 0x3d, 0x405, 0x3, 0x53, 0x202, 0x1})
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000300)={0x1}, 0x8)

4.477733266s ago: executing program 0 (id=14380):
r0 = openat$null(0xffffff9c, &(0x7f0000000000), 0x10842, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x34, r1, 0x400, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8, 0x74}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x3d}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x1)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000340)={&(0x7f00000001c0)={0x168, 0x0, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}]}, @TIPC_NLA_LINK={0x4c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x972}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x101}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x8}]}, @TIPC_NLA_LINK={0xd4, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6c2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x40}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x21f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5e}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x59}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}]}]}, 0x168}, 0x1, 0x0, 0x0, 0x8851}, 0x20000000)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), r0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x30, r2, 0x20, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0x10}, @ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x5}, @ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000040}, 0x40000)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540), r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x60, r3, 0x800, 0x70bd28, 0x25dfdbff, {}, [@TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffc}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x101}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}]}, @TIPC_NLA_SOCK={0x18, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xe62}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xa2c}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x40840}, 0x40000)
connect$inet6(r0, &(0x7f0000000680)={0xa, 0x4e21, 0x401, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, 0x1c)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$EXT4_IOC_GETFSUUID(r4, 0x8008662c, &(0x7f00000006c0))
r5 = fcntl$getown(r4, 0x9)
ptrace(0x11, r5)
mount$tmpfs(0x0, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740), 0x2010090, &(0x7f0000000780)={[{@usrquota_inode_hardlimit={'usrquota_inode_hardlimit', 0x3d, [0x65, 0x38]}}], [{@mask={'mask', 0x3d, 'MAY_APPEND'}}]})
sendmsg$nl_route(r0, &(0x7f0000000a00)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000009c0)={&(0x7f0000000800)=@can_newroute={0x1c0, 0x18, 0x404, 0x70bd2a, 0x25dfdbfc, {0x1d, 0x1, 0x6}, [@CGW_MOD_OR={0x15, 0x2, {{{0x4, 0x0, 0x1, 0x1}, 0x5, 0x0, 0x0, 0x0, "0cb75c90b556a27f"}, 0x3}}, @CGW_LIM_HOPS={0x5, 0xd, 0x1}, @CGW_MOD_OR={0x15, 0x2, {{{0x4, 0x0, 0x0, 0x1}, 0x7, 0x1, 0x0, 0x0, "1f32aa40dec7e25a"}, 0x7}}, @CGW_MOD_SET={0x15, 0x4, {{{0x4, 0x0, 0x1}, 0x3, 0x1, 0x0, 0x0, "76dc2263568ce076"}, 0x1}}, @CGW_MOD_XOR={0x15, 0x3, {{{0x0, 0x1, 0x0, 0x1}, 0x3, 0x0, 0x0, 0x0, "e83d600d863b6b21"}, 0x3}}, @CGW_FILTER={0xc, 0xb, {{0x1, 0x1}, {0x2, 0x0, 0x1}}}, @CGW_CS_CRC8={0x11e, 0x6, {0x79, 0x59, 0x30, 0x87, 0x49, "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", 0x2, "3b09e520311cbfb643ece05ba1df27d3a834c133"}}, @CGW_MOD_OR={0x15, 0x2, {{{0x0, 0x0, 0x1}, 0x1, 0x0, 0x0, 0x0, "77ad19a514a2d38d"}, 0x4}}]}, 0x1c0}, 0x1, 0x0, 0x0, 0x4080}, 0x4000000)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000a40)=r0, 0x4)
setsockopt$RXRPC_EXCLUSIVE_CONNECTION(r0, 0x110, 0x3)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000a80)={0x1e0, 0x600, 0x20, 0x384, 0x80, 0x5, 0x8, 0x2, {0xffff, 0x3}, {0x9, 0x8}, {0xfff, 0x1}, {0xffffffff, 0x1, 0x1}, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0xaf, 0x3, 0x6b, 0x9, 0x80, 0x0, 0x8, 0x200, 0x3, 0x9})
ioctl$KVM_TRANSLATE(0xffffffffffffffff, 0xc018ae85, &(0x7f0000000b40)={0xdddd0000, 0xf000, 0x3, 0x23, 0x6})
r6 = openat$cdrom(0xffffff9c, &(0x7f0000000b80), 0x100, 0x0)
ioctl$CDROM_DISC_STATUS(r6, 0x5327)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000c40)={'gre0\x00', &(0x7f0000000bc0)={'syztnl1\x00', <r7=>0x0, 0x40, 0x7800, 0xffffffff, 0x77ba, {{0x9, 0x4, 0x1, 0x0, 0x24, 0x66, 0x0, 0x5, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x30}, @remote, {[@end, @lsrr={0x83, 0xb, 0x15, [@empty, @local]}, @ra={0x94, 0x4, 0x1}]}}}}})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r4, 0x89f3, &(0x7f0000000cc0)={'syztnl2\x00', &(0x7f0000000c80)={'erspan0\x00', r7, 0x20, 0x8000, 0x25cd, 0x9, {{0x8, 0x4, 0x1, 0x6, 0x20, 0x66, 0x0, 0xfe, 0x2f, 0x0, @loopback, @local, {[@noop, @generic={0x82, 0xa, "ad5bfbadc93c0c2a"}]}}}}})
ioctl$sock_bt_bnep_BNEPCONNADD(r0, 0x400442c8, &(0x7f0000000d00)={r0, 0xfffffff8, 0x8, "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"})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000001d80)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_POWER_SAVE(r8, &(0x7f0000001e40)={&(0x7f0000001d40)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001e00)={&(0x7f0000001dc0)={0x30, r1, 0x200, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x4f0, 0x6}}}}, [@NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}]}, 0x30}}, 0x20000000)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000001e80))
syz_open_dev$char_usb(0xc, 0xb4, 0x4)
socket$inet_mptcp(0x2, 0x1, 0x106)

4.336175594s ago: executing program 0 (id=14381):
r0 = gettid()
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000300), 0x0)
read(r1, &(0x7f0000000480)=""/194, 0xb5)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r1, 0x4058534c, &(0x7f00000000c0)={0x80, 0x0, {0x7ffffffffffffffe}})
tkill(r0, 0x3e)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r1, 0xc08c5336, &(0x7f0000000000)={0x1, 0x2, 0x0, 'queue0\x00', 0x3})
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xb, 0xffffff83, &(0x7f0000000180))
r2 = creat(&(0x7f0000000200)='./file1\x00', 0x0)
r3 = syz_usb_connect(0x3, 0x36, &(0x7f0000000280)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x88c02)
syz_usb_disconnect(r3)
read$FUSE(r2, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_linger(r5, 0x1, 0xd, &(0x7f0000000440)={0x2, 0x2}, 0x8)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
r6 = userfaultfd(0x1)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000001c0))
r7 = userfaultfd(0x81800)
ioctl$UFFDIO_REGISTER(r7, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x1)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xd)
ioctl$KVM_PRE_FAULT_MEMORY(r10, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})
ioctl$UFFDIO_COPY(r6, 0xc028aa05, &(0x7f0000000040)={&(0x7f00003a7000/0x1000)=nil, &(0x7f0000589000/0x3000)=nil, 0x1000})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'vxcan1\x00'})
connect$unix(r2, &(0x7f0000000340)=@abs={0x1, 0x0, 0x4e22}, 0x6e)

3.549668911s ago: executing program 4 (id=14385):
syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000100)='hugetlbfs\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
getpeername$packet(r0, 0x0, &(0x7f0000000040))
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0), 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x2)
syz_emit_ethernet(0x3e, &(0x7f0000000b40)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x67, 0x0, 0x4, 0x11, 0x0, @empty, @empty}, {0x1, 0x4e20, 0x1c, 0x0, @gue={{0x2, 0x0, 0x0, 0x0, 0x0, @val=0x80}, "e873b57e514ba049326a92fc"}}}}}}, 0x0)

3.171315024s ago: executing program 4 (id=14386):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
fsopen(0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000bd000), 0x318, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000100), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r3 = mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x9, 0x0)
fcntl$setlease(r3, 0x400, 0x0)
mq_open(&(0x7f0000000780)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\x00\xc078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xca\xae\x1bs\xd4\xf0\xc0\xdag\x19R4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O', 0x1, 0x136, 0x0)

2.512796337s ago: executing program 9 (id=14390):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000008850000007600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=@newtaction={0x64, 0x30, 0xffffffffffffffff, 0x0, 0x25dfdbfd, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1}}, @TCA_ACT_BPF_FD={0x8, 0x5, r0}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfff5}, 0x0)

2.309789262s ago: executing program 9 (id=14391):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000080000000000000000000000850000002a000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000010000000850000007100000095000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x11, 0x3, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000240), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0xfffffffe, 0x22100)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@ipv4_newrule={0x1c, 0x20, 0x301, 0x70bd2c, 0x25dfdbff, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x1c}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='rxrpc_local\x00', r2}, 0x10)
socket$rxrpc(0x21, 0x2, 0xa)
ioctl$BLKPG(0xffffffffffffffff, 0x1269, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b26, &(0x7f0000000280)={'wlan1\x00'})
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x7, 0x5)
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)

2.297413886s ago: executing program 4 (id=14392):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000008850000007600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=@newtaction={0x64, 0x30, 0xffffffffffffffff, 0x0, 0x25dfdbfd, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1}}, @TCA_ACT_BPF_FD={0x8, 0x5, r0}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) (fail_nth: 14)

2.222725995s ago: executing program 4 (id=14393):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000700000000020000000000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000340)={'wg0\x00', <r1=>0x0})
timer_create(0x0, &(0x7f0000000280)={0x0, 0x37, 0x6, @tid=0xffffffffffffffff}, &(0x7f0000000380)=<r2=>0x0)
timer_gettime(r2, &(0x7f0000000780))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000003c0)='GPL\x00', 0x80, 0x0, 0x0, 0x40f00, 0x0, '\x00', r1, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200000}, 0x94)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@updpolicy={0xc4, 0x19, 0x1, 0xfffffffc, 0x0, {{@in=@dev={0xac, 0x14, 0x14, 0x2c}, @in6=@local, 0x4e22, 0x0, 0x4e24, 0x0, 0xa, 0x0, 0x60}, {0x0, 0x1000000000000401, 0xfffffffffffffffe, 0x40000000, 0x0, 0x1a, 0x1, 0xfffffffffffffffe}, {0x7a, 0x5, 0x0, 0x7fff}, 0x8, 0x0, 0x1, 0x0, 0x3}, [@policy_type={0xa, 0x10, {0x1}}]}, 0xc4}}, 0x0)
sendto$inet6(r4, &(0x7f0000000240)="8a", 0x1, 0x51, &(0x7f0000000080)={0xa, 0x3, 0x1, @local, 0x9}, 0x1c)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r3, &(0x7f0000006840)={0x2020, 0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r8, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r8, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r8, &(0x7f0000000440)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0xfffffffe, @loopback, 0x280020}, 0x1c, &(0x7f00000004c0)=[{&(0x7f0000000100)="90", 0x1}], 0x1}}], 0x1, 0x8050)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r8, 0x84, 0x77, &(0x7f0000000180)={0x0, 0x5}, 0x8)
syz_fuse_handle_req(r3, &(0x7f00000042c0)="9ab1446569aa24b774753c9e994c09c24df9d42fa5a228e469b44cecf6f9f5ce5f77c93b1895aaac9cf34b37415f11fe22d6fa0162aa743b242e8fe0a8659e32fb543d7969d6513136a9f332a8074f8ee1e445277ddd5859eb5ac3321eb710be880a441031da9b31f791d54fb3c97cd8ee92b00cbf962be8eb5fd0b7cab207645f59cf87a8c41e2739dd8386b6bb84b627cbf5e09bac876ad4b215f0e510a853c5e8b9f7822b26771d72972290a1f9a6f0a46942be0d0eb7aa5145ff368863b14e9845926088f9f92d554e572926290dc6e6b574aea8c500fbe5697f881c0cec48282c6d07619248da0c3b9aa6f7c778525d1760051e4ba8ef31d3c8d3e1d4214ffa5261ce1fdbc12eba889968137f5c06fea233000296cf18df494b4e7b1bee7dc2f3751c37415d46f6d7ffb3d0f788f2100ee41266e6fba75b61af22e1d7b286507ff100cc34ed28d5a2c8be3231446874bbbde6f3c367ca802d64192ffcce1ea41b2cbc57f7500fc4f8f12fe02690c1c9785bbc35542b59d05600783cf4f4633b374101d8ed395303392b238d198f9f68c8ae928cbf3b558deec6d38ebaa526e749ac4e47dd5b838ec34f2820a1134252ae60159d4e030cf5e5d6f8de799a31e12ae57cfe5a1a3ded525c6e71271271d35a0056265362387a361f21ea0f4b6d46f6a83a8512687e43b31e11b1396d6e9e49cf42b693732e226b55d21a1203022f6be9f8ecccb68de3bf4ce99689514bd752f4e60bd2f8e376d7fae5b5fc8db0f53db8c52746671e361b9319419c1b3f3168b4797ebd2d118ee42dda4bc59dd0251236195c8cdafc0546354eeb28f4c7e71e8245a6ccaddfb858f61039c0ccf5acd924680aab38dd061fc7b123f24ac7f3d3c0cee43b61045bb1efea25af86088a0591f166e2f11ea4089860893b17ca5e3d99ec75131268e2e4e290c2bf15e4dde23284e4bdf6e549c096ce221d9c8a6c0fc78aa6a1c8b547c0e10738de2a1e8663e03ab0ce4594e244989f75b6672de1eee97ba7e6467a0da51c0e75d5866c405b03c4744d8d3fbb01eddba5a0361662269154c2f0e61a9433982eb904ff562896cbfa692eb1e6c644fcf6cbc103a76b712af706a47608d3e2f5d54d47d8e9906ab37ddf04004d32ce00200fc3c274666aeb618b27424d87b6a4b0262de4436b9e6f150bc798394c298b25a2c318fbe786185464057c0bcfcd1917230d78ee1a49eca12068fa676852c1099096c6cb98dfda27fedac41826516e42cc116f0cbb68f0f810418258dc5a65c0e1ada296176e17f8d762894c80542a79383cc1674a4f3d6520633ce80baba214c20628899f9ac826484c887713aed9c5caf13b40a598cb1e81f7b18dae39efc22dc99ff497e11f158edc2716ebe3bcd593691aa26523efc168e1394ab439c9a9270575ef34eeee9084b0a31b2d81d47c964ac61e600f75d9321d7474dde45bb8d0cc46510488ab68486d3ba6cc9c3ddb6f66f2e5d251ee285121e1645a2f5167fc5fb8ac4491c0d9d0423c7a8452efea2f5a30096a0fa47173f3a68500a5c755ea939c838d3be126a87ff6baa5a1fba638a5c64767d17f04201b935fcb1cb6afa175594f410f2ff773194c703e623876051e46bb0850a5016e65f8fa34b96bafdfe851a0756fe26fb63d52113c0935b0867f7dc8a94d887484b15e8f92b6a316a22c04a985cc94e432cd43f44001bcdbd48efcd463c402d3d181298e96db60fdb714b82e146567af5ae3fc0c3f9d241471b4d129f928d286f780facb1e84434610ab3379dfff0f64d57b4a1c2e96c98b693de952d26773d24e7a95eddbc450f79932d5332d27991c7bfbd3bc35bfeb9496fbebccb5e4c35c368e021dea643cb292d794d3d3bbcc960f989bef09763dc73d83cbf907485635265e81f87b712d958a66719230fc6466615a0e3bb998d48159e9e9c51959354a545966bcffa298c7673b4d32b991c886a997236642c0f104f6795feab9f48d0ffc74667f3f3e82473ac892ad25f4b13029b0b27fb1d86991ddc42bbc3fe584ed364e769f3bc72ed8749e7a654ec1a2ec7a01bd2d5caccdc6241a1b1ef2726db54d2c34ab47020b4c729b5994b43deb00ad959950e0051d2c0f27217397055e78f1dd3bd867a45e06c2134ae8981021aae881cc7b2049fe7c82d2127ec81d6430c8116355c8d0ab8b9291c688ed9b8dbb1ed6f1a99bb58a1be8d5737acbf9461b142c8982f52481195d35ef82aed4fa52385ea4ed00a739d01cad7af9f7c27d357748e24f28d22065ccb37300e8f5d8dae5ca79af7a50edc3e05184d1a2a6d59784d5ceeb1f1550a44ea03bee4dc5c27eb78f0032593c7d082e59211f83a8b91aa78bfb7e959328ee63af26a37b79ce5e5139eeebd12e28b2a26ad2fcbdca652524d036b324782d54247a48b9f8200b2d6d2c091c41366d677e3be6e136cec6c3080d608849135c6e3c7d695d2e226ae1ce999d730d7f79116ab85762e55a3e5a66a690ce0a4bb4fd1560c796e2797414b544ef78e29d55e4853fdbf3362085a65c46105f32c360a0a9867b984a5d0297fe0b06a45684ac801a8e66294cef6e5f3c48648884fbb2422fa00488df33a9a0ff1039c81f1939f2cd2f5fe8aa805af2d2332ac37244ed4a7b50265af8062752b0c16511e5f25e8aa2b60645675bc826557bb75474ca4787f6b584b2f83bc25192579104aa0baae79f396df0d31121f90db9acea9695ee0fe0c22df4db503ec8b2437b05f5d35a65722fa82eebd2aff4bcd3316a5cffc4b31913fd02f82130c77f320bf04bf8fa873d0e3f62122d6a5f87d3e908bedafed4a3cb6d9f73ff546f5a2b74a2493b1753e89b682352bb3166563518dcb190c7b3d9fd667c57978a670b192641a674dc92c2401d067b6767aa632ce32a401175c98200a52ab5d80dffa719746d0bff8a84bac4a56e0ab8124fc332b64ea662d01e1b73231a6638f01cf4d699448da228c16951149c8d3dab9a7e3be9a16c7d1ffb061818f8f9cb2b42739fae4a0d70c0701c8dceee785d36ef6413162de1917df01c693ef3e1f517e7fc46245209fee52f5c6a2f50ab3f56d67d1cd987282b24071d8ebb1bc5cd635957b2a7ad92d0650abd5bbc24b75885b6119592a3d715392718e52f9124c4ac95be3582abba4ac3a4049ee49fa8ceb9b59d4e1e2a069c9d482879fd8d27d5ac22ef870542453be22c2ec4ebf1472c19fbfb56aa0a3671297b020e3fe49d201a82a04420e90bda43691dacf92347bcbcae3742cc4abad4c8010c0afa15278795d4d76c482461ae78f30569e1dcf87b9b150d07a2bd81676ec6022422d490759ae1e861a6c4cd1f733bd772d60975a59356c385a4a390429f3d2131e7f616015261df6db3cc3ec261a53be10c4f197e71878984fee00e6d1069f79825194b7af434fb6bb86db18e11977f82928be35054543060cea94ebb4015d061f20f8454e056e7b6e4f9a1621ef2377d77659c20bf358c817519f1801be15ae3b5b42adfab367777a6789635a0dcdd1f2b97edecea0210768af67601d1b95a8850dddb6b1f4b0c2f52c835b0833d81966ad19e49ceb9dc9c729cd8334bc3ee5bb8c74186f5cc3e765b9fdd91d79baaab3d2ab64c15d655d1af7de9cf8d5d7c1baef24577843ce142331743b45b06104b6d0d4392e61ca8c07507ff5f831bbf720854db4debf64182aaebf899ba57626a48748fc2dcf016013d575595d24d383eef2da0ff0c9f6fe9c64b186cd4617e3f37635d7dacb58ec297f3ddb48ce4a5e00cc127267e18a1fdf209e098f2cb2e9c0630d15ec9b867b2b95ecf82ad2c0ba39df9c4d36d492bc9a55c4b767da966e4fd7f4d2fef5e91d0575177c05d240b50757031c76333d43bcc828ab2f0376e29d12d1261ce104a8ea488091326bc451c120c8c04d3e64835c893f55b312e248ad8fc1c32429d68e6b67bf45ab8a1cc3db22f9f01a2266b8349046d3d3e081eaa7f7020c73c0762d11a33b517b8f081da3c61ef63e1d40cd87d69c7ac7491fb61bb57c1fe2d218aff6d39b3e1fc847f0ed894e2f0b4d6a4ad03ba42e28bb1dfab645081f548e64ceb8ce15d2214bd66a14fe594aa447c3537eb493299fef0f9326236ea5dae44e23b34801fe06ee16c79545feaf2528421d6e7f9a256a7914d86bd053dc33c8c2043ba73714f5ff5f0507097a56c40b2190e77877d43be849ee2ac129e582930ced06d359eebb49eda4edb13819f91cecc449c9613d9659906179f8fefa34fecb7d21cdaf09a1ce8d094421da80796c97c02fc56171aaba53fd8a7f55de059044717df164f3571028f16995d51fc8829534cdf58dd134def1e43a34e4f5f372fa8e19d3b85881e99ecd45faa4fccfdb47e094ab06955f3960fac71294dd965f24a97cff36b9966cf1a4c3e96c3e14a3951dcc8a3e9371f7e1ae9df77ddb1a99172174adbee8ea57a0c9872a6d677c2875da88a6a7234bebf68a3cc0532a9809a4de4b4d419bff67b0ba825a7ae6e999087155378357ae67e2dd98697f1d10ffa4497dde6582571670456db995228b97d0ecb2fb30c2ba6c16038c40059815c56b35666cc1c5090f6c38e0f4c12abf79919951b85a2734d32dd12b239912d541f9163387a4aa0be0b7a12d9c6b56dbcf1e9aadcfd72e2664a84d6c5147c72bffe7c3560ccd8c447b748dcd26cc9ca2a85cded742a8dccdfd8e78c96e78d405a19faab9e57183b37583f94b3d416b2920c6b746427ed75c08dc3be02720c1edc4743229153c48f1239b222b9fe2e21c0ae28122bc44f9dc78a59f3485ac8057eb21f0857bcfea2d9ebbbcc197e7880d81515bb1cb7192d97c4258c09926d137e245977db40812b253f99a504bb68137d8d73ca4e7c808d50f1dcc600e6a6db90238ff44e075932fe668c066e6988a6a8b4a8485120c8e4d6511268a75d8f9b0f06689aac8cd621e90c62af1e59aa9efe928e9ea098661b408a2825c4f9aac1efd9d54d163a651054b9ab32719d2be3b176f6795ddad0f1310b9237181689f2f9dd34a41d4d4cd2d7569bf56e6a80bc24d90df3bdde0f9649e699f4ef70c4f3faf9553a231215416bba26c29f17861e0f265e9641b2307ed43d6fde23a378669f4ade874e54c20a5e902205dcaa79a3e8584a3f78a86e703451115a1717df882507c607297afac0a056a0f3509a57502fd2ffff6035d04b91f72f5e1a69ddafaf80f7b2f7a13f38c683988436585e6bc7fc2da328449675c234ec0acf5294ce06c72442beba15e65d6a3e1b5dc3c8f115e1005798383f79b0194f6b7d4b1b32371acbf22340af6e5ee3ea840f7ed451226daef3041fc194e051af2fb450022b394c774273b9575c974c324ecd7268435176ee28c54bb54c8e829232ca636f3bdef60ed460b5ff425936626dd16a3f436f08a863582a79f393378f60f6c8ecdd13d83073bfda2e9f8d0c74a841021cbb8c148e70bfc585627449cdd9fb3045db3ea08a96108b52ee8a4f5048a5d910355789f4bb85c1362955e267e719581c38a2648eaa0b516db6277d2ee3c6e1e1090df3f53a31b747d99887e337dadddab16a297d9e56797007a3d18ce333311c70bb1bf45bdae517ffc589419af643773bb30a1fbff7ecd4a8ae7456a608fe73547c2eda4f070d57dc70b65d867526c946a435ea581497da18646ce569eaf6ccf3474cd6e7aa3d6d4732836ff4167c9153757ce58a34864be6d479f7b4ea1d6480b9ac16c5bff346a74e74133234744df867e16b3d2f1f7db4b21b89019b520917ef863e60f52999d6946b9e09cb60054f49d8a255f02e4b62fff6e6adb9a167ea70a177d00b26f56e29b63138a2ebc30b956161a4ab25d5da1c207c3f762714f651341ae771e17d84fa1c86685f2fcb0a128c2e1208d1930e7ff0d8d55299154112af574b881be8b69cc1721d548ad4dc02632e184c47f9b394bf4a834e60fbead8c8bfbf5087f8454513b0b086ac97bbbb9aa342af9def758fe88f1e4570e65f93fd4a9868665d08fac0cf6ebde786995c433504ca01cdf83311aaae20cc76f819a4344a8ee4e26c1094cb00d2c8a67c733fffcd89e97534cacb08a64d75e8594fa31f0dcfcafb0d1bc184c7067fec6a48ddefd580d4d9a4128d8f70f6fc6562da683904766e982ecd0286064db6844131bb7962a0a497f7b97fefad88a0b128bdf8cca774b1c32cb4af259bfebccda036e7e4ea8962838dbb5c04ffab0a2f1481848a27f06171645daf5246a2e563f3ed60097a9d7023d6ba5c8a58d39f733b12baf0863d82c427460f51cf9e3f77281a42221725b7bb75c2116ab31f704661f090d3eeddd2aa6efc619946b4933c398b635fd04ba3758294965c568997e1ef44b0562804e6c64558f6cfa87662a988c321a856ead51c848528a4954f9ff1948d517d67bc11db66801648848bfb7ee12296428bc3ffec863e9c77ff31ee386197679adab2a0e93bbe0c66ffe9c4b09b636f6216faa373aa8271678cc57ad46898222df7e2d8b14a5b70130596c0430997c4c04d9b5187fd9bb26b71fd19aacc8e08a3239f0eebca7b2873062a19f327a4a282012ebf9898a5ab6310b8623c864d4dada3ded00ad201ce8f3973f90396f5edc1ba466e16247fe6b0ee98acfd53792cc0fea33647b841596655b8d9efbc14b50fe0b588e4c41e2cbd0a700529e7ca91122d3d1b26e52bf44a0c9fe37cdbc352357f13b2adc68e78a00f6dc88a8e6ea54bd0b2c8276f9e1bfebc8655a1f47b72c25ffa97f4463630cc21428ca3bb381a6d3171d28bb946f746f820247bf3f7bb69caaeb5c47026ca9997e586e657a9e1569312bb443299ef4cfeacc9aaf4fc3aaa4a77a21579234d2aab6fd0234398ae07ca7c57ac6d6a51e025744b1430abce27f7f9b0d0e45c051e34d20db95cadcc0e4e327dbd979166b33e39a3951d0b8dd62c0d1542b69583cfc07b127243cac4b052cb29ccb3592972698fa4cd84633d222d78b8741d5f903f8636d95cddfe2ef13829df9ce32705edfda51ded2f0ef38f60a33a2e00373107eef56a01acb5e05d849279b5987343c8bbc73ea660ceaf7c9b90c0a8e1412ff3f517cef8fe604d7a26e085170a76e1bf43f5d1bb77ee771fe841d59fe2cc2874d25bf991b4af6bf9ffe1bfbf3a5587006b60bab5bdfd5a3192e82d474ecab0ab656967856c84cba9469c5823c1d1bf104d2a21c071bb08b2a137883dd9c8f545d6958db8efa45263ae303de76e70f2f6a10e1858e6654004f2a099dc31950ee730c465e0a1822935e309d41650fba489aa3050eedbf3f058d24d1f04fc340966e42d72052d84a66789ccf75000c3fc83b8842badd6b22ddaaaf53ed34e25c1b638e3630d66a7903405052902cf8e7395d54679e2f4a2bf7c8c89b0dc38969376ea164fe97b37b1172e6e8f05a929aa373108e891a64e38e18b432a115a44d754811e03c4f4ae7c525a6b9b92aab0d16967ee1a64eeeb2207c094f6aa96f126d058eff22435a4ae76c31f888ee13b327d2cab4ab5a56abf4cae88c583dd67129271708aa17f4f10886ead0e12734314bd4a49e64349beba4abdf94a1fb23a72cf7e16b5af2f1706d9646a5ff7dbf5c7b1cb2c3781346167b15d4625841d9f3d14392db1d39101d37175c42c522229db0708544058d75cebf3e399cd443d1b943c6f3017a898bd49836a8d92519deb810712aed76602682ef0df2be270734eeda7f289a76f4684baf75702a1ac3da005e62b83f794b934cf882db5d50e5ed4aca868e300d690c0b10daf0a47486e9f49d1b08eac6cf5090ddd2443b1459b2df86ab3447b2b5c6afe8aadb410de6a84b640e326eb882832d1a9cb12e0b8f13aef579f404af8631cdd5a30a031dad19cdf247575dd223229330f19fe4d88c51242217397acf66b86c743de283d5df7212fce59af17eb702eccab192f56f054a33709d41841e4a39638e02b4210559593f9b5c44fd22d9da637ef1a3a0a41c40469990dc4beec30a05b67931c0560d9a59fa875f3e26fd1eb32655aa30c7a1cd3d541716fdaacdda206328f3cbc8f16fc2be26690f18963a16febbaf2cb6c199330579ca067c60b54cbdd211c1350e066448fb50ae28ed58788ac98f0ded3414c8735ab90639916e26ab29102cc2609035e56d9b9d2dbc98118835bcf0e437c77052efe2293d9f19b7197aa1b94b10997b0b1efdef251de8945a97fec885f032c3bee2447335230b866d7aef515b04664d0c59e18233f9a229969e3e17d69716413ca3bc55f5959e340627ea803f7b26f4a74295b295344a3685287093998a1ce75b1ed5d730c9aec812617b4c200a0250c9ef8ef7d2fcfc59ef97422eca746bc6451a5b77307d14c1cfa0ea2c8eb7cf7819644577a6456efec0af058a0e3c8ec371019009462bfe174a11368b57fbe3090208a57b2236b97edc32cda5c6fc988cbaaf91c4020a06a7ad45519eaa761e045fc84d3219b287206282347a031ef1e7b7dbc67de738fa8f9fe71c44201fd1d548f8aebe93bf502d64d4b5f470a419e3fcd87f0616b9813048311ed20ac2efd7f18dcd6889542208b50c28c8c0700f73fa33a964e38d699819cab2098c6ff081266721cdced87ff41948c84037485f30d38a99eeeb3ff4c3049742a29eb09bb35c358e732546267c165a62fee9e25abdafdb8a48785bd432d160797e7a41d580f59d7d8e59b3e6b954d39f86db33b8f7cabde43e8e04cac1fcf9aa6fdbe4326e0d9c782d9a630055b36f85c2b8efebf18f42ef14ee5eb1d33ca322db69704f8bb90bf30eb05908b8d8ed169580923f53a6539cc3b55baa47718053d2ff103c23d90f9cb49ddc7d759950f605bafabcb7953c042c0523b84da994529a87ad68fc6f0709fd7af5fc20e53a17d3f5fd4d25fc5ff6598c6ddfc34668a08ee5e066d81a65e7979c50c08febf76dc5a3a405f551bb8449d94ea0dfdad6dd6dd6d6e4486f4ae1d2523c05f46198d8af4da12873ebdf7d6b5f2d0f1b2d29759ab0d78e34ae6f17b7ab83518cf8b18836ea5630ee934e5ecc123f0d3fe6b803ae1f735d65dcadcaaf6660e02ecad0290f6ead0594733a10b2b1654a44244424fa8b3180b551ac401828203e61603b017106e2256f01b9f26db33897167d9defb54ddfe49334150574493895370bad46cc658667aa9a8ed333c86f112b2a542936af92e2f933254b6fb0b1a599eec3bf2e476ae6714e2486dd31b29e4d26838d84bd7a62c62beab3ba71642278ecaf2e50d70670d9fdff105019791d36321bc57fdfd8f65f2ea1cb188035ecabf6140e777b7e6d2177ac29e9a1a2f87dd54d96184bb1a855bd9efdadfc606f13621f40e07cd8be9c2435c8c90b4ccba5eb7ddcf8cf1f76617c9a9e011abf4a63ffe31df63ecacb8b1d2d653e613cb399ce079392f9ca2e226c60b6e8103447c24c1f80d42e1ee747997602ae3ccff8f9f98ce9b56f6f3e3c0ba507df8b2169539cfc946c42da72644feb9b3b582ce332f8b2eda02192958194903d17b3e9b4bd60d08cd9a7989d946ece6d8dc01d6b66a7851bb11e4b075d38081d3ce7bf1875fec9daf47a589abdb72763c9747b83a28389238b0279c8e41db6521130420851acac463664a97be2190aff921923475f2c1f8a87d1169229e5f10dd0a92221e61358b156020f2c9ca2cb6580743a8d5e3c59e6fd97a7a246211450c7c62f1891cedb434102f8794d81c1caf2c1b4ae18b7c4b9c88de5c51da33e3343cef76da0d00341c2e60c4562c162e41a7efa8290cc9061f3d6a592d5f104c5018f31bcaf912bdd37370fbf8fedf0aa9026c1142299197d67ab026756927b5864ea42c45a82c23c275697d31a1b7900670c9a3c967d12974543c11f20c367a336bea9b9ebe480f9c806528138dff35c5f56b1199b75748e9c5cf50e6a32397dc3eeb04c3636c0848a5e13df8a9758bacea231f34cba13b466360b0dec69f74f8bf9a2dcf3dd94fa3a7d27e8caae00240559d75875ef9c619416593ca0072e7f38caae5a530c62dbe00e38c12cb8b924d63fca4d5c3a4c8f50e8f4f86fc1fe2b163219c46c21eb783e587e18e07ab7e1927a646c4f154c5000cb65ce9528457c3c66f43d9ab7d61580df0ecfb31cb38e4cbcdc3dafcca57311abec6b74048c8b74505ba678a4db07ed7243c70a821aee66a487bf91fd273418f8ef657d1eeb9ea6f095d47641e9f9fa30599e8b9c6b4453a1a5e8afd86fcafb46dd095fa4a98a2b26470e2c799b08c6000f5c3c4e28961463724377f37813f3922484fda986eb7c93ae8365baf648acbb344ca7e044d7ba93e7ba35c31085f3f99c5fdb2f9f2845f00b8590395e8ff730b86f5dd7f52297b8ecd5d5a6bb452bcd12b98d6adb27e7ef0e84b9567c66093ca3edab7e64ac4f56360501d81823ea2b1595f934c5f61c8558304c16154109a983a2af8725c7af91b5bc57e555768aa8115236a6ccc921d472b608eb6b82c4ba3747d79027d7856fae5369aa325df6a76138a5b41a94377eeeb251087e0b8510d8890e3f7a0cffaeddb9d2c29bc89f952489f82ee2e2b485cd297e6d30683701623cf73ee9ee606baeae9c3afba287eff57731b9cfaf034b1f56c8b31a32a1078c4fcab298c3f925a8e7cacceb9edf7ba2e54d31033a25462021e4a3c0bf5af341b462ee4417024da7c12c7f385de3af129aef1338a9c1fd68323d07ff47ec8bcca66b44300624d02c9202a2d093c3c85fd922b57b3bd14162c8ca5690734b7e4e4b8980b73a8e9908a9fa3dd508b30e3b1e1fd4ec388affa27c4bc26ca2820e0a902d51ff94984e8894fa5fca7b8704b7600ca6d6b1b1527ea999fcdf8fe3b290ec0036cad222f92cf8a5a54d0fa91de6e74ef61f60a233c9f15fdc86226c3f688de15ed8f0c3f1bc3afcad87cee47a19384afc6a804f197339ebce4aca211dbe0504a000755d18f20c4ecacd4123acdff7653cbb26456499495662508c8186afb883f5481c6bdf88cf137e263bde9d62f054573e0d1454cc119c95d4d9011332bd77682f79debcf5c21f0be7e9a83a58cec34e7cfb17a8122e030669228e4d3d9e274a678c5b77e6180aacc2fa8eb9952c5b04de6b2c7bee591badab96a3c3248c275b5b8faf5394eacc427a840570033be5006c33ce2d2c6e54f08681c3f74ad2fe54bca6dc62a9d84f6c58509c1e5dd5cfcc7a358493d428de48dfc1bc3f74154801c97e6aae38445045320b4cf66c1e56eb6ea2c1218de65f120b463c5cfb9255b3a25eb6e848cbd977f0605d71c561c2a754f5761c31f84101ee8178782cc8cf70b41a2204c5cb2f3134d572327fe4bbc1792249dfcf0ae7ba5d81fb5ae4a7978d044085f3b7f2e398c05733e2bf456cae898f8b5a81e9c79179bb5ca716713fce643dabe21eaee4386e646e25ad3adc5a4ad40f9bd6743f5f742efb1a674ffdbd2ced56c646ae590eb8f10283b47f57e6f96ad76adebecb24df74020b096fdee3c8d780d563a915f73c8b0246b861cd3a8580d5cf75798e8cf1c5875724661a39277e7165fe48ed8d5e6a20d68239f626fe8ea434a4e6e03ea434ec68c4b92a0fc2af15a135d6cbaeeca39a0c1896dab33daac", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r3, &(0x7f0000004200)={0x50, 0x0, r6, {0x7, 0x29, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90}, 0x0, 0x0, 0x0, 0x0, 0x0})
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x3, 0x0, 0x0, {0x3}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x4}]}]}], {0x14}}, 0x88}}, 0x0)
r10 = openat$nvme_fabrics(0xffffff9c, &(0x7f00000000c0), 0x44000, 0x0)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000440)={<r11=>0x0, 0xf1, "42228815d2719a7d52f41298f0836290e6705375a2e17d4739c57a464a06e88040aa3780a029fb2a41b918a20dcaaf2cf95e8d2594b09aa8195d39f5e7df8e4d2f468763f96b133cd81416f146ea29bbe47a638dcec5bdbb1a34eea76a1d1429aaf4a0e86ca5db96b7abd5be574d95856663e0000d9e0df8f35e99ca54efc3b143a839a81e004a81c247946628f8bfc136faa5188f3e32d8c516a641246869400c7f63a192831342e45c03b470ca374e15e2789b37bcf65077312ffaf3a997d9595bedacf116800a9b2f93570aa565f52a191b0dfc8d864d900c8b5d41fa23b67f0b69a796a92d2f3043bf0b7cbacde6c0"}, &(0x7f0000000240)=0xf9)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r10, 0x84, 0x9, &(0x7f00000006c0)={r11, @in={{0x2, 0x4e20, @multicast2}}, 0x6b9, 0xfffd, 0x6, 0x1, 0xa, 0x2, 0x20}, 0x9c)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x3b, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0xfffffffffffffffe, {0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffffffffffffffc, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x2000, 0x0, r7, 0x0, 0x440}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
open(&(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0)

2.203550685s ago: executing program 7 (id=14394):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x5}}}}, @m_ife={0x48, 0x1d, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x2000}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x844}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x0, 0x0, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x1, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)=@arm64={0x7, 0x6, 0x81, '\x00', 0x3c})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000000c0)=0xffff)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key(&(0x7f0000000140)='logon\x00', &(0x7f0000000180), 0x0, 0x0, 0xfffffffffffffffe)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[{&(0x7f00000016c0)=""/4126, 0x101e}], 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.460716558s ago: executing program 9 (id=14395):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080), 0x8042, 0x0)
write$P9_RSTATu(r0, &(0x7f0000001b00)=ANY=[@ANYBLOB="b001000002fe020005d900fdfffeffffff8000000000000000000000000000000000000000000000000000000000000000001b00046e6f6465767b65766f6f7e05"], 0x239)

1.458254312s ago: executing program 0 (id=14403):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d0000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
r1 = socket$rds(0x15, 0x5, 0x0)
r2 = io_uring_setup(0x93d, &(0x7f0000000080)={0x0, 0x70e6, 0x2, 0x2, 0x119})
io_uring_register$IORING_UNREGISTER_IOWQ_AFF(r2, 0x12, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r7 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r7, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$qrtrtun(r6, &(0x7f0000000300)="ca0e808bb35bdabb", 0x8) (async)
write$qrtrtun(r6, &(0x7f0000000300)="ca0e808bb35bdabb", 0x8)
mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000fff000/0x1000)=nil)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r8, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], &(0x7f0000000240)=[0x2], 0x0, 0x9}}, 0x40) (async)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r8, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], &(0x7f0000000240)=[0x2], 0x0, 0x9}}, 0x40)
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r2, 0x13, &(0x7f0000000240)=[0x40, 0x8], 0x2)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
setsockopt$RDS_CANCEL_SENT_TO(r1, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x80, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) (async)
setsockopt$RDS_CANCEL_SENT_TO(r1, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x80, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)

1.405412584s ago: executing program 9 (id=14396):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/mem_sleep', 0x101842, 0xcd)
io_setup(0x20, &(0x7f0000001140))
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1e, 0xc, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x39, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045011, 0x0)
openat$rtc(0xffffff9c, 0x0, 0xb0000, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x0, @pix_mp={0x80000000, 0x9, 0x31363553, 0x0, 0xa, [{0x4, 0x5}, {0x6, 0x7f36}, {0x8, 0x70}, {0x3, 0xf}, {0xa, 0xff}, {0x6, 0x589}, {0x8, 0x7}, {0x10041, 0x8}], 0x10, 0x8, 0x2, 0x2, 0x5}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102392, 0x18ff8)
r1 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f00000002c0)={'rose0\x00', 0x1})
socket$kcm(0x10, 0x2, 0x4)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="e8000000000005000000f59407a0125d9bca29ed421ca373a0c0f1c95f4b660bf55aa5916dd9ac95478dbb0ae2a64fe7a85090203472eb242b0120bf4f878a4d611db7ef7c80fc593391de47faab5ff2c2fabb6e4f1f2b0bbae2a612c4e7524b69d3ea493fbfd916b93ebf0e98f5f3ba01800000669c46f380691ada2e49fd64837179c518d545df2f3c6ca46d57223bf89aaa63af670b1be7a72e8010d5f4e50ab0a41a6777eabc75cf9421655490f7d37dc0c6c57f1fdc7d96e51756c68f39b404a00b5be196cb72b6a5a644041eeb88c4d3eb419d12af54b55b6a753a4636dd19b743848158dd722aea3f585ad226f4562c18052f73cfcc"])
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r4)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r5, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, 0x9}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x4040004}, 0x0)
ioctl$HIDIOCGUSAGES(0xffffffffffffffff, 0xd01c4813, &(0x7f0000000240)={{0x3, 0x100, 0x5, 0xb7a4, 0x1, 0xffff}, 0x341, [0xc, 0x40, 0xcd6, 0x4, 0x6, 0x0, 0x80000000, 0x7, 0x9, 0x7a18fde9, 0x9, 0xf12, 0x4, 0x3, 0x378, 0x5, 0x4, 0x0, 0x1, 0xffff06bd, 0x0, 0xd4f, 0x1a, 0xf2, 0x10, 0xfffffffb, 0x8, 0x10001, 0x401, 0x80000000, 0x401, 0x3ca5, 0x1, 0x0, 0xff, 0x4, 0x4, 0x3, 0x0, 0x0, 0x40000000, 0x80000000, 0x7fff, 0x7, 0x5, 0xa, 0x1, 0x10000, 0x401, 0x8, 0xffff, 0x91ba, 0x7, 0x9, 0x9, 0xb6, 0x24, 0xcb, 0x5, 0x7f, 0x5, 0x311, 0x66d1, 0xfffffffd, 0xa7d6, 0xb6eb, 0xc74, 0x77, 0x1, 0xff, 0x5cb5, 0xfffffffd, 0x401, 0xedf4, 0x4, 0x1000, 0x6, 0xfffffffe, 0x8001, 0xc1, 0x1, 0x8, 0x1, 0x32, 0x98, 0x7f, 0xffff, 0x401, 0x2, 0x2, 0x4680, 0x7, 0xe665, 0x3c6e, 0x3, 0x40, 0x80, 0x4b, 0x8000, 0x2, 0xb, 0x6, 0x4fa4, 0x80000000, 0x1, 0xb, 0x0, 0xfffffffa, 0x3, 0x9, 0xfd, 0x101, 0x4, 0x40, 0xa, 0x1b, 0x1ff, 0x7ff, 0x2, 0x80000000, 0xffff, 0x9, 0x0, 0x6, 0x2, 0x1, 0x3, 0xa0, 0xf, 0x1ff, 0x9, 0x7, 0x6, 0x400, 0x8, 0xff2, 0x6, 0x0, 0x6, 0x0, 0x9, 0x1, 0xf1a, 0x664, 0x4, 0x9, 0x9, 0x2, 0x4, 0xfffffffd, 0x10, 0x0, 0x9, 0x10000, 0x1, 0x9, 0x9, 0xc6, 0x1, 0x4, 0x6, 0xffffffff, 0x6, 0x10001, 0x8, 0x68, 0x7, 0x201, 0x5, 0x3, 0x9a3f, 0x400000, 0x0, 0x80000067, 0xffffff7e, 0x7, 0x10000000, 0x10001, 0x7, 0x3, 0x10, 0x10a, 0x2, 0x40, 0x1c, 0x80, 0xb5f8, 0x8bc, 0x3, 0x103, 0x5, 0x63, 0x4, 0x18001, 0x10, 0x1000, 0x288c, 0x1ffe, 0x73ee, 0x1, 0x5, 0x9, 0x7fffffff, 0x73, 0x7, 0x8, 0x6, 0x400, 0x40, 0x0, 0x0, 0x0, 0x546c, 0x981, 0x5aa, 0x7fff, 0x7, 0x4, 0x8, 0xc4c, 0x45e3, 0x5, 0x7, 0x3, 0x5, 0x3, 0x0, 0x1, 0x2, 0xffffffff, 0x4, 0xce, 0xf, 0x0, 0x1, 0x667, 0x3, 0x0, 0x9, 0x9, 0x37d, 0x10001, 0xc, 0x1, 0x1, 0x2, 0x6, 0x4, 0x6, 0x1, 0x9, 0x6, 0xfffffffa, 0x5, 0x0, 0x9, 0x5, 0x2, 0x7, 0x3, 0xffffff1b, 0x9, 0x2, 0xd, 0x34ea, 0x10000, 0x0, 0x80000001, 0x8, 0x8000, 0x3a, 0x10, 0x8, 0x9, 0x5, 0x1, 0x6, 0x10001, 0x0, 0x4, 0x10000, 0x4, 0xffff, 0xe, 0x89, 0x2, 0x7, 0x1, 0x73, 0x3, 0x9, 0x4, 0x1, 0x9, 0x0, 0x8, 0x0, 0x81, 0x80000004, 0x9, 0x9, 0x0, 0x4, 0x4, 0x0, 0x1, 0x4, 0x5, 0x4, 0x10001, 0xf, 0x9, 0x100, 0x4, 0x59b, 0x7, 0x8, 0x9, 0x3, 0x2, 0x4, 0xbf, 0x0, 0x8, 0x40, 0xd3, 0x7, 0x1, 0x89aa, 0x8, 0x0, 0xf0ce, 0x4, 0x1, 0x0, 0x2, 0xc6, 0x1000, 0x1, 0x937, 0xa, 0x6, 0x3, 0xffffffff, 0x5, 0x9, 0x5, 0xffffffff, 0xbe, 0x1, 0x7, 0x0, 0xffffffff, 0x0, 0x3d6, 0x0, 0xae, 0x6, 0x1, 0xfffffeff, 0x4, 0x2, 0x7fff, 0x103, 0x7, 0x6, 0x706, 0x2, 0x49, 0x10, 0xfffffff7, 0xfffff772, 0x6, 0x80000000, 0x5, 0x7, 0xa9c, 0x9, 0x8, 0x1, 0x2, 0x5, 0x1000, 0x69f, 0x1ff, 0x9, 0x10, 0x3, 0x10000, 0xffff0000, 0xf, 0x1, 0xffffa5ba, 0xffffa9b4, 0x1, 0x4, 0x5, 0x3, 0x4b5f, 0x6, 0x7fffffff, 0xffffffff, 0x1, 0x80000000, 0xb, 0x0, 0xc8f, 0x1, 0x7, 0x8, 0x1, 0x10000, 0x57dc, 0x818a, 0x10, 0x8, 0x10, 0xfffffffc, 0xfffff001, 0xa, 0x5, 0x8000005, 0x4, 0xfff, 0x9, 0x10, 0xfffffffd, 0x4, 0xc2, 0x400, 0x4, 0x2, 0x80000000, 0xd, 0x2, 0x1, 0x0, 0x5, 0xb6, 0x101, 0x401, 0x2, 0x7, 0xc, 0x6623258, 0xf2, 0x741, 0xae6, 0x9, 0xffffa0ae, 0xc, 0x6, 0x2, 0x8, 0x9, 0x1, 0x7f, 0x9a, 0x9, 0xb, 0x800, 0x4, 0x3ff, 0x5, 0x7, 0x7, 0x8, 0xfe, 0x7f, 0x9, 0x4, 0x2, 0x20000000, 0x2, 0x8000, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x7, 0x8000001, 0x0, 0xfff, 0x101, 0x4, 0x0, 0x96c6, 0xc, 0x5, 0xfff, 0x100, 0xffff, 0x1, 0x401, 0xf0, 0x0, 0xfffff53d, 0x9, 0x2, 0x6, 0x0, 0x2, 0x4b15, 0x10000, 0x1, 0x6, 0x1, 0xd, 0x9, 0x4, 0xfffffe01, 0x1, 0x6, 0x0, 0x3, 0x10001, 0x1, 0x7, 0x1, 0x5, 0x8, 0xffffc487, 0x200, 0x10001, 0x37c, 0x7, 0x6, 0x6, 0x8, 0xfffffe00, 0x1, 0x1, 0x0, 0xe, 0x2, 0x2, 0x4, 0x80000000, 0xb46d, 0x3, 0x1000, 0x1eb4bce6, 0x10, 0x8, 0x1, 0x5, 0x1, 0x5, 0x9, 0x1000, 0x7, 0x62f2f805, 0x9, 0x3, 0xffffffff, 0x9, 0x7f, 0x6, 0x9, 0x40, 0x5, 0x2, 0xa, 0x5, 0x6, 0x80000000, 0x25, 0x8, 0x7, 0x7, 0x1, 0x5, 0x9, 0x6709, 0x10001, 0x0, 0x80, 0x8, 0x6, 0x0, 0xa95a, 0xff, 0x5, 0x2, 0x2, 0x4, 0x10000, 0x80000001, 0x5, 0x8001, 0x9, 0x0, 0xb7, 0x3, 0xff, 0x9, 0xffff, 0x80, 0xfea5, 0x7fff, 0x7, 0x7, 0x7, 0x7485, 0x9, 0x8, 0x0, 0x5, 0xf, 0x5, 0xe, 0x8, 0x1000, 0x3, 0x7, 0x382d, 0x459, 0xcad, 0x9, 0x0, 0x2, 0x9, 0x6, 0x20000a4, 0xe0, 0xfffffffb, 0x5, 0xffffffff, 0x2, 0x7, 0xa05a, 0x0, 0x0, 0x0, 0x35, 0x8, 0x1, 0x1, 0x30, 0xffffff7e, 0x101, 0x2, 0x9, 0x3, 0x7, 0x8, 0x8, 0x0, 0x1, 0x4, 0x15294b70, 0x3, 0x3, 0x2, 0x43, 0x3, 0x9, 0x5, 0x80000000, 0x9, 0x0, 0x5, 0x81, 0x1, 0x2, 0x3fd, 0x1df, 0x6, 0x6, 0xfffffffa, 0x1a, 0x9, 0x2, 0x9, 0x1, 0x9, 0x7, 0x2c1, 0x9e95, 0x2, 0xfffffedd, 0x30c8, 0x2, 0x38a0, 0x7b, 0x0, 0x8, 0x9, 0x6, 0x9, 0x9, 0x8, 0x5, 0x8, 0x1ff, 0x7fff, 0x3, 0x9, 0x8, 0x2b, 0x200006, 0x4, 0x7, 0x2, 0xfb4, 0xbfb, 0x7, 0x405, 0x6, 0x4, 0x8001, 0x9, 0x8, 0x3, 0x6ae574d2, 0x6, 0xfffffe00, 0x1000, 0x5, 0x92, 0x3, 0x7fffffff, 0xd7, 0x8001, 0x905, 0x3, 0x6, 0xfffffb31, 0xb, 0x4, 0x7, 0x8, 0x1, 0x6, 0x1, 0xff, 0x100, 0x4, 0x3, 0x6, 0x80000001, 0x0, 0x100a, 0x7fffffff, 0x7fff, 0x2, 0xfffffff8, 0x2, 0x9af, 0x10001, 0x8, 0x4, 0x8, 0x6, 0x7742348d, 0x5, 0x5, 0x1f, 0x40, 0x0, 0x6, 0x7fffffff, 0x7, 0x7, 0x8, 0x17f, 0x6, 0x2, 0x5, 0x6, 0x1, 0xb, 0xe, 0x5, 0x1, 0xfe7, 0xfffffffc, 0x8, 0x7ff, 0x3e9, 0x0, 0x3, 0x2000, 0xd, 0x3, 0x4, 0x3, 0x81, 0x8, 0x14, 0x8, 0x9, 0x6, 0xffff, 0xf28c, 0x7, 0x6, 0x4, 0x7fffffff, 0xffff, 0x7fffffff, 0xc9, 0x2, 0xfffffffe, 0x924, 0x499, 0x100, 0x1, 0x5, 0xffff351b, 0x8, 0xfffffffb, 0x7, 0x9, 0x2, 0x5, 0x4, 0x4, 0x4, 0xff, 0xee, 0x2, 0x4, 0x8, 0x9f, 0x7, 0x3, 0x9, 0xc9, 0x1, 0x1, 0x1, 0xfffffff7, 0x0, 0x6, 0x5, 0x6, 0x400, 0x51, 0x7, 0xefb, 0xb8, 0x8, 0x5, 0xfffffff7, 0x7, 0x7, 0x4, 0x6330, 0x0, 0x6, 0xea, 0x0, 0xfff, 0x809, 0x6, 0x0, 0x6, 0xffff, 0xfffffffa, 0x3, 0x0, 0x1, 0x6, 0xfffffc00, 0x5, 0x7, 0x64c822e3, 0x9, 0x6, 0x3ff, 0x6, 0xfff, 0x0, 0xa7b, 0x62cc, 0xfffffff7, 0x7, 0x40, 0xa, 0x9b, 0x3, 0xe, 0x1, 0x1, 0xc, 0x40, 0x3, 0x4, 0x5, 0x5, 0x7ff, 0x5, 0x8, 0x5, 0x3, 0x9, 0x2, 0x80000001, 0x54, 0x400, 0x1, 0x8, 0xa, 0x9, 0xc0, 0x3, 0x72, 0x80, 0x1000, 0x7, 0x800, 0x6, 0xd19, 0x3, 0x93c, 0x6, 0x0, 0x0, 0xe, 0x5, 0x3, 0xfffffffa, 0xa01, 0xf3, 0xffffff00, 0x8, 0xe, 0x3, 0x3ff, 0x5, 0x2, 0x6, 0xfffffff8, 0xffff, 0xfffffff9, 0x9, 0x5, 0x62, 0x8, 0x1, 0xfffffffb, 0x1af88, 0x2, 0x9, 0x7, 0x0, 0x7, 0x8, 0x10000, 0x40, 0x8, 0x7, 0x2b, 0x6, 0x10, 0x5, 0x200, 0x9, 0x6, 0x3, 0x8, 0x10, 0x4, 0x6, 0x633, 0xf05, 0x0, 0x101, 0x200, 0x7, 0x7ff, 0x0, 0x1, 0x1, 0x10000, 0x9, 0x40, 0x9, 0x0, 0x7f, 0x8, 0x6, 0xe, 0x3, 0x80000001, 0x0, 0x8, 0x8, 0x7, 0xdd, 0x6, 0x89, 0x0, 0x100, 0x1, 0x9, 0xe75, 0x400, 0x1, 0x0, 0x200, 0xe9ab, 0xfffffff8, 0x8000, 0x13, 0x2, 0x2, 0x43, 0x3ff, 0x0, 0x7, 0x9, 0x1, 0x6, 0x7, 0xa, 0xf, 0xf39d, 0x71, 0xfff, 0x5, 0x8]})
r6 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8c2b01)
write$char_usb(r6, &(0x7f0000000040)="e2", 0x12d8)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000005880)=@newtfilter={0x40, 0x2c, 0xd27, 0xfffffffe, 0x0, {0x0, 0x0, 0x0, r5, {}, {}, {0xd}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x3, 0xfff1}}]}}]}, 0x40}}, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

1.129299561s ago: executing program 0 (id=14397):
socket(0x1d, 0x2, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x5412, &(0x7f0000000000)=0x13)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000340)={0xff02, 0x0, 0x0, 0xffff, 0x0, "08000080a90100a1"})
ioctl$TIOCL_GETMOUSEREPORTING(r1, 0x5412, &(0x7f00000006c0)=0x5f)
symlinkat(&(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
setxattr$trusted_overlay_upper(&(0x7f0000000480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000040), 0x0, 0x0, 0x3)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3000001, 0x32, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r5, 0x40045542, &(0x7f00000001c0)=0x1)

1.087467185s ago: executing program 4 (id=14398):
prlimit64(0x0, 0xe, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x8, &(0x7f0000006680))
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x90, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006300)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x10408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
dup2(r3, r1)
bind$xdp(r3, 0x0, 0x0)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x1000000, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)

705.333212ms ago: executing program 7 (id=14399):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0xd, &(0x7f0000000240)=@raw=[@cb_func={0x18, 0x7, 0x4, 0x0, 0xfffffffffffffffa}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffc}, @call={0x85, 0x0, 0x0, 0x12}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}, @map_idx={0x18, 0x9, 0x5, 0x0, 0x8}, @map_idx={0x18, 0x6, 0x5, 0x0, 0xc}, @exit], 0x0, 0x9, 0x0, 0x0, 0x41000, 0x59, '\x00', 0x0, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x88}, 0x94)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000100)={0x0, 0x4}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e21, @empty}], 0x10)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x5}, 0x8)
sendmsg$inet_sctp(r0, &(0x7f0000000140)={&(0x7f0000000340)=@in={0x2, 0x4e21, @loopback}, 0x10, &(0x7f00000002c0)=[{&(0x7f0000000000)='N', 0x1}], 0x1, 0x0, 0x0, 0xc04c000}, 0x44000)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f00000000c0)={0x0, 0x6, 0x102}, 0x8)

548.15068ms ago: executing program 7 (id=14400):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000240)={'sit0\x00', &(0x7f00000001c0)={@private0, @local, 0x8, 0x1a}})
move_pages(0x0, 0x0, &(0x7f0000000700), &(0x7f0000000740), &(0x7f0000000780)=[0x0], 0x2)
r2 = inotify_init()
syz_open_pts(0xffffffffffffffff, 0x0)
inotify_add_watch(r2, &(0x7f00000000c0)='.\x00', 0x5000009)
r3 = open(&(0x7f0000000180)='./bus\x00', 0x189a7c, 0x113)
socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
r4 = open(&(0x7f0000000040)='./bus\x00', 0x4e142, 0x0)
ioctl$KDSKBMODE(r3, 0x4b45, &(0x7f0000000000)=0x2)
pwritev2(r4, &(0x7f0000000680)=[{&(0x7f0000000200)="05", 0x6a000}], 0x1, 0x6000000, 0x0, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x37fffee, 0x4002011, r3, 0x0)

206.370909ms ago: executing program 0 (id=14401):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x6}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)={0x24, 0x40, 0x9, 0xffffffff, 0x25dfdbfd, {0x2}, [@typed={0x4, 0x11f}, @nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0x1f}]}, @nested={0x4, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = io_uring_setup(0x5b42, &(0x7f0000000640)={0x0, 0xfffffffe, 0x800, 0x103fc, 0x159})
r5 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r5, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x2b)
sendmsg$rds(r5, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0xf000}, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, 0x0, 0x0}, 0x94)
mmap(&(0x7f000036f000/0x1000)=nil, 0x1000, 0x1, 0x13, r4, 0x6b740000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="18009500"/24], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r6, 0xc08c5332, &(0x7f0000000400)={{0x40, 0x3}, 0x0, 0x4, 0x88, {}, 0x0, 0xffff})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r6, 0xc0605345, &(0x7f0000000040))

206.23331ms ago: executing program 9 (id=14402):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000200)={0x0, &(0x7f0000000140)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r1, 0xc02064b9, &(0x7f0000000280)={&(0x7f0000000400)=[0x0, <r3=>0x0], &(0x7f0000000280), 0x2, r2})
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000040)={0x0, 0x1, &(0x7f0000000380)=[r2], &(0x7f00000003c0)=[0x7], &(0x7f0000000300)=[r3], &(0x7f0000000340), 0x0, 0x1010000})

7.46321ms ago: executing program 9 (id=14404):
syz_open_dev$video(&(0x7f0000000000), 0x7, 0x40440)
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="b702000000000100bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065060400010000000404000001000000b7050000220000006a0a00fe00000000850000000b000000b7000000592000009500000000000000a3028cb5af6c8f5d76781dcb7729f01726a067818b990b13bfddb7e78270010720596bb3b4d821d976f5843061cc2e3afbae82d7932d192321fa3b3042f100"/187], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0xa002a0, 0x10, 0x18, &(0x7f0000000000)="5ae02efc441a80536af0d1d905c723fa", &(0x7f0000000040)=""/24, 0x6414}, 0x28)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000100)={0x1, "fa02c800"})
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r3 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=@ipv6_newrule={0x38, 0x20, 0x1, 0x0, 0x0, {0xa, 0x0, 0x20, 0x40, 0x0, 0x0, 0x0, 0x7}, [@FRA_SRC={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x12}}, @FIB_RULE_POLICY=@FRA_DPORT_RANGE={0x8, 0x18, {0x4e21, 0x4e21}}]}, 0x38}, 0x1, 0x0, 0x0, 0x24040804}, 0x800)
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00!'], 0x5c}}, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, &(0x7f0000000100)={0x4, <r6=>r2})
ioctl$DMA_BUF_SET_NAME_A(r6, 0x40086203, &(0x7f00000001c0)='\x02\x00\x00\x00\x05\x00\x00\x00-control\x00')
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x83, 0x2, 0x3, 0x7f, 0xa9, 0x4d, 0x6, 0x5f, 0x9, 0x15, 0xffff2d37, 0xff7fff01, 0x6, 0x5, 0x7, 0x5, 0x6, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0x10, 0x5, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x20003, 0x8, 0x4c74, 0x10000, 0x242, 0x3, 0xe, 0x4, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x18e, 0x200006, 0x6, 0x454f, 0x6, 0x80004, 0x8, 0x3ff, 0x80, 0x0, 0x5, 0x0, 0x8, 0x8000, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x129432f6, 0xc8, 0xf1, 0xe, 0x2bf, 0x6c7, 0x2, 0xfffffffc, 0x5, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x1, 0x66abcbd2, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x1, 0xfffff575, 0x5f31, 0xd, 0x4e0, 0x381, 0x4, 0xb, 0x4, 0x9, 0x8, 0x5, 0x6, 0x47, 0x6, 0x1, 0xfe000000, 0x8, 0x2, 0x4, 0x9, 0x3, 0x3, 0x4000009, 0x6, 0x0, 0x3, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x4, 0x4, 0xfffffffd, 0x100, 0x4, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0xfffffffa, 0xb, 0x5, 0x2, 0x2, 0x400003, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x4, 0x1000, 0x5, 0xb1, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0xffffffff, 0x5, 0x1c, 0x120000, 0x200807ff, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x4, 0x6, 0x6, 0x0, 0xb9, 0xce4, 0x1ff, 0x2, 0x4184, 0x5, 0x3, 0x2, 0x10000, 0x4, 0x7fff, 0xffff, 0xa620, 0x1, 0x5, 0x1, 0x2000002, 0x14c, 0x60a7, 0x6, 0xa, 0xffffffff, 0x80000000, 0x5, 0x5, 0xc8, 0x1, 0xfffff000, 0xffff, 0x0, 0x7e, 0x100, 0x9622, 0x7, 0xaf, 0x20000008, 0x5, 0x226, 0x2, 0x5, 0x0, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x530e, 0x6c1b, 0x0, 0x4, 0x5, 0x803, 0xd7, 0x200, 0xb, 0xfff]}, 0x45c)
ioctl$SW_SYNC_IOC_INC(r0, 0x40045701, &(0x7f0000000040)=0xdd0)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

0s ago: executing program 4 (id=14405):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=@deltclass={0x60, 0x29, 0x1, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xfff1, 0x5}, {0x0, 0xb}, {0xffe0, 0x2}}, [@tclass_kind_options=@c_qfq={{0x8}, {0x1c, 0x2, [@TCA_QFQ_WEIGHT={0x8, 0x1, 0x7f}, @TCA_QFQ_WEIGHT={0x8}, @TCA_QFQ_LMAX={0x8, 0x2, 0xec}]}}, @tclass_kind_options=@c_fq_codel={0xd}, @TCA_RATE={0x6, 0x5, {0x0, 0xfb}}]}, 0x60}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
r0 = getpid() (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
r3 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) (async)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, 0x0, 0x0) (async)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) (async)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10) (async)
umount2(&(0x7f0000000000)='./file0\x00', 0x9) (async)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) (async)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000240)=[@mss, @sack_perm, @timestamp, @mss={0x2, 0x1}, @window, @window={0x3, 0x0, 0xfffc}, @timestamp, @timestamp], 0x8)
setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
sendto$inet(r4, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11) (async)
recvfrom$inet(r4, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25) (async)
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000000280)={'syztnl2\x00', &(0x7f0000000440)={'ip6gre0\x00', 0x0, 0x4, 0x10, 0xf2, 0x40, 0x4e, @rand_addr=' \x01\x00', @empty, 0x20, 0x8, 0x6, 0x3}}) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x20010, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

.896143][T28381] tipc: Resetting bearer <eth:syzkaller0>
[ 2863.920925][T28381] tipc: Disabling bearer <eth:syzkaller0>
[ 2864.176577][T28393] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2864.642077][T28401] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 2864.650139][T28401] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 2864.689170][T28391] /dev/sr0: Can't open blockdev
[ 2865.219385][T28407] netlink: 4 bytes leftover after parsing attributes in process `syz.7.13750'.
[ 2867.269428][T28436] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 2867.272089][T28436] syzkaller0: entered promiscuous mode
[ 2867.276503][T28436] syzkaller0: entered allmulticast mode
[ 2867.299292][T28436] FAULT_INJECTION: forcing a failure.
[ 2867.299292][T28436] name failslab, interval 1, probability 0, space 0, times 0
[ 2867.303801][T28436] CPU: 2 UID: 0 PID: 28436 Comm: syz.2.13758 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 2867.303816][T28436] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 2867.303822][T28436] Call Trace:
[ 2867.303827][T28436]  <TASK>
[ 2867.303832][T28436]  dump_stack_lvl+0x16c/0x1f0
[ 2867.303862][T28436]  should_fail_ex+0x512/0x640
[ 2867.303876][T28436]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[ 2867.303890][T28436]  should_failslab+0xc2/0x120
[ 2867.303902][T28436]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[ 2867.303913][T28436]  ? __alloc_skb+0x2b2/0x380
[ 2867.303926][T28436]  __alloc_skb+0x2b2/0x380
[ 2867.303936][T28436]  ? __pfx___alloc_skb+0x10/0x10
[ 2867.303945][T28436]  ? rcu_is_watching+0x12/0xc0
[ 2867.303956][T28436]  ? __ipv6_dev_mc_dec+0x63/0x3b0
[ 2867.303968][T28436]  ? __pfx___mutex_lock+0x10/0x10
[ 2867.303981][T28436]  inet6_ifmcaddr_notify+0xd6/0x1d0
[ 2867.303995][T28436]  ? __pfx_inet6_ifmcaddr_notify+0x10/0x10
[ 2867.304014][T28436]  __ipv6_dev_mc_dec+0x2b5/0x3b0
[ 2867.304027][T28436]  ipv6_mc_destroy_dev+0x2cd/0x690
[ 2867.304038][T28436]  ? __local_bh_enable_ip+0xa4/0x120
[ 2867.304052][T28436]  addrconf_ifdown.isra.0+0x13ef/0x1a90
[ 2867.304071][T28436]  ? __pfx_addrconf_ifdown.isra.0+0x10/0x10
[ 2867.304089][T28436]  addrconf_notify+0x89a/0x19e0
[ 2867.304103][T28436]  ? ip6mr_device_event+0x1bc/0x230
[ 2867.304120][T28436]  notifier_call_chain+0xbc/0x410
[ 2867.304132][T28436]  ? __pfx_addrconf_notify+0x10/0x10
[ 2867.304149][T28436]  call_netdevice_notifiers_info+0xbe/0x140
[ 2867.304164][T28436]  netif_set_mtu_ext+0x3bf/0x5c0
[ 2867.304176][T28436]  ? __pfx_netif_set_mtu_ext+0x10/0x10
[ 2867.304187][T28436]  ? __lock_acquire+0xb8a/0x1c90
[ 2867.304203][T28436]  ? kasan_save_stack+0x42/0x60
[ 2867.304213][T28436]  ? kasan_save_stack+0x33/0x60
[ 2867.304222][T28436]  ? kasan_save_track+0x14/0x30
[ 2867.304231][T28436]  ? __kasan_slab_free+0x51/0x70
[ 2867.304244][T28436]  netif_set_mtu+0x98/0x140
[ 2867.304254][T28436]  ? __pfx_netif_set_mtu+0x10/0x10
[ 2867.304270][T28436]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 2867.304284][T28436]  ? full_name_hash+0xbc/0x110
[ 2867.304299][T28436]  dev_set_mtu+0xb2/0x260
[ 2867.304312][T28436]  dev_ifsioc+0xd1f/0x1ee0
[ 2867.304324][T28436]  ? __pfx_dev_ifsioc+0x10/0x10
[ 2867.304335][T28436]  ? __pfx___mutex_lock+0x10/0x10
[ 2867.304350][T28436]  ? dev_load+0x8e/0x240
[ 2867.304368][T28436]  dev_ioctl+0x223/0x1060
[ 2867.304379][T28436]  sock_do_ioctl+0x19d/0x280
[ 2867.304391][T28436]  ? do_vfs_ioctl+0x523/0x1a60
[ 2867.304406][T28436]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 2867.304417][T28436]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2867.304434][T28436]  ? unix_ioctl+0xf0/0x5e0
[ 2867.304447][T28436]  ? __pfx_unix_ioctl+0x10/0x10
[ 2867.304464][T28436]  compat_sock_ioctl+0x301/0x730
[ 2867.304480][T28436]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 2867.304493][T28436]  ? hook_file_ioctl_common+0x145/0x410
[ 2867.304510][T28436]  ? __fget_files+0x20e/0x3c0
[ 2867.304525][T28436]  ? __fput_deferred+0x480/0x480
[ 2867.304542][T28436]  ? __pfx_compat_sock_ioctl+0x10/0x10
[ 2867.304555][T28436]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 2867.304576][T28436]  __do_fast_syscall_32+0x7c/0x3a0
[ 2867.304589][T28436]  do_fast_syscall_32+0x32/0x80
[ 2867.304600][T28436]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2867.304613][T28436] RIP: 0023:0xf7f48579
[ 2867.304622][T28436] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2867.304632][T28436] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 2867.304643][T28436] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000008922
[ 2867.304650][T28436] RDX: 0000000080002280 RSI: 0000000000000000 RDI: 0000000000000000
[ 2867.304656][T28436] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2867.304662][T28436] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 2867.304668][T28436] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2867.304681][T28436]  </TASK>
[ 2867.304855][T28436] tipc: Resetting bearer <eth:syzkaller0>
[ 2867.373444][T28438] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2867.452855][T28435] tipc: Resetting bearer <eth:syzkaller0>
[ 2867.467754][T28435] tipc: Disabling bearer <eth:syzkaller0>
[ 2867.562106][T28444] netlink: 16 bytes leftover after parsing attributes in process `syz.4.13761'.
[ 2867.912949][T27685] usb 7-1: new high-speed USB device number 95 using dummy_hcd
[ 2868.015568][T28444] ubi: mtd0 is already attached to ubi31
[ 2868.094697][T27685] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 2868.102496][T27685] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 2868.112041][T27685] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 2868.116320][T27685] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[ 2868.119673][T27685] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[ 2868.125299][T27685] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 2868.132158][T27685] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 2868.134669][T27685] usb 7-1: Product: syz
[ 2868.135958][T27685] usb 7-1: Manufacturer: syz
[ 2868.166973][T27685] cdc_wdm 7-1:1.0: skipping garbage
[ 2868.188044][T27685] cdc_wdm 7-1:1.0: skipping garbage
[ 2868.191708][T27685] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[ 2868.193612][T27685] cdc_wdm 7-1:1.0: Unknown control protocol
[ 2868.456264][    C2] cdc_wdm 7-1:1.0: nonzero urb status received: -71
[ 2868.456418][   T53] usb 7-1: USB disconnect, device number 95
[ 2868.459007][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - 0 bytes
[ 2868.463487][    C2] cdc_wdm 7-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[ 2868.472569][T28453] cdc_wdm 7-1:1.0: Tx URB error: -19
[ 2869.054594][T28466] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13766'.
[ 2869.061436][T28466] syz_tun: entered promiscuous mode
[ 2869.064261][T28466] batadv_slave_1: entered promiscuous mode
[ 2870.433334][T28480] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2870.434836][T28478] 9pnet_fd: Insufficient options for proto=fd
[ 2870.879111][T28486] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 2870.908525][T28486] kvm: pic: non byte read
[ 2870.922604][T28486] kvm: pic: level sensitive irq not supported
[ 2870.927184][T28486] kvm: pic: non byte read
[ 2871.801572][T28498] /dev/sr0: Can't open blockdev
[ 2872.252634][T28511] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 2872.255429][T28511] syzkaller0: entered promiscuous mode
[ 2872.257638][T28511] syzkaller0: entered allmulticast mode
[ 2872.541399][T28510] tipc: Resetting bearer <eth:syzkaller0>
[ 2872.680285][T28510] tipc: Disabling bearer <eth:syzkaller0>
[ 2873.075125][T28523] 9pnet_fd: Insufficient options for proto=fd
[ 2873.496502][T28525] netlink: 4388 bytes leftover after parsing attributes in process `syz.3.13784'.
[ 2874.001795][T28532] netlink: 12 bytes leftover after parsing attributes in process `syz.4.13785'.
[ 2874.892251][T28543] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13789'.
[ 2876.054800][T28559] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 2877.204793][T28583] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2877.216762][T28581] netlink: 80 bytes leftover after parsing attributes in process `syz.3.13797'.
[ 2879.856324][T28619] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 2880.090278][   T40] audit: type=1326 audit(1754586371.623:41292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28633 comm="syz.3.13811" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[ 2880.099712][   T40] audit: type=1326 audit(1754586371.623:41293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28633 comm="syz.3.13811" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ae579 code=0x7ffc0000
[ 2880.109345][   T40] audit: type=1326 audit(1754586371.623:41294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28633 comm="syz.3.13811" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000
[ 2880.118235][   T40] audit: type=1326 audit(1754586371.623:41295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28633 comm="syz.3.13811" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000
[ 2880.127231][   T40] audit: type=1326 audit(1754586371.623:41296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28633 comm="syz.3.13811" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000
[ 2880.133970][   T40] audit: type=1326 audit(1754586371.623:41297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28633 comm="syz.3.13811" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000
[ 2880.140698][   T40] audit: type=1326 audit(1754586371.633:41298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28633 comm="syz.3.13811" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000
[ 2880.148153][   T40] audit: type=1326 audit(1754586371.633:41299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28633 comm="syz.3.13811" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000
[ 2880.154994][   T40] audit: type=1326 audit(1754586371.633:41300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28633 comm="syz.3.13811" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000
[ 2880.161962][   T40] audit: type=1326 audit(1754586371.633:41301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28633 comm="syz.3.13811" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ae598 code=0x7ffc0000
[ 2880.175183][T28639] random: crng reseeded on system resumption
[ 2880.999066][T28649] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2882.269804][T28668] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13819'.
[ 2883.040703][T28678] IPVS: sync thread started: state = MASTER, mcast_ifn = geneve0, syncid = 10802, id = 0
[ 2883.091012][ T5975] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2883.097670][T28681] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2883.102533][T28681] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2883.107112][T28681] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2883.109817][T28681] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2883.336776][T28679] chnl_net:caif_netlink_parms(): no params data found
[ 2883.407210][T28679] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2883.409514][T28679] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2883.412319][T28679] bridge_slave_0: entered allmulticast mode
[ 2883.414995][T28679] bridge_slave_0: entered promiscuous mode
[ 2883.418154][T28679] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2883.421240][T28679] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2883.423554][T28679] bridge_slave_1: entered allmulticast mode
[ 2883.426147][T28679] bridge_slave_1: entered promiscuous mode
[ 2883.460830][T28679] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2883.465621][T28679] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2883.503022][T28679] team0: Port device team_slave_0 added
[ 2883.508066][T28679] team0: Port device team_slave_1 added
[ 2883.567792][T28679] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2883.570012][T28679] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2883.579499][T28679] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2883.583822][T28679] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2883.586035][T28679] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2883.594276][T28679] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2883.637058][T28679] hsr_slave_0: entered promiscuous mode
[ 2883.639579][T28679] hsr_slave_1: entered promiscuous mode
[ 2883.791451][T28679] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 2883.804096][T28679] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 2883.821964][T28679] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 2883.826651][T28679] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 2884.214563][T28679] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2884.255848][T28679] 8021q: adding VLAN 0 to HW filter on device team0
[ 2884.271644][T10470] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2884.274767][T10470] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2884.285641][T10457] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2884.288731][T10457] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2884.314560][T28679] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 2884.319335][T28679] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2884.408108][T28679] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2884.537499][T28679] veth0_vlan: entered promiscuous mode
[ 2884.542101][T28679] veth1_vlan: entered promiscuous mode
[ 2884.556161][T28679] veth0_macvtap: entered promiscuous mode
[ 2884.559721][T28679] veth1_macvtap: entered promiscuous mode
[ 2884.568340][T28679] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2884.574256][T28679] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2884.578417][T28679] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2884.580857][T28679] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2884.590789][T28679] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2884.593941][T28679] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2884.634781][T10457] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2884.638047][T10457] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2884.652261][T10457] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2884.655264][T10457] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2884.882025][T28721] overlayfs: failed to resolve './file0': -2
[ 2885.060796][T28681] Bluetooth: hci0: command tx timeout
[ 2886.285454][T28739] FAULT_INJECTION: forcing a failure.
[ 2886.285454][T28739] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2886.292737][T28739] CPU: 2 UID: 0 PID: 28739 Comm: syz.8.13834 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 2886.292753][T28739] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 2886.292759][T28739] Call Trace:
[ 2886.292763][T28739]  <TASK>
[ 2886.292768][T28739]  dump_stack_lvl+0x16c/0x1f0
[ 2886.292796][T28739]  should_fail_ex+0x512/0x640
[ 2886.292810][T28739]  _copy_from_user+0x2e/0xd0
[ 2886.292822][T28739]  generic_map_update_batch+0x3e9/0x610
[ 2886.292843][T28739]  ? __pfx_generic_map_update_batch+0x10/0x10
[ 2886.292862][T28739]  ? __pfx_generic_map_update_batch+0x10/0x10
[ 2886.292878][T28739]  bpf_map_do_batch+0x5b4/0x680
[ 2886.292893][T28739]  __sys_bpf+0x189f/0x4ea0
[ 2886.292904][T28739]  ? __pfx___sys_bpf+0x10/0x10
[ 2886.292914][T28739]  ? ksys_write+0x190/0x250
[ 2886.292927][T28739]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 2886.292955][T28739]  ? fput+0x70/0xf0
[ 2886.292971][T28739]  ? ksys_write+0x1ac/0x250
[ 2886.292985][T28739]  ? __pfx_ksys_write+0x10/0x10
[ 2886.292997][T28739]  __ia32_sys_bpf+0x76/0xe0
[ 2886.293007][T28739]  __do_fast_syscall_32+0x7c/0x3a0
[ 2886.293020][T28739]  do_fast_syscall_32+0x32/0x80
[ 2886.293031][T28739]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2886.293044][T28739] RIP: 0023:0xf711e579
[ 2886.293053][T28739] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2886.293063][T28739] RSP: 002b:00000000f50ed55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[ 2886.293073][T28739] RAX: ffffffffffffffda RBX: 000000000000001a RCX: 0000000080000300
[ 2886.293080][T28739] RDX: 0000000000000038 RSI: 0000000000000000 RDI: 0000000000000000
[ 2886.293086][T28739] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2886.293092][T28739] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 2886.293098][T28739] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2886.293112][T28739]  </TASK>
[ 2887.039007][T28681] Bluetooth: hci0: command tx timeout
[ 2888.221073][T28765] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13848'.
[ 2889.015529][T28681] Bluetooth: hci0: command tx timeout
[ 2889.503143][T28780] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2890.757459][T28801] netlink: 'syz.4.13849': attribute type 4 has an invalid length.
[ 2890.878641][T28806] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 2891.001521][T28681] Bluetooth: hci0: command tx timeout
[ 2891.136274][T28805] tipc: Disabling bearer <eth:syzkaller0>
[ 2893.390684][T28837] misc userio: Invalid payload size
[ 2894.197674][   T40] kauditd_printk_skb: 21 callbacks suppressed
[ 2894.197684][   T40] audit: type=1326 audit(1754586386.425:41323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28847 comm="syz.4.13871" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x0
[ 2894.298868][T28849] overlayfs: failed to resolve './file0': -2
[ 2894.899006][T28853] IPVS: Error connecting to the multicast addr
[ 2894.985426][T28855] tmpfs: Unknown parameter 'grpquota_bit'
[ 2897.917550][T28884] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13872'.
[ 2897.978540][T28681] Bluetooth: hci3: ACL packet for unknown connection handle 200
[ 2898.050905][T28888] netlink: 'syz.7.13873': attribute type 5 has an invalid length.
[ 2898.082180][T28892] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2898.258650][T28901] IPVS: sync thread started: state = MASTER, mcast_ifn = geneve0, syncid = 10802, id = 0
[ 2899.698862][T28917] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2900.355632][T28922] syzkaller0: entered promiscuous mode
[ 2900.358480][T28922] syzkaller0: entered allmulticast mode
[ 2901.850369][T28939] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13887'.
[ 2902.045800][T28942] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2902.761521][T28957] syzkaller0: entered promiscuous mode
[ 2902.763988][T28957] syzkaller0: entered allmulticast mode
[ 2903.282542][T28681] Bluetooth: hci4: ACL packet for unknown connection handle 200
[ 2903.319683][T28964] netlink: 'syz.4.13894': attribute type 5 has an invalid length.
[ 2905.185363][T28988] binder: 28986:28988 ioctl c0306201 80000480 returned -14
[ 2905.380142][T28998] syzkaller0: entered promiscuous mode
[ 2905.381979][T28998] syzkaller0: entered allmulticast mode
[ 2906.028088][T29018] tmpfs: Unknown parameter 'grpquota_bit'
[ 2906.126971][T29023] FAULT_INJECTION: forcing a failure.
[ 2906.126971][T29023] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2906.131646][T29023] CPU: 2 UID: 0 PID: 29023 Comm: syz.2.13912 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 2906.131672][T29023] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 2906.131680][T29023] Call Trace:
[ 2906.131685][T29023]  <TASK>
[ 2906.131689][T29023]  dump_stack_lvl+0x16c/0x1f0
[ 2906.131705][T29023]  should_fail_ex+0x512/0x640
[ 2906.131719][T29023]  should_fail_alloc_page+0xe7/0x130
[ 2906.131732][T29023]  prepare_alloc_pages+0x3c2/0x610
[ 2906.131749][T29023]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 2906.131761][T29023]  ? __lock_acquire+0xb8a/0x1c90
[ 2906.131778][T29023]  ? __lock_acquire+0xb8a/0x1c90
[ 2906.131794][T29023]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2906.131805][T29023]  ? do_raw_spin_lock+0x12c/0x2b0
[ 2906.131821][T29023]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 2906.131837][T29023]  ? find_held_lock+0x2b/0x80
[ 2906.131850][T29023]  ? do_raw_spin_unlock+0x172/0x230
[ 2906.131866][T29023]  ? _raw_spin_unlock+0x28/0x50
[ 2906.131880][T29023]  ? __dquot_alloc_space+0x520/0xe20
[ 2906.131892][T29023]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2906.131908][T29023]  ? policy_nodemask+0xea/0x4e0
[ 2906.131921][T29023]  alloc_pages_mpol+0x1fb/0x550
[ 2906.131934][T29023]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2906.131946][T29023]  ? find_held_lock+0x2b/0x80
[ 2906.131956][T29023]  ? __pfx___might_resched+0x10/0x10
[ 2906.131970][T29023]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 2906.131984][T29023]  shmem_alloc_folio+0x135/0x160
[ 2906.132000][T29023]  shmem_mfill_atomic_pte+0x4e6/0x940
[ 2906.132012][T29023]  ? mm_alloc_pmd+0x2c2/0x470
[ 2906.132027][T29023]  mfill_atomic_copy+0xe71/0x1cd0
[ 2906.132044][T29023]  ? find_held_lock+0x2b/0x80
[ 2906.132054][T29023]  ? __might_fault+0xe3/0x190
[ 2906.132064][T29023]  ? __pfx_mfill_atomic_copy+0x10/0x10
[ 2906.132083][T29023]  userfaultfd_ioctl+0x236c/0x38e0
[ 2906.132096][T29023]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 2906.132113][T29023]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[ 2906.132133][T29023]  ? find_held_lock+0x2b/0x80
[ 2906.132143][T29023]  ? hook_file_ioctl_common+0x145/0x410
[ 2906.132162][T29023]  ? __fget_files+0x20e/0x3c0
[ 2906.132177][T29023]  ? __fput_deferred+0x480/0x480
[ 2906.132191][T29023]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[ 2906.132204][T29023]  ? compat_ptr_ioctl+0x6e/0xa0
[ 2906.132216][T29023]  compat_ptr_ioctl+0x6e/0xa0
[ 2906.132228][T29023]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[ 2906.132242][T29023]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 2906.132258][T29023]  __do_fast_syscall_32+0x7c/0x3a0
[ 2906.132270][T29023]  do_fast_syscall_32+0x32/0x80
[ 2906.132281][T29023]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2906.132293][T29023] RIP: 0023:0xf7f48579
[ 2906.132302][T29023] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2906.132313][T29023] RSP: 002b:00000000f504555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 2906.132323][T29023] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000c028aa03
[ 2906.132330][T29023] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 2906.132336][T29023] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2906.132342][T29023] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 2906.132348][T29023] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2906.132362][T29023]  </TASK>
[ 2907.253071][T29039] syzkaller0: entered promiscuous mode
[ 2907.255154][T29039] syzkaller0: entered allmulticast mode
[ 2907.471172][T28681] Bluetooth: Unknown BR/EDR signaling command 0x0d
[ 2907.474960][T28681] Bluetooth: Wrong link type (-22)
[ 2907.479150][T28681] Bluetooth: Unknown BR/EDR signaling command 0x0e
[ 2907.482086][T28681] Bluetooth: Wrong link type (-22)
[ 2907.680904][T29050] netlink: 'syz.8.13921': attribute type 5 has an invalid length.
[ 2907.797904][T29054] syz.8.13922: attempt to access beyond end of device
[ 2907.797904][T29054] nbd8: rw=0, sector=64, nr_sectors = 1 limit=0
[ 2907.802158][T29054] syz.8.13922: attempt to access beyond end of device
[ 2907.802158][T29054] nbd8: rw=0, sector=256, nr_sectors = 1 limit=0
[ 2907.806542][T29054] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=256, location=256
[ 2907.809831][T29054] syz.8.13922: attempt to access beyond end of device
[ 2907.809831][T29054] nbd8: rw=0, sector=512, nr_sectors = 1 limit=0
[ 2907.814061][T29054] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=512, location=512
[ 2907.817568][T29054] syz.8.13922: attempt to access beyond end of device
[ 2907.817568][T29054] nbd8: rw=0, sector=64, nr_sectors = 2 limit=0
[ 2907.821722][T29054] syz.8.13922: attempt to access beyond end of device
[ 2907.821722][T29054] nbd8: rw=0, sector=512, nr_sectors = 2 limit=0
[ 2907.828056][T29054] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=256, location=256
[ 2907.833376][T29054] syz.8.13922: attempt to access beyond end of device
[ 2907.833376][T29054] nbd8: rw=0, sector=1024, nr_sectors = 2 limit=0
[ 2907.837835][T29054] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=512, location=512
[ 2907.843348][T29054] syz.8.13922: attempt to access beyond end of device
[ 2907.843348][T29054] nbd8: rw=0, sector=64, nr_sectors = 4 limit=0
[ 2907.849134][T29054] syz.8.13922: attempt to access beyond end of device
[ 2907.849134][T29054] nbd8: rw=0, sector=1024, nr_sectors = 4 limit=0
[ 2907.863168][T29054] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=256, location=256
[ 2907.866689][T29054] syz.8.13922: attempt to access beyond end of device
[ 2907.866689][T29054] nbd8: rw=0, sector=2048, nr_sectors = 4 limit=0
[ 2907.871024][T29054] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=512, location=512
[ 2907.874359][T29054] syz.8.13922: attempt to access beyond end of device
[ 2907.874359][T29054] nbd8: rw=0, sector=64, nr_sectors = 8 limit=0
[ 2907.881583][T29054] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=256, location=256
[ 2907.884773][T29054] UDF-fs: error (device nbd8): udf_read_tagged: read failed, block=512, location=512
[ 2907.887869][T29054] UDF-fs: warning (device nbd8): udf_fill_super: No partition found (1)
[ 2909.171273][T29074] tmpfs: Unknown parameter 'grpquota_bit'
[ 2910.186613][T29091] vcan0: MTU too low for tipc bearer
[ 2910.188837][T29091] tipc: Enabling of bearer <eth:vcan0> rejected, failed to enable media
[ 2911.365818][T29114] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2912.103649][T28681] Bluetooth: hci3: ACL packet for unknown connection handle 200
[ 2912.463485][T29130] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(11)
[ 2912.466177][T29130] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 2912.469063][T29130] vhci_hcd vhci_hcd.0: Device attached
[ 2912.634690][T27685] vhci_hcd: vhci_device speed not set
[ 2912.691884][T27685] usb 53-1: new full-speed USB device number 2 using vhci_hcd
[ 2913.204711][T29131] vhci_hcd: connection reset by peer
[ 2913.210217][T19260] vhci_hcd: stop threads
[ 2913.211783][T19260] vhci_hcd: release socket
[ 2913.225247][T19260] vhci_hcd: disconnect device
[ 2913.333592][T29144] overlayfs: failed to clone lowerpath
[ 2913.403743][T29145] syz.2.13950 (29145): drop_caches: 2
[ 2913.405833][T29145] syz.2.13950 (29145): drop_caches: 2
[ 2914.876429][T29173] 9pnet_fd: Insufficient options for proto=fd
[ 2916.157728][T28681] Bluetooth: hci3: ACL packet for unknown connection handle 200
[ 2916.414585][T29196] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2917.578641][T27685] vhci_hcd: vhci_device speed not set
[ 2920.378184][T28681] Bluetooth: hci4: ACL packet for unknown connection handle 200
[ 2920.841397][T28681] Bluetooth: hci3: ACL packet for unknown connection handle 200
[ 2921.397092][T29254] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2923.404192][T29282] netlink: 84 bytes leftover after parsing attributes in process `syz.2.13997'.
[ 2926.551258][T29337] netlink: 28 bytes leftover after parsing attributes in process `syz.4.14007'.
[ 2926.964014][T27685] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[ 2927.095798][T19260] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2927.202976][T19260] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2927.269456][T19260] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2927.353650][T19260] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2927.374847][ T3110] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2927.381485][ T3110] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2927.385859][ T3110] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2927.390214][ T3110] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2927.397560][ T3110] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2927.570354][T19260] bridge_slave_1: left allmulticast mode
[ 2927.575108][T19260] bridge_slave_1: left promiscuous mode
[ 2927.576901][T19260] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2927.583845][T19260] bridge_slave_0: left allmulticast mode
[ 2927.586199][T19260] bridge_slave_0: left promiscuous mode
[ 2927.588733][T19260] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2928.608705][T19260] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2928.647606][T19260] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2928.650929][T19260] bond0 (unregistering): Released all slaves
[ 2928.663860][T29342] chnl_net:caif_netlink_parms(): no params data found
[ 2928.795333][T29362] netlink: 'syz.2.14015': attribute type 10 has an invalid length.
[ 2928.956785][T29362] 8021q: adding VLAN 0 to HW filter on device team0
[ 2929.323212][ T3110] Bluetooth: hci0: command tx timeout
[ 2929.691565][T29342] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2929.693942][T29342] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2929.696725][T29342] bridge_slave_0: entered allmulticast mode
[ 2929.699345][T29342] bridge_slave_0: entered promiscuous mode
[ 2929.702446][T29342] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2929.704799][T29342] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2929.706964][T29342] bridge_slave_1: entered allmulticast mode
[ 2929.710067][T29342] bridge_slave_1: entered promiscuous mode
[ 2929.794451][T29378] tmpfs: Bad value for 'mpol'
[ 2929.796626][T29378] netlink: 4 bytes leftover after parsing attributes in process `syz.2.14018'.
[ 2929.844632][T29342] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2929.858724][T29342] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2929.893712][T29378] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 2929.919518][T19260] hsr_slave_0: left promiscuous mode
[ 2929.921864][T19260] hsr_slave_1: left promiscuous mode
[ 2929.924901][T19260] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2929.927282][T19260] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2929.930497][T19260] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2929.933025][T19260] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2929.998075][T19260] veth1_macvtap: left promiscuous mode
[ 2930.000262][T19260] veth0_macvtap: left promiscuous mode
[ 2930.002514][T19260] veth1_vlan: left promiscuous mode
[ 2930.004724][T19260] veth0_vlan: left promiscuous mode
[ 2930.699648][T29393] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2931.277219][T29402] xt_HMARK: spi-set and port-set can't be combined
[ 2931.304971][ T3110] Bluetooth: hci0: command tx timeout
[ 2931.355170][T29405] FAULT_INJECTION: forcing a failure.
[ 2931.355170][T29405] name failslab, interval 1, probability 0, space 0, times 0
[ 2931.359175][T29405] CPU: 2 UID: 0 PID: 29405 Comm: syz.4.14026 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 2931.359202][T29405] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 2931.359210][T29405] Call Trace:
[ 2931.359215][T29405]  <TASK>
[ 2931.359220][T29405]  dump_stack_lvl+0x16c/0x1f0
[ 2931.359235][T29405]  should_fail_ex+0x512/0x640
[ 2931.359247][T29405]  ? __kmalloc_noprof+0xbf/0x510
[ 2931.359259][T29405]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[ 2931.359275][T29405]  should_failslab+0xc2/0x120
[ 2931.359287][T29405]  __kmalloc_noprof+0xd2/0x510
[ 2931.359298][T29405]  ? kmem_cache_free+0x2d1/0x4d0
[ 2931.359310][T29405]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[ 2931.359328][T29405]  genl_family_rcv_msg_doit+0xbf/0x2f0
[ 2931.359344][T29405]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[ 2931.359358][T29405]  ? trace_cap_capable+0x18d/0x200
[ 2931.359375][T29405]  ? bpf_lsm_capable+0x9/0x10
[ 2931.359389][T29405]  ? security_capable+0x7e/0x260
[ 2931.359402][T29405]  ? ns_capable+0xd7/0x110
[ 2931.359415][T29405]  genl_rcv_msg+0x55c/0x800
[ 2931.359431][T29405]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 2931.359445][T29405]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[ 2931.359463][T29405]  netlink_rcv_skb+0x155/0x420
[ 2931.359475][T29405]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 2931.359490][T29405]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2931.359509][T29405]  ? netlink_deliver_tap+0x1ae/0xd30
[ 2931.359523][T29405]  genl_rcv+0x28/0x40
[ 2931.359535][T29405]  netlink_unicast+0x58d/0x850
[ 2931.359550][T29405]  ? __pfx_netlink_unicast+0x10/0x10
[ 2931.359567][T29405]  netlink_sendmsg+0x8d1/0xdd0
[ 2931.359582][T29405]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2931.359596][T29405]  ? __import_iovec+0x1dd/0x650
[ 2931.359611][T29405]  ____sys_sendmsg+0xa98/0xc70
[ 2931.359628][T29405]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2931.359641][T29405]  ? get_compat_msghdr+0x11a/0x170
[ 2931.359659][T29405]  ___sys_sendmsg+0x134/0x1d0
[ 2931.359671][T29405]  ? __pfx____sys_sendmsg+0x10/0x10
[ 2931.359689][T29405]  ? find_held_lock+0x2b/0x80
[ 2931.359710][T29405]  __sys_sendmsg+0x16d/0x220
[ 2931.359721][T29405]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2931.359738][T29405]  ? rcu_is_watching+0x12/0xc0
[ 2931.359752][T29405]  __do_fast_syscall_32+0x7c/0x3a0
[ 2931.359765][T29405]  do_fast_syscall_32+0x32/0x80
[ 2931.359775][T29405]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2931.359789][T29405] RIP: 0023:0xf709e579
[ 2931.359798][T29405] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2931.359808][T29405] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[ 2931.359819][T29405] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[ 2931.359826][T29405] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2931.359832][T29405] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2931.359838][T29405] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 2931.359844][T29405] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2931.359858][T29405]  </TASK>
[ 2931.623689][T29407] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2931.660159][T19260] team0 (unregistering): Port device team_slave_1 removed
[ 2931.813501][T19260] team0 (unregistering): Port device team_slave_0 removed
[ 2932.845628][T29378] syzkaller0: entered promiscuous mode
[ 2932.847592][T29378] syzkaller0: entered allmulticast mode
[ 2933.286294][ T3110] Bluetooth: hci0: command tx timeout
[ 2934.908866][T29388] tipc: Resetting bearer <eth:syzkaller0>
[ 2934.912206][T29377] tipc: Resetting bearer <eth:syzkaller0>
[ 2934.928387][T29377] tipc: Disabling bearer <eth:syzkaller0>
[ 2934.942659][T29342] team0: Port device team_slave_0 added
[ 2934.947115][T29342] team0: Port device team_slave_1 added
[ 2934.990634][T29342] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2934.993574][T29342] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2935.004650][T29342] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2935.011288][T29342] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2935.013801][T29342] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2935.023563][T29342] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2935.267599][ T3110] Bluetooth: hci0: command tx timeout
[ 2935.381193][T29342] hsr_slave_0: entered promiscuous mode
[ 2935.400242][T29342] hsr_slave_1: entered promiscuous mode
[ 2937.038163][T29342] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 2937.114717][T29342] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 2937.187603][T29342] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 2937.263799][T29342] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 2937.339033][T29342] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2937.348441][T29342] 8021q: adding VLAN 0 to HW filter on device team0
[ 2937.354016][T19260] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2937.356265][T19260] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2937.455975][T10458] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2937.458246][T10458] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2937.668890][T29342] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2938.013732][T29342] veth0_vlan: entered promiscuous mode
[ 2938.018218][T29342] veth1_vlan: entered promiscuous mode
[ 2938.048803][T29342] veth0_macvtap: entered promiscuous mode
[ 2938.054531][T29342] veth1_macvtap: entered promiscuous mode
[ 2938.063684][T29342] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2938.071619][T29342] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2938.078245][T29342] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2938.081203][T29342] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2938.083873][T29342] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2938.087621][T29342] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2938.160197][T10471] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2938.162663][T10471] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2938.179296][T10458] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2938.182626][T10458] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2938.286298][T29476] netlink: 'syz.4.14040': attribute type 10 has an invalid length.
[ 2938.343808][T29476] 8021q: adding VLAN 0 to HW filter on device team0
[ 2938.394687][T29476] bond0: (slave team0): Enslaving as an active interface with an up link
[ 2939.182603][T28681] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 2939.188485][T28681] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 2939.195460][T28681] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 2939.201788][T28681] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 2939.204616][T28681] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 2939.507557][T29497] chnl_net:caif_netlink_parms(): no params data found
[ 2939.658708][T29497] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2939.661030][T29497] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2939.663429][T29497] bridge_slave_0: entered allmulticast mode
[ 2939.666083][T29497] bridge_slave_0: entered promiscuous mode
[ 2939.669678][T29497] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2939.672240][T29497] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2939.674595][T29497] bridge_slave_1: entered allmulticast mode
[ 2939.677191][T29497] bridge_slave_1: entered promiscuous mode
[ 2939.712700][T29497] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2939.717218][T29497] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2939.768488][T29497] team0: Port device team_slave_0 added
[ 2939.775312][T29497] team0: Port device team_slave_1 added
[ 2939.808480][T29497] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2939.811356][T29497] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2939.819473][T29497] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2939.823871][T29497] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2939.826073][T29497] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2939.838560][T29497] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2939.880320][T29497] hsr_slave_0: entered promiscuous mode
[ 2939.882817][T29497] hsr_slave_1: entered promiscuous mode
[ 2939.884934][T29497] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2939.887377][T29497] Cannot create hsr debugfs directory
[ 2941.213509][ T3110] Bluetooth: hci1: command tx timeout
[ 2941.323017][T29532] netlink: 140 bytes leftover after parsing attributes in process `syz.9.14053'.
[ 2941.352590][T29535] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2941.388886][   T40] audit: type=1400 audit(1754586435.965:41324): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3A30206B420A4C617A79467265653A202020202020202020202020202030206B420A416E6F6E4875676550616765733A20202020202020202030206B420A53686D656D506D644D61707065643A202020202020202030206B420A46696C65506D644D61707065643A20202020202020202030206B420A5368617265645F48756765746C623A202020202020202030206B420A507269766174 pid=29536 comm="syz.9.14057"
[ 2941.544386][T29497] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 2941.561657][T29497] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 2941.568159][T29497] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 2941.575491][T29497] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 2941.642370][T29497] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2941.652791][T29497] 8021q: adding VLAN 0 to HW filter on device team0
[ 2941.657746][T10458] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2941.660038][T10458] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2941.672701][T10463] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2941.675559][T10463] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2941.705325][T29497] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 2941.708803][T29497] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2941.879919][T29497] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2941.912212][T29497] veth0_vlan: entered promiscuous mode
[ 2941.919731][T29497] veth1_vlan: entered promiscuous mode
[ 2941.931422][T29530] netlink: 'syz.7.14055': attribute type 10 has an invalid length.
[ 2941.966135][T29530] 8021q: adding VLAN 0 to HW filter on device team0
[ 2942.031100][T29497] veth0_macvtap: entered promiscuous mode
[ 2942.035092][T29497] veth1_macvtap: entered promiscuous mode
[ 2942.044599][T29497] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2942.051563][T29497] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2942.056886][T29497] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2942.060328][T29497] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2942.065663][T29497] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2942.068368][T29497] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2942.114002][T10463] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2942.123515][T10463] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2942.153041][T10457] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2942.158619][T10457] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2942.298675][T29557] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2943.195121][ T3110] Bluetooth: hci1: command tx timeout
[ 2944.272638][T29586] input: syz1 as /devices/virtual/input/input227
[ 2945.057388][T29596] netlink: 'syz.9.14068': attribute type 10 has an invalid length.
[ 2945.071453][T29596] 8021q: adding VLAN 0 to HW filter on device team0
[ 2945.076709][T29596] bond0: (slave team0): Enslaving as an active interface with an up link
[ 2945.154805][T25153] usb 12-1: new high-speed USB device number 49 using dummy_hcd
[ 2945.174367][ T3110] Bluetooth: hci1: command tx timeout
[ 2945.279039][T25153] usb 12-1: device descriptor read/64, error -71
[ 2945.507591][T25153] usb 12-1: new high-speed USB device number 50 using dummy_hcd
[ 2945.906289][T25153] usb 12-1: device descriptor read/64, error -71
[ 2946.012854][T25153] usb usb12-port1: attempt power cycle
[ 2946.336020][T25153] usb 12-1: new high-speed USB device number 51 using dummy_hcd
[ 2946.358323][T25153] usb 12-1: device descriptor read/8, error -71
[ 2946.565483][T29610] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2946.616167][   T40] audit: type=1800 audit(1754586441.456:41325): pid=29607 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.4.14073" name="/" dev="sockfs" ino=289613 res=0 errno=0
[ 2946.637223][T25153] usb 12-1: new high-speed USB device number 52 using dummy_hcd
[ 2946.682151][T25153] usb 12-1: device descriptor read/8, error -71
[ 2946.794078][T25153] usb usb12-port1: unable to enumerate USB device
[ 2947.015008][T29607] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 2947.155240][ T3110] Bluetooth: hci1: command tx timeout
[ 2948.100947][T29623] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2948.336248][T20108] usb 12-1: new high-speed USB device number 53 using dummy_hcd
[ 2948.498770][T20108] usb 12-1: Using ep0 maxpacket: 8
[ 2948.522844][T20108] usb 12-1: config index 0 descriptor too short (expected 301, got 45)
[ 2948.550593][T20108] usb 12-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 2948.557585][T20108] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 2948.566323][T20108] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 2948.574026][T20108] usb 12-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 2948.583279][T20108] usb 12-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 2948.587447][T20108] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2948.846019][T20108] usb 12-1: usb_control_msg returned -32
[ 2948.848621][T20108] usbtmc 12-1:16.0: can't read capabilities
[ 2949.543532][T29644] usbtmc 12-1:16.0: usb_clear_halt returned -32
[ 2949.824265][T25153] usb 12-1: USB disconnect, device number 53
[ 2950.104956][T29650] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2951.476857][T29684] netlink: 'syz.7.14091': attribute type 10 has an invalid length.
[ 2951.479428][T29684] mac80211_hwsim hwsim64 wlan0: entered promiscuous mode
[ 2951.482395][T29684] mac80211_hwsim hwsim64 wlan0: entered allmulticast mode
[ 2951.486929][T29684] batman_adv: batadv0: Adding interface: wlan0
[ 2951.488942][T29684] batman_adv: batadv0: The MTU of interface wlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2951.497133][T29684] batman_adv: batadv0: Not using interface wlan0 (retrying later): interface not active
[ 2952.981323][   T40] audit: type=1326 audit(1754586448.143:41326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29698 comm="syz.4.14095" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf709e579 code=0x0
[ 2953.126536][T29702] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2955.456080][T29722] vcan0: MTU too low for tipc bearer
[ 2955.457945][T29722] tipc: Enabling of bearer <eth:vcan0> rejected, failed to enable media
[ 2956.487454][T29730] syz.9.14102 invoked oom-killer: gfp_mask=0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|__GFP_COMP), order=0, oom_score_adj=1000
[ 2956.492091][T29730] CPU: 1 UID: 0 PID: 29730 Comm: syz.9.14102 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 2956.492118][T29730] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 2956.492125][T29730] Call Trace:
[ 2956.492130][T29730]  <TASK>
[ 2956.492135][T29730]  dump_stack_lvl+0x16c/0x1f0
[ 2956.492150][T29730]  dump_header+0x101/0x930
[ 2956.492164][T29730]  oom_kill_process+0x270/0xa60
[ 2956.492175][T29730]  ? oom_cpuset_eligible.isra.0+0x199/0x2d0
[ 2956.492187][T29730]  out_of_memory+0x1405/0x1700
[ 2956.492202][T29730]  ? __pfx_out_of_memory+0x10/0x10
[ 2956.492217][T29730]  __alloc_frozen_pages_noprof+0x1d53/0x23f0
[ 2956.492237][T29730]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2956.492247][T29730]  ? __lock_acquire+0x622/0x1c90
[ 2956.492267][T29730]  ? __lock_acquire+0x622/0x1c90
[ 2956.492283][T29730]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2956.492298][T29730]  ? cpuset_nodemask_valid_mems_allowed+0x5f/0x80
[ 2956.492313][T29730]  ? policy_nodemask+0xea/0x4e0
[ 2956.492327][T29730]  alloc_pages_mpol+0x1fb/0x550
[ 2956.492340][T29730]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2956.492356][T29730]  folio_alloc_mpol_noprof+0x36/0x2f0
[ 2956.492371][T29730]  vma_alloc_folio_noprof+0xed/0x1e0
[ 2956.492385][T29730]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[ 2956.492398][T29730]  ? find_held_lock+0x2b/0x80
[ 2956.492409][T29730]  ? __handle_mm_fault+0x1092/0x5490
[ 2956.492427][T29730]  __handle_mm_fault+0x2f21/0x5490
[ 2956.492447][T29730]  ? __pfx___handle_mm_fault+0x10/0x10
[ 2956.492461][T29730]  ? __pfx_mt_find+0x10/0x10
[ 2956.492482][T29730]  ? find_vma+0xbf/0x140
[ 2956.492494][T29730]  ? __pfx_find_vma+0x10/0x10
[ 2956.492525][T29730]  handle_mm_fault+0x589/0xd10
[ 2956.492542][T29730]  ? __pkru_allows_pkey+0x51/0xb0
[ 2956.492558][T29730]  do_user_addr_fault+0x7a6/0x1370
[ 2956.492574][T29730]  ? rcu_is_watching+0x12/0xc0
[ 2956.492587][T29730]  exc_page_fault+0x5c/0xb0
[ 2956.492604][T29730]  asm_exc_page_fault+0x26/0x30
[ 2956.492615][T29730] RIP: 0010:_copy_to_iter+0x4e6/0x16f0
[ 2956.492628][T29730] Code: 45 e8 0e 62 e5 fc 48 8b 4c 24 18 48 8b 44 24 28 89 ee 4c 8d 34 01 4c 89 f7 e8 a6 c4 49 fd 0f 01 cb 48 89 e9 4c 89 ff 4c 89 f6 <f3> a4 0f 1f 00 0f 01 ca 48 89 e8 48 29 eb 48 29 c8 48 01 44 24 28
[ 2956.492638][T29730] RSP: 0018:ffffc9000600f498 EFLAGS: 00050246
[ 2956.492648][T29730] RAX: 0000000000000001 RBX: 0000000000001000 RCX: 0000000000000b80
[ 2956.492655][T29730] RDX: 0000000000000000 RSI: ffff888013d32480 RDI: 00000000809f1000
[ 2956.492661][T29730] RBP: 0000000000001000 R08: 0000000000000000 R09: ffffed10027a65ff
[ 2956.492668][T29730] R10: ffff888013d32fff R11: 0000000000000000 R12: 00000000009f0000
[ 2956.492674][T29730] R13: ffffc9000600fb90 R14: ffff888013d32000 R15: 00000000809f0b80
[ 2956.492690][T29730]  ? _copy_to_iter+0x4da/0x16f0
[ 2956.492705][T29730]  ? __pfx__copy_to_iter+0x10/0x10
[ 2956.492717][T29730]  ? __pfx___might_resched+0x10/0x10
[ 2956.492730][T29730]  ? rcu_is_watching+0x12/0xc0
[ 2956.492745][T29730]  simple_copy_to_iter+0x46/0x90
[ 2956.492761][T29730]  __skb_datagram_iter+0x5af/0x900
[ 2956.492775][T29730]  ? __pfx_simple_copy_to_iter+0x10/0x10
[ 2956.492794][T29730]  skb_copy_datagram_iter+0x40/0x50
[ 2956.492810][T29730]  unix_stream_read_actor+0x7b/0xc0
[ 2956.492825][T29730]  unix_stream_read_generic+0xd68/0x27c0
[ 2956.492850][T29730]  ? __pfx_unix_stream_read_generic+0x10/0x10
[ 2956.492869][T29730]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 2956.492883][T29730]  ? finish_task_switch.isra.0+0x21c/0xc10
[ 2956.492899][T29730]  unix_stream_recvmsg+0x190/0x1c0
[ 2956.492914][T29730]  ? __pfx_unix_stream_recvmsg+0x10/0x10
[ 2956.492929][T29730]  ? __pfx_aa_sk_perm+0x10/0x10
[ 2956.492944][T29730]  ? __pfx_unix_stream_read_actor+0x10/0x10
[ 2956.492963][T29730]  sock_recvmsg+0x1f9/0x250
[ 2956.492982][T29730]  ____sys_recvmsg+0x218/0x6b0
[ 2956.492998][T29730]  ? __pfx_____sys_recvmsg+0x10/0x10
[ 2956.493011][T29730]  ? import_iovec+0x86/0xb0
[ 2956.493028][T29730]  ? __lock_acquire+0x622/0x1c90
[ 2956.493044][T29730]  ___sys_recvmsg+0x114/0x1a0
[ 2956.493056][T29730]  ? __pfx____sys_recvmsg+0x10/0x10
[ 2956.493068][T29730]  ? find_held_lock+0x2b/0x80
[ 2956.493089][T29730]  do_recvmmsg+0x55d/0x750
[ 2956.493102][T29730]  ? __pfx_do_recvmmsg+0x10/0x10
[ 2956.493115][T29730]  ? lock_acquire+0x179/0x350
[ 2956.493135][T29730]  ? fd_install+0x244/0x750
[ 2956.493154][T29730]  __sys_recvmmsg+0x21c/0x280
[ 2956.493165][T29730]  ? __pfx___sys_recvmmsg+0x10/0x10
[ 2956.493181][T29730]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[ 2956.493194][T29730]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2956.493204][T29730]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 2956.493216][T29730]  __do_fast_syscall_32+0x7c/0x3a0
[ 2956.493228][T29730]  do_fast_syscall_32+0x32/0x80
[ 2956.493240][T29730]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2956.493253][T29730] RIP: 0023:0xf707e579
[ 2956.493261][T29730] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2956.493271][T29730] RSP: 002b:00000000f504d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2956.493280][T29730] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000800034c0
[ 2956.493287][T29730] RDX: 000000000000013c RSI: 0000000000000700 RDI: 0000000000000000
[ 2956.493293][T29730] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2956.493299][T29730] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 2956.493305][T29730] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2956.493319][T29730]  </TASK>
[ 2956.493378][T29730] Mem-Info:
[ 2956.719499][T29730] active_anon:1150 inactive_anon:1020 isolated_anon:0
[ 2956.719499][T29730]  active_file:11568 inactive_file:1575 isolated_file:0
[ 2956.719499][T29730]  unevictable:1768 dirty:586 writeback:0
[ 2956.719499][T29730]  slab_reclaimable:6372 slab_unreclaimable:75154
[ 2956.719499][T29730]  mapped:31874 shmem:1770 pagetables:1265
[ 2956.719499][T29730]  sec_pagetables:345 bounce:0
[ 2956.719499][T29730]  kernel_misc_reclaimable:0
[ 2956.719499][T29730]  free:51240 free_pcp:803 free_cma:0
[ 2956.733583][T29730] Node 0 active_anon:1168kB inactive_anon:92kB active_file:0kB inactive_file:4kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:2712kB dirty:0kB writeback:0kB shmem:4972kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:7560kB pagetables:1208kB sec_pagetables:1228kB all_unreclaimable? yes Balloon:0kB
[ 2956.745767][T29730] Node 0 DMA free:2088kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:116kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:36kB local_pcp:8kB free_cma:0kB
[ 2956.754502][T29730] lowmem_reserve[]: 0 289 289 289 289
[ 2956.756235][T29730] Node 0 DMA32 free:14788kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:0KB free_highatomic:0KB active_anon:292kB inactive_anon:1220kB active_file:0kB inactive_file:4kB unevictable:3536kB writepending:0kB present:1032196kB managed:296004kB mlocked:0kB bounce:0kB free_pcp:3212kB local_pcp:160kB free_cma:0kB
[ 2956.771032][T29730] lowmem_reserve[]: 0 0 0 0 0
[ 2956.772816][T29730] Node 0 DMA: 4*4kB (M) 8*8kB (UM) 6*16kB (UM) 5*32kB (UM) 3*64kB (UM) 2*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2064kB
[ 2956.787295][T29730] Node 0 DMA32: 220*4kB (ME) 190*8kB (ME) 120*16kB (UME) 163*32kB (UME) 43*64kB (UME) 14*128kB (UME) 3*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 14848kB
[ 2956.793692][T29730] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2956.802252][T29730] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2956.806078][T29730] 16310 total pagecache pages
[ 2956.807994][T29730] 1400 pages in swap cache
[ 2956.809784][T29730] Free swap  = 61144kB
[ 2956.811373][T29730] Total swap = 124996kB
[ 2956.815842][T29730] 524155 pages RAM
[ 2956.817376][T29730] 0 pages HighMem/MovableOnly
[ 2956.819169][T29730] 209243 pages reserved
[ 2956.820751][T29730] 0 pages cma reserved
[ 2956.822295][T29730] Unreclaimable slab info:
[ 2956.834773][T29730] Name                      Used          Total
[ 2956.837318][T29730] pid_3                     31KB         31KB
[ 2956.839705][T29730] pid_2                    114KB        165KB
[ 2956.842075][T29730] bio-360                    7KB          7KB
[ 2956.847975][T29730] bio-424                    8KB          8KB
[ 2956.850377][T29730] bio-440                    8KB          8KB
[ 2956.857884][T29730] bio-536                   15KB         15KB
[ 2956.860299][T29730] afs_inode_cache          123KB        123KB
[ 2956.866348][T29730] zspage-zswap1            124KB        173KB
[ 2956.868859][T29730] zs_handle-zswap1         125KB        224KB
[ 2956.872443][T29730] zswap_entry              350KB        549KB
[ 2956.874800][T29730] AF_VSOCK                 245KB        367KB
[ 2956.880562][T29730] sw_flow_stats             16KB         16KB
[ 2956.887133][T29730] sw_flow                   61KB         61KB
[ 2956.889510][T29730] batadv_tt_change_cache         16KB         16KB
[ 2956.894341][T29730] batadv_tl_cache           16KB         16KB
[ 2956.896754][T29730] ceph_osd_request         127KB        127KB
[ 2956.899097][T29730] ceph_msg                  38KB         38KB
[ 2956.905762][T29730] IEEE-802.15.4-MAC        126KB        126KB
[ 2956.908135][T29730] IEEE-802.15.4-RAW        126KB        126KB
[ 2956.911774][T29730] p9_req_t                 103KB        167KB
[ 2956.914187][T29730] INET_SMC                 122KB        122KB
[ 2956.916712][T29730] SMC6                     122KB        122KB
[ 2956.919287][T29730] SMC                      153KB        306KB
[ 2956.921724][T29730] TIPC                     123KB        123KB
[ 2956.924148][T29730] rds_tcp_connection         63KB         63KB
[ 2956.926742][T29730] RDS                      192KB        192KB
[ 2956.933472][T29730] rds_connection            30KB         30KB
[ 2956.935927][T29730] SCTPv6                   300KB        420KB
[ 2956.940099][T29730] SCTP                     183KB        183KB
[ 2956.942578][T29730] sctp_chunk                93KB        164KB
[ 2956.945024][T29730] sctp_bind_bucket          16KB         16KB
[ 2956.947484][T29730] PNPIPE                   123KB        123KB
[ 2956.953495][T29730] PHONET                   126KB        126KB
[ 2956.955939][T29730] L2TP/IPv6                159KB        159KB
[ 2956.958499][T29730] L2TP/IP                  121KB        121KB
[ 2956.961075][T29730] KCM                      127KB        127KB
[ 2956.963616][T29730] kcm_mux                   63KB         63KB
[ 2956.965963][T29730] RXRPC                    124KB        124KB
[ 2956.971778][T29730] rxrpc_call_jar           292KB        382KB
[ 2956.974362][T29730] can_receiver              90KB        110KB
[ 2956.977641][T29730] net_bridge_fdb_entry        106KB        133KB
[ 2956.980189][T29730] nf-frags                  23KB         23KB
[ 2956.982670][T29730] xfrm6_tunnel_spi          16KB         16KB
[ 2956.985130][T29730] MPTCPv6                  218KB        218KB
[ 2956.988702][T29730] ip6-frags                 23KB         23KB
[ 2956.991172][T29730] fib6_node                151KB        152KB
[ 2956.993656][T29730] ip6_dst_cache            221KB        320KB
[ 2956.996183][T29730] mfc6_cache                 8KB          8KB
[ 2957.000305][T29730] PINGv6                   124KB        124KB
[ 2957.002755][T29730] RAWv6                    263KB        341KB
[ 2957.006196][T29730] UDPLITEv6                191KB        191KB
[ 2957.012583][T29730] UDPv6                    227KB        350KB
[ 2957.018553][T29730] tw_sock_TCPv6             31KB         31KB
[ 2957.020921][T29730] request_sock_TCPv6         30KB         30KB
[ 2957.023312][T29730] TCPv6                    442KB        607KB
[ 2957.028978][T29730] ip_vs_conn                15KB         15KB
[ 2957.032984][T29730] nf_conntrack              94KB        173KB
[ 2957.057847][T29730] wg_peer                  267KB        267KB
[ 2957.060305][T29730] allowedips_node           35KB         35KB
[ 2957.062637][T29730] ubi_wl_entry_slab          7KB          7KB
[ 2957.064745][T29730] t10_alua_lu_gp_cache          7KB          7KB
[ 2957.066791][T29730] scsi_sense_cache          44KB         44KB
[ 2957.068576][T29730] virtio_scsi_cmd           16KB         16KB
[ 2957.070442][T29730] bio-136                   96KB        124KB
[ 2957.073058][T29730] io_kiocb                 164KB        234KB
[ 2957.075817][T29730] bio-264                   47KB         47KB
[ 2957.077788][T29730] mqueue_inode_cache        121KB        121KB
[ 2957.079702][T29730] f2fs_bio_post_read_ctx         23KB         23KB
[ 2957.082387][T29730] jfs_mp                     7KB          7KB
[ 2957.084438][T29730] orangefs_op_cache         17KB         17KB
[ 2957.086446][T29730] fuse_request              47KB         79KB
[ 2957.088433][T29730] cifs_small_rq             16KB         16KB
[ 2957.094265][T29730] cifs_request              67KB         67KB
[ 2957.096261][T29730] cifs_mpx_ids               4KB          4KB
[ 2957.098566][T29730] cifs_io_subrequest         39KB         39KB
[ 2957.100964][T29730] cifs_io_request           95KB         95KB
[ 2957.103797][T29730] nfs_commit_data           15KB         15KB
[ 2957.107065][T29730] nfs_write_data            63KB         63KB
[ 2957.111761][T29730] ecryptfs_sb_cache         15KB         15KB
[ 2957.114008][T29730] jbd2_inode                15KB         15KB
[ 2957.118367][T29730] ext4_system_zone           3KB          3KB
[ 2957.135336][T29730] ext4_io_end_vec           15KB         15KB
[ 2957.137278][T29730] kioctx                   127KB        127KB
[ 2957.147644][T29730] aio_kiocb                 31KB         31KB
[ 2957.159847][T29730] userfaultfd_ctx_cache         79KB         79KB
[ 2957.163990][T29730] fanotify_path_event          3KB          3KB
[ 2957.165940][T29730] fanotify_fid_event          3KB          3KB
[ 2957.198572][T29730] fanotify_mark             15KB         15KB
[ 2957.200517][T29730] dnotify_mark              15KB         15KB
[ 2957.202295][T29730] dnotify_struct            15KB         15KB
[ 2957.205207][T29730] fasync_cache              15KB         15KB
[ 2957.207334][T29730] pid_namespace             30KB         30KB
[ 2957.209436][T29730] kvm_vcpu                 309KB        495KB
[ 2957.217388][T29730] kvm_mmu_page_header        116KB        135KB
[ 2957.219470][T29730] pte_list_desc             94KB        114KB
[ 2957.222982][T29730] x86_emulator             240KB        240KB
[ 2957.224985][T29730] rpc_buffers              159KB        159KB
[ 2957.226956][T29730] rpc_tasks                 31KB         31KB
[ 2957.229210][T29730] UNIX-STREAM              247KB        247KB
[ 2957.236752][T29730] UNIX                     290KB        649KB
[ 2957.238693][T29730] ip4-frags                 31KB         31KB
[ 2957.240720][T29730] mfc_cache                 16KB         16KB
[ 2957.242598][T29730] UDP-Lite                 217KB        217KB
[ 2957.245912][T29730] MPTCP                    146KB        264KB
[ 2957.247917][T29730] request_sock_subflow_v6          7KB          7KB
[ 2957.250475][T29730] request_sock_subflow_v4         30KB         30KB
[ 2957.252785][T29730] tcp_bind2_bucket          16KB         16KB
[ 2957.254676][T29730] tcp_bind_bucket           24KB         24KB
[ 2957.256588][T29730] inet_peer                 16KB         16KB
[ 2957.258576][T29730] xfrm_dst                 110KB        149KB
[ 2957.260598][T29730] xfrm_state               350KB        637KB
[ 2957.268530][T29730] ip_fib_trie               57KB         68KB
[ 2957.270582][T29730] ip_fib_alias             111KB        114KB
[ 2957.272649][T29730] rtable                    82KB        172KB
[ 2957.274566][T29730] PING                     121KB        121KB
[ 2957.276571][T29730] RAW                      243KB        243KB
[ 2957.278616][T29730] UDP                      217KB        217KB
[ 2957.280848][T29730] tw_sock_TCP               31KB         31KB
[ 2957.282898][T29730] request_sock_TCP          30KB         30KB
[ 2957.284734][T29730] TCP                      525KB        637KB
[ 2957.286554][T29730] hugetlbfs_inode_cache        126KB        126KB
[ 2957.288528][T29730] fscache_cookie_jar         30KB         30KB
[ 2957.292439][T29730] netfs_subrequest         156KB        195KB
[ 2957.294391][T29730] netfs_request            269KB        398KB
[ 2957.296228][T29730] bio-280                   15KB         15KB
[ 2957.298092][T29730] backing_aio               12KB         12KB
[ 2957.299834][T29730] ep_head                   16KB         16KB
[ 2957.306821][T29730] eventpoll_pwq             23KB         23KB
[ 2957.308768][T29730] eventpoll_epi             82KB         82KB
[ 2957.312744][T29730] inotify_inode_mark         31KB         31KB
[ 2957.314638][T29730] sgpool-128                29KB         29KB
[ 2957.316522][T29730] sgpool-64                 31KB         31KB
[ 2957.318508][T29730] sgpool-32                189KB        189KB
[ 2957.321024][T29730] sgpool-16                 62KB         62KB
[ 2957.322986][T29730] sgpool-8                 101KB        117KB
[ 2957.328434][T29730] bio_crypt_ctx              7KB          7KB
[ 2957.332843][T29730] bio_integrity_data          4KB          4KB
[ 2957.334735][T29730] request_queue            259KB        286KB
[ 2957.336625][T29730] blkdev_ioc                31KB         31KB
[ 2957.340677][T29730] bio-200                  117KB        156KB
[ 2957.342549][T29730] biovec-max               467KB        714KB
[ 2957.344476][T29730] biovec-64                252KB        409KB
[ 2957.346336][T29730] biovec-16                 78KB         78KB
[ 2957.349530][T29730] khugepaged_mm_slot         15KB         15KB
[ 2957.351556][T29730] ksm_mm_slot               16KB         16KB
[ 2957.353472][T29730] ksm_stable_node            7KB          7KB
[ 2957.355413][T29730] ksm_rmap_item             55KB         74KB
[ 2957.361393][T29730] uid_cache                 31KB         31KB
[ 2957.363257][T29730] iommu_iova_magazine       1058KB       1071KB
[ 2957.365276][T29730] iommu_iova               308KB        308KB
[ 2957.370278][T29730] dmaengine-unmap-256         30KB         30KB
[ 2957.372249][T29730] dmaengine-unmap-128         30KB         30KB
[ 2957.375090][T29730] dmaengine-unmap-16          4KB          4KB
[ 2957.382162][T29730] dmaengine-unmap-2          4KB          4KB
[ 2957.384011][T29730] QIPCRTR                  126KB        126KB
[ 2957.387846][T29730] audit_buffer              35KB         75KB
[ 2957.389695][T29730] skbuff_ext_cache          72KB         92KB
[ 2957.391577][T29730] skbuff_small_head       1629KB       2006KB
[ 2957.393519][T29730] skbuff_fclone_cache        304KB        375KB
[ 2957.395623][T29730] skbuff_head_cache       1702KB       1789KB
[ 2957.397645][T29730] configfs_dir_cache         16KB         16KB
[ 2957.400714][T29730] file_lease_cache          95KB        126KB
[ 2957.402599][T29730] file_lock_cache          110KB        150KB
[ 2957.407708][T29730] file_lock_ctx             19KB         19KB
[ 2957.409582][T29730] fsnotify_mark_connector         15KB         15KB
[ 2957.411595][T29730] posix_timers_cache         56KB         56KB
[ 2957.413499][T29730] taskstats                 61KB         61KB
[ 2957.417471][T29730] mem_cgroup_per_node        167KB        185KB
[ 2957.419389][T29730] mem_cgroup               117KB        117KB
[ 2957.421218][T29730] proc_dir_entry           837KB        843KB
[ 2957.423047][T29730] pde_opener                15KB         15KB
[ 2957.427320][T29730] seq_file                  93KB        156KB
[ 2957.429172][T29730] sigqueue                  63KB         82KB
[ 2957.431020][T29730] shmem_inode_cache       8124KB       8438KB
[ 2957.432866][T29730] kernfs_iattrs_cache         27KB         27KB
[ 2957.436935][T29730] kernfs_node_cache      31492KB      31715KB
[ 2957.439997][T29730] mnt_cache                139KB        196KB
[ 2957.444924][T29730] bfilp                     31KB         31KB
[ 2957.447003][T29730] filp                     300KB        448KB
[ 2957.450334][T29730] names_cache             2431KB       2737KB
[ 2957.453805][T29730] net_namespace            268KB        268KB
[ 2957.456849][T29730] ima_iint_cache            55KB         55KB
[ 2957.459942][T29730] lsm_inode_cache         1432KB       1567KB
[ 2957.463734][T29730] lsm_file_cache           114KB        172KB
[ 2957.466753][T29730] key_jar                   55KB         55KB
[ 2957.470095][T29730] uts_namespace             31KB         31KB
[ 2957.472964][T29730] nsproxy                   47KB         47KB
[ 2957.475981][T29730] vm_area_struct           562KB        742KB
[ 2957.478097][T29730] fs_cache                  65KB         84KB
[ 2957.482655][T29730] files_cache              257KB        286KB
[ 2957.486672][T29730] signal_cache             869KB       1822KB
[ 2957.488737][T29730] sighand_cache           1133KB       2104KB
[ 2957.491926][T29730] task_struct             4350KB       4540KB
[ 2957.495271][T29730] cred                     158KB        312KB
[ 2957.498254][T29730] anon_vma_chain           146KB        189KB
[ 2957.502365][T29730] anon_vma                 194KB        398KB
[ 2957.505619][T29730] pid                      187KB        433KB
[ 2957.508905][T29730] Acpi-Operand             243KB        360KB
[ 2957.512058][T29730] Acpi-ParseExt             90KB         90KB
[ 2957.515073][T29730] Acpi-Parse                67KB        106KB
[ 2957.518352][T29730] Acpi-State                47KB         86KB
[ 2957.522299][T29730] Acpi-Namespace            56KB         56KB
[ 2957.525321][T29730] shared_policy_node         16KB         16KB
[ 2957.528621][T29730] numa_policy               15KB         15KB
[ 2957.531135][T29730] perf_event                62KB         62KB
[ 2957.533165][T29730] trace_event_file         544KB        544KB
[ 2957.536486][T29730] ftrace_event_field       1008KB       1008KB
[ 2957.540905][T29730] pool_workqueue          2087KB       2112KB
[ 2957.543006][T29730] maple_node               555KB       1216KB
[ 2957.546068][T29730] task_group                61KB         61KB
[ 2957.548033][T29730] mm_struct                400KB        510KB
[ 2957.551101][T29730] vmap_area                633KB       1085KB
[ 2957.553345][T29730] debug_objects_cache       4348KB       4614KB
[ 2957.556414][T29730] page->ptl                107KB        141KB
[ 2957.562780][T29730] kmalloc-cg-8k           2416KB       2624KB
[ 2957.565810][T29730] kmalloc-cg-4k          19224KB      19456KB
[ 2957.568883][T29730] kmalloc-cg-2k          13448KB      13664KB
[ 2957.571910][T29730] kmalloc-cg-1k           2982KB       3072KB
[ 2957.573964][T29730] kmalloc-cg-512          1844KB       1872KB
[ 2957.579679][T29730] kmalloc-cg-256           633KB        640KB
[ 2957.598434][T29730] kmalloc-cg-128           333KB        340KB
[ 2957.600313][T29730] kmalloc-cg-64            127KB        144KB
[ 2957.602154][T29730] kmalloc-cg-32             74KB        144KB
[ 2957.603976][T29730] kmalloc-cg-16             16KB         20KB
[ 2957.605938][T29730] kmalloc-cg-8              37KB         56KB
[ 2957.607852][T29730] kmalloc-cg-192            99KB        104KB
[ 2957.610857][T29730] kmalloc-cg-96             72KB         72KB
[ 2957.622306][T29730] kmalloc-8k              6448KB       6528KB
[ 2957.624405][T29730] kmalloc-4k             32216KB      32512KB
[ 2957.626265][T29730] kmalloc-2k             12676KB      13984KB
[ 2957.628259][T29730] kmalloc-1k             11862KB      11936KB
[ 2957.630177][T29730] kmalloc-512            10244KB      10496KB
[ 2957.632099][T29730] kmalloc-256             4446KB       4984KB
[ 2957.634626][T29730] kmalloc-128             1186KB       1300KB
[ 2957.638449][T29730] kmalloc-64             10131KB      13476KB
[ 2957.640413][T29730] kmalloc-32              2443KB       3140KB
[ 2957.642330][T29730] kmalloc-16               696KB        724KB
[ 2957.645195][T29730] kmalloc-8                462KB        692KB
[ 2957.647924][T29730] kmalloc-192             2036KB       2196KB
[ 2957.651036][T29730] kmalloc-96              2041KB       2100KB
[ 2957.653047][T29730] kmem_cache_node          220KB        228KB
[ 2957.655476][T29730] kmem_cache               195KB        195KB
[ 2957.657760][T29730] oom-kill:constraint=CONSTRAINT_MEMORY_POLICY,nodemask=0,cpuset=syz9,mems_allowed=0-1,global_oom,task_memcg=/syz9,task=syz.9.14102,pid=29730,uid=0
[ 2957.664108][T29730] Out of memory (oom_kill_allocating_task): Killed process 29730 (syz.9.14102) total-vm:110364kB, anon-rss:404kB, file-rss:31352kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:1000
[ 2959.240795][T29766] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 2959.385425][   T40] audit: type=1800 audit(1754586454.578:41327): pid=29766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.7.14109" name="/" dev="sockfs" ino=292461 res=0 errno=0
[ 2960.507914][T29798] nfs4: Bad value for 'source'
[ 2963.207060][T29817] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 2963.209338][T29817] IPv6: NLM_F_CREATE should be set when creating new route
[ 2963.232987][T29823] netlink: 3 bytes leftover after parsing attributes in process `syz.0.14125'.
[ 2963.239165][T29823] batadv1: entered promiscuous mode
[ 2963.240858][T29823] batadv1: entered allmulticast mode
[ 2963.510255][T29826] warn_alloc: 1 callbacks suppressed
[ 2963.510265][T29826] syz.7.14124: vmalloc error: size 2147483264, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz7,mems_allowed=0-1
[ 2963.517021][T29826] CPU: 3 UID: 0 PID: 29826 Comm: syz.7.14124 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 2963.517037][T29826] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 2963.517044][T29826] Call Trace:
[ 2963.517060][T29826]  <TASK>
[ 2963.517066][T29826]  dump_stack_lvl+0x16c/0x1f0
[ 2963.517081][T29826]  warn_alloc+0x248/0x3a0
[ 2963.517095][T29826]  ? __pfx_warn_alloc+0x10/0x10
[ 2963.517110][T29826]  ? find_held_lock+0x2b/0x80
[ 2963.517122][T29826]  ? __might_fault+0xe3/0x190
[ 2963.517133][T29826]  ? __might_fault+0xe3/0x190
[ 2963.517142][T29826]  ? __might_fault+0x13b/0x190
[ 2963.517155][T29826]  ? compat_do_replace+0x1af/0x7c0
[ 2963.517172][T29826]  __vmalloc_node_range_noprof+0xff5/0x14b0
[ 2963.517188][T29826]  ? _copy_from_user+0x59/0xd0
[ 2963.517200][T29826]  ? copy_from_sockptr_offset.constprop.0+0xe5/0x170
[ 2963.517215][T29826]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[ 2963.517231][T29826]  ? compat_do_replace+0x1af/0x7c0
[ 2963.517247][T29826]  ? __asan_memcpy+0x3c/0x60
[ 2963.517263][T29826]  ? compat_copy_ebt_replace_from_user+0x294/0x390
[ 2963.517278][T29826]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 2963.517294][T29826]  ? __pfx_compat_copy_ebt_replace_from_user+0x10/0x10
[ 2963.517314][T29826]  ? compat_do_replace+0x1af/0x7c0
[ 2963.517328][T29826]  __vmalloc_node_noprof+0xad/0xf0
[ 2963.517343][T29826]  ? compat_do_replace+0x1af/0x7c0
[ 2963.517359][T29826]  compat_do_replace+0x1af/0x7c0
[ 2963.517372][T29826]  ? __lock_acquire+0xb8a/0x1c90
[ 2963.517387][T29826]  ? __pfx_compat_do_replace+0x10/0x10
[ 2963.517402][T29826]  ? aa_get_newest_label+0x375/0x680
[ 2963.517417][T29826]  ? __pfx_aa_get_newest_label+0x10/0x10
[ 2963.517436][T29826]  ? bpf_lsm_capable+0x9/0x10
[ 2963.517450][T29826]  ? security_capable+0x7e/0x260
[ 2963.517465][T29826]  do_ebt_set_ctl+0x2f5/0x3c0
[ 2963.517481][T29826]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[ 2963.517513][T29826]  ? __pfx_do_ip_setsockopt+0x10/0x10
[ 2963.517534][T29826]  ? nf_sockopt_find.constprop.0+0x222/0x290
[ 2963.517551][T29826]  nf_setsockopt+0x8a/0xf0
[ 2963.517567][T29826]  ip_setsockopt+0xcb/0xf0
[ 2963.517584][T29826]  raw_setsockopt+0xb7/0x2a0
[ 2963.517601][T29826]  ? __pfx_raw_setsockopt+0x10/0x10
[ 2963.517617][T29826]  ? sock_common_setsockopt+0x2e/0xf0
[ 2963.517631][T29826]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 2963.517645][T29826]  do_sock_setsockopt+0xf0/0x1d0
[ 2963.517664][T29826]  __sys_setsockopt+0x120/0x1a0
[ 2963.517678][T29826]  __ia32_sys_setsockopt+0xbc/0x160
[ 2963.517687][T29826]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2963.517698][T29826]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 2963.517710][T29826]  __do_fast_syscall_32+0x7c/0x3a0
[ 2963.517724][T29826]  do_fast_syscall_32+0x32/0x80
[ 2963.517736][T29826]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2963.517749][T29826] RIP: 0023:0xf7fa3579
[ 2963.517758][T29826] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2963.517768][T29826] RSP: 002b:00000000f50a555c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[ 2963.517778][T29826] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000000000000
[ 2963.517784][T29826] RDX: 0000000000000080 RSI: 0000000080000000 RDI: 00000000000000e0
[ 2963.517791][T29826] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2963.517797][T29826] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 2963.517803][T29826] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2963.517817][T29826]  </TASK>
[ 2963.517867][T29826] Mem-Info:
[ 2963.627115][T29826] active_anon:10850 inactive_anon:1258 isolated_anon:0
[ 2963.627115][T29826]  active_file:12642 inactive_file:1577 isolated_file:0
[ 2963.627115][T29826]  unevictable:1768 dirty:365 writeback:0
[ 2963.627115][T29826]  slab_reclaimable:6356 slab_unreclaimable:74754
[ 2963.627115][T29826]  mapped:31148 shmem:10969 pagetables:1283
[ 2963.627115][T29826]  sec_pagetables:345 bounce:0
[ 2963.627115][T29826]  kernel_misc_reclaimable:0
[ 2963.627115][T29826]  free:39780 free_pcp:1631 free_cma:0
[ 2963.646828][T29826] Node 0 active_anon:0kB inactive_anon:3624kB active_file:0kB inactive_file:4kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:2712kB dirty:0kB writeback:0kB shmem:4972kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:7456kB pagetables:1336kB sec_pagetables:1228kB all_unreclaimable? no Balloon:0kB
[ 2963.673440][T29826] Node 1 active_anon:40236kB inactive_anon:3988kB active_file:50568kB inactive_file:6304kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:119680kB dirty:1460kB writeback:0kB shmem:38904kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:6156kB pagetables:3720kB sec_pagetables:152kB all_unreclaimable? no Balloon:0kB
[ 2963.689669][T29826] Node 0 DMA free:2080kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:24kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:0kB free_cma:0kB
[ 2963.699733][T29826] lowmem_reserve[]: 0 289 289 289 289
[ 2963.729800][T29826] Node 0 DMA32 free:16168kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:2048KB free_highatomic:32KB active_anon:508kB inactive_anon:800kB active_file:0kB inactive_file:4kB unevictable:3536kB writepending:0kB present:1032196kB managed:296004kB mlocked:0kB bounce:0kB free_pcp:2208kB local_pcp:1916kB free_cma:0kB
[ 2963.740253][T29829] sg_read: process 1677 (syz.4.14126) changed security contexts after opening file descriptor, this is not allowed.
[ 2963.743344][T29826] lowmem_reserve[]: 0 0 0 0 0
[ 2963.747813][T29826] Node 1 DMA32 free:142684kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:40136kB inactive_anon:3988kB active_file:50568kB inactive_file:6304kB unevictable:3536kB writepending:1460kB present:1048432kB managed:948284kB mlocked:0kB bounce:0kB free_pcp:6604kB local_pcp:888kB free_cma:0kB
[ 2963.748634][T29829] netlink: 8 bytes leftover after parsing attributes in process `syz.4.14126'.
[ 2963.757730][T29826] lowmem_reserve[]: 0 0 0 0 0
[ 2963.762505][T29826] Node 0 DMA: 7*4kB (UM) 17*8kB (UM) 9*16kB (UM) 3*32kB (U) 3*64kB (UM) 2*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2132kB
[ 2963.767423][T29826] Node 0 DMA32: 58*4kB (UME) 104*8kB (UME) 156*16kB (UME) 177*32kB (UMEH) 60*64kB (UME) 17*128kB (UME) 3*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16008kB
[ 2963.772791][T29826] Node 1 DMA32: 20*4kB (UME) 21*8kB (E) 125*16kB (UE) 209*32kB (UE) 221*64kB (UME) 202*128kB (UME) 161*256kB (UM) 46*512kB (UM) 28*1024kB (M) 0*2048kB 0*4096kB = 142376kB
[ 2963.778792][T29826] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2963.781845][T29826] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2963.784740][T29826] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2963.788590][T29826] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 2963.791651][T29826] 26638 total pagecache pages
[ 2963.793350][T29826] 1428 pages in swap cache
[ 2963.794914][T29826] Free swap  = 71328kB
[ 2963.835577][T29826] Total swap = 124996kB
[ 2963.837836][T29826] 524155 pages RAM
[ 2963.839370][T29826] 0 pages HighMem/MovableOnly
[ 2963.841237][T29826] 209243 pages reserved
[ 2963.842907][T29826] 0 pages cma reserved
[ 2963.876862][T29832] sp0: Synchronizing with TNC
[ 2964.025063][T23626] hid-generic 0000:0004:0009.0089: unknown main item tag 0x0
[ 2964.027399][T23626] hid-generic 0000:0004:0009.0089: unknown main item tag 0x0
[ 2964.029739][T23626] hid-generic 0000:0004:0009.0089: unknown main item tag 0x0
[ 2964.038017][T23626] hid-generic 0000:0004:0009.0089: hidraw1: <UNKNOWN> HID v0.04 Device [syz0] on syz1
[ 2964.734865][T29856] netlink: 'syz.9.14133': attribute type 1 has an invalid length.
[ 2964.821201][T29860] random: crng reseeded on system resumption
[ 2964.878594][T29860] xt_cgroup: invalid path, errno=-2
[ 2965.781493][T29873] FAULT_INJECTION: forcing a failure.
[ 2965.781493][T29873] name failslab, interval 1, probability 0, space 0, times 0
[ 2965.785359][T29873] CPU: 3 UID: 0 PID: 29873 Comm: syz.0.14140 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 2965.785375][T29873] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 2965.785381][T29873] Call Trace:
[ 2965.785386][T29873]  <TASK>
[ 2965.785391][T29873]  dump_stack_lvl+0x16c/0x1f0
[ 2965.785406][T29873]  should_fail_ex+0x512/0x640
[ 2965.785417][T29873]  ? __kmalloc_noprof+0xbf/0x510
[ 2965.785430][T29873]  ? lsm_blob_alloc+0x68/0x90
[ 2965.785441][T29873]  should_failslab+0xc2/0x120
[ 2965.785454][T29873]  __kmalloc_noprof+0xd2/0x510
[ 2965.785463][T29873]  ? __pfx_perf_event_init_task+0x10/0x10
[ 2965.785478][T29873]  ? audit_alloc+0xa2/0x7b0
[ 2965.785490][T29873]  lsm_blob_alloc+0x68/0x90
[ 2965.785502][T29873]  security_task_alloc+0x2d/0x260
[ 2965.785512][T29873]  copy_process+0x2205/0x7650
[ 2965.785532][T29873]  ? __pfx_copy_process+0x10/0x10
[ 2965.785544][T29873]  ? __do_fast_syscall_32+0x7c/0x3a0
[ 2965.785555][T29873]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2965.785573][T29873]  ? __pfx_io_wq_worker+0x10/0x10
[ 2965.785588][T29873]  create_io_thread+0xbe/0x100
[ 2965.785601][T29873]  ? __pfx_create_io_thread+0x10/0x10
[ 2965.785618][T29873]  ? __pfx_io_wq_worker+0x10/0x10
[ 2965.785632][T29873]  ? lockdep_init_map_type+0x5c/0x280
[ 2965.785648][T29873]  ? lockdep_init_map_type+0x5c/0x280
[ 2965.785663][T29873]  ? __init_swait_queue_head+0xca/0x150
[ 2965.785678][T29873]  ? create_io_worker+0x1f/0x5b0
[ 2965.785692][T29873]  create_io_worker+0x1d0/0x5b0
[ 2965.785710][T29873]  io_wq_enqueue+0x4cc/0x980
[ 2965.785725][T29873]  ? __pfx_io_wq_enqueue+0x10/0x10
[ 2965.785737][T29873]  ? __pfx_io_wq_work_match_item+0x10/0x10
[ 2965.785750][T29873]  ? io_prep_async_work+0x371/0x770
[ 2965.785767][T29873]  io_queue_iowq+0x246/0x530
[ 2965.785782][T29873]  io_queue_async+0x1fc/0x300
[ 2965.785796][T29873]  io_submit_sqes+0x1715/0x2580
[ 2965.785819][T29873]  __do_sys_io_uring_enter+0xd6a/0x1630
[ 2965.785836][T29873]  ? __fget_files+0x20e/0x3c0
[ 2965.785853][T29873]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[ 2965.785870][T29873]  ? fput+0x70/0xf0
[ 2965.785882][T29873]  ? ksys_write+0x1ac/0x250
[ 2965.785891][T29873]  ? __pfx_ksys_write+0x10/0x10
[ 2965.785902][T29873]  ? rcu_is_watching+0x12/0xc0
[ 2965.785915][T29873]  __do_fast_syscall_32+0x7c/0x3a0
[ 2965.785928][T29873]  do_fast_syscall_32+0x32/0x80
[ 2965.785939][T29873]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2965.785951][T29873] RIP: 0023:0xf7f45579
[ 2965.785960][T29873] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2965.785971][T29873] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[ 2965.785981][T29873] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000000047ba
[ 2965.785988][T29873] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2965.785994][T29873] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2965.786000][T29873] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 2965.786006][T29873] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2965.786021][T29873]  </TASK>
[ 2966.059312][T29876] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 2966.821255][T29891] fuse: Bad value for 'rootmode'
[ 2967.264388][T29904] netlink: 68 bytes leftover after parsing attributes in process `syz.0.14147'.
[ 2968.319517][   T40] audit: type=1800 audit(1754586464.236:41328): pid=29927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.14153" name="bus" dev="9p" ino=35913990 res=0 errno=0
[ 2968.548505][T29930] tipc: Cannot configure node identity twice
[ 2969.373564][T29948] team0: Port device syz_tun added
[ 2969.501883][T29960] input: syz0 as /devices/virtual/input/input228
[ 2970.734945][T29970] delete_channel: no stack
[ 2970.983010][ T6050] libceph: connect (1)[c::]:6789 error -101
[ 2970.985019][ T6050] libceph: mon0 (1)[c::]:6789 connect error
[ 2971.197879][T30006] random: crng reseeded on system resumption
[ 2971.206595][T30006] xt_cgroup: invalid path, errno=-2
[ 2971.225082][   T40] audit: type=1800 audit(1754586467.291:41329): pid=30008 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.14176" name="file3" dev="9p" ino=35913978 res=0 errno=0
[ 2971.229196][ T6050] libceph: connect (1)[c::]:6789 error -101
[ 2971.236392][ T6050] libceph: mon0 (1)[c::]:6789 connect error
[ 2971.722441][T23626] libceph: connect (1)[c::]:6789 error -101
[ 2971.724482][T23626] libceph: mon0 (1)[c::]:6789 connect error
[ 2971.731934][T29995] ceph: No mds server is up or the cluster is laggy
[ 2973.069031][   T40] audit: type=1800 audit(1754586469.160:41330): pid=30036 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.14183" name="bus" dev="overlay" ino=249 res=0 errno=0
[ 2973.944416][T30043] netlink: 12 bytes leftover after parsing attributes in process `syz.7.14185'.
[ 2974.130412][T30047] sd 0:0:0:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x24 ascq=0x0
[ 2974.745633][T30067] FAULT_INJECTION: forcing a failure.
[ 2974.745633][T30067] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2974.749832][T30067] CPU: 0 UID: 0 PID: 30067 Comm: syz.9.14192 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 2974.749858][T30067] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 2974.749865][T30067] Call Trace:
[ 2974.749870][T30067]  <TASK>
[ 2974.749875][T30067]  dump_stack_lvl+0x16c/0x1f0
[ 2974.749890][T30067]  should_fail_ex+0x512/0x640
[ 2974.749903][T30067]  _copy_from_user+0x2e/0xd0
[ 2974.749915][T30067]  get_compat_msghdr+0xa7/0x170
[ 2974.749927][T30067]  ? __pfx_get_compat_msghdr+0x10/0x10
[ 2974.749940][T30067]  ? __lock_acquire+0x622/0x1c90
[ 2974.749957][T30067]  ___sys_recvmsg+0x191/0x1a0
[ 2974.749969][T30067]  ? __pfx____sys_recvmsg+0x10/0x10
[ 2974.749981][T30067]  ? find_held_lock+0x2b/0x80
[ 2974.749997][T30067]  ? __pfx___might_resched+0x10/0x10
[ 2974.750012][T30067]  do_recvmmsg+0x55d/0x750
[ 2974.750025][T30067]  ? __pfx_do_recvmmsg+0x10/0x10
[ 2974.750046][T30067]  ? __fget_files+0x20e/0x3c0
[ 2974.750064][T30067]  __sys_recvmmsg+0x21c/0x280
[ 2974.750075][T30067]  ? __pfx___sys_recvmmsg+0x10/0x10
[ 2974.750087][T30067]  ? __pfx_ksys_write+0x10/0x10
[ 2974.750100][T30067]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[ 2974.750112][T30067]  ? lockdep_hardirqs_on+0x7c/0x110
[ 2974.750122][T30067]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[ 2974.750133][T30067]  __do_fast_syscall_32+0x7c/0x3a0
[ 2974.750146][T30067]  do_fast_syscall_32+0x32/0x80
[ 2974.750157][T30067]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2974.750170][T30067] RIP: 0023:0xf707e579
[ 2974.750179][T30067] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2974.750190][T30067] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 2974.750200][T30067] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080003700
[ 2974.750206][T30067] RDX: 0000000000000600 RSI: 0000000000000000 RDI: 0000000000000000
[ 2974.750212][T30067] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2974.750219][T30067] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 2974.750225][T30067] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2974.750239][T30067]  </TASK>
[ 2974.947156][T30073] netlink: 4 bytes leftover after parsing attributes in process `syz.7.14193'.
[ 2974.952455][T30073] ubi: mtd0 is already attached to ubi31
[ 2975.614587][T30086] netlink: 20 bytes leftover after parsing attributes in process `syz.7.14195'.
[ 2975.617581][T30086] openvswitch: netlink: Flow key attr not present in new flow.
[ 2976.170679][T30094] syz.7.14200 (30094) used obsolete PPPIOCDETACH ioctl
[ 2976.235707][T30100] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 2976.335668][T30104] input: syz1 as /devices/virtual/input/input229
[ 2976.410569][T30107] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(9)
[ 2976.412632][T30107] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 2976.414989][T30107] vhci_hcd vhci_hcd.0: Device attached
[ 2976.436599][T30108] vhci_hcd: connection closed
[ 2976.440301][T10457] vhci_hcd: stop threads
[ 2976.443348][T10457] vhci_hcd: release socket
[ 2976.445008][T10457] vhci_hcd: disconnect device
[ 2977.464452][T30127] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2978.467502][T11747] hid-generic 0000:0000:0000.008A: unknown main item tag 0x0
[ 2978.470473][T11747] hid-generic 0000:0000:0000.008A: unknown main item tag 0x0
[ 2978.474107][T11747] hid-generic 0000:0000:0000.008A: unknown main item tag 0x0
[ 2978.477624][T11747] hid-generic 0000:0000:0000.008A: unknown main item tag 0x0
[ 2978.481255][T11747] hid-generic 0000:0000:0000.008A: unknown main item tag 0x0
[ 2978.484955][T11747] hid-generic 0000:0000:0000.008A: unknown main item tag 0x0
[ 2978.488210][T11747] hid-generic 0000:0000:0000.008A: unknown main item tag 0x0
[ 2978.491417][T11747] hid-generic 0000:0000:0000.008A: unknown main item tag 0x0
[ 2978.494475][T11747] hid-generic 0000:0000:0000.008A: unknown main item tag 0x0
[ 2978.507355][T11747] hid-generic 0000:0000:0000.008A: collection stack underflow
[ 2978.509890][T11747] hid-generic 0000:0000:0000.008A: item 0 0 0 12 parsing failed
[ 2978.518815][T11747] hid-generic 0000:0000:0000.008A: probe with driver hid-generic failed with error -22
[ 2979.209719][T30150] netlink: 20 bytes leftover after parsing attributes in process `syz.9.14221'.
[ 2979.212814][T30150] openvswitch: netlink: Flow key attr not present in new flow.
[ 2979.837818][T30168] random: crng reseeded on system resumption
[ 2979.840486][T30170] xt_cgroup: invalid path, errno=-2
[ 2979.991135][T30175] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2982.477448][T30215] trusted_key: encrypted_key: insufficient parameters specified
[ 2983.352283][T13237] libceph: connect (1)[c::]:6789 error -101
[ 2983.362635][T13237] libceph: mon0 (1)[c::]:6789 connect error
[ 2983.610261][T13237] libceph: connect (1)[c::]:6789 error -101
[ 2983.615173][T13237] libceph: mon0 (1)[c::]:6789 connect error
[ 2983.826996][T30238] ceph: No mds server is up or the cluster is laggy
[ 2985.924881][   T40] audit: type=1326 audit(1754586482.734:41331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30270 comm="syz.7.14247" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000
[ 2985.953070][   T40] audit: type=1326 audit(1754586482.734:41332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30270 comm="syz.7.14247" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[ 2985.960985][   T40] audit: type=1326 audit(1754586482.734:41333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30270 comm="syz.7.14247" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[ 2985.969514][   T40] audit: type=1326 audit(1754586482.734:41334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30270 comm="syz.7.14247" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000
[ 2985.976266][   T40] audit: type=1326 audit(1754586482.734:41335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30270 comm="syz.7.14247" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[ 2985.987548][   T40] audit: type=1326 audit(1754586482.734:41336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30270 comm="syz.7.14247" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[ 2986.007204][   T40] audit: type=1326 audit(1754586482.734:41337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30270 comm="syz.7.14247" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000
[ 2986.023620][   T40] audit: type=1326 audit(1754586482.734:41338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30270 comm="syz.7.14247" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000
[ 2986.030819][   T40] audit: type=1326 audit(1754586482.734:41339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30270 comm="syz.7.14247" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa3579 code=0x7ffc0000
[ 2986.037694][   T40] audit: type=1326 audit(1754586482.734:41340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30270 comm="syz.7.14247" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa3598 code=0x7ffc0000
[ 2986.173747][T30279] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2988.250926][T30303] x_tables: duplicate underflow at hook 2
[ 2988.807932][T30317] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2990.188271][T30334] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2990.392862][T30340] trusted_key: encrypted_key: insufficient parameters specified
[ 2990.806173][T30343] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2993.616873][T30384] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2993.812004][T30388] FAULT_INJECTION: forcing a failure.
[ 2993.812004][T30388] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2993.817927][T30388] CPU: 3 UID: 0 PID: 30388 Comm: syz.9.14276 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 2993.817943][T30388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 2993.817949][T30388] Call Trace:
[ 2993.817953][T30388]  <TASK>
[ 2993.817958][T30388]  dump_stack_lvl+0x16c/0x1f0
[ 2993.818041][T30388]  should_fail_ex+0x512/0x640
[ 2993.818073][T30388]  should_fail_alloc_page+0xe7/0x130
[ 2993.818086][T30388]  prepare_alloc_pages+0x3c2/0x610
[ 2993.818103][T30388]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[ 2993.818115][T30388]  ? __pfx_stack_trace_save+0x10/0x10
[ 2993.818129][T30388]  ? stack_depot_save_flags+0x28/0xa40
[ 2993.818140][T30388]  ? __lock_acquire+0xb8a/0x1c90
[ 2993.818156][T30388]  ? kasan_save_stack+0x42/0x60
[ 2993.818166][T30388]  ? kasan_save_stack+0x33/0x60
[ 2993.818175][T30388]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[ 2993.818186][T30388]  ? kmem_cache_free+0x2d1/0x4d0
[ 2993.818195][T30388]  ? __get_vm_area_node+0x1ca/0x330
[ 2993.818208][T30388]  ? __vmalloc_node_noprof+0xad/0xf0
[ 2993.818222][T30388]  ? bpf_prog_alloc_no_stats+0x54/0x5c0
[ 2993.818235][T30388]  ? bpf_prog_alloc+0x3b/0x230
[ 2993.818246][T30388]  ? bpf_prog_load+0x1a04/0x2490
[ 2993.818261][T30388]  ? __sys_bpf+0x4d1a/0x4ea0
[ 2993.818268][T30388]  ? __ia32_sys_bpf+0x76/0xe0
[ 2993.818277][T30388]  ? __do_fast_syscall_32+0x7c/0x3a0
[ 2993.818293][T30388]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2993.818310][T30388]  ? policy_nodemask+0xea/0x4e0
[ 2993.818323][T30388]  alloc_pages_mpol+0x1fb/0x550
[ 2993.818335][T30388]  ? __pfx_alloc_pages_mpol+0x10/0x10
[ 2993.818351][T30388]  alloc_pages_noprof+0x131/0x390
[ 2993.818363][T30388]  get_free_pages_noprof+0x10/0xb0
[ 2993.818380][T30388]  kasan_populate_vmalloc+0x89/0x1f0
[ 2993.818399][T30388]  alloc_vmap_area+0x959/0x29c0
[ 2993.818417][T30388]  ? __pfx_alloc_vmap_area+0x10/0x10
[ 2993.818434][T30388]  __get_vm_area_node+0x1ca/0x330
[ 2993.818451][T30388]  __vmalloc_node_range_noprof+0x271/0x14b0
[ 2993.818466][T30388]  ? bpf_prog_alloc_no_stats+0x54/0x5c0
[ 2993.818483][T30388]  ? bpf_prog_alloc_no_stats+0x54/0x5c0
[ 2993.818499][T30388]  ? __kernel_text_address+0xd/0x40
[ 2993.818516][T30388]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 2993.818531][T30388]  ? aa_get_newest_label+0x375/0x680
[ 2993.818545][T30388]  ? __pfx_aa_get_newest_label+0x10/0x10
[ 2993.818560][T30388]  ? bpf_prog_alloc_no_stats+0x54/0x5c0
[ 2993.818572][T30388]  __vmalloc_node_noprof+0xad/0xf0
[ 2993.818589][T30388]  ? bpf_prog_alloc_no_stats+0x54/0x5c0
[ 2993.818603][T30388]  bpf_prog_alloc_no_stats+0x54/0x5c0
[ 2993.818616][T30388]  ? security_capable+0x7e/0x260
[ 2993.818630][T30388]  bpf_prog_alloc+0x3b/0x230
[ 2993.818642][T30388]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2993.818658][T30388]  bpf_prog_load+0x1a04/0x2490
[ 2993.818676][T30388]  ? __pfx_bpf_prog_load+0x10/0x10
[ 2993.818704][T30388]  __sys_bpf+0x4d1a/0x4ea0
[ 2993.818715][T30388]  ? __pfx___sys_bpf+0x10/0x10
[ 2993.818724][T30388]  ? ksys_write+0x190/0x250
[ 2993.818736][T30388]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 2993.818755][T30388]  ? fput+0x70/0xf0
[ 2993.818767][T30388]  ? ksys_write+0x1ac/0x250
[ 2993.818776][T30388]  ? __pfx_ksys_write+0x10/0x10
[ 2993.818788][T30388]  __ia32_sys_bpf+0x76/0xe0
[ 2993.818798][T30388]  __do_fast_syscall_32+0x7c/0x3a0
[ 2993.818810][T30388]  do_fast_syscall_32+0x32/0x80
[ 2993.818821][T30388]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2993.818834][T30388] RIP: 0023:0xf707e579
[ 2993.818843][T30388] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2993.818853][T30388] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[ 2993.818864][T30388] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800003c0
[ 2993.818871][T30388] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[ 2993.818877][T30388] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2993.818883][T30388] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 2993.818889][T30388] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2993.818902][T30388]  </TASK>
[ 2993.818919][T30388] syz.9.14276: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=syz9,mems_allowed=0-1
[ 2993.951970][T30388] CPU: 3 UID: 0 PID: 30388 Comm: syz.9.14276 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 2993.951985][T30388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 2993.951992][T30388] Call Trace:
[ 2993.951996][T30388]  <TASK>
[ 2993.952001][T30388]  dump_stack_lvl+0x16c/0x1f0
[ 2993.952015][T30388]  warn_alloc+0x248/0x3a0
[ 2993.952027][T30388]  ? __pfx_warn_alloc+0x10/0x10
[ 2993.952038][T30388]  ? kfree+0x2b4/0x4d0
[ 2993.952056][T30388]  ? __get_vm_area_node+0x208/0x330
[ 2993.952073][T30388]  __vmalloc_node_range_noprof+0xb2d/0x14b0
[ 2993.952093][T30388]  ? bpf_prog_alloc_no_stats+0x54/0x5c0
[ 2993.952109][T30388]  ? __kernel_text_address+0xd/0x40
[ 2993.952126][T30388]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 2993.952141][T30388]  ? aa_get_newest_label+0x375/0x680
[ 2993.952155][T30388]  ? __pfx_aa_get_newest_label+0x10/0x10
[ 2993.952195][T30388]  ? bpf_prog_alloc_no_stats+0x54/0x5c0
[ 2993.952208][T30388]  __vmalloc_node_noprof+0xad/0xf0
[ 2993.952223][T30388]  ? bpf_prog_alloc_no_stats+0x54/0x5c0
[ 2993.952238][T30388]  bpf_prog_alloc_no_stats+0x54/0x5c0
[ 2993.952250][T30388]  ? security_capable+0x7e/0x260
[ 2993.952264][T30388]  bpf_prog_alloc+0x3b/0x230
[ 2993.952276][T30388]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2993.952292][T30388]  bpf_prog_load+0x1a04/0x2490
[ 2993.952311][T30388]  ? __pfx_bpf_prog_load+0x10/0x10
[ 2993.952339][T30388]  __sys_bpf+0x4d1a/0x4ea0
[ 2993.952350][T30388]  ? __pfx___sys_bpf+0x10/0x10
[ 2993.952360][T30388]  ? ksys_write+0x190/0x250
[ 2993.952373][T30388]  ? __mutex_unlock_slowpath+0x161/0x6a0
[ 2993.952397][T30388]  ? fput+0x70/0xf0
[ 2993.952408][T30388]  ? ksys_write+0x1ac/0x250
[ 2993.952418][T30388]  ? __pfx_ksys_write+0x10/0x10
[ 2993.952430][T30388]  __ia32_sys_bpf+0x76/0xe0
[ 2993.952440][T30388]  __do_fast_syscall_32+0x7c/0x3a0
[ 2993.952453][T30388]  do_fast_syscall_32+0x32/0x80
[ 2993.952464][T30388]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2993.952478][T30388] RIP: 0023:0xf707e579
[ 2993.952487][T30388] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2993.952497][T30388] RSP: 002b:00000000f506e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[ 2993.952506][T30388] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800003c0
[ 2993.952513][T30388] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[ 2993.952519][T30388] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2993.952525][T30388] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 2993.952531][T30388] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2993.952545][T30388]  </TASK>
[ 2993.952549][T30388] Mem-Info:
[ 2994.036948][T30388] active_anon:3268 inactive_anon:1978 isolated_anon:0
[ 2994.036948][T30388]  active_file:840 inactive_file:11430 isolated_file:0
[ 2994.036948][T30388]  unevictable:1768 dirty:425 writeback:0
[ 2994.036948][T30388]  slab_reclaimable:6378 slab_unreclaimable:74968
[ 2994.036948][T30388]  mapped:31698 shmem:4597 pagetables:1252
[ 2994.036948][T30388]  sec_pagetables:345 bounce:0
[ 2994.036948][T30388]  kernel_misc_reclaimable:0
[ 2994.036948][T30388]  free:50029 free_pcp:1563 free_cma:0
[ 2994.055684][T30388] Node 0 active_anon:628kB inactive_anon:1028kB active_file:0kB inactive_file:12kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:3276kB dirty:0kB writeback:0kB shmem:5536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:7440kB pagetables:1348kB sec_pagetables:1228kB all_unreclaimable? yes Balloon:0kB
[ 2994.065807][T30388] Node 1 active_anon:12472kB inactive_anon:6884kB active_file:3360kB inactive_file:45712kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:123560kB dirty:1772kB writeback:0kB shmem:12844kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:6168kB pagetables:3704kB sec_pagetables:152kB all_unreclaimable? no Balloon:0kB
[ 2994.076521][T30388] Node 0 DMA free:1904kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:40kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:252kB local_pcp:4kB free_cma:0kB
[ 2994.088259][T30388] lowmem_reserve[]: 0 289 289 289 289
[ 2994.107276][T30388] Node 0 DMA32 free:16280kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:2048KB free_highatomic:112KB active_anon:556kB inactive_anon:1024kB active_file:0kB inactive_file:12kB unevictable:3536kB writepending:0kB present:1032196kB managed:296004kB mlocked:0kB bounce:0kB free_pcp:1220kB local_pcp:200kB free_cma:0kB
[ 2994.117693][T30388] lowmem_reserve[]: 0 0 0 0 0
[ 2994.119209][T30388] Node 1 DMA32 free:182276kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:12472kB inactive_anon:6884kB active_file:3360kB inactive_file:45712kB unevictable:3536kB writepending:1772kB present:1048432kB managed:948284kB mlocked:0kB bounce:0kB free_pcp:5296kB local_pcp:492kB free_cma:0kB
[ 2994.128846][T30388] lowmem_reserve[]: 0 0 0 0 0
[ 2994.130273][T30388] Node 0 DMA: 10*4kB (UM) 17*8kB (UM) 6*16kB (UM) 3*32kB (U) 2*64kB (UM) 1*128kB (M) 1*256kB (M) 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 1904kB
[ 2994.134805][T30388] Node 0 DMA32: 173*4kB (UMEH) 221*8kB (UMEH) 110*16kB (UME) 182*32kB (UMEH) 57*64kB (UME) 14*128kB (UME) 3*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16252kB
[ 2994.139904][T30388] Node 1 DMA32: 178*4kB (UE) 1283*8kB (UME) 845*16kB (UME) 532*32kB (UM) 280*64kB (UME) 190*128kB (UM) 174*256kB (UME) 45*512kB (UM) 30*1024kB (UM) 0*2048kB 0*4096kB = 182064kB
[ 2994.145508][T30388] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2994.148416][T30388] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 2994.151239][T30388] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2994.154896][T30388] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[ 2994.158121][T30388] 18535 total pagecache pages
[ 2994.159568][T30388] 1673 pages in swap cache
[ 2994.160924][T30388] Free swap  = 71284kB
[ 2994.162526][T30388] Total swap = 124996kB
[ 2994.164127][T30388] 524155 pages RAM
[ 2994.165397][T30388] 0 pages HighMem/MovableOnly
[ 2994.167061][T30388] 209243 pages reserved
[ 2994.168570][T30388] 0 pages cma reserved
[ 2994.281182][T30394] netlink: 20 bytes leftover after parsing attributes in process `syz.0.14272'.
[ 2994.283959][T30394] openvswitch: netlink: Flow key attr not present in new flow.
[ 2994.582160][T30400] netlink: 'syz.7.14281': attribute type 10 has an invalid length.
[ 2994.926463][T11748] usb 12-1: new full-speed USB device number 54 using dummy_hcd
[ 2995.050041][T11748] usb 12-1: device descriptor read/64, error -71
[ 2995.278917][T11748] usb 12-1: new full-speed USB device number 55 using dummy_hcd
[ 2995.469745][T11748] usb 12-1: device descriptor read/64, error -71
[ 2995.619964][T11748] usb usb12-port1: attempt power cycle
[ 2996.050063][T11748] usb 12-1: new full-speed USB device number 56 using dummy_hcd
[ 2996.116876][T28681] Bluetooth: hci1: link tx timeout
[ 2996.120691][T28681] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.130272][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.132228][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.136298][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.138013][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.140724][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.142454][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.144860][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.146580][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.149021][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.150800][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.153283][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.157175][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.157301][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.157334][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.157467][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.157496][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.157773][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.157801][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.157948][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.157977][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.158111][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.158139][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.158224][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.158291][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.158365][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.158429][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.158465][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.158525][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.158622][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.158637][T11748] usb 12-1: device descriptor read/8, error -71
[ 2996.158651][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.159008][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.159228][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.159321][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.159385][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.159520][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.159548][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.159622][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.159662][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.159949][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.159978][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.160109][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.160152][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.160331][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.160378][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.160486][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.160515][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.160620][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.160649][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.160728][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.160735][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.160856][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.160884][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.161023][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.161051][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.161217][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.161245][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.161347][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.161375][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.161523][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.260848][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.266101][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.268034][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.271594][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.273300][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.276034][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.277751][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.281922][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.283755][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.286579][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.294084][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.300186][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.301886][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.304667][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.306372][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.309551][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.311308][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.313631][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.315701][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.318377][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.320212][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.322634][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.324320][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.327808][ T3110] Bluetooth: hci1: link tx timeout
[ 2996.329670][ T3110] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[ 2996.402980][T11748] usb 12-1: new full-speed USB device number 57 using dummy_hcd
[ 2996.423216][T11748] usb 12-1: device descriptor read/8, error -71
[ 2996.526850][T11748] usb usb12-port1: unable to enumerate USB device
[ 2996.603094][ T6876] usb 9-1: new high-speed USB device number 122 using dummy_hcd
[ 2996.745638][ T6876] usb 9-1: Using ep0 maxpacket: 32
[ 2996.748520][ T6876] usb 9-1: config 0 has no interfaces?
[ 2996.750326][ T6876] usb 9-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 2996.753362][ T6876] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2996.757278][ T6876] usb 9-1: config 0 descriptor??
[ 2996.952721][T30440] overlayfs: failed to resolve './file1': -2
[ 2997.043568][T22418] usb 9-1: USB disconnect, device number 122
[ 2997.351022][ T3110] Bluetooth: hci3: SCO packet too small
[ 2997.353734][T30455] netdevsim netdevsim9 netdevsim0: entered promiscuous mode
[ 2997.357210][T30455] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 2997.968922][T30471] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 2998.070445][ T3110] Bluetooth: hci1: command 0x0406 tx timeout
[ 2999.614899][T30487] FAULT_INJECTION: forcing a failure.
[ 2999.614899][T30487] name failslab, interval 1, probability 0, space 0, times 0
[ 2999.619809][T30487] CPU: 1 UID: 0 PID: 30487 Comm: syz.4.14305 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 2999.619840][T30487] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 2999.619850][T30487] Call Trace:
[ 2999.619857][T30487]  <TASK>
[ 2999.619863][T30487]  dump_stack_lvl+0x16c/0x1f0
[ 2999.619956][T30487]  should_fail_ex+0x512/0x640
[ 2999.619997][T30487]  should_failslab+0xc2/0x120
[ 2999.620017][T30487]  __kmalloc_cache_noprof+0x6a/0x3e0
[ 2999.620035][T30487]  ? vhost_iotlb_add_range_ctx+0xf0/0xa80
[ 2999.620058][T30487]  vhost_iotlb_add_range_ctx+0xf0/0xa80
[ 2999.620079][T30487]  ? __kasan_kmalloc+0xaa/0xb0
[ 2999.620098][T30487]  vhost_dev_ioctl+0x370/0xdc0
[ 2999.620137][T30487]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 2999.620164][T30487]  ? __pfx_vhost_dev_ioctl+0x10/0x10
[ 2999.620183][T30487]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 2999.620207][T30487]  vhost_net_ioctl+0x7c3/0x1710
[ 2999.620228][T30487]  ? __pfx_vhost_net_ioctl+0x10/0x10
[ 2999.620248][T30487]  ? hook_file_ioctl_common+0x145/0x410
[ 2999.620275][T30487]  ? __fget_files+0x20e/0x3c0
[ 2999.620295][T30487]  ? __fput_deferred+0x480/0x480
[ 2999.620313][T30487]  ? __pfx_vhost_net_ioctl+0x10/0x10
[ 2999.620336][T30487]  compat_ptr_ioctl+0x6e/0xa0
[ 2999.620355][T30487]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[ 2999.620375][T30487]  __ia32_compat_sys_ioctl+0x23f/0x370
[ 2999.620397][T30487]  __do_fast_syscall_32+0x7c/0x3a0
[ 2999.620414][T30487]  do_fast_syscall_32+0x32/0x80
[ 2999.620431][T30487]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 2999.620451][T30487] RIP: 0023:0xf709e579
[ 2999.620464][T30487] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2999.620479][T30487] RSP: 002b:00000000f504c55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[ 2999.620495][T30487] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 000000004008af03
[ 2999.620502][T30487] RDX: 0000000080000400 RSI: 0000000000000000 RDI: 0000000000000000
[ 2999.620509][T30487] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2999.620518][T30487] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[ 2999.620528][T30487] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2999.620550][T30487]  </TASK>
[ 2999.735546][T30490] netlink: 'syz.0.14306': attribute type 1 has an invalid length.
[ 2999.738340][T30490] netlink: 4 bytes leftover after parsing attributes in process `syz.0.14306'.
[ 3000.431938][T28681] Bluetooth: hci4: unexpected subevent 0x04 length: 244 > 11
[ 3000.651335][T20108] usb 9-1: new full-speed USB device number 123 using dummy_hcd
[ 3002.934025][T30566] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 3004.550550][T30592] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 3005.385578][T30603] vhci_hcd vhci_hcd.0: pdev(9) rhport(0) sockfd(13)
[ 3005.390147][T30603] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 3005.393070][T30604] vhci_hcd: connection closed
[ 3005.396835][T30603] vhci_hcd vhci_hcd.0: Device attached
[ 3005.402883][T10457] vhci_hcd: stop threads
[ 3005.404372][T10457] vhci_hcd: release socket
[ 3005.412630][T10457] vhci_hcd: disconnect device
[ 3006.011000][T30624] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 3006.343601][T30635] netlink: 4 bytes leftover after parsing attributes in process `syz.0.14345'.
[ 3006.366191][T30637] wg1 speed is unknown, defaulting to 1000
[ 3006.368482][T30637] wg1 speed is unknown, defaulting to 1000
[ 3006.371736][T30637] wg1 speed is unknown, defaulting to 1000
[ 3006.394309][T30637] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[ 3006.440248][T30637] wg1 speed is unknown, defaulting to 1000
[ 3006.444627][T30637] wg1 speed is unknown, defaulting to 1000
[ 3006.449641][T30637] wg1 speed is unknown, defaulting to 1000
[ 3006.454581][T30637] wg1 speed is unknown, defaulting to 1000
[ 3006.459704][T30637] wg1 speed is unknown, defaulting to 1000
[ 3006.464710][T30637] wg1 speed is unknown, defaulting to 1000
[ 3006.467312][T30637] wg1 speed is unknown, defaulting to 1000
[ 3006.520135][T30635] netlink: 12 bytes leftover after parsing attributes in process `syz.0.14345'.
[ 3007.193892][T30655] netlink: 8 bytes leftover after parsing attributes in process `syz.7.14351'.
[ 3007.250000][T30657] netlink: 802 bytes leftover after parsing attributes in process `syz.7.14352'.
[ 3007.254734][T30657] digital: digital_start_poll: Unknown protocol
[ 3007.499933][T27685] usb 12-1: new high-speed USB device number 58 using dummy_hcd
[ 3007.506677][T28681] Bluetooth: hci1: unexpected event 0x09 length: 6 > 3
[ 3007.642898][T27685] usb 12-1: Using ep0 maxpacket: 32
[ 3007.648460][T27685] usb 12-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 9
[ 3007.657508][T27685] usb 12-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[ 3007.660371][T27685] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3007.663048][T27685] usb 12-1: Product: syz
[ 3007.664412][T27685] usb 12-1: Manufacturer: syz
[ 3007.665916][T27685] usb 12-1: SerialNumber: syz
[ 3007.671705][T27685] usb 12-1: config 0 descriptor??
[ 3007.674121][T30657] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[ 3007.680468][T27685] input: syz syz as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:0.0/input/input230
[ 3007.979965][T30666] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 3008.379111][T30679] ceph: No mds server is up or the cluster is laggy
[ 3008.384171][ T6876] libceph: connect (1)[c::]:6789 error -101
[ 3008.391444][ T6876] libceph: mon0 (1)[c::]:6789 connect error
[ 3008.421940][T23626] usb 12-1: USB disconnect, device number 58
[ 3008.421954][    C2] usbtouchscreen 12-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[ 3008.880433][T30691] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 3009.827688][T30705] netlink: 8 bytes leftover after parsing attributes in process `syz.7.14367'.
[ 3010.126674][T30716] netlink: 4 bytes leftover after parsing attributes in process `syz.7.14371'.
[ 3010.129716][T30716] bridge_slave_1: left allmulticast mode
[ 3010.131474][T30716] bridge_slave_1: left promiscuous mode
[ 3010.133359][T30716] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3010.137138][T30716] bridge_slave_0: left allmulticast mode
[ 3010.138979][T30716] bridge_slave_0: left promiscuous mode
[ 3010.140838][T30716] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3010.193842][T30716] bridge0 (unregistering): left allmulticast mode
[ 3011.932922][T30736] ceph: No mds server is up or the cluster is laggy
[ 3012.267570][T30761] Bluetooth: hci5: Frame reassembly failed (-84)
[ 3012.289458][T10483] Bluetooth: hci5: Frame reassembly failed (-84)
[ 3012.294148][T10483] Bluetooth: hci5: Frame reassembly failed (-84)
[ 3013.645965][T30781] netlink: 'syz.9.14387': attribute type 1 has an invalid length.
[ 3013.842635][T30784] No such timeout policy "syz0"
[ 3014.225606][T28681] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 3014.321780][T30796] netlink: 4 bytes leftover after parsing attributes in process `syz.4.14393'.
[ 3014.358970][T30798] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2147484288 (4294968576 ns) > initial count (34 ns). Using initial count to start timer.
[ 3015.206550][T30810] netlink: 4 bytes leftover after parsing attributes in process `syz.9.14396'.
[ 3015.225777][T30810] netlink: 12 bytes leftover after parsing attributes in process `syz.9.14396'.
[ 3016.151332][   T40] kauditd_printk_skb: 195 callbacks suppressed
[ 3016.151344][   T40] audit: type=1804 audit(1754586514.448:41536): pid=30827 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.14400" name="/newroot/548/bus" dev="tmpfs" ino=2997 res=1 errno=0
[ 3016.561144][T30834] netlink: 36 bytes leftover after parsing attributes in process `syz.9.14404'.
[ 3016.651328][T30838] ==================================================================
[ 3016.653912][T30838] BUG: KASAN: vmalloc-out-of-bounds in tpg_fill_plane_buffer+0x21d2/0x43c0
[ 3016.656627][T30838] Write of size 255 at addr ffffc9002e01af8a by task vivid-000-vid-c/30838
[ 3016.660436][T30838] 
[ 3016.661633][T30838] CPU: 1 UID: 0 PID: 30838 Comm: vivid-000-vid-c Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 3016.661647][T30838] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 3016.661654][T30838] Call Trace:
[ 3016.661658][T30838]  <TASK>
[ 3016.661663][T30838]  dump_stack_lvl+0x116/0x1f0
[ 3016.661676][T30838]  print_report+0xcd/0x610
[ 3016.661688][T30838]  ? __virt_addr_valid+0x81/0x610
[ 3016.661701][T30838]  ? tpg_fill_plane_buffer+0x21d2/0x43c0
[ 3016.661713][T30838]  kasan_report+0xe0/0x110
[ 3016.661724][T30838]  ? tpg_fill_plane_buffer+0x21d2/0x43c0
[ 3016.661737][T30838]  kasan_check_range+0x100/0x1b0
[ 3016.661751][T30838]  __asan_memcpy+0x3c/0x60
[ 3016.661766][T30838]  tpg_fill_plane_buffer+0x21d2/0x43c0
[ 3016.661784][T30838]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 3016.661796][T30838]  ? __pfx_tpg_fill_plane_buffer+0x10/0x10
[ 3016.661810][T30838]  vivid_fillbuff+0x8d2/0x4250
[ 3016.661823][T30838]  ? __perf_event_task_sched_in+0x27a/0xa10
[ 3016.661836][T30838]  ? lock_acquire+0x179/0x350
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 3016.661850][T30838]  ? find_held_lock+0x2b/0x80
[ 3016.661863][T30838]  ? __pfx_vivid_fillbuff+0x10/0x10
[ 3016.661878][T30838]  ? v4l2_ctrl_request_setup+0x45e/0xa60
[ 3016.661893][T30838]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3016.661903][T30838]  ? vivid_thread_vid_cap_tick+0x814/0x15d0
[ 3016.661915][T30838]  vivid_thread_vid_cap_tick+0x814/0x15d0
[ 3016.661929][T30838]  vivid_thread_vid_cap+0x454/0xda0
[ 3016.661942][T30838]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[ 3016.661955][T30838]  ? do_raw_spin_lock+0x12c/0x2b0
[ 3016.661970][T30838]  ? find_held_lock+0x2b/0x80
[ 3016.661980][T30838]  ? rcu_is_watching+0x12/0xc0
[ 3016.661992][T30838]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 3016.662007][T30838]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3016.662016][T30838]  ? __kthread_parkme+0x19e/0x250
[ 3016.662029][T30838]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[ 3016.662041][T30838]  kthread+0x3c2/0x780
[ 3016.662055][T30838]  ? __pfx_kthread+0x10/0x10
[ 3016.662069][T30838]  ? rcu_is_watching+0x12/0xc0
[ 3016.662079][T30838]  ? __pfx_kthread+0x10/0x10
[ 3016.662093][T30838]  ret_from_fork+0x5d7/0x6f0
[ 3016.662107][T30838]  ? __pfx_kthread+0x10/0x10
[ 3016.662120][T30838]  ret_from_fork_asm+0x1a/0x30
[ 3016.662135][T30838]  </TASK>
[ 3016.662139][T30838] 
[ 3016.730189][T30838] The buggy address ffffc9002e01af8a belongs to a vmalloc virtual mapping
[ 3016.732814][T30838] The buggy address belongs to the physical page:
[ 3016.734820][T30838] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50b85
[ 3016.737983][T30838] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 3016.740242][T30838] raw: 04fff00000000000 0000000000000000 dead000000000122 0000000000000000
[ 3016.742918][T30838] raw: ffffffffffffffff 0000000000000000 00000001ffffffff 0000000000000000
[ 3016.745567][T30838] page dumped because: kasan: bad access detected
[ 3016.747589][T30838] page_owner tracks the page as allocated
[ 3016.749369][T30838] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x102dc2(GFP_HIGHUSER|__GFP_ZERO|__GFP_NOWARN), pid 30834, tgid 30833 (syz.9.14404), ts 3016573309676, free_ts 3013691973545
[ 3016.755093][T30838]  post_alloc_hook+0x1c0/0x230
[ 3016.756632][T30838]  get_page_from_freelist+0x1321/0x3890
[ 3016.758398][T30838]  __alloc_frozen_pages_noprof+0x261/0x23f0
[ 3016.760237][T30838]  alloc_pages_mpol+0x1fb/0x550
[ 3016.761752][T30838]  alloc_pages_noprof+0x131/0x390
[ 3016.763319][T30838]  __vmalloc_node_range_noprof+0x72f/0x14b0
[ 3016.765254][T30838]  vmalloc_user_noprof+0x9e/0xe0
[ 3016.766864][T30838]  vb2_vmalloc_alloc+0x135/0x3f0
[ 3016.768428][T30838]  __vb2_queue_alloc+0x8c6/0x1280
[ 3016.770026][T30838]  vb2_core_reqbufs+0xa90/0xfe0
[ 3016.771599][T30838]  __vb2_init_fileio+0x3f1/0x1100
[ 3016.773178][T30838]  vb2_core_poll+0x5ec/0x700
[ 3016.774642][T30838]  vb2_poll+0x33/0x150
[ 3016.775927][T30838]  vb2_fop_poll+0x10f/0x2c0
[ 3016.777444][T30838]  v4l2_poll+0x163/0x320
[ 3016.778794][T30838]  do_sys_poll+0x55c/0xdf0
[ 3016.780206][T30838] page last free pid 30779 tgid 30776 stack trace:
[ 3016.782241][T30838]  __free_frozen_pages+0x7fe/0x1180
[ 3016.783899][T30838]  __put_partials+0x16d/0x1c0
[ 3016.785387][T30838]  qlist_free_all+0x4d/0x120
[ 3016.786860][T30838]  kasan_quarantine_reduce+0x195/0x1e0
[ 3016.788587][T30838]  __kasan_slab_alloc+0x69/0x90
[ 3016.790124][T30838]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[ 3016.791816][T30838]  getname_flags.part.0+0x4c/0x550
[ 3016.793424][T30838]  getname_flags+0x93/0xf0
[ 3016.794828][T30838]  do_mq_open+0x1ac/0x8c0
[ 3016.796201][T30838]  __ia32_compat_sys_mq_open+0x154/0x280
[ 3016.797955][T30838]  do_int80_emulation+0x104/0x460
[ 3016.799630][T30838]  asm_int80_emulation+0x1a/0x20
[ 3016.801195][T30838] 
[ 3016.801958][T30838] Memory state around the buggy address:
[ 3016.803740][T30838]  ffffc9002e01af00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 3016.806251][T30838]  ffffc9002e01af80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 3016.808715][T30838] >ffffc9002e01b000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 3016.811164][T30838]                    ^
[ 3016.812421][T30838]  ffffc9002e01b080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 3016.815064][T30838]  ffffc9002e01b100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 3016.817590][T30838] ==================================================================
[ 3016.820151][    C1] vkms_vblank_simulate: vblank timer overrun
[ 3016.823371][T30838] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 3016.825685][T30838] CPU: 0 UID: 0 PID: 30838 Comm: vivid-000-vid-c Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(full) 
[ 3016.829251][T30838] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 3016.833098][T30838] Call Trace:
[ 3016.834129][T30838]  <TASK>
[ 3016.835047][T30838]  dump_stack_lvl+0x3d/0x1f0
[ 3016.836553][T30838]  panic+0x71c/0x800
[ 3016.837782][T30838]  ? __pfx_panic+0x10/0x10
[ 3016.839145][T30838]  ? irqentry_exit+0x3b/0x90
[ 3016.840589][T30838]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3016.842235][T30838]  ? preempt_schedule_thunk+0x16/0x30
[ 3016.844175][T30838]  ? tpg_fill_plane_buffer+0x21d2/0x43c0
[ 3016.845893][T30838]  ? preempt_schedule_common+0x44/0xc0
[ 3016.847700][T30838]  ? check_panic_on_warn+0x1f/0xb0
[ 3016.849300][T30838]  ? tpg_fill_plane_buffer+0x21d2/0x43c0
[ 3016.851017][T30838]  check_panic_on_warn+0xab/0xb0
[ 3016.852801][T30838]  end_report+0x107/0x170
[ 3016.854109][T30838]  kasan_report+0xee/0x110
[ 3016.855821][T30838]  ? tpg_fill_plane_buffer+0x21d2/0x43c0
[ 3016.858104][T30838]  kasan_check_range+0x100/0x1b0
[ 3016.860143][T30838]  __asan_memcpy+0x3c/0x60
[ 3016.861986][T30838]  tpg_fill_plane_buffer+0x21d2/0x43c0
[ 3016.864204][T30838]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 3016.866134][T30838]  ? __pfx_tpg_fill_plane_buffer+0x10/0x10
[ 3016.867933][T30838]  vivid_fillbuff+0x8d2/0x4250
[ 3016.869419][T30838]  ? __perf_event_task_sched_in+0x27a/0xa10
[ 3016.871231][T30838]  ? lock_acquire+0x179/0x350
[ 3016.872681][T30838]  ? find_held_lock+0x2b/0x80
[ 3016.874094][T30838]  ? __pfx_vivid_fillbuff+0x10/0x10
[ 3016.875981][T30838]  ? v4l2_ctrl_request_setup+0x45e/0xa60
[ 3016.878235][T30838]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3016.880362][T30838]  ? vivid_thread_vid_cap_tick+0x814/0x15d0
[ 3016.882744][T30838]  vivid_thread_vid_cap_tick+0x814/0x15d0
[ 3016.884889][T30838]  vivid_thread_vid_cap+0x454/0xda0
[ 3016.886497][T30838]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[ 3016.888243][T30838]  ? do_raw_spin_lock+0x12c/0x2b0
[ 3016.889785][T30838]  ? find_held_lock+0x2b/0x80
[ 3016.891204][T30838]  ? rcu_is_watching+0x12/0xc0
[ 3016.892698][T30838]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 3016.894468][T30838]  ? lockdep_hardirqs_on+0x7c/0x110
[ 3016.896560][T30838]  ? __kthread_parkme+0x19e/0x250
[ 3016.898621][T30838]  ? __pfx_vivid_thread_vid_cap+0x10/0x10
[ 3016.900930][T30838]  kthread+0x3c2/0x780
[ 3016.902662][T30838]  ? __pfx_kthread+0x10/0x10
[ 3016.904562][T30838]  ? rcu_is_watching+0x12/0xc0
[ 3016.906152][T30838]  ? __pfx_kthread+0x10/0x10
[ 3016.907653][T30838]  ret_from_fork+0x5d7/0x6f0
[ 3016.909112][T30838]  ? __pfx_kthread+0x10/0x10
[ 3016.910564][T30838]  ret_from_fork_asm+0x1a/0x30
[ 3016.912112][T30838]  </TASK>
[ 3016.913761][T30838] Kernel Offset: disabled
[ 3016.915126][T30838] Rebooting in 86400 seconds..

VM DIAGNOSIS:
12:01:21  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff81f666d2 RDX=ffff888042a88000
RSI=0000000000000000 RDI=0000000000000005 RBP=ffffea0001d4a780 RSP=ffffc9000100f158
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000002 R14=0000000000000001 R15=ffff88804fe85ad0
RIP=ffffffff81bb4edb RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809752d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73ec3f8 CR3=00000000559c6000 CR4=00352ef0
DR0=000000005ffffffd DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000076 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8556d065 RDI=ffffffff9b09f540 RBP=ffffffff9b09f500 RSP=ffffc9000d097158
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=666f206574697257
R12=0000000000000000 R13=0000000000000076 R14=ffffffff9b09f500 R15=ffffffff8556d000
RIP=ffffffff8556d08f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809762d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002dd01ff8 CR3=000000004ab9b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000004129cb5 RBX=0000000000000002 RCX=ffffffff8b82ac69 RDX=0000000000000000
RSI=ffffffff8de29c33 RDI=ffffffff8c155de0 RBP=ffffed1003bdb910 RSP=ffffc9000047fdf8
R8 =0000000000000001 R9 =ffffed1005686645 R10=ffff88802b43322b R11=0000000000000001
R12=0000000000000002 R13=ffff88801dedc880 R14=ffffffff90a95b50 R15=0000000000000000
RIP=ffffffff8b8297cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88809772d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002c10eff8 CR3=000000004b894000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000080000201 RBX=0000000000000008 RCX=ffffffff84ddfb7b RDX=ffff8880225e4880
RSI=0000000000000040 RDI=0000000000000005 RBP=ffffc90002dff330 RSP=ffffc90002dff0c8
R8 =0000000000000005 R9 =0000000000000040 R10=0000000000000038 R11=0000000000000001
R12=0000000000000038 R13=ffffc90002dff180 R14=ffff888078e89d37 R15=00000000000002a1
RIP=ffffffff81bb4e68 RFL=00000212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f645c55e300 ffffffff 00c00000
GS =0000 ffff88809782d000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000560c416c9000 CR3=000000004cd67000 CR4=00352ef0
DR0=000000005ffffffd DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000feeff800 Opmask01=000000000000ffff Opmask02=00000000ff7fefbf Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a 0000003400000012 0004000000080024 0028000000300038
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000001c00000000 0000000000000000 0000000000000017
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffeb 0800033c0000240b 0000001400000001 000000000000384c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0002040603880368 0800038003038002 0480030480020590 0318080005880302
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8080080001900300 0800018803000400 0184032004000180 0301800205800301
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0800028002040273 e80031313230386c 6e01ffffffffffff ffffef0802800300
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 040008a184080000 021ffffffeb80800 080049de006c6c75 6e2f7665642f01ff
ZMM24=593c4c6a593c4c6a 593c4c6a593c4c6a 593c4c6a593c4c6a 593c4c6a593c4c6a 593c4c6a593c4c6a 593c4c6a593c4c6a 593c4c6a593c4c6a 593c4c6a593c4c6a
ZMM25=c6a1f2e9c6a1f2e9 c6a1f2e9c6a1f2e9 c6a1f2e9c6a1f2e9 c6a1f2e9c6a1f2e9 c6a1f2e9c6a1f2e9 c6a1f2e9c6a1f2e9 c6a1f2e9c6a1f2e9 c6a1f2e9c6a1f2e9
ZMM26=430d09e1430d09e1 430d09e1430d09e1 430d09e1430d09e1 430d09e1430d09e1 430d09e1430d09e1 430d09e1430d09e1 430d09e1430d09e1 430d09e1430d09e1
ZMM27=c5789882c5789882 c5789882c5789882 c5789882c5789882 c5789882c5789882 c5789882c5789882 c5789882c5789882 c5789882c5789882 c5789882c5789882
ZMM28=000000400000003f 0000003e0000003d 0000003c0000003b 0000003a00000039 0000003800000037 0000003600000035 0000003400000033 0000003200000031
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=ea0a0000ea0a0000 ea0a0000ea0a0000 ea0a0000ea0a0000 ea0a0000ea0a0000 ea0a0000ea0a0000 ea0a0000ea0a0000 ea0a0000ea0a0000 ea0a0000ea0a0000