last executing test programs:

47.271274086s ago: executing program 3 (id=1812):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0xfffffffffffffdd3}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
ptrace$ARCH_SHSTK_ENABLE(0x1e, r1, 0x1, 0x5001)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB], 0x2b4}, 0x1, 0x0, 0x0, 0x40}, 0x840)
sendmsg$NFT_BATCH(r0, 0x0, 0x20048080)
socket$xdp(0x2c, 0x3, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
modify_ldt$write(0x1, &(0x7f0000000080), 0x10)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r4, 0xc05064a7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x0, 0x0, r5})
sendmsg$NFNL_MSG_CTHELPER_GET(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="94000000010901030064c30000000000000000060c00048008000140058806000c000480080001400000008108070040000000000c00048008000140000000ca280002001400018008000100ffffffff08000200ffffffff0600034000010000060003400002000008000640000000010c00048008000140000000050900010073797a31000000000c00048008000140000000"], 0x94}, 0x1, 0x0, 0x0, 0x50}, 0x24000000)

46.211271275s ago: executing program 3 (id=1814):
shmctl$SHM_LOCK(0x0, 0xb)
r0 = shmget$private(0x0, 0x2000, 0x78000000, &(0x7f0000ffe000/0x2000)=nil)
shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0xa000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000000)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x12, &(0x7f00000002c0)=0x2, 0x4)
mount(&(0x7f0000000100)=@nullb, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='iso9660\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000ffdbdf250f000000050033000100000008000300", @ANYRES32=r2, @ANYBLOB="02"], 0x24}, 0x1, 0x0, 0x0, 0x48000}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x70bd2a, 0x8000000, {0x0, 0x0, 0x0, r2, {0x1f, 0x3}, {0x4}}}, 0x24}, 0x1, 0x0, 0x0, 0x20008040}, 0x4000000)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff)

45.248787264s ago: executing program 3 (id=1822):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x8, 0xb4, &(0x7f0000000140)=""/180, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffe94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8b0f, &(0x7f00000001c0)={'gre0\x00', @link_local})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
ioprio_set$pid(0x3, 0x0, 0x4004)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000240)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmmsg$unix(r5, &(0x7f0000000340)=[{{&(0x7f0000003080)=@file={0x1, './file0\x00'}, 0x6e, 0x0}}, {{&(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e, 0x0}}], 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r6 = socket$inet6(0xa, 0x1, 0x0)
r7 = socket$nl_rdma(0x10, 0x3, 0x14)
setsockopt$RDS_GET_MR_FOR_DEST(r6, 0x114, 0x7, &(0x7f0000000740)={@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x2c}, {&(0x7f0000000680)=""/144, 0x90}, &(0x7f0000000480), 0x48}, 0xa0)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r8}, 0x4)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r9}, 0x10)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x70bd2a, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'bond0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
r10 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r10, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x2dc, 0x1b4, 0x0, 0x148, 0x1b4, 0x148, 0x248, 0x240, 0x240, 0x248, 0x240, 0x7fffffe, 0x0, {[{{@uncond, 0x0, 0x190, 0x1b4, 0x0, {}, [@common=@inet=@recent0={{0xf4}, {0x11e, 0x10, 0x2, 0x0, 'syz1\x00'}}, @common=@addrtype={{0x2c}}]}, @common=@inet=@SYNPROXY={0x24}}, {{@uncond, 0x0, 0x70, 0x94}, @common=@unspec=@STANDARD={0x24, '\x00', 0x0, 0xfffffffffffffffc}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x338)

44.284283534s ago: executing program 3 (id=1827):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000340)=0x2, 0xa2)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
r1 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
syz_emit_ethernet(0x3e, &(0x7f0000000240)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x25}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x1400, 0x0, 0x4, 0x6, 0x0, @remote, @local}, {{0x0, 0xce22, 0x41424344, 0x41424344, 0x0, 0x6, 0x7, 0xc2, 0x0, 0x0, 0x0, {[@eol, @exp_fastopen={0xfe, 0x6, 0xf989, "45f2"}]}}}}}}}, 0x0)
write(r1, &(0x7f00000004c0)="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", 0x7f1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f000000e0c0), 0x10010)
socket$inet6(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000080)='./file0\x00')
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x28001, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x10201, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
mkdirat(r3, 0x0, 0xac)
ioperm(0x0, 0x5, 0x5e3b)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
r7 = getpid()
r8 = syz_pidfd_open(r7, 0x0)
setns(r8, 0x24020000)
syz_clone(0x16040000, 0x0, 0x0, 0x0, 0x0, 0x0)

43.880532044s ago: executing program 3 (id=1828):
syz_clone(0x80140011, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000040)=0x3)
timer_create(0x5, &(0x7f00000000c0)={0x0, 0x3, 0x4, @thr={&(0x7f0000000000)="5c99640464f6342e9ee98aa8968a765d760c", &(0x7f0000000080)="69035918222d712d29a4aa047f68d8ab65230dc1389d8e655db75cc486e536521bf6efd153cbf8b96c9f8d1cd817518f45abd71867246b09c8a9ec95b19b0a"}}, &(0x7f0000000140)=<r3=>0x0)
r4 = openat$cgroup(0xffffffffffffffff, &(0x7f00000013c0)='syz1\x00', 0x200002, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000001480)={0x2020, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2020)
r6 = syz_open_procfs(0x0, &(0x7f0000000040)='stack\x00')
r7 = getpid()
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff})
ioctl$vim2m_VIDIOC_REQBUFS(r6, 0xc0145608, &(0x7f0000000240)={0x4, 0x0, 0x3, 0x0, 0xe})
connect$unix(r8, &(0x7f0000002540)=@abs, 0x6e)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r9 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0)
syz_emit_vhci(&(0x7f00000007c0)=ANY=[@ANYRES16=r6, @ANYRES16=r6, @ANYRES32=r8, @ANYBLOB="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", @ANYRES8=r9, @ANYBLOB="5ec3327c21fc453a122c28e79f24c253353798acb080e9d3388982250f64a5f86329d52359194d62c52d8c85843ab3d5b48aac861d43276cd21abb12e82909def9ecd513dd81223269660a83a3395a5d5993f84c875b2827aaec77bf82d9da655efb8cf46f1c9f5abdf35ab89bf5edd78102f989c5e17f1d5f2131bc8ab3c585808393cb2d950c4a91c2c3a1", @ANYRES8=r7], 0xf)
syz_clone3(&(0x7f0000001400)={0xa089000, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0), {0x12}, &(0x7f0000000300)=""/4096, 0x1000, &(0x7f0000001300)=""/106, &(0x7f00000034c0)=[r5, r5, r7], 0x3, {r4}}, 0x58)
clock_gettime(0x0, &(0x7f0000000180)={<r10=>0x0, <r11=>0x0})
timer_settime(r3, 0x1, &(0x7f00000001c0)={{0x77359400}, {r10, r11+60000000}}, &(0x7f0000000200))
iopl(0x3)
setgroups(0x0, 0x0)
getgroups(0x1, &(0x7f0000000080)=[0xee00])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

43.660969727s ago: executing program 3 (id=1833):
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000080)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x9}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000340)=[{0xfffffffe, 0x1, 0xa, 0xb}, {0x2, 0x2, 0xc, 0x7}, {0x5, 0x2, 0x13, 0x4}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
prlimit64(0x0, 0xa, &(0x7f00000002c0)={0x0, 0x2}, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')
dup(0xffffffffffffffff)
setsockopt(0xffffffffffffffff, 0x84, 0x80, &(0x7f00000002c0), 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000080)=0x2)
ioctl$SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f00000000c0))
ioctl$SNDCTL_DSP_STEREO(r3, 0xc0045003, &(0x7f0000000100)=0x1)
mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000b, 0x8012, r3, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000032800000000c0a01080000000000000000010000000900020073797a32000000005400038050000080080003400000000244000b80200001800c000100636f756e74657200100002800c0002400000000000000000200001800700010063740000140001800d00010073796e70726f7879000000000900010073797a3000000000140000001000"], 0x104}}, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r4, 0x84, 0x10, &(0x7f0000001800), 0xc)

43.624902332s ago: executing program 32 (id=1833):
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000080)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x9}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000340)=[{0xfffffffe, 0x1, 0xa, 0xb}, {0x2, 0x2, 0xc, 0x7}, {0x5, 0x2, 0x13, 0x4}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
prlimit64(0x0, 0xa, &(0x7f00000002c0)={0x0, 0x2}, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')
dup(0xffffffffffffffff)
setsockopt(0xffffffffffffffff, 0x84, 0x80, &(0x7f00000002c0), 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r3, 0xc0045005, &(0x7f0000000080)=0x2)
ioctl$SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, &(0x7f00000000c0))
ioctl$SNDCTL_DSP_STEREO(r3, 0xc0045003, &(0x7f0000000100)=0x1)
mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000b, 0x8012, r3, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000032800000000c0a01080000000000000000010000000900020073797a32000000005400038050000080080003400000000244000b80200001800c000100636f756e74657200100002800c0002400000000000000000200001800700010063740000140001800d00010073796e70726f7879000000000900010073797a3000000000140000001000"], 0x104}}, 0x0)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r4, 0x84, 0x10, &(0x7f0000001800), 0xc)

5.417911288s ago: executing program 0 (id=2091):
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x141a82, 0x0)
sendfile(r0, r0, 0x0, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x38fe, &(0x7f0000000080)={0x0, 0x1fffff, 0x200, 0x0, 0x102, 0x0, r2}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r1})
openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x6, 0x0, 0x34324152, 0x0, 0xa, [{}, {0x10}, {0x2}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'bridge0\x00'})
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r6, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r7, {0x2, 0x0, @multicast2}, 0x2, 0x0, 0x4}}, 0x2e)
r8 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r8, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r9 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r9, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xffe9)
setsockopt$sock_int(r9, 0x1, 0x8, &(0x7f0000000000), 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r9)

4.154674758s ago: executing program 0 (id=2095):
socket$alg(0x26, 0x5, 0x0)
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = dup(0xffffffffffffffff)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
open_tree(0xffffffffffffff9c, &(0x7f0000019080)='./file0\x00', 0x9801)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
rmdir(&(0x7f00000001c0)='./cgroup/../file0\x00')
poll(&(0x7f0000000200)=[{r3}], 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@bloom_filter={0x1e, 0x0, 0x8, 0x0, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = syz_open_procfs(0x0, &(0x7f0000000380)='mounts\x00')
read$FUSE(r4, &(0x7f0000000780)={0x2020}, 0x2020)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_POLL_REMOVE={0x7, 0x5})
io_uring_enter(0xffffffffffffffff, 0x2def, 0x4000, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
add_key(0x0, 0x0, &(0x7f00000003c0), 0x0, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000011c0)}, 0x10000)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r5, 0x8910, &(0x7f0000000000)={'vlan0\x00', @ifru_ivalue=0x8})
ioctl$sock_netdev_private(r5, 0x8914, &(0x7f0000000000))
pread64(0xffffffffffffffff, &(0x7f0000000080)=""/102341, 0x18fc5, 0xc2a)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
add_key$keyring(&(0x7f0000000180), &(0x7f0000019180)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffff9)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000019140)={[&(0x7f0000000380)=' T\xfc\x81\x8e\x9f5\x0e \x043[B\xad\x13\x9f\xae\x8f\xbb\x9a\x0f\x9f\x03\xa5\xfc9\xbb\xa4.\xf4\xeb\x03\xf1\xb6\x8c\xc4E\x93\n&k\xec\xc8\xdch\xd6\x1e\xcb\fA\\da/O\xdcn7\x1b@\xbf\xfb\x17J\xaaD\xe4\x01\xbc']}, &(0x7f0000019100)={[&(0x7f0000000200)=' ']})
socket$can_raw(0x1d, 0x3, 0x1)

3.777895675s ago: executing program 0 (id=2101):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x44080, 0x0)
r1 = epoll_create1(0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x80088a02, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000000)={0x0, @aes128, 0x0, @desc4})
syz_io_uring_setup(0x10d, &(0x7f00000006c0)={0x0, 0x5885, 0x0, 0x2}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r4 = socket$inet6_dccp(0xa, 0x6, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x5, r4, 0x0, 0x0, 0x0, 0x80800})
syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x7279, 0x0, 0x4, 0x316}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
r7 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
syz_io_uring_setup(0x5f7d, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0xfffffffe}, &(0x7f0000000100)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f00000001c0)=@IORING_OP_LINKAT={0x27, 0x10, 0x0, 0xffffffffffffffff, &(0x7f0000000480)='./file0\x00', 0x0, 0xffffffffffffffff, 0x1400, 0x1, {0x0, r10}})
syz_io_uring_submit(r2, r6, &(0x7f0000000080)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x24, 0x5, r7, 0x0, 0x0, 0x0, 0x40000122, 0x0, {0x0, r10}})
ioctl$SNDCTL_FM_4OP_ENABLE(r0, 0x4004510f, 0x0)

3.745381238s ago: executing program 0 (id=2103):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
syz_usbip_server_init(0x1)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0)
connect$inet6(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
write$6lowpan_enable(r2, &(0x7f0000000200)='0', 0xffffffffffffff4a)
syz_io_uring_submit(0x0, 0x0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x708, 0x41e3, 0x0, 0x0, 0x0)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4048aecb, &(0x7f0000000080))
r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r7, 0x4068aea3, &(0x7f0000000180)={0xbe, 0x0, 0x1})
syz_kvm_setup_cpu$x86(r4, r7, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x21, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000000000009014d564b"])
sendmmsg$inet6(r0, &(0x7f0000002dc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{0x0}], 0x1, &(0x7f0000000540)}}], 0x1, 0x10)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000140))

3.010143521s ago: executing program 4 (id=2107):
mremap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000, 0x4, &(0x7f0000ffa000/0x2000)=nil)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYRES16, @ANYBLOB="01002dbd7000000000001200000008"], 0x3c}}, 0x0)
io_setup(0x1fc, &(0x7f0000000380))
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmstat\x00', 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x5, 0x12, r0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000002080)=@newtaction={0x3324, 0x30, 0x1, 0x0, 0x0, {}, [{0x3310, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_police={0x32c8, 0x13, 0x0, 0x0, {{0xb}, {0x326c, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE64={0xc, 0x8, 0x560}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x8f88, 0x5, 0x8e, 0x100, 0x6, 0x7fffffff, 0x3ffc0000, 0xffffff80, 0x8, 0x6, 0x4, 0x1, 0x6b1c, 0x6ca, 0x1ff, 0x0, 0x0, 0x4, 0x7fffffff, 0x6, 0x2, 0x7, 0xe2, 0x7, 0xe9c8, 0x5, 0xc6, 0x0, 0x7, 0x3, 0xb, 0xa4c6, 0x7, 0x9, 0x2, 0xa6a, 0x7fff, 0x0, 0x80, 0x7, 0x4824, 0x3, 0x7ff, 0x5, 0xffffff16, 0x10001, 0x2, 0x6, 0x4, 0x4, 0x35, 0x5, 0x3ff, 0x1a4, 0x9, 0x1, 0x6, 0x100, 0xffff0001, 0xa, 0x8, 0x0, 0xd0c, 0x5, 0x3, 0x2, 0xfe8d, 0x7, 0xfffffffe, 0x80000001, 0xa, 0x8001, 0x0, 0xc3, 0xffc0000, 0xffffffff, 0x3, 0x4, 0x3, 0x3, 0x8, 0xe, 0x9, 0x8, 0x2, 0x2db, 0x1, 0x6, 0x8000, 0x10000, 0xeed6, 0xfff, 0x5, 0x100, 0x80, 0x3, 0xffffffff, 0x40, 0x7, 0xab, 0x7f5, 0x6, 0x3, 0x7fff, 0x7, 0x3, 0x8, 0xd5cc, 0xdc3afbb, 0x6e74170e, 0x8, 0x9, 0x2, 0xcdf9, 0x18000, 0x9a, 0x3, 0x6, 0xffff, 0x3, 0x2, 0x6, 0x4, 0x8, 0x5, 0xffffffff, 0xd611, 0x5, 0x8, 0x3, 0x7fff, 0x0, 0x8, 0xfdcf, 0x4, 0xfffffff8, 0x8001, 0x40, 0x3, 0x2, 0x800, 0xc839, 0xfffffe00, 0x2, 0x7ded, 0x3, 0x4, 0x38, 0x3, 0x0, 0x2, 0x9, 0xffffffff, 0x3, 0x2, 0x7, 0x5, 0xa, 0x80000000, 0x8000, 0x1, 0x8, 0x80000001, 0xff, 0xd, 0x2, 0x3, 0x1000, 0x5, 0xf60d, 0xd1, 0x13, 0x1, 0x9, 0x406071c7, 0xf, 0x8, 0x41, 0xffffffff, 0x5be, 0x1, 0x8001, 0x5, 0x8, 0xc, 0x1, 0xea2, 0x80000001, 0x2, 0x8000, 0x2, 0x8001, 0x4, 0x86ad, 0x7ff, 0x56, 0x7, 0xffffffff, 0xffffffff, 0x400, 0x6, 0x100, 0x8, 0x81, 0x7, 0x1d, 0x89, 0xa738, 0x4, 0x7, 0x401, 0x2, 0x8, 0x4, 0x3, 0x4, 0x919, 0x4, 0xb2, 0x2b2a, 0x0, 0x5, 0x3, 0x101, 0x0, 0xfffff78c, 0x6, 0x4, 0xe941, 0x5, 0x800, 0x8, 0x8, 0x0, 0x59, 0x3, 0xfffffffe, 0xe, 0xd0, 0x1, 0x5, 0x0, 0x4a66, 0x0, 0x1, 0x9, 0x3, 0xe, 0x3a73, 0xd151, 0x7ff, 0x7, 0xffffffff, 0xfffffff9, 0x5, 0xfff]}, @TCA_POLICE_RATE={0x404, 0x2, [0x4, 0x6, 0x3ff, 0xfffffffa, 0x7fff, 0x0, 0x81, 0x1, 0x81, 0xa31, 0x2, 0x8, 0x0, 0xfffffffe, 0x7, 0x4, 0x80000001, 0x9, 0x0, 0xfffffff0, 0x8, 0x4, 0x8, 0x10001, 0x3, 0x1ff, 0x3, 0x6, 0x1, 0x9, 0x40, 0x5, 0x12f, 0x3, 0xe, 0x80000001, 0xfff, 0xf, 0x80, 0x87, 0x6, 0x2, 0xb6, 0x5, 0x1, 0x2e, 0x6, 0x9, 0x4, 0x0, 0x4, 0x71, 0x2, 0x8, 0x1000, 0x8, 0x65056fd8, 0x1, 0xfff, 0x7, 0x3, 0x8, 0xfffffff8, 0xefd, 0x1, 0x5, 0x5, 0x4, 0x10000, 0x3, 0xf, 0x10000, 0x7, 0x9, 0x3, 0x8, 0x3, 0x9, 0x80000000, 0x1dd786fd, 0xb, 0x80000001, 0x7, 0x9, 0x6, 0x5, 0xfffff0bf, 0x8, 0x4, 0x20000, 0x800, 0x6, 0x8, 0x0, 0xfffffff7, 0x3, 0xfffffff0, 0x7, 0x0, 0xb, 0x7, 0x5, 0x9, 0x8, 0x7, 0x4d1d, 0x9, 0x400, 0x7, 0x0, 0xd6c, 0xffffffff, 0xec2a, 0x171, 0xe1db3a0c, 0xcf9, 0xdb5d, 0x10, 0xe, 0x1ff, 0x3, 0x40000000, 0x1, 0x2ef, 0x0, 0xffffff83, 0x9, 0x5, 0x7, 0x21a, 0x2, 0x8, 0x9a00, 0x5, 0x1, 0x4, 0x3, 0x3b, 0x245, 0x80000001, 0x1, 0x7, 0xdae, 0x8, 0x3, 0x8f64, 0x4a6, 0x70000000, 0x4, 0x7ff, 0x6, 0x100, 0x9d, 0x435f, 0x1, 0x6, 0x7, 0x88, 0x7, 0x7, 0x7, 0x8, 0x2, 0x7, 0x1ff, 0xe, 0x6, 0x375e0, 0x5410, 0x3, 0x6, 0x5, 0x6, 0x6, 0xe, 0xef, 0x63f, 0x8, 0x4, 0x7, 0x7, 0x5ec, 0xd25, 0x2, 0x4, 0x4, 0x6, 0x2, 0x9, 0x2, 0x9, 0xabe, 0x4, 0x7f, 0x8, 0x49d4, 0x3, 0x10, 0x8, 0x1, 0x2, 0x6, 0x3, 0x7, 0x3ff, 0xf, 0x200, 0x1, 0x2, 0x100, 0x10000, 0x6, 0x3, 0x7, 0x2, 0xd, 0x3, 0x4, 0x1ff, 0xffff, 0x3, 0xc, 0x1, 0xf, 0xa, 0xffffffff, 0x100, 0x8, 0x10000, 0x400, 0xc0cd, 0x5, 0x40, 0x7, 0x1, 0xd4, 0x6, 0x6, 0x6, 0x5, 0x6, 0x4, 0x79a07634, 0x3, 0x7fff, 0x4, 0x80000001, 0x80000001, 0x4652, 0x5, 0x7, 0x4bd, 0x9, 0x1, 0x7, 0x8d]}, @TCA_POLICE_RATE64={0xc, 0x8, 0xd}], [@TCA_POLICE_AVRATE={0x8, 0x4, 0x7}, @TCA_POLICE_TBF={0x3c, 0x1, {0x6, 0x4, 0x8, 0x6, 0x10af, {0x6, 0x2, 0xfffd, 0x2, 0x7, 0x378}, {0x51, 0x0, 0x9, 0x7ff, 0x7, 0x7}, 0x4029, 0x5, 0x3}}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x2}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x7}, @TCA_POLICE_RESULT={0x8, 0x5, 0x4}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x7, 0x3, 0x4, 0x3, 0x1, 0x0, 0x1, 0x7a, 0x3, 0x1, 0x2, 0x7, 0x8dc5, 0x10000, 0x400, 0x7, 0x0, 0x49, 0x1ff, 0x0, 0x8, 0x10, 0x1, 0x4, 0x9, 0x4, 0x8, 0x80, 0x21, 0x1, 0xcf, 0x7, 0x8001, 0x1, 0x5, 0x1, 0x0, 0x13600000, 0x1, 0x40, 0x3, 0x2, 0x2, 0x79, 0xf, 0x6, 0x8fd, 0xb2, 0xfffffff9, 0x0, 0x5, 0x3ff, 0x5141, 0x39d, 0x3, 0xdf2, 0x6, 0x6135, 0x5, 0x80000000, 0x5, 0xfffffffb, 0xd, 0x6, 0x6, 0x9, 0x5, 0x2, 0x81, 0x8, 0x0, 0x9, 0x3, 0x0, 0x0, 0x2, 0xc4, 0x6, 0x6, 0xf0, 0x4, 0x5, 0x5, 0x6, 0x9, 0x8, 0x4, 0x800, 0x0, 0x4b, 0x3, 0x4, 0x4, 0x1, 0x7, 0x4, 0x200, 0xffffffa9, 0xf, 0x1, 0x6, 0xfffffffb, 0x2, 0x81, 0x3, 0x7, 0x7f, 0x4, 0x1, 0x40, 0xc742, 0xa, 0x5, 0x0, 0x89, 0x9, 0x8, 0x40, 0xe42, 0xfffffff7, 0x1000, 0x100, 0xb572, 0xa60, 0x7, 0x38, 0x7fffffff, 0x8000, 0x55, 0x0, 0x0, 0x10000, 0x8, 0x0, 0xfffffffd, 0x7a15882, 0x40, 0x99, 0x3, 0x467, 0xc6000000, 0x3, 0x8, 0x101, 0x1, 0xc, 0x10, 0xffffff26, 0x2, 0x1000, 0x15ee, 0x0, 0x6, 0x7, 0x30f0, 0x0, 0x1000, 0x72, 0x51, 0x6, 0x9, 0x9, 0x9, 0x2, 0xff, 0x2, 0x8, 0x723a, 0x0, 0x9, 0xb542, 0x2, 0x7, 0x0, 0x8, 0x70ca, 0x80000000, 0x0, 0x7, 0x8, 0x800, 0xffffffff, 0x1, 0x1, 0x1f2, 0x80, 0x81, 0x5, 0x9, 0x7f, 0x6, 0x6, 0x78, 0x8, 0x32a, 0x3, 0x2, 0x8, 0x3, 0x81, 0x1, 0x3, 0x8, 0x0, 0x8, 0x8, 0x9, 0x1, 0x1, 0x21, 0x4, 0x1000, 0x6, 0x4, 0x5, 0x203, 0x401, 0x5, 0xfffffff9, 0x4, 0x8c, 0x5, 0xba6c, 0xad04, 0x10001, 0x3, 0x2, 0x3ff, 0xe, 0x6, 0x3, 0xfffff6f6, 0x5, 0x80000001, 0xff, 0x734b, 0xa, 0xfffffffa, 0x7, 0x8, 0x5, 0x80000001, 0x8, 0x0, 0x7, 0x5, 0x2, 0x5, 0x7, 0x2, 0x8, 0xfffffffc, 0x1, 0xf62, 0xc, 0x5]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x101, 0x4, 0x6523, 0x6, 0x55f, {0xac, 0x1, 0x0, 0xc663, 0xf, 0x1}, {0x2, 0x0, 0x2, 0x1, 0xd6f9, 0x7}, 0x9, 0x7, 0x9}}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x8, 0x2, 0x7, 0xfffffffc, 0x7, 0x7ff, 0x4, 0x2, 0x1, 0x7, 0x3, 0xb, 0x272a, 0x6, 0x4, 0x341, 0xf22, 0x0, 0x3, 0x2, 0x3, 0x0, 0x2, 0x6, 0xd, 0xfff, 0x287, 0x0, 0x23, 0x0, 0x0, 0x4, 0x9, 0x6, 0x9, 0x8001, 0x4, 0x4, 0x4, 0x0, 0x5, 0x1, 0xb, 0x10000, 0x6, 0x10000, 0x75, 0x9, 0x8000, 0x2368, 0x9, 0x5, 0x9, 0x7fff, 0x9, 0xffff0001, 0x48, 0x3, 0x5, 0x6, 0x8, 0x9, 0xe, 0x8, 0x66b, 0x99, 0x0, 0x6, 0x9, 0x6, 0x80000000, 0xe, 0x8, 0x6, 0x4, 0x9, 0x5, 0x6, 0x3, 0x4, 0xf79f, 0x7, 0x361, 0x2, 0x10000000, 0x0, 0x2, 0x1, 0xe, 0xfffffff7, 0x8, 0xffff, 0x3, 0x80000001, 0xa4, 0xaf, 0x7f, 0x4, 0x9, 0x4, 0x7, 0x7, 0x8000, 0x5, 0x3, 0x10000, 0x8, 0xfffffffb, 0x8, 0xbe0, 0x8, 0x1, 0x6, 0x200c, 0x5, 0x3, 0xa932, 0xb, 0x800, 0x2, 0x6, 0xe84c, 0x0, 0x4, 0x0, 0xc, 0xffff, 0x2, 0x94a, 0xfffffffb, 0x5, 0x9, 0x0, 0x0, 0x6, 0x8, 0x2, 0x5, 0x8, 0x0, 0x3e20074e, 0xe, 0x2, 0x7, 0x6, 0x8, 0x1, 0x8, 0x1, 0x6, 0xba3, 0x3, 0x2, 0x7, 0x21, 0xd, 0xed64, 0x1, 0x3, 0x9, 0xac, 0x6, 0x6, 0x0, 0xcf, 0x7, 0x5, 0x6, 0x7, 0xffffffff, 0x5, 0x3, 0x3, 0x10001, 0xb43, 0xfdc0f2c, 0x72b, 0xfffffffb, 0x7f, 0x690, 0x3, 0x9, 0x5, 0xff, 0x0, 0xf9, 0x4, 0xfffff001, 0x9, 0x2, 0x6, 0x9, 0xef, 0xa7, 0x2, 0x4, 0x200, 0x4, 0x8, 0x1000, 0x6, 0x0, 0x4, 0x6, 0x1, 0x21, 0xb, 0x8, 0x6, 0x1ff, 0x9, 0x6, 0x1fc, 0x7, 0x2d, 0x1, 0xbe7b, 0x7, 0x5, 0x1, 0x9, 0x1, 0x80000000, 0x10, 0x8, 0x7fff, 0x1, 0x0, 0x2, 0x0, 0x5, 0x80, 0x7, 0x7ff, 0x1, 0x7, 0x25f6, 0x7, 0x3, 0x6, 0x1, 0x5, 0x200, 0x401, 0xe9f, 0x2, 0x80, 0x9, 0x6, 0xbd, 0x7ff, 0x10000, 0x5, 0x1, 0x5, 0x3]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x43, 0x5, 0x5, 0x1000, 0x0, {0x7, 0x3, 0x1, 0x0, 0x7, 0xe}, {0x5, 0x1, 0xd, 0x0, 0x1, 0x4972}, 0x4, 0x0, 0x6}}, @TCA_POLICE_RESULT={0x8, 0x5, 0x6}], [@TCA_POLICE_RESULT={0x8, 0x5, 0x9}, @TCA_POLICE_RESULT={0x8, 0x5, 0xfffffffe}, @TCA_POLICE_TBF={0x3c, 0x1, {0xb, 0x10000000, 0x5, 0x540, 0x80, {0x24, 0x2, 0x9, 0x9, 0xa, 0x1}, {0x3, 0x0, 0x8, 0x0, 0x4, 0x80}, 0x200, 0x1, 0x93}}], [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x1ff, 0x94, 0x7, 0xffffffc0, 0x7, 0x8, 0x96c, 0x200, 0x80, 0x45abbd42, 0x5, 0xffe, 0xaf3a, 0xbdf, 0x1ff, 0x9, 0x9, 0x1, 0x80, 0xfff, 0xfff, 0x4f, 0x8, 0x6, 0x4, 0x4, 0x80000000, 0x1, 0x9, 0x40, 0x5, 0xfff, 0xa6, 0x6, 0x54, 0x3, 0x9, 0x7, 0x5, 0xffffffff, 0x3, 0x6, 0x2, 0xf, 0x1, 0x4, 0xfffff34e, 0x77, 0xfff, 0x10001, 0x6afc, 0x7, 0xb83, 0x8, 0x7, 0x3, 0x4, 0x1000, 0x6, 0x5, 0x6, 0xfffffffc, 0x3, 0x2, 0x7, 0xfffffffe, 0xd, 0x5, 0x401, 0x0, 0x7f, 0xb, 0x3, 0xfa9c, 0xc, 0x8, 0xffffffff, 0x4, 0x800, 0xfffffff9, 0x4d8, 0x8, 0x197, 0x4, 0x4, 0x9, 0xfffff6e2, 0xff, 0x0, 0x2, 0x1, 0x401, 0x3ff, 0x5, 0x9, 0x0, 0xc7, 0x7ff, 0xdd, 0x9, 0x4, 0xf9e, 0x6, 0x8, 0x8, 0x2, 0x53, 0x712e568, 0x4084, 0x4, 0xce, 0xb24, 0x5, 0xfffffff7, 0x858, 0x4, 0x800, 0x8000, 0x3, 0x6, 0x5, 0x8, 0x4, 0x8, 0x4, 0x2, 0x7f, 0xd, 0x0, 0x7, 0x6, 0x3, 0x6, 0x1, 0x73f, 0x61812a1f, 0x4, 0x2, 0x4, 0x0, 0x1, 0x1, 0x4, 0x2, 0x3, 0x5, 0x3, 0x800, 0x5, 0x4, 0xc, 0x8777ff3, 0x2, 0x7, 0x7, 0x8, 0x5, 0x200, 0x1, 0xfff, 0xb1, 0x4, 0xca2d, 0x3, 0x7, 0x9, 0x1, 0x4e25, 0x3ff, 0x0, 0x2, 0xffff8000, 0x8, 0xf, 0x2, 0xb, 0x4, 0xf305, 0x1, 0x3, 0x98000000, 0x1, 0x40, 0x7, 0x1, 0x2, 0x0, 0x8, 0x9, 0x0, 0x9, 0xfffffffc, 0xfffffff7, 0xffffffff, 0xa, 0x40a, 0x4, 0x986, 0x9, 0x3998, 0x6, 0x3, 0xe31, 0x9, 0x6, 0x5, 0xb, 0x7f, 0x0, 0xe, 0x3ff, 0x7ff, 0xfa5c, 0x200, 0x4a46, 0x8000, 0x0, 0x8000, 0x0, 0x10, 0x1, 0x6, 0x1fd, 0x81, 0x0, 0x6, 0x4c, 0x2e, 0x0, 0x7fff, 0x80, 0x24, 0x7, 0x8, 0xe, 0x7, 0x9f, 0x80, 0x7, 0x7fff, 0x6, 0x6, 0x3, 0xeb, 0x7, 0x5, 0x7f, 0xb8, 0x8000, 0x4, 0x7, 0x6a, 0x9, 0x0, 0xc2, 0xffffa269]}, @TCA_POLICE_RATE={0x404, 0x2, [0x8, 0x8, 0x4, 0x55d5, 0x1000, 0x7, 0x3, 0x101, 0x6, 0xfffff4f2, 0x4, 0xfffffffa, 0x0, 0xfa, 0x1, 0x0, 0x8, 0x80000001, 0x5, 0x8, 0x2, 0x20000000, 0x1, 0xfff, 0x68, 0xfffffff8, 0x5, 0x9, 0x5, 0x40, 0x7, 0x5, 0x80, 0x0, 0xfc, 0x4, 0xffff0001, 0x800, 0x7, 0x5, 0x40, 0xfffffffb, 0x7, 0x9, 0x8001, 0x65f7, 0x8000, 0x0, 0x8, 0x10000, 0x10001, 0x1, 0x7, 0x7, 0x7a, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4, 0x7ff, 0xfffffff7, 0x7, 0x8352, 0x5, 0x7fffffff, 0xffffffff, 0x7, 0xfffffffa, 0x7, 0x0, 0x81, 0x7fffffff, 0x3, 0x2, 0xe89, 0x6, 0x5, 0xb11, 0xffffffff, 0x4, 0x9, 0x4, 0x2, 0x4, 0xfffffff8, 0x6, 0x8848, 0x3, 0x8, 0x98, 0x7, 0x7fff, 0x103, 0x268, 0x7, 0xffff, 0x4, 0x9, 0x9, 0x9, 0x433, 0x7f, 0x8, 0x0, 0x0, 0x7713, 0x401, 0xa, 0x7f, 0xffffffff, 0x5, 0x3, 0x5, 0x3, 0xa, 0x2b4, 0x1, 0xffffffff, 0x9, 0x7f, 0x1, 0x2, 0x3, 0xfff, 0xe, 0x5, 0x7, 0x0, 0x2, 0x0, 0xfe00000, 0x9, 0x2, 0xfffffffe, 0xffff8001, 0x8, 0x40, 0x5bdc, 0xb, 0x0, 0x80, 0xf7da, 0xf, 0x7, 0x8, 0x3, 0xe8fc, 0x8, 0xa, 0x2, 0x9, 0x42, 0x2, 0x5, 0x6, 0x7bc3, 0x5, 0x2, 0x5, 0x0, 0x9, 0xfffffffe, 0xfff, 0x3, 0x1, 0x9, 0xfffffff1, 0x200, 0x5, 0x2, 0x3, 0xadd, 0x80000000, 0x2, 0x9, 0x200, 0x0, 0xfa7, 0x8, 0x10000, 0x80000001, 0x30, 0x5, 0x90, 0x0, 0x200, 0xff, 0x5, 0x10000, 0x6, 0x4, 0x816a, 0x2, 0x0, 0x10, 0x6, 0xd9f6, 0x81, 0xcd, 0x8, 0xe5, 0x7, 0x0, 0x10001, 0x3, 0x8000, 0x7fff, 0x6, 0x3, 0x9, 0x9, 0x8, 0x2, 0x401, 0x8001, 0x6b, 0x6, 0x6, 0x4, 0x364a9aa8, 0x6, 0x5, 0x3, 0x96, 0x8, 0x3, 0xfffffff7, 0x2, 0x7fff, 0x8, 0x4b9, 0x9, 0x8db7, 0x401, 0x4a6, 0x2, 0x0, 0x8, 0x9d7, 0x0, 0x8001, 0x101, 0x7, 0xffffffff, 0x6, 0x2, 0xffffffc0, 0x9, 0xcb3, 0x7, 0x80000001, 0x9, 0x200]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x5, 0x4, 0x8, 0x0, 0x303a, 0x5, 0x14, 0xa81, 0xfe00, 0x2, 0x9fb, 0x0, 0x9, 0x3, 0x0, 0x8000, 0x100, 0x4c, 0x0, 0x8, 0x3, 0x3, 0x3, 0x2, 0x2, 0x4, 0x9, 0xf10, 0x5, 0xffffffff, 0x5, 0xe, 0x2, 0x5, 0x3, 0x67c, 0x10000, 0x7, 0x8, 0x2, 0x40, 0x1000, 0x2, 0x0, 0xfff, 0x7, 0x4, 0x7ff, 0x8, 0x2, 0x7e6, 0x6, 0xff, 0x1ff, 0x81, 0xa47b, 0x6, 0x3, 0x0, 0x9, 0x9, 0xd146, 0x7, 0x0, 0x2, 0xfffffffc, 0x40, 0x1, 0x6, 0x4, 0x4, 0x100, 0x3000000, 0x4, 0x1, 0x100, 0x8, 0x3, 0x0, 0x4, 0x10000, 0x2, 0x7, 0x0, 0x0, 0xc, 0xd8, 0x7, 0x4, 0x3, 0x2000, 0x101, 0x3, 0xfffeffff, 0x23, 0x7, 0x10000, 0x1, 0x2, 0x80000001, 0xffff, 0x4b1c, 0x8, 0x2, 0x4, 0x8, 0x100, 0x2, 0xffffffff, 0x854, 0x40, 0x101, 0x1b16, 0x4, 0x9, 0x7fff, 0x9, 0x2, 0xb96, 0xfffffffa, 0xa47, 0x2, 0x9eb, 0x11, 0x6, 0x8, 0x7, 0x9, 0x817, 0x2, 0x6a3, 0x3000, 0x7, 0x4, 0x8000, 0x0, 0x3, 0x100, 0x3c00, 0xb, 0x7f, 0xffffff01, 0x3, 0x4, 0x6, 0xff, 0xe9, 0xd399, 0x3, 0x5, 0x6, 0x4, 0x400, 0x1, 0x7ff, 0x6, 0x1, 0x800, 0x1000, 0x4, 0x2, 0x7e, 0x4, 0x0, 0x4, 0xfffeffff, 0x0, 0x6, 0x0, 0x8003, 0x8, 0x4, 0x5, 0x0, 0x6, 0x1, 0x5, 0x3, 0x1000, 0x0, 0x5, 0x8f, 0x4, 0x1, 0x77f3, 0x9, 0xa3, 0x7, 0x5, 0x4, 0x3, 0x1, 0x0, 0x5, 0xe8bc, 0xc, 0x3, 0x8, 0x7, 0x7, 0x0, 0x8, 0x4, 0xc, 0x0, 0x6, 0x10000, 0x7, 0xbb, 0x3ff, 0x8e9e, 0x1, 0x6, 0x8000, 0x100, 0x0, 0x8, 0x4, 0xe, 0xc, 0x8, 0x5, 0x9, 0x54d, 0xe91, 0x1, 0xff, 0xa, 0xd, 0x800, 0x7, 0x6, 0x2, 0xffffffff, 0x2, 0x2, 0xb2e, 0x4, 0x7f, 0x1, 0xffffdba8, 0xb945, 0x1000, 0x1, 0x56, 0x7fff, 0xffff5d8e, 0xffff8000, 0xfc, 0x3, 0x401, 0x4, 0x101, 0x9, 0x3, 0x7]}, @TCA_POLICE_RATE={0x404, 0x2, [0xf, 0x282, 0x28c, 0x40, 0x0, 0x1000, 0x800, 0xf, 0x72, 0x6, 0x5, 0xffffffe0, 0x1, 0x0, 0x8d, 0x24000000, 0x9, 0xff, 0xab98, 0x5, 0x37, 0x88, 0x2, 0xfffffffa, 0xa6, 0xff, 0x1, 0x7, 0x100, 0x5, 0xff, 0xa330, 0x9, 0xfffffffa, 0x100, 0x1, 0x40, 0x9, 0x40, 0x2, 0x26a1, 0x6, 0x1, 0x4, 0x6, 0x1f448b92, 0x1000, 0x4, 0x10, 0x278, 0x816f, 0x5, 0x3, 0x99, 0x9, 0x9, 0x7, 0x3dca51c1, 0x2, 0x5, 0x5, 0x597044ef, 0xb, 0x5f, 0x4, 0x8, 0x5, 0x7fffffff, 0x3, 0x8, 0xe, 0xfffffffc, 0x8001, 0x5, 0x3, 0x3, 0xfffffffb, 0x4, 0x4, 0x2, 0x400, 0xf4, 0x2, 0x9, 0x1, 0x9, 0x0, 0x7fff, 0x84ac, 0xb7f0, 0x7, 0x4e3, 0x8, 0x8, 0xf5, 0x8, 0x0, 0x1, 0xfffffffa, 0xc2ac, 0x897, 0x46414c46, 0x6, 0x9, 0x0, 0xf, 0x8001, 0x0, 0xffffffff, 0x6, 0x8, 0xf538, 0x10001, 0x40000000, 0xfff, 0x8, 0x8, 0x8, 0x5, 0x0, 0x9, 0x10001, 0xfff, 0x7, 0x8, 0xfffffffc, 0x200, 0xfffeffff, 0x401, 0x1, 0x2d, 0x7, 0x10001, 0x5, 0x20, 0x7, 0x2, 0x0, 0x4, 0x6, 0x9, 0x7, 0xffffffff, 0x3f2, 0x4d, 0x80000001, 0x6b3, 0x0, 0x5, 0xffffffff, 0x9, 0x9, 0x3ff, 0x6, 0xfffffff4, 0x7, 0xfffffffe, 0x7, 0x42c9, 0x81, 0x401, 0x400, 0xe8a, 0xb788, 0x6, 0x1eda, 0x8, 0x3, 0x3, 0x8f, 0x3, 0x1, 0x80, 0x9, 0x1, 0x6f44, 0x9, 0x401, 0x7, 0x40, 0x8, 0x0, 0x7, 0x0, 0x3, 0x6, 0x8, 0x200, 0xffffff80, 0x3, 0xff, 0xd40, 0x1, 0x963a, 0x8, 0x4, 0x1, 0x7d8c, 0x5, 0x10000, 0xb, 0x401, 0x2, 0x6000, 0xc1, 0xfffffffb, 0x3, 0x2, 0x2, 0x9, 0x0, 0x6, 0x7, 0xffffffa7, 0x9, 0x84, 0x2, 0x9, 0x7, 0x5b, 0x100, 0xc55, 0x5, 0x7, 0x8000, 0x3, 0x3ccdbded, 0x1, 0x1, 0x8000, 0x7359, 0x2, 0x7fffffff, 0x6, 0x6, 0xb, 0x7, 0x7f, 0x82, 0x8, 0x4, 0x1, 0x400, 0xc, 0xffffffff, 0x10000, 0x7, 0x4, 0x80, 0x630f82ce, 0x4, 0x3, 0xffff6b14, 0x80000001, 0x0, 0x15be]}, @TCA_POLICE_RATE={0x404, 0x2, [0xfff, 0x80, 0x1, 0x5, 0x4, 0xe, 0x6, 0x3, 0xaf1, 0x9, 0x5, 0x9, 0x9, 0xffffffff, 0x5, 0x5, 0x0, 0x7, 0x0, 0x1, 0xfffffff7, 0x2, 0x2, 0x59, 0x401, 0x1, 0x8, 0x6, 0x97e, 0x27ca, 0x8, 0x2, 0x5, 0x3, 0x4, 0x7, 0x6, 0xc32, 0x10, 0x80000000, 0x70000, 0x4, 0x1000, 0x800, 0xfffffff8, 0x7da9, 0x12b34aff, 0x3, 0x6, 0x7f, 0x8, 0x0, 0x8000, 0x1, 0x35, 0x9, 0xa9d0, 0x81, 0x800, 0x4, 0x3, 0x2, 0x6, 0x8, 0xfffffffb, 0x6, 0x6, 0x7, 0x3, 0x6, 0x3, 0x6, 0x8, 0x4, 0x60591839, 0x2, 0x8, 0x100, 0x1, 0x1, 0x200, 0xfffffff8, 0x1, 0xb, 0x9, 0xa56f8432, 0x8, 0x5, 0x3, 0x9, 0x1, 0x1, 0x4, 0xda, 0x3, 0xbf, 0xfffffa2a, 0xfffffff1, 0xffffffff, 0x6b3, 0x401, 0x9, 0x7, 0x4, 0xd0e8, 0x4, 0x5cf, 0x7fff, 0x2d, 0xf9, 0x101, 0x3, 0x10001, 0x0, 0x10, 0x114, 0xffff0000, 0x8303, 0x7, 0x10000, 0xa, 0x5, 0x8, 0x7, 0xf778, 0x7, 0xc, 0xf, 0x3, 0x5781, 0x8, 0x7ff, 0x0, 0x800, 0x14, 0xe, 0xffffff21, 0xc46, 0x3, 0x3, 0x2, 0x6, 0x40, 0x8b1, 0x4, 0xb8, 0xa, 0x80000001, 0x3, 0x0, 0x3, 0x9b, 0x8001, 0x9, 0xfffffffa, 0x8, 0x7, 0x7, 0x4, 0x8, 0x2, 0x6, 0x10, 0xd, 0xff, 0x8, 0xa64, 0x800, 0xf2b, 0x6, 0x40, 0x3, 0x400, 0x81, 0x7, 0x9, 0x6, 0xb, 0xa2b, 0x9, 0xfff, 0x0, 0x2, 0x8, 0xb4ae, 0x4, 0x42, 0x6, 0x6, 0x4, 0xf26, 0x5e, 0x1, 0x8, 0x7, 0x11, 0x5, 0x5, 0x1, 0x5, 0x800, 0x100, 0x827, 0x8, 0xfe241a5, 0xffffff97, 0x701, 0xd4, 0x1, 0x8, 0x5, 0x1, 0xf, 0x1, 0xfffffff4, 0x0, 0xffff, 0x8, 0x200, 0x8, 0x9, 0x400, 0x8, 0x2, 0xfffffffc, 0x3, 0x433, 0x4, 0x9, 0x6, 0xff, 0x7, 0x2000, 0x6, 0x3, 0x10, 0x7, 0xffffffff, 0xd960, 0x5, 0x3c9c, 0x10000, 0x7, 0xffffffff, 0x7, 0x5, 0xfffffffb, 0x2, 0x9, 0x1, 0x0, 0x3, 0x3, 0x7, 0xffff0000, 0x5188]}, @TCA_POLICE_RESULT={0x8, 0x5, 0x1000}, @TCA_POLICE_RESULT={0x8, 0x5, 0x2}], [@TCA_POLICE_AVRATE={0x8, 0x4, 0x5}, @TCA_POLICE_RATE={0x404, 0x2, [0xf, 0x80, 0x2, 0x0, 0xfffffffb, 0x7, 0xfff, 0x84, 0x401, 0x8615, 0x2, 0x8000, 0x2, 0x1, 0x4, 0x1, 0xb7, 0x3, 0x3ff, 0x0, 0x1, 0x7, 0x2, 0x2, 0x2, 0x800, 0x9, 0xffffffbc, 0x8, 0x8, 0x10001, 0xeec5, 0x200, 0x8, 0x7, 0x3, 0x2000, 0xb7, 0x3, 0x4, 0x1, 0x2, 0x7fff, 0x8000, 0xfffffff9, 0x1e21c29e, 0x9, 0xfffffffb, 0x4, 0x0, 0x7, 0x2, 0x10001, 0x14e, 0x7e8, 0x6, 0x0, 0x86a, 0xebd, 0x5, 0x3, 0x10000, 0x4, 0x5, 0x1, 0x8, 0x4, 0x2, 0x6, 0x0, 0x9, 0x4f, 0xfffffffc, 0x2, 0x3, 0xedc, 0x8, 0x101, 0xfd6, 0x7, 0x4e, 0x2, 0x33, 0x4, 0xa26d, 0x2, 0x6, 0x2, 0xa4, 0x80000001, 0x3, 0xbe, 0x9, 0x800, 0xfffffff9, 0xe0, 0xb, 0x10001, 0x2, 0x8, 0xfff, 0x3, 0x1, 0x556, 0x4, 0x3, 0x6, 0xbf58, 0x43, 0x7, 0x0, 0x7, 0x8001, 0x3d10de66, 0x5, 0x1, 0x9, 0x8, 0x608, 0x7, 0x76, 0x2, 0x7, 0x8, 0x3, 0x2, 0xc38, 0xa, 0xe42a, 0x10000, 0xa000000, 0x1, 0x1000, 0x5, 0x2, 0x7, 0x7, 0x0, 0x80000000, 0x4, 0x100, 0x8, 0x7fff, 0x45, 0x9, 0x400, 0x2, 0x2, 0x1, 0x0, 0x7717007, 0xe00b, 0x2, 0x8, 0xc, 0x5, 0x7fffffff, 0x2, 0x8000, 0xc, 0x6, 0x5, 0x7, 0x1000, 0x1ff, 0x3ff, 0x6, 0x1, 0x5, 0x4, 0x1, 0x1, 0x401, 0x4, 0x7, 0x30, 0xb, 0x5, 0x4, 0xa, 0x0, 0xffffffff, 0x0, 0x4, 0x6, 0x51, 0x5, 0x6, 0xa5a9, 0x3, 0x5f2, 0xffff7fff, 0xf470, 0x6be, 0x7, 0x9, 0x46, 0x2, 0x100, 0x8, 0x8, 0x0, 0x7fffffff, 0x10001, 0x6, 0x4, 0x3, 0xa, 0x0, 0x0, 0x39a2a131, 0x1ff, 0x7ff, 0x0, 0xd, 0xebbf, 0x7, 0x4, 0x4, 0x4, 0x7fffffff, 0xd7be, 0x0, 0x3, 0x4, 0x1, 0x0, 0x3, 0x7, 0x4000, 0x7, 0xea, 0xba3, 0x7fff, 0x6, 0x5, 0x3ff, 0xfff, 0xe93, 0x6, 0x9, 0x0, 0x1, 0x9, 0x0, 0x3, 0x91d7, 0x9, 0x8, 0x9, 0xe64, 0xd, 0x1000, 0x80000001, 0x7, 0x6]}, @TCA_POLICE_RATE64={0xc}], [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x84}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x9}], [@TCA_POLICE_PEAKRATE64={0xc}, @TCA_POLICE_RATE64={0xc, 0x8, 0xffff}, @TCA_POLICE_RESULT={0x8, 0x5, 0x2}], [@TCA_POLICE_AVRATE={0x8, 0x4, 0x80000000}, @TCA_POLICE_RATE64={0xc, 0x8, 0x5690}, @TCA_POLICE_TBF={0x3c, 0x1, {0x8000, 0x6, 0x9, 0x3, 0x5, {0x0, 0x2, 0x5, 0x0, 0x0, 0xc3cc}, {0x8, 0x2, 0x2, 0x9, 0x9, 0x6}, 0x8b83, 0x1, 0x2}}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x401}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0xb, 0xffff7439, 0x8000, 0x1ff, 0xc49, 0x5, 0x9, 0x1000, 0x8, 0xff, 0x80000001, 0x101, 0x2, 0x0, 0x5bf7, 0x5, 0x1, 0x4, 0x470c, 0x8000, 0x5, 0x81, 0x1, 0x6, 0xfffffff8, 0x4, 0xe, 0xe, 0x8000, 0x4, 0xf45, 0x10, 0x80000001, 0x6, 0x9, 0x3, 0x0, 0x0, 0x7ff, 0x3, 0x3, 0x8, 0x3ff, 0x5, 0x2, 0x9, 0x95, 0x7ff, 0x9, 0x1800000, 0x401, 0x7de, 0x6, 0x0, 0x2, 0x7, 0x7, 0xd, 0x2, 0x7, 0xffff, 0x8, 0x2, 0x0, 0x9, 0x1, 0x0, 0x6ccf5c1c, 0x400, 0x8, 0xfff, 0x7ff, 0x3, 0x10, 0x3, 0x5, 0x7, 0x9, 0x9, 0x40, 0x8, 0x2, 0xfffffff9, 0x800, 0x0, 0x8, 0x9, 0x200, 0x0, 0x8, 0xda8, 0x7, 0x0, 0x6, 0x40000, 0x8, 0x9, 0x3, 0x9, 0x5, 0x9, 0x865b, 0x4c, 0xff, 0xfff, 0x0, 0x907, 0x70, 0x4c, 0x3, 0x1a2, 0x9, 0x9, 0x7, 0x8, 0x5, 0xfff, 0x7ff, 0xaf32, 0x400, 0x3, 0x10000, 0x7, 0x8, 0xf24d, 0x8, 0x100, 0x39a, 0x2, 0x6, 0x2dc, 0x1, 0x5a, 0x4e, 0x7, 0xffffed85, 0x0, 0x3e69, 0x1ef7ef55, 0x78, 0x0, 0x4, 0x0, 0x7fff, 0x2, 0x7, 0x7cd9d183, 0x2, 0x0, 0x8, 0x6, 0x16, 0x47d, 0x6, 0x8, 0x6, 0xffff, 0x4, 0x8, 0x7, 0xb33e, 0x2, 0x6, 0x0, 0x1, 0x4c, 0xc, 0x9, 0x3, 0x1000, 0x3800, 0x2, 0x0, 0x8, 0x0, 0x4000, 0x6, 0x3, 0x80000000, 0x7ff, 0x0, 0x9, 0x4, 0xc6, 0xffffffff, 0x7fffffff, 0x87f, 0x1000000, 0xa, 0x4, 0xfffffffa, 0x400, 0x341, 0x7fff, 0x4, 0x4e6, 0xb, 0xaa6, 0x454, 0x6, 0x4, 0x2, 0x2be, 0x6, 0xf2b8, 0x2, 0x5, 0x8000, 0x0, 0x6, 0x2, 0x6, 0xf3cb, 0xfffffff7, 0x3, 0xf7, 0x3, 0x2, 0x8, 0xd453, 0x5, 0x8000, 0xb0, 0xd, 0x3, 0x92e1, 0x5, 0x4, 0x9, 0x81, 0x9, 0x3, 0x1, 0x4, 0x80, 0x100, 0xcc, 0x9e48a2, 0x1000, 0x380, 0x5e, 0x0, 0x7f, 0x6, 0x1, 0x5, 0x1d6b, 0xf4a, 0x5, 0xd8, 0x8001, 0xa, 0x8, 0x29c, 0x80, 0x7ff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x9, 0x5, 0xf, 0x2, 0x8, {0xd, 0x1, 0xe, 0xe, 0xa48c, 0x118}, {0x8, 0x1, 0x4, 0x9, 0x9, 0x9}, 0x6, 0x3, 0xfff}}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0xd4d, 0x9, 0x7, 0x2, 0x4, 0x9, 0x6, 0x5, 0x2, 0xd, 0x0, 0x8, 0x4, 0x74d, 0x7fff, 0x800, 0x3, 0x28000, 0x9b50, 0x5, 0x3, 0x5, 0x2, 0x58483a99, 0xfffffffc, 0xc495, 0x5, 0x28, 0x9, 0x1, 0xd451, 0x4cfc, 0x1, 0xffffffff, 0x8, 0x8, 0x8, 0x33, 0x7, 0xa, 0xf6, 0xff, 0x7ff, 0x200, 0xbd2, 0x7, 0x7fff, 0x7fff, 0x4, 0xfffffffd, 0x5, 0xc1, 0x475, 0x578, 0xa, 0x1, 0x101, 0x8, 0x101, 0x8, 0x9, 0x2, 0xffffffff, 0x81, 0x800, 0x4, 0x5, 0x97ce, 0x2, 0xa, 0x2, 0xfffff42f, 0x1, 0x9, 0x9, 0xff, 0x3, 0x2, 0x7, 0x8000, 0x4, 0x7, 0xfffffffa, 0x95, 0x9, 0xff, 0x5, 0x8, 0x3ff, 0xd, 0x6, 0x29d, 0x8, 0x8, 0x7, 0x9, 0xfffffffb, 0x5, 0x5, 0x3, 0x1, 0x5, 0x2, 0x0, 0x6, 0x4, 0xe, 0xffffff81, 0x1, 0x0, 0xb48, 0x7, 0x1, 0x9, 0x1, 0x313, 0x0, 0x1, 0xfffffe00, 0x7fffffff, 0x2, 0x10001, 0x100, 0x1, 0xd8b5, 0x8, 0x71, 0xa400, 0x5ec, 0x5, 0x706a2708, 0x6c, 0x400, 0x400, 0x8, 0x4, 0xfffffff7, 0xfffffffc, 0x0, 0xda, 0x3, 0x2, 0x9, 0x4, 0xa, 0x4, 0x4, 0x81, 0xffffffff, 0xf47c, 0x7, 0x0, 0x3ff, 0x5, 0x1000, 0x644a14e7, 0x628, 0x0, 0x9, 0xffffff02, 0xfff, 0x400, 0xffffffff, 0xbd, 0x48d5, 0x0, 0x10000, 0x2, 0x604c, 0x9, 0x6, 0x4, 0x3, 0x9, 0x4, 0x0, 0x6, 0xfffff1e0, 0x6, 0x673e, 0x87, 0xffffffff, 0x1, 0x3, 0x1c00000, 0x8, 0x2, 0x0, 0x5, 0x3, 0x2, 0x1ff, 0x4, 0x3e6c, 0x5, 0x9, 0xe, 0x3, 0x9, 0x8, 0x7, 0x8, 0x2, 0x4, 0x5a7, 0x8, 0x1000, 0x0, 0x101, 0x3, 0xb, 0x7, 0x200, 0xa, 0x0, 0x1, 0x9, 0x80000000, 0x3, 0x7, 0x8, 0x2, 0x2, 0x7, 0x1db7, 0x4, 0xffffffff, 0x0, 0xab1, 0x8fd, 0x0, 0x6, 0x9, 0x714, 0x7fffffff, 0x8, 0xd5, 0x9, 0x2, 0x6, 0x1, 0xd, 0x2, 0x2, 0x9, 0x10, 0x2, 0x6, 0x1, 0x1000, 0x8, 0xf216, 0xfff, 0xaa38, 0x1]}]]}, {0x34, 0x6, "508b7f8504fdc3f2fc97062368858f71509f9b1db260883f03e8d2aa6dd0c525fb31f21e02af2b6c9a4c0432a1a43ba9"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x2}}}}]}]}, 0x3324}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r4 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006)
bind$tipc(0xffffffffffffffff, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
syz_open_dev$tty20(0xc, 0x4, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYRESOCT=r1, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='dyn'])
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)

2.230833657s ago: executing program 2 (id=2114):
syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
timer_create(0xb, 0x0, &(0x7f00000000c0))
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(0xffffffffffffffff, &(0x7f0000000280)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, 0x30, 0x0, @in6={0xa, 0x4e23, 0x1, @loopback, 0x5}, @ib={0x1b, 0x0, 0xc, {"7d735931001016095e000303ff010001"}, 0x4}}}, 0x118)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca205081173bd03c4754fc4674812daab482fd390a1c903b5d28a1eb247b5837d7603b92495d5c569f6433c3fca5206cb0000003fdbbd3892c52c2e7612e05de32322e980a3d69931e2c9312dd517c96f2ee90362476ed853c4c9b7d4ebf13cbaa795860e92a3d7d004f2c491db38eb769f094d5d48b262cc35c40682138cf13a49aa9f27abec00002f01ba1251aaf2385416ca719300"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_GET(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000000c0)={0x30, r6, 0x1, 0x0, 0x0, {0x54}, [@pci={{0x8}, {0x11}}]}, 0x30}}, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0)
close(r7)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
ioctl$HCIINQUIRY(r1, 0x800448f0, &(0x7f00000000c0)={0x0, 0x2, "100093", 0x9, 0xfc})
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r8, 0x0, 0x0)

2.17018465s ago: executing program 0 (id=2115):
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
getpid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000013c0)=ANY=[@ANYBLOB="b702000000000000bfa300000000000007030000ffffffff7a0af0fff8ffff5979a4f0ff00000000b7060000ffffffff2d6405000000000065040400014741001404000001007d60b7030000000000006a0a00fe40000900850000001f000000b70000000004000095000000000000006623848adf1dc9a764ab51a064e0ff0c9b27a26293fddf0180000071ff31f1622271d5518193e09483c5a020c334f8c76334d8ce8303b01ddaa52e8756ad60a07d6f27c125e16d024098f755d8583da60f27c162dbba0700002ac9170f50f2568836077b7f711a18ebf608d87b885297b6a79819782748b376358c33c9f53bfd989b1ca58949a54d5827df14feecea46408a05d572077f1252fbb72c3d099c501bc4ded6fca17a3447222c95edb47b77aafa63b9dd5fa5c53e9c37251709f1ff7f0000f07bf7f53ce129a9ecd3b4dd15100f2b450f98526a0d8cac7c97fc2f64015306a1bd7e43fe1ca8345710fb6379b4c53cf55eefb4c0974486a8d25a363adbd83b49e13fbd1777b27020bd9b8cff3f48c9411670c34f23ab8caf7851b290feb3045a1b622f20c4383a0280f040de7667f8b1d0842835e81c358ebe73af41e5b5b924275cb1749289b44e9728e7a73f148ac8206afe120c1437490d99000000110000fdffffffffffffffaf580278e1342aabd1b623f6c4f128858e4eb6b42f2173184c2b99b645f6ec0e14e5d7c95a0008000000f30f6c0000000000ff0000b8f5001a1d2a34dc0973ec302bc23211d3e3b6e6dad65a51e5497a3419cecec38126247b27113ad4c7915c8f82c333a7b350802f0311807010d1ed50c18411aa6900daccc02f4ba4b078f07e41f781eee222c7d071d5a94d82ca9a0846c1af59cee16639b4970f8f0a82c6a712fd5722d637d406160ffaffffffb4e0bde6749aa52c408b74251914c5d3255fd88a42e7ebb69ebcd8eee623e51dbb1f1b548c91a6825c0686fdc16be1cbb72c217fda18bd746253ca66093daf35923300b600000000ac376e0a4649a8a84e1d293a6b109c5e59b366bca5cc3d936c53d4a48c05099e6fc36d5aa23bff8cce0600fcff00000300a568a8532623d12b40b50ac26f2e8255470a04bfbe7acb581b90991d965a01d1f84cb6b973558e1e3f8118c77ccf0b3c6eb6443870004da10c75723b65f83769ad1f0e4ef6b9ef1cec23264fd8fdac6264af1cb467020bdc12b797b6c156c439105829d2ae1c45f7cfa40df68fd36a03353a55a8a89b60317cd78ea1dc8e0f77f2c1e68ec7c01bd5a2028a8fc107007f3deb1f200abe1f753754678dae8b4e3ba3d086d4b95dfc5817e3dafae2d38b522f942cc750399d90296171fdb1e05882f8a4b8fbd219ccac3a895828b4f22b6527ce31ceb02b7b2b4492510134552f0b076b168394f8417f25cc82ae04007193cbe69de8bf35e4bebd15412426b2e20ab1f05fc44ae9ae094c1b81d3ef947692b44d2afb09c7498dedf0f87c38bbcab7357836f03e8a7c392e535694a3ead2de11e6b1781e2a018c0ada7bc7f0eb2d678f23c07ac341fda2e563ee95085742f5fee9f95f4741b226e428d20b00bc140000e4b2f5efd0a0b1ceba000830ba8634b5aa26bdbe91614e92fae3c7349531df9bf4c01ebf5d8eb7d53e5f30647661623fbdb3f60033fc32f68ea86a2df1e76fe27dfdff1cf9194849c4cc0da9533e5983693e526a7dc0d8728f3b573ca4427bdb44df9341e9b8050e896598a156c935c800436a312e7ae3c011e46851ac599f0427729ab9c55ae0ab4c0000000000000000000000000000c87bcc2ac5aed9247b51d92e0993af4beaf1f3f47dcdfab9165f98155d93e383d6b85158b54675c1585037508c1e9461a1c3d1a6e2402045cae150a7016f1a90716eebbdf6afc4414d900be0bdf19f4a273f44f4357380b4387f1c8b104f0e406b2f04e5ed88631be6411f9927fe9f83412b7c5a676ceec8b454ebf6481c98e86b6933a02daea0b4ec0be5b3d916bd70208b4588626c277648475002e2c62681bd07331422a6e47bbd40857d52c4894944fae5c500000000000000ff00000000de784314b8fd419216b48d0f353c11ae185749fa9ac7dfa16bc5c23a23f74b17a7f1b2d799480f33faa3537a910d6ca02f48b0e69beb1119f106ea59195dbc72e17a5dc8c3d131d82f067e29dc39665dff39fb6347b374aaaf6e65efde3f8f26283bcd93e80cacc6202bf29ccfcb08caf18d668a462493aa82e76affba9c9af31d1c23237aa6eccfadfaf794bb1004c07b21ac6ed77718098b2f722bd05fea3561b86b2838a8de5b4f91d6aba95dc9f4464a024be4d0d8d04f5023e7e19e503624d39a43c7b310de519b40738ff9a623065c06d69d16d4a46ff300022fee47803989b7e916254e0fb9e1c8b07d8a4b8b692a75a32e6ed2caeaa7c258c47fe6143cd9e90b801eff78cd4e402374e0e4ca07b7f17254e3d2f0a2a1bac6fde8a15e3ef3588065524d41966fb3915e804c53201efee751ec294584d23d9008bdf046f55c030ab941a0b8723412127efb3eac0ccf68133c76770d5e7dabcc48d47685404cc540535ed70df75c24660d85f9c9a245185c7da217d1c3743db85db67b9b8a8f00af02367429f6f0b53c169c4356751bf68745dbde055e1522ae256ae53ae637a1431855d16dfa91d82a021a4b2dbb50bf6d59fdd0c9bc84cd7b544de2523b6ce8aaeb94bfba75079f7455204ccca02bd389d8409b2effe9b88e301ac4fe28752386a0678a3f54b2bdf56f927ddd6b0ac98b2b505f668597455ada51ba95ab852b49373a11ff310601bcdd23acb4c01bcd2f3e1ad378d14c07d923087d3518369710b70ffb0b523dc4f00f275c381fe1c091e478b04d5e4a9f75b4072acb005a83c25625ab7affffffff7177e27a1bf112114eb10250c2b9dca234f8967f0439696a2345e747b5f1d8c4bec86d8e8f2eb121ea0159615e7d475d45837921c2c0c3f9e683ac8000214a657c9f0a00000000000000159596ac570c4b889106f937d56b2346c818917b727bf5e2741068ec000000000000000000ec84"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000880), 0xfffffffffffffddd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r0, 0xe0, &(0x7f0000000480)={0x0, <r1=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r2 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r1}, 0x4)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000840)={r2, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd6e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff29, 0x0}}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x3, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x6}, [@call={0x85, 0x0, 0x0, 0x11}]}, &(0x7f0000000080)='GPL\x00', 0x9, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000280)={'wg2\x00'})
sendmsg$DEVLINK_CMD_RELOAD(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)

2.169702556s ago: executing program 0 (id=2116):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @none, 0x7ff, 0xf31fa5d24addcc44}, 0xe)
r2 = dup(r0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x235, &(0x7f00000002c0)={0x0, 0x4533, 0x10100, 0x0, 0x2ad}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000000c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x201}, 0x1})
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
r6 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000c00)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000900)=@gettaction={0x14, 0x32, 0x8, 0x70bd26, 0x25dfdbff}, 0x14}}, 0x20044080)
sendmsg$nl_route_sched(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000100)=@newqdisc={0x48, 0x24, 0xd0f, 0x70bd25, 0x0, {0x60, 0x0, 0x0, r8, {}, {0xffe0, 0xa}, {0x0, 0x10}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x1, 0x3}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x55}, 0x200000a0)
syz_open_procfs(0x0, &(0x7f0000000000)='timers\x00')
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000780)=ANY=[@ANYBLOB], &(0x7f0000000380)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0xf, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r9 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r9, &(0x7f0000019680)=""/102392, 0x18ff8)

1.906187123s ago: executing program 1 (id=2118):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
fanotify_init(0x0, 0x0)
epoll_create1(0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000280), 0xa01, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
dup(0xffffffffffffffff)
recvfrom$inet(0xffffffffffffffff, 0x0, 0x0, 0xc9100100, 0x0, 0x0)
r1 = syz_usb_connect(0x1, 0x2d, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x8001, 0x6, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
socket$packet(0x11, 0x0, 0x300)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
socket(0x10, 0x400000000080803, 0x0)
munlockall()
socket(0x10, 0x80000, 0x0)

1.904523953s ago: executing program 4 (id=2119):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000540)={0x0, 0x1, 0x0, 0x1000, &(0x7f0000fef000/0x1000)=nil})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
fsopen(&(0x7f00000002c0)='msdos\x00', 0x0)
r1 = gettid()
syz_open_procfs(r1, &(0x7f0000000280)='net/netstat\x00')
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5dbf241b, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
creat(&(0x7f00000002c0)='./file0\x00', 0xc)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r6, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x8fff5], 0x0, 0x0, 0x1f, 0x1}}, 0x3c)

1.690629498s ago: executing program 4 (id=2120):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x32b}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE={0x8, 0x2, @loopback}, @IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x40}}, 0x0)
sendmsg$NFT_MSG_GETTABLE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x48080}, 0x4000001)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="310401080000030000001600000018000180140002006e657464657673696d3000000000000005000300010000000500040001000000050002"], 0x44}}, 0x0)

1.690371238s ago: executing program 4 (id=2121):
r0 = fsopen(&(0x7f0000000300)='mqueue\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x5)
mount_setattr(r1, &(0x7f0000000000)='.\x00', 0x0, &(0x7f0000000200)={0x5, 0x0, 0x1000000}, 0x20)

1.610812061s ago: executing program 4 (id=2122):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000c18000), 0x0)
r5 = accept4(r4, 0x0, 0x0, 0x0)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/73, 0x49}], 0x1}, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000140)=0x7)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000080)=0xff)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000180)=0x9)
sendmmsg$alg(r5, &(0x7f0000000900)=[{0x0, 0x0, &(0x7f0000000a80)}], 0x1, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, 0x0, 0x0)
getsockopt$inet6_buf(r3, 0x29, 0x30, &(0x7f0000000000)=""/40, 0x0)
unshare(0x68060200)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1.190935049s ago: executing program 2 (id=2123):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="05000000050000000200000004"], 0x48)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0b0000000000b656b785ccc75cd77f8900d0da71e3dbdef6fcaebd35d89a0bd7ba0b9e577da238e6ea163524c2cfed213999754974ca195859faf22188775bdeec712e53b91864cf8baafbfd5938233de5f0fa4deba2cb33970cacb2aab411ee085360f7d06e6face6e2434758e12aaa4453a328ab1bac5319aa5ee7b28eb1dba5c1e522bac4759e8f424e4bc64d969204ee24ea824b22d401ae6ca2fc2cdc688ec9804889c30c44c6ff65c44167188b869926e887d4f860454e0c5a750605c679db8cd07ac08e569bca3ec701de5a6f24d6626563e7af0be2a6c8d31a5f3fa4", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b703000000000000850000007200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = syz_open_dev$vim2m(&(0x7f0000000040), 0x6, 0x2)
ioctl$vim2m_VIDIOC_DQBUF(r2, 0xc044560f, &(0x7f0000000280)=@mmap={0x0, 0x1, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "37bb54f0"}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000300)='tlb_flush\x00', r1}, 0x10)

960.841429ms ago: executing program 2 (id=2124):
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
getpid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000013c0)=ANY=[@ANYBLOB="b702000000000000bfa300000000000007030000ffffffff7a0af0fff8ffff5979a4f0ff00000000b7060000ffffffff2d6405000000000065040400014741001404000001007d60b7030000000000006a0a00fe40000900850000001f000000b70000000004000095000000000000006623848adf1dc9a764ab51a064e0ff0c9b27a26293fddf0180000071ff31f1622271d5518193e09483c5a020c334f8c76334d8ce8303b01ddaa52e8756ad60a07d6f27c125e16d024098f755d8583da60f27c162dbba0700002ac9170f50f2568836077b7f711a18ebf608d87b885297b6a79819782748b376358c33c9f53bfd989b1ca58949a54d5827df14feecea46408a05d572077f1252fbb72c3d099c501bc4ded6fca17a3447222c95edb47b77aafa63b9dd5fa5c53e9c37251709f1ff7f0000f07bf7f53ce129a9ecd3b4dd15100f2b450f98526a0d8cac7c97fc2f64015306a1bd7e43fe1ca8345710fb6379b4c53cf55eefb4c0974486a8d25a363adbd83b49e13fbd1777b27020bd9b8cff3f48c9411670c34f23ab8caf7851b290feb3045a1b622f20c4383a0280f040de7667f8b1d0842835e81c358ebe73af41e5b5b924275cb1749289b44e9728e7a73f148ac8206afe120c1437490d99000000110000fdffffffffffffffaf580278e1342aabd1b623f6c4f128858e4eb6b42f2173184c2b99b645f6ec0e14e5d7c95a0008000000f30f6c0000000000ff0000b8f5001a1d2a34dc0973ec302bc23211d3e3b6e6dad65a51e5497a3419cecec38126247b27113ad4c7915c8f82c333a7b350802f0311807010d1ed50c18411aa6900daccc02f4ba4b078f07e41f781eee222c7d071d5a94d82ca9a0846c1af59cee16639b4970f8f0a82c6a712fd5722d637d406160ffaffffffb4e0bde6749aa52c408b74251914c5d3255fd88a42e7ebb69ebcd8eee623e51dbb1f1b548c91a6825c0686fdc16be1cbb72c217fda18bd746253ca66093daf35923300b600000000ac376e0a4649a8a84e1d293a6b109c5e59b366bca5cc3d936c53d4a48c05099e6fc36d5aa23bff8cce0600fcff00000300a568a8532623d12b40b50ac26f2e8255470a04bfbe7acb581b90991d965a01d1f84cb6b973558e1e3f8118c77ccf0b3c6eb6443870004da10c75723b65f83769ad1f0e4ef6b9ef1cec23264fd8fdac6264af1cb467020bdc12b797b6c156c439105829d2ae1c45f7cfa40df68fd36a03353a55a8a89b60317cd78ea1dc8e0f77f2c1e68ec7c01bd5a2028a8fc107007f3deb1f200abe1f753754678dae8b4e3ba3d086d4b95dfc5817e3dafae2d38b522f942cc750399d90296171fdb1e05882f8a4b8fbd219ccac3a895828b4f22b6527ce31ceb02b7b2b4492510134552f0b076b168394f8417f25cc82ae04007193cbe69de8bf35e4bebd15412426b2e20ab1f05fc44ae9ae094c1b81d3ef947692b44d2afb09c7498dedf0f87c38bbcab7357836f03e8a7c392e535694a3ead2de11e6b1781e2a018c0ada7bc7f0eb2d678f23c07ac341fda2e563ee95085742f5fee9f95f4741b226e428d20b00bc140000e4b2f5efd0a0b1ceba000830ba8634b5aa26bdbe91614e92fae3c7349531df9bf4c01ebf5d8eb7d53e5f30647661623fbdb3f60033fc32f68ea86a2df1e76fe27dfdff1cf9194849c4cc0da9533e5983693e526a7dc0d8728f3b573ca4427bdb44df9341e9b8050e896598a156c935c800436a312e7ae3c011e46851ac599f0427729ab9c55ae0ab4c0000000000000000000000000000c87bcc2ac5aed9247b51d92e0993af4beaf1f3f47dcdfab9165f98155d93e383d6b85158b54675c1585037508c1e9461a1c3d1a6e2402045cae150a7016f1a90716eebbdf6afc4414d900be0bdf19f4a273f44f4357380b4387f1c8b104f0e406b2f04e5ed88631be6411f9927fe9f83412b7c5a676ceec8b454ebf6481c98e86b6933a02daea0b4ec0be5b3d916bd70208b4588626c277648475002e2c62681bd07331422a6e47bbd40857d52c4894944fae5c500000000000000ff00000000de784314b8fd419216b48d0f353c11ae185749fa9ac7dfa16bc5c23a23f74b17a7f1b2d799480f33faa3537a910d6ca02f48b0e69beb1119f106ea59195dbc72e17a5dc8c3d131d82f067e29dc39665dff39fb6347b374aaaf6e65efde3f8f26283bcd93e80cacc6202bf29ccfcb08caf18d668a462493aa82e76affba9c9af31d1c23237aa6eccfadfaf794bb1004c07b21ac6ed77718098b2f722bd05fea3561b86b2838a8de5b4f91d6aba95dc9f4464a024be4d0d8d04f5023e7e19e503624d39a43c7b310de519b40738ff9a623065c06d69d16d4a46ff300022fee47803989b7e916254e0fb9e1c8b07d8a4b8b692a75a32e6ed2caeaa7c258c47fe6143cd9e90b801eff78cd4e402374e0e4ca07b7f17254e3d2f0a2a1bac6fde8a15e3ef3588065524d41966fb3915e804c53201efee751ec294584d23d9008bdf046f55c030ab941a0b8723412127efb3eac0ccf68133c76770d5e7dabcc48d47685404cc540535ed70df75c24660d85f9c9a245185c7da217d1c3743db85db67b9b8a8f00af02367429f6f0b53c169c4356751bf68745dbde055e1522ae256ae53ae637a1431855d16dfa91d82a021a4b2dbb50bf6d59fdd0c9bc84cd7b544de2523b6ce8aaeb94bfba75079f7455204ccca02bd389d8409b2effe9b88e301ac4fe28752386a0678a3f54b2bdf56f927ddd6b0ac98b2b505f668597455ada51ba95ab852b49373a11ff310601bcdd23acb4c01bcd2f3e1ad378d14c07d923087d3518369710b70ffb0b523dc4f00f275c381fe1c091e478b04d5e4a9f75b4072acb005a83c25625ab7affffffff7177e27a1bf112114eb10250c2b9dca234f8967f0439696a2345e747b5f1d8c4bec86d8e8f2eb121ea0159615e7d475d45837921c2c0c3f9e683ac8000214a657c9f0a00000000000000159596ac570c4b889106f937d56b2346c818917b727bf5e2741068ec000000000000000000ec84"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000880), 0xfffffffffffffddd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r0, 0xe0, &(0x7f0000000480)={0x0, <r1=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r2 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r1}, 0x4)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000840)={r2, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd6e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff29, 0x0}}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x3, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x6}, [@call={0x85, 0x0, 0x0, 0x11}]}, &(0x7f0000000080)='GPL\x00', 0x9, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000280)={'wg2\x00'})
sendmsg$DEVLINK_CMD_RELOAD(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)

960.484854ms ago: executing program 2 (id=2125):
r0 = syz_open_dev$vbi(&(0x7f00000001c0), 0x1, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfffffd9d)
write$binfmt_script(r1, &(0x7f0000001b00), 0xfffffd9d)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x3, 0x7f, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0x6, 0x1, 0x5, 0xffffffff, 0xe661, 0x4, 0x7, 0x3, 0x8, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x8f, 0x4006, 0x6, 0x0, 0x5, 0x4, 0x8, 0x400, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0xfffffffe, 0x40], [0x10000007, 0x9, 0x8000012f, 0x6, 0x5, 0x6, 0x129432e6, 0xc8, 0xf9, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x7, 0x7fff, 0x9, 0x420, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x2, 0x4, 0xb, 0x4, 0x9, 0x8, 0x9, 0x9, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x0, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x9, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x10000, 0x3, 0x5, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0xffe, 0xa2, 0x7, 0xa9, 0x5, 0x9, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0x0, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce7, 0x9, 0x2, 0x57, 0x5, 0x3, 0x101, 0x10000, 0x4, 0x7fff, 0xffff, 0x2000a620, 0x2, 0x5, 0x1, 0x2, 0x5, 0xe7, 0x6, 0x16, 0xffffffff, 0x80000003, 0x5, 0x4, 0xc8, 0x9, 0xfffff000, 0x10000, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0xaf, 0x8, 0x6, 0x226, 0x5, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0xd7, 0x200, 0xffff3441, 0xfff]}, 0x45c)
timerfd_create(0x6, 0x80800)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)

900.802163ms ago: executing program 2 (id=2126):
ioctl$EVIOCGKEY(0xffffffffffffffff, 0x80404518, &(0x7f00000000c0)=""/79)
socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$inet_mtu(r2, 0x0, 0xa, &(0x7f0000000280)=0x5, 0x4)
connect$inet(r2, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x400008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbee9, 0x8031, r0, 0x19381000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
sendmsg$nl_generic(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2000000022000103780000000000000001"], 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000000180)={0x1c, 0x2c, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}, [@nested={0x8, 0xc}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r7, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
shutdown(r7, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macsec0\x00'})
r8 = openat$fuse(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
syz_fuse_handle_req(r8, 0x0, 0x0, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x90, 0xfffffffffffffff5, 0xfffffffffffffffc, {0x3, 0x8000000000000, 0x28dc, 0x0, 0x440002, 0x1, {0x1, 0xfffffffffffffffd, 0xfffffffffffffffe, 0x0, 0x10, 0x400, 0x0, 0x0, 0x4, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
epoll_create(0x7fffffff)

670.75755ms ago: executing program 1 (id=2127):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="0000020000", @ANYRES32=0x0, @ANYRES32=r0], 0x6c}}, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f91524fc60", 0x14}], 0x1}, 0x40048820)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'pcrypt(gcm_base(ctr(aes-aesni),ghash-generic))\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000440)='\x00'/16, 0x10)
r6 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f0000000180)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_UNLINKAT={0x24, 0x10, 0x0, r6, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x0, 0x1})
io_uring_enter(r7, 0x2def, 0x4000, 0x0, 0x0, 0x0)
r10 = accept4(r5, 0x0, 0x0, 0x0)
r11 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), r10)
sendmsg$TIPC_NL_MEDIA_SET(r10, &(0x7f0000000380)={&(0x7f0000000100), 0xc, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1400000021e9af188323cb959813a85e732378173d308fa566cb250e08943c24973f51ce574bedaa67f3bb07537442d73efdd2898bed4487c009cca7132b0e4f0921f515e3689d2b063606566ea294e4968b610436903392f6f47ea8166412f01cdab9dac2c2112287a093b0552eeff6d18f8f437e1eb826bb08373fc4fd13f38be828159879260aca4a392d119cac4d2490c60955d071de53a2a45cfe55fdbdae4f5c89b6be228ef260ff8e8b53feb33d8f6ec887fa4366b38ec95dac8f86d0b2d1604500ff09c8b68cb81f", @ANYRES16=r11, @ANYBLOB="00042abd7000ffdbdf250c000000"], 0x14}, 0x1, 0x0, 0x0, 0x8800}, 0x34000040)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x200003, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
r12 = accept4(r10, 0x0, 0x0, 0x0)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r13, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c00000002060104db406e3e0004000200000000100003006269746d61703a706f72740005000400000000000900020073797a32000000000500050000006c00050001000600000024000780080008400000137906000440fffff0000600054000000000080006"], 0x6c}}, 0x0)
sendmmsg$inet6(r12, &(0x7f0000003b80)=[{{0x0, 0xd, &(0x7f00000003c0)=[{&(0x7f00000000c0)="e6", 0x1}], 0x1, 0x0, 0x0, 0x7000000}}, {{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000440)='&', 0x23fff}], 0x1}, 0xff03}], 0x4000070, 0x8000)
syz_open_dev$usbfs(&(0x7f0000000280), 0xffffffff, 0x248040)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="280000001d000904000080000000000007000000", @ANYRES32=r4], 0x28}}, 0x0)

630.865475ms ago: executing program 4 (id=2128):
bind$alg(0xffffffffffffffff, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
epoll_create1(0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendmmsg$sock(r0, &(0x7f0000000cc0)=[{{&(0x7f0000000100)=@l2tp={0x2, 0x0, @broadcast, 0x3}, 0x80, 0x0}}, {{&(0x7f0000000700)=@in6={0xa, 0x4e23, 0x7, @dev={0xfe, 0x80, '\x00', 0x18}, 0x60}, 0x80, 0x0}}], 0x2, 0x48094)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x5, [@func={0x2, 0x0, 0x0, 0xc, 0x2}, @func_proto]}, {0x0, [0x0, 0x5f, 0x61]}}, 0x0, 0x35, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="180011000000000000000000000100008500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r2, 0xc, &(0x7f00000000c0)={0x0, 0x1}, 0x1, 0x10, 0x0, 0x0, 0x0, 0x0, 0x9c1288ee7b80141, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_INITMSG(0xffffffffffffffff, 0x84, 0x2, &(0x7f0000000f80)={0x800, 0x1, 0x3165, 0xffc0}, 0x8)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000180)="b8", 0x1, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x8000000, @loopback, 0xd5}, 0x1c)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
write$cgroup_int(r1, &(0x7f0000000000), 0xffffff6a)
sendfile(r0, r1, 0x0, 0xffffffff000)
open_tree(r1, &(0x7f0000000040)='./file0\x00', 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
syz_open_dev$tty1(0xc, 0x4, 0x2)

420.895304ms ago: executing program 1 (id=2129):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x11, 0x80a, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=@newlink={0x3c, 0x10, 0x449, 0x3000000, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_ALL_SLAVES_ACTIVE={0x5, 0x11, 0x1}]}}}]}, 0x3c}}, 0x0)

250.825547ms ago: executing program 1 (id=2130):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0xa0880, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000080)={0x1, 0x0, [{0xd, 0x1, 0xffffffff, 0x7, 0x9db}]}) (fail_nth: 1)

571.329µs ago: executing program 1 (id=2131):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@func_proto={0x0, 0x0, 0x0, 0x2, 0x2}, @array={0x0, 0x0, 0x0, 0xa, 0x3, {0x0, 0x2000000}}]}}, 0x0, 0x3e, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
r2 = syz_io_uring_setup(0x1714, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000080)=<r4=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r2, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, r0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x22}})
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000340)={0x8, {"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", 0x1000}}, 0x1006)
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000200), 0x4000000004002, 0x0)
r6 = dup(r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000007, 0x38011, r6, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f000062a000/0x1000)=nil, 0x1000, 0x1000000, 0x12, r6, 0x0)
write$bt_hci(r6, &(0x7f0000000000)={0x1, @read_enc_key_size={{0x1408, 0x2}, {0xc8}}}, 0x6)
io_uring_enter(r2, 0x27e2, 0x0, 0x0, 0x0, 0x0)
writev(r1, &(0x7f0000004400)=[{&(0x7f0000002000)="87", 0x1}], 0x1)

196.274µs ago: executing program 2 (id=2132):
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
memfd_create(&(0x7f0000000000)='/dev/sg#\x00', 0x0)
socket$packet(0x11, 0x3, 0x300)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_encap(r3, 0x11, 0x68, &(0x7f0000000100)=0x5, 0x4)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r1, 0x58, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=@getstats={0x1c, 0x5e, 0x200, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, 0x4}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x24004000)
setsockopt$inet6_int(r3, 0x29, 0x2, &(0x7f0000000040)=0xc, 0x4)
recvmmsg(r3, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_emit_vhci(&(0x7f0000000440)=@HCI_EVENT_PKT={0x4, @extended_inquiry_info={{0x2f, 0x1}}}, 0x4)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0xc048aeca, &(0x7f0000000080))

0s ago: executing program 1 (id=2133):
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
getpid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000013c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000880), 0xfffffffffffffddd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r0, 0xe0, &(0x7f0000000480)={0x0, <r1=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r2 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r1}, 0x4)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000840)={r2, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r3=>0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd6e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff29, 0x0}}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x3, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x6}, [@call={0x85, 0x0, 0x0, 0x11}]}, &(0x7f0000000080)='GPL\x00', 0x9, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000280)={'wg2\x00'})
sendmsg$DEVLINK_CMD_RELOAD(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)

0s ago: executing program 1 (id=2134):
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448ca, 0x0) (async)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6) (async)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r1, &(0x7f0000000280)={0x1f, @fixed}, 0x8)
setsockopt$bt_BT_VOICE(r1, 0x112, 0x13, 0x0, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f00000063c0)=ANY=[@ANYBLOB="200000002c00010026bd7000fcdbdf2504000000080017000200000004000e"], 0x20}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)

kernel console output (not intermixed with test programs):

0 phys_seg 12 prio class 0
[  201.891767][ T9717] I/O error, dev loop7, sector 3464 op 0x1:(WRITE) flags 0x800 phys_seg 3 prio class 0
[  201.894759][ T9715] Buffer I/O error on dev loop7, logical block 436, lost async page write
[  201.897282][ T9717] Buffer I/O error on dev loop7, logical block 433, lost async page write
[  201.900427][ T9715] Buffer I/O error on dev loop7, logical block 437, lost async page write
[  201.903089][ T9717] Buffer I/O error on dev loop7, logical block 434, lost async page write
[  201.905743][ T9715] Buffer I/O error on dev loop7, logical block 438, lost async page write
[  201.908320][ T9717] Buffer I/O error on dev loop7, logical block 435, lost async page write
[  201.909846][ T9715] Buffer I/O error on dev loop7, logical block 439, lost async page write
[  201.914539][ T9715] Buffer I/O error on dev loop7, logical block 440, lost async page write
[  201.917054][ T9715] Buffer I/O error on dev loop7, logical block 441, lost async page write
[  202.033043][ T9721] sit0: entered promiscuous mode
[  202.036128][ T9721] netlink: 'syz.1.1233': attribute type 1 has an invalid length.
[  202.038358][ T9721] netlink: 1 bytes leftover after parsing attributes in process `syz.1.1233'.
[  202.040187][ T9717] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.043310][ T9717] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.045629][ T9717] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.048000][ T9717] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.052853][ T9717] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.055324][ T9717] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.057774][ T9717] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  202.061004][ T9717] ldm_validate_partition_table(): Disk read failed.
[  202.063370][ T9717] Dev loop7: unable to read RDB block 0
[  202.065213][ T9717]  loop7: unable to read partition table
[  202.066775][ T9717] loop_reread_partitions: partition scan of loop7 (K‹>¤i)ßí/480�• #Ð	…$qÝZ”©þ•I‘ŠçýÎ[†u±@3bÏàôüÏûj!5MMñ]
z) failed (rc=-5)
[  202.094031][ T9726] IPVS: sync thread started: state = BACKUP, mcast_ifn = batadv0, syncid = 0, id = 0
[  203.156044][ T9759] wireguard0: entered promiscuous mode
[  203.157895][ T9759] wireguard0: entered allmulticast mode
[  203.194164][ T9763] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1242'.
[  204.668247][ T9793] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1252'.
[  204.790023][ T9798] fuse: Unknown parameter '0x0000000000000004'
[  205.000743][ T9801] capability: warning: `syz.3.1255' uses deprecated v2 capabilities in a way that may be insecure
[  205.004476][ T9801] 9pnet_rdma: rdma_create_trans (9801): problem binding to privport: 13
[  205.549693][ T9809] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1256'.
[  206.197284][ T9832] netlink: 'syz.2.1262': attribute type 1 has an invalid length.
[  206.209203][ T9832] 8021q: adding VLAN 0 to HW filter on device bond5
[  206.340449][ T9844] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  206.530017][ T5988] usb 8-1: new high-speed USB device number 27 using dummy_hcd
[  206.689834][ T5988] usb 8-1: Using ep0 maxpacket: 32
[  206.693299][ T5988] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  206.697489][ T5988] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  206.701295][ T5988] usb 8-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  206.704717][ T5988] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.708238][ T5988] usb 8-1: config 0 descriptor??
[  207.097693][ T9852] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1267'.
[  207.115553][ T5988] savu 0003:1E7D:2D5A.0004: unknown main item tag 0x0
[  207.119917][ T5988] savu 0003:1E7D:2D5A.0004: unknown main item tag 0x0
[  207.121989][ T5988] savu 0003:1E7D:2D5A.0004: unknown main item tag 0x0
[  207.124081][ T5988] savu 0003:1E7D:2D5A.0004: unknown main item tag 0x0
[  207.126174][ T5988] savu 0003:1E7D:2D5A.0004: unknown main item tag 0x0
[  207.142524][ T5988] savu 0003:1E7D:2D5A.0004: unknown main item tag 0x0
[  207.144643][ T5988] savu 0003:1E7D:2D5A.0004: unknown main item tag 0x0
[  207.146716][ T5988] savu 0003:1E7D:2D5A.0004: unknown main item tag 0x0
[  207.153715][ T5988] savu 0003:1E7D:2D5A.0004: hidraw1: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[  207.315428][ T5988] usb 8-1: USB disconnect, device number 27
[  207.474619][ T9870] netlink: 'syz.2.1271': attribute type 1 has an invalid length.
[  207.492680][ T9870] 8021q: adding VLAN 0 to HW filter on device bond6
[  207.947008][ T9889] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1274'.
[  209.012906][ T9914] netlink: 'syz.0.1280': attribute type 1 has an invalid length.
[  209.023285][ T9914] 8021q: adding VLAN 0 to HW filter on device bond2
[  209.054608][ T9917] fuse: Unknown parameter '0x0000000000000004'
[  209.254341][   T39] audit: type=1800 audit(1740808774.291:17): pid=9923 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1284" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  209.325147][ T9927] mkiss: ax0: crc mode is auto.
[  210.243011][ T9939] netlink: 'syz.1.1289': attribute type 1 has an invalid length.
[  210.250433][ T9939] 8021q: adding VLAN 0 to HW filter on device bond4
[  210.390592][ T9945] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1288'.
[  210.679080][ T9952] sch_tbf: peakrate 1 is lower than or equals to rate 15225280510952903537 !
[  211.059236][ T9959] netlink: 'syz.0.1293': attribute type 10 has an invalid length.
[  211.062278][ T9959] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1293'.
[  211.064967][ T9959] bridge_slave_0: left allmulticast mode
[  211.066735][ T9959] bridge_slave_0: left promiscuous mode
[  211.069571][ T9959] bridge0: port 1(bridge_slave_0) entered disabled state
[  211.491544][ T9971] netlink: 'syz.2.1298': attribute type 1 has an invalid length.
[  211.501899][ T9971] 8021q: adding VLAN 0 to HW filter on device bond7
[  211.764650][ T9981] netlink: 260 bytes leftover after parsing attributes in process `syz.0.1301'.
[  211.767235][ T9981] netlink: 256 bytes leftover after parsing attributes in process `syz.0.1301'.
[  211.768205][ T9982] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1299'.
[  211.770329][ T9981] unsupported nlmsg_type 40
[  211.829952][   T39] audit: type=1800 audit(1740808776.861:18): pid=9984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1302" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  211.854156][   T39] audit: type=1800 audit(1740808776.891:19): pid=9986 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1303" name="SYSV00000000" dev="tmpfs" ino=2 res=0 errno=0
[  212.643542][T10007] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.711287][T10007] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.747395][   T39] audit: type=1800 audit(1740808777.781:20): pid=10008 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1305" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  212.783991][T10007] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.886369][T10007] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.967929][T10007] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  212.975668][T10007] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  212.986926][T10007] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  212.992551][T10007] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  213.113365][T10014] overlayfs: failed to clone upperpath
[  213.167747][T10016] overlayfs: failed to clone upperpath
[  213.189886][   T35] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  213.339952][   T35] usb 5-1: device descriptor read/64, error -71
[  213.344051][T10021] netlink: 'syz.1.1315': attribute type 1 has an invalid length.
[  213.600049][   T35] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  213.759914][   T35] usb 5-1: device descriptor read/64, error -71
[  213.870090][   T35] usb usb5-port1: attempt power cycle
[  214.210037][   T35] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  214.250443][   T35] usb 5-1: device descriptor read/8, error -71
[  214.462095][T10055] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.489973][   T35] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  214.502487][T10055] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.520962][   T35] usb 5-1: device descriptor read/8, error -71
[  214.538008][T10065] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1330'.
[  214.543263][T10055] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.554277][T10065] fuse: Unknown parameter 'dÓvçªqز!"bOu¬'
[  214.612395][T10055] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.641032][   T35] usb usb5-port1: unable to enumerate USB device
[  214.709017][T10055] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  214.714716][T10055] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  214.719727][T10055] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  214.726127][T10055] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  214.815857][T10070] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1331'.
[  215.167395][T10077] netlink: 'syz.3.1334': attribute type 10 has an invalid length.
[  215.171148][T10077] bridge0: port 2(bridge_slave_1) entered disabled state
[  215.174268][T10077] bridge0: port 1(bridge_slave_0) entered disabled state
[  215.185346][T10077] bridge0: port 2(bridge_slave_1) entered blocking state
[  215.188269][T10077] bridge0: port 2(bridge_slave_1) entered forwarding state
[  215.191407][T10077] bridge0: port 1(bridge_slave_0) entered blocking state
[  215.194260][T10077] bridge0: port 1(bridge_slave_0) entered forwarding state
[  215.200744][T10077] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  215.207110][T10077] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1334'.
[  215.211515][T10077] bridge_slave_1: left allmulticast mode
[  215.213843][T10077] bridge_slave_1: left promiscuous mode
[  215.216211][T10077] bridge0: port 2(bridge_slave_1) entered disabled state
[  215.221226][T10077] bridge_slave_0: left allmulticast mode
[  215.223516][T10077] bridge_slave_0: left promiscuous mode
[  215.225879][T10077] bridge0: port 1(bridge_slave_0) entered disabled state
[  215.241047][T10077] bond0: (slave bridge0): Releasing backup interface
[  215.543372][T10081] process 'syz.1.1336' launched './file1' with NULL argv: empty string added
[  215.863081][T10090] netlink: 'syz.0.1339': attribute type 1 has an invalid length.
[  215.928869][T10093] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1340'.
[  216.480273][    T8] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  216.573914][T10105] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1344'.
[  216.606137][T10107] netlink: 260 bytes leftover after parsing attributes in process `syz.1.1345'.
[  216.608756][T10107] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1345'.
[  216.619878][    T8] usb 5-1: device descriptor read/64, error -71
[  216.859882][    T8] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  216.989826][    T8] usb 5-1: device descriptor read/64, error -71
[  217.106300][    T8] usb usb5-port1: attempt power cycle
[  217.439901][    T8] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  217.466446][    T8] usb 5-1: device descriptor read/8, error -71
[  217.699873][    T8] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  217.704194][   T65] Bluetooth: hci2: ACL packet for unknown connection handle 129
[  217.710099][T10122] 9pnet_fd: Insufficient options for proto=fd
[  217.730297][    T8] usb 5-1: device descriptor read/8, error -71
[  217.840229][    T8] usb usb5-port1: unable to enumerate USB device
[  218.616067][T10130] random: crng reseeded on system resumption
[  218.622011][T10130] Restarting kernel threads ... done.
[  218.865723][T10134] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1353'.
[  219.014530][T10145] netlink: 'syz.2.1356': attribute type 1 has an invalid length.
[  219.161799][T10150] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  219.203914][ T6007] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  219.218001][ T6007] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  219.219832][T10150] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  219.228816][T10150] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  219.279550][T10152] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1360'.
[  219.291085][T10150] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  219.294293][T10157] overlayfs: failed to clone upperpath
[  219.330489][T10159] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1362'.
[  219.366697][T10165] netlink: 260 bytes leftover after parsing attributes in process `syz.1.1365'.
[  219.369314][T10165] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1365'.
[  219.719951][    T8] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  219.849887][    T8] usb 6-1: device descriptor read/64, error -71
[  219.869474][T10177] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1367'.
[  219.887290][T10183] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  219.947046][T10183] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.022687][T10183] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.074473][T10183] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.089851][    T8] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  220.140574][T10183] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  220.140940][ T1136] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  220.150292][T10183] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  220.155380][T10183] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  220.160251][T10183] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  220.219883][    T8] usb 6-1: device descriptor read/64, error -71
[  220.251388][ T1136] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  220.346250][    T8] usb usb6-port1: attempt power cycle
[  220.359968][   T45] wlan1: authentication with 08:02:11:00:00:00 timed out
[  220.396218][T10192] devpts: called with bogus options
[  220.445207][T10194] netlink: 'syz.0.1375': attribute type 1 has an invalid length.
[  220.483679][T10194] 8021q: adding VLAN 0 to HW filter on device bond3
[  220.750105][    T8] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  220.782779][    T8] usb 6-1: device descriptor read/8, error -71
[  220.868320][   T39] audit: type=1326 audit(1740808785.901:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10203 comm="syz.0.1378" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f64579 code=0x0
[  221.049913][    T8] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  221.080293][    T8] usb 6-1: device descriptor read/8, error -71
[  221.173943][T10209] 8021q: adding VLAN 0 to HW filter on device bond0
[  221.178058][T10209] bond0: (slave rose0): Enslaving as an active interface with an up link
[  221.200266][    T8] usb usb6-port1: unable to enumerate USB device
[  221.715093][T10240] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  221.768130][T10242] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.812658][T10242] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.820280][    C3] Illegal XDP return value 16128 on prog  (id 173) dev lo, expect packet loss!
[  221.862346][T10242] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.903953][T10242] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.950904][T10242] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  221.956084][T10242] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  221.963538][T10242] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  221.970633][T10242] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  222.165419][T10246] 9pnet_fd: Insufficient options for proto=fd
[  222.232910][T10250] xt_SECMARK: invalid mode: 0
[  222.550197][   T39] audit: type=1326 audit(1740808791.578:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10260 comm="syz.1.1391" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x0
[  222.864411][T10262] __nla_validate_parse: 1 callbacks suppressed
[  222.864424][T10262] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1388'.
[  223.374077][T10290] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1400'.
[  223.479888][   T35] usb 8-1: new high-speed USB device number 28 using dummy_hcd
[  223.649863][   T35] usb 8-1: Using ep0 maxpacket: 32
[  223.652883][   T35] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  223.656255][   T35] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  223.659141][   T35] usb 8-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  223.665801][   T35] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.671273][   T35] usb 8-1: config 0 descriptor??
[  224.083745][   T35] savu 0003:1E7D:2D5A.0005: unknown main item tag 0x0
[  224.086681][   T35] savu 0003:1E7D:2D5A.0005: unknown main item tag 0x0
[  224.089706][   T35] savu 0003:1E7D:2D5A.0005: unknown main item tag 0x0
[  224.099887][   T35] savu 0003:1E7D:2D5A.0005: unknown main item tag 0x0
[  224.102717][   T35] savu 0003:1E7D:2D5A.0005: unknown main item tag 0x0
[  224.105646][   T35] savu 0003:1E7D:2D5A.0005: unbalanced collection at end of report description
[  224.109642][   T35] savu 0003:1E7D:2D5A.0005: parse failed
[  224.111515][   T35] savu 0003:1E7D:2D5A.0005: probe with driver savu failed with error -22
[  224.283522][ T6342] usb 8-1: USB disconnect, device number 28
[  224.443025][T10322] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1408'.
[  224.498944][T10324] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1409'.
[  224.628608][T10330] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1411'.
[  224.630069][T10329] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1411'.
[  224.699309][T10335] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1412'.
[  225.161344][T10320] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  225.739452][T10370] ipt_rpfilter: unknown options
[  225.780761][T10363] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1417'.
[  226.314856][T10379] ALSA: mixer_oss: invalid OSS volume ''
[  226.540018][   T65] Bluetooth: hci0: command 0x040f tx timeout
[  226.644193][T10401] netlink: 260 bytes leftover after parsing attributes in process `syz.3.1430'.
[  226.647145][T10401] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1430'.
[  226.742002][T10416] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.805962][T10416] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.864348][T10416] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.924498][T10416] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.950491][    T9] usb 8-1: new high-speed USB device number 29 using dummy_hcd
[  227.017139][T10416] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  227.025654][T10416] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  227.034650][T10416] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  227.040138][T10416] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  227.113111][    T9] usb 8-1: Using ep0 maxpacket: 32
[  227.116034][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  227.119237][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  227.122538][    T9] usb 8-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  227.125377][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.128978][    T9] usb 8-1: config 0 descriptor??
[  227.544073][    T9] savu 0003:1E7D:2D5A.0006: hiddev0,hidraw1: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[  227.738908][    T9] usb 8-1: USB disconnect, device number 29
[  228.148813][T10451] __nla_validate_parse: 1 callbacks suppressed
[  228.148851][T10451] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1445'.
[  228.643342][T10470] batadv_slave_1: entered promiscuous mode
[  228.645573][T10470] mac80211_hwsim hwsim9 wlan1: entered promiscuous mode
[  228.863964][T10473] netlink: 260 bytes leftover after parsing attributes in process `syz.1.1456'.
[  228.866812][T10473] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1456'.
[  229.386077][T10485] overlayfs: failed to clone upperpath
[  229.395425][T10485] netlink: 904 bytes leftover after parsing attributes in process `syz.2.1459'.
[  229.469501][T10469] mac80211_hwsim hwsim9 wlan1: left promiscuous mode
[  229.472445][T10469] batadv_slave_1: left promiscuous mode
[  229.517672][T10489] Cannot find set identified by id 0 to match
[  229.608172][T10497] netlink: 260 bytes leftover after parsing attributes in process `syz.2.1465'.
[  229.611055][T10497] netlink: 256 bytes leftover after parsing attributes in process `syz.2.1465'.
[  229.823431][T10503] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1464'.
[  230.758393][T10524] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1473'.
[  230.782098][   T39] audit: type=1326 audit(1740808799.818:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10522 comm="syz.1.1473" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf740e579 code=0x0
[  232.296407][T10553] netlink: 'syz.2.1482': attribute type 15 has an invalid length.
[  232.299483][T10553] netlink: 666 bytes leftover after parsing attributes in process `syz.2.1482'.
[  232.647024][T10568] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  232.649051][T10568] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  232.653236][T10568] vhci_hcd vhci_hcd.0: Device attached
[  232.828658][T10550] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  232.900221][  T834] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[  233.111254][T10572] vhci_hcd: connection reset by peer
[  233.116072][   T11] vhci_hcd: stop threads
[  233.117769][   T11] vhci_hcd: release socket
[  233.120086][   T11] vhci_hcd: disconnect device
[  233.183663][T10582] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1489'.
[  233.197187][T10582] bond5 (unregistering): Released all slaves
[  233.239158][T10584] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1489'.
[  233.765246][T10595] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1492'.
[  233.820866][T10601] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1494'.
[  233.900409][T10603] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1495'.
[  233.998218][T10609] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1497'.
[  234.001499][T10609] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1497'.
[  234.220144][   T65] Bluetooth: hci0: command 0x040f tx timeout
[  234.775981][T10632] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1504'.
[  234.916115][T10639] overlay: ./file1 is not a directory
[  235.268500][   T39] audit: type=1326 audit(1740808804.298:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.2.1509" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  235.277199][   T39] audit: type=1326 audit(1740808804.298:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.2.1509" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  235.285728][   T39] audit: type=1326 audit(1740808804.298:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.2.1509" exe="/syz-executor" sig=0 arch=40000003 syscall=245 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  235.293967][   T39] audit: type=1326 audit(1740808804.298:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.2.1509" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  235.300467][   T39] audit: type=1326 audit(1740808804.298:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.2.1509" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  235.308106][   T39] audit: type=1326 audit(1740808804.298:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.2.1509" exe="/syz-executor" sig=0 arch=40000003 syscall=246 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  235.323865][T10648] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1509'.
[  235.360144][   T39] audit: type=1326 audit(1740808804.398:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.2.1509" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  235.368297][   T39] audit: type=1326 audit(1740808804.398:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.2.1509" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  235.959657][T10673] FAULT_INJECTION: forcing a failure.
[  235.959657][T10673] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  235.963747][T10673] CPU: 3 UID: 0 PID: 10673 Comm: syz.0.1515 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  235.963763][T10673] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  235.963770][T10673] Call Trace:
[  235.963774][T10673]  <TASK>
[  235.963779][T10673]  dump_stack_lvl+0x16c/0x1f0
[  235.963798][T10673]  should_fail_ex+0x50a/0x650
[  235.963818][T10673]  _copy_to_user+0x32/0xd0
[  235.963835][T10673]  vivid_radio_rx_read+0x7c9/0xb90
[  235.963853][T10673]  ? __pfx_vivid_radio_rx_read+0x10/0x10
[  235.963870][T10673]  vivid_radio_read+0x86/0xc0
[  235.963883][T10673]  v4l2_read+0x226/0x360
[  235.963893][T10673]  ? __pfx_v4l2_read+0x10/0x10
[  235.963905][T10673]  vfs_read+0x1df/0xbf0
[  235.963920][T10673]  ? __fget_files+0x1fc/0x3a0
[  235.963935][T10673]  ? __pfx_lock_release+0x10/0x10
[  235.963951][T10673]  ? __pfx_vfs_read+0x10/0x10
[  235.963965][T10673]  ? lock_acquire+0x2f/0xb0
[  235.963979][T10673]  ? __fget_files+0x40/0x3a0
[  235.963995][T10673]  ? __fget_files+0x206/0x3a0
[  235.964014][T10673]  ksys_read+0x12b/0x250
[  235.964027][T10673]  ? __pfx_ksys_read+0x10/0x10
[  235.964045][T10673]  __do_fast_syscall_32+0x73/0x120
[  235.964061][T10673]  do_fast_syscall_32+0x32/0x80
[  235.964075][T10673]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  235.964092][T10673] RIP: 0023:0xf7f64579
[  235.964101][T10673] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  235.964112][T10673] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000003
[  235.964122][T10673] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[  235.964128][T10673] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000000
[  235.964134][T10673] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  235.964140][T10673] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  235.964146][T10673] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  235.964158][T10673]  </TASK>
[  237.032898][T10696] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  237.256969][T10697] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1520'.
[  238.050365][  T834] vhci_hcd: vhci_device speed not set
[  238.776716][T10739] __nla_validate_parse: 1 callbacks suppressed
[  238.776728][T10739] netlink: 260 bytes leftover after parsing attributes in process `syz.1.1532'.
[  238.781455][T10739] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1532'.
[  238.884481][   T39] audit: type=1326 audit(1740808807.918:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10742 comm="syz.1.1533" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  238.890864][   T39] audit: type=1326 audit(1740808807.928:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10742 comm="syz.1.1533" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  238.897019][   T39] audit: type=1326 audit(1740808807.928:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10742 comm="syz.1.1533" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf740e579 code=0x7ffc0000
[  238.903498][   T39] audit: type=1326 audit(1740808807.928:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10742 comm="syz.1.1533" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  238.909710][   T39] audit: type=1326 audit(1740808807.928:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10742 comm="syz.1.1533" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  238.915879][   T39] audit: type=1326 audit(1740808807.928:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10742 comm="syz.1.1533" exe="/syz-executor" sig=0 arch=40000003 syscall=55 compat=1 ip=0xf740e579 code=0x7ffc0000
[  238.921999][   T39] audit: type=1326 audit(1740808807.928:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10742 comm="syz.1.1533" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  238.928069][   T39] audit: type=1326 audit(1740808807.928:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10742 comm="syz.1.1533" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  238.934399][   T39] audit: type=1326 audit(1740808807.928:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10742 comm="syz.1.1533" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf740e579 code=0x7ffc0000
[  238.940722][   T39] audit: type=1326 audit(1740808807.928:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10742 comm="syz.1.1533" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf740e579 code=0x7ffc0000
[  239.232452][T10727] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  239.311226][  T835] IPVS: starting estimator thread 0...
[  239.312946][T10758] tipc: Started in network mode
[  239.314395][T10758] tipc: Node identity ac1414aa, cluster identity 4711
[  239.317449][T10758] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  239.320720][T10758] tipc: Enabled bearer <udp:s>, priority 10
[  239.419905][T10759] IPVS: using max 35 ests per chain, 84000 per kthread
[  239.449860][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  239.589894][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  239.729819][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  239.879898][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  240.019813][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  240.159839][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  240.202719][T10777] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.262214][T10777] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.300014][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  240.333222][T10777] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.402274][T10777] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.439919][  T835] tipc: Node number set to 2886997162
[  240.453464][T10777] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  240.458806][T10777] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  240.466456][T10777] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  240.478193][T10777] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  240.540004][   T65] Bluetooth: hci0: command 0x040f tx timeout
[  240.589920][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  241.131452][T10786] overlay: ./file1 is not a directory
[  241.451939][T10782] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  241.690284][T10803] netlink: 'syz.3.1554': attribute type 4 has an invalid length.
[  241.692665][T10803] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1554'.
[  242.434680][T10815] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1556'.
[  242.459920][    C0] net_ratelimit: 2 callbacks suppressed
[  242.459932][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  242.597021][T10818] overlay: ./file1 is not a directory
[  242.779871][   T65] Bluetooth: hci0: command 0x040f tx timeout
[  243.509914][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  243.552417][T10822] syz.2.1559: page allocation failure: order:0, mode:0x10cc0(GFP_KERNEL|__GFP_NORETRY), nodemask=(null),cpuset=/,mems_allowed=0-1
[  243.556308][T10822] CPU: 1 UID: 0 PID: 10822 Comm: syz.2.1559 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  243.556323][T10822] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  243.556330][T10822] Call Trace:
[  243.556334][T10822]  <TASK>
[  243.556338][T10822]  dump_stack_lvl+0x16c/0x1f0
[  243.556356][T10822]  warn_alloc+0x24d/0x3a0
[  243.556375][T10822]  ? __pfx_warn_alloc+0x10/0x10
[  243.556390][T10822]  ? psi_memstall_leave+0x178/0x250
[  243.556407][T10822]  ? __pfx___alloc_pages_direct_compact+0x10/0x10
[  243.556426][T10822]  ? psi_memstall_leave+0x17d/0x250
[  243.556441][T10822]  __alloc_frozen_pages_noprof+0xf2f/0x2470
[  243.556463][T10822]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  243.556481][T10822]  ? irqentry_exit+0x3b/0x90
[  243.556494][T10822]  ? lockdep_hardirqs_on+0x7c/0x110
[  243.556511][T10822]  ? policy_nodemask+0x3c9/0x4e0
[  243.556528][T10822]  ? policy_nodemask+0x3d8/0x4e0
[  243.556548][T10822]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  243.556566][T10822]  ? policy_nodemask+0xea/0x4e0
[  243.556584][T10822]  alloc_pages_mpol+0x1fc/0x540
[  243.556595][T10822]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  243.556608][T10822]  alloc_pages_noprof+0x131/0x390
[  243.556619][T10822]  kimage_alloc_pages+0x75/0x300
[  243.556636][T10822]  kimage_alloc_control_pages+0x148/0x8e0
[  243.556656][T10822]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[  243.556676][T10822]  do_kexec_load+0x47e/0x8c0
[  243.556687][T10822]  ? __pfx_do_kexec_load+0x10/0x10
[  243.556697][T10822]  ? __might_fault+0xe3/0x190
[  243.556711][T10822]  __do_compat_sys_kexec_load+0x2cf/0x330
[  243.556723][T10822]  ? __pfx___do_compat_sys_kexec_load+0x10/0x10
[  243.556738][T10822]  __do_fast_syscall_32+0x73/0x120
[  243.556753][T10822]  do_fast_syscall_32+0x32/0x80
[  243.556767][T10822]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  243.556785][T10822] RIP: 0023:0xf7f34579
[  243.556793][T10822] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  243.556803][T10822] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 000000000000011b
[  243.556813][T10822] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000000004
[  243.556820][T10822] RDX: 0000000080000e80 RSI: 0000000000150000 RDI: 0000000000000000
[  243.556826][T10822] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  243.556832][T10822] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  243.556837][T10822] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  243.556849][T10822]  </TASK>
[  243.556853][T10822] Mem-Info:
[  243.631682][T10822] active_anon:3056 inactive_anon:3244 isolated_anon:0
[  243.631682][T10822]  active_file:1312 inactive_file:9756 isolated_file:0
[  243.631682][T10822]  unevictable:1768 dirty:310 writeback:0
[  243.631682][T10822]  slab_reclaimable:5569 slab_unreclaimable:56889
[  243.631682][T10822]  mapped:25802 shmem:4836 pagetables:829
[  243.631682][T10822]  sec_pagetables:310 bounce:0
[  243.631682][T10822]  kernel_misc_reclaimable:0
[  243.631682][T10822]  free:23349 free_pcp:1089 free_cma:0
[  243.645277][T10822] Node 0 active_anon:388kB inactive_anon:656kB active_file:832kB inactive_file:3476kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:1840kB dirty:20kB writeback:0kB shmem:3612kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9936kB pagetables:1160kB sec_pagetables:1160kB all_unreclaimable? yes
[  243.656651][T10822] Node 1 active_anon:11836kB inactive_anon:12320kB active_file:4416kB inactive_file:35248kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:101368kB dirty:1220kB writeback:0kB shmem:15732kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2956kB pagetables:2156kB sec_pagetables:80kB all_unreclaimable? no
[  243.665993][T10822] Node 0 DMA free:2708kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:68kB inactive_file:0kB unevictable:0kB writepending:12kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  243.673938][T10822] lowmem_reserve[]: 0 294 0 0 0
[  243.674009][T10820] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  243.675643][T10822] Node 0 DMA32 free:13152kB boost:0kB min:13560kB low:16948kB high:20336kB reserved_highatomic:2048KB active_anon:388kB inactive_anon:656kB active_file:764kB inactive_file:3476kB unevictable:3536kB writepending:8kB present:1032196kB managed:301744kB mlocked:0kB bounce:0kB free_pcp:1912kB local_pcp:0kB free_cma:0kB
[  243.686382][T10822] lowmem_reserve[]: 0 0 0 0 0
[  243.688119][T10822] Node 1 DMA32 free:86260kB boost:32768kB min:79912kB low:91696kB high:103480kB reserved_highatomic:0KB active_anon:11836kB inactive_anon:12320kB active_file:4416kB inactive_file:27648kB unevictable:3536kB writepending:1220kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:1460kB local_pcp:248kB free_cma:0kB
[  243.699247][T10822] lowmem_reserve[]: 0 0 0 0 0
[  243.700860][T10822] Node 0 DMA: 75*4kB (U) 59*8kB (U) 47*16kB (U) 33*32kB (U) 2*64kB (U) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2708kB
[  243.704801][T10822] Node 0 DMA32: 27*4kB (M) 70*8kB (ME) 22*16kB (UMEH) 32*32kB (MEH) 35*64kB (UMEH) 13*128kB (UMEH) 10*256kB (UMH) 1*512kB (U) 0*1024kB 2*2048kB (UM) 0*4096kB = 13116kB
[  243.710150][T10822] Node 1 DMA32: 813*4kB (UM) 762*8kB (UME) 513*16kB (ME) 610*32kB (UME) 516*64kB (UME) 95*128kB (UME) 23*256kB (UME) 5*512kB (U) 2*1024kB (U) 0*2048kB 0*4096kB = 92756kB
[  243.715265][T10822] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  243.718154][T10822] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  243.721007][T10822] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  243.723914][T10822] Node 1 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  243.726921][T10822] 10192 total pagecache pages
[  243.728293][T10822] 276 pages in swap cache
[  243.729570][T10822] Free swap  = 113592kB
[  243.731019][T10822] Total swap = 124996kB
[  243.732264][T10822] 524155 pages RAM
[  243.733504][T10822] 0 pages HighMem/MovableOnly
[  243.734886][T10822] 207816 pages reserved
[  243.736098][T10822] 0 pages cma reserved
[  244.012753][T10822] kexec: Could not allocate control_code_buffer
[  244.080039][T10840] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.143192][T10840] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.192489][T10840] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.232578][T10840] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  244.299063][T10840] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  244.304151][T10840] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  244.309147][T10840] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  244.314449][T10840] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  244.539951][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  245.019887][   T65] Bluetooth: hci0: command 0x040f tx timeout
[  245.238880][T10853] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1569'.
[  245.282873][T10860] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  245.528980][T10869] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1572'.
[  245.579836][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  245.825437][T10872] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  245.831005][T10872] netlink: 'syz.3.1575': attribute type 1 has an invalid length.
[  245.833282][T10872] netlink: 244 bytes leftover after parsing attributes in process `syz.3.1575'.
[  246.284067][T10878] overlay: ./file1 is not a directory
[  246.367368][T10883] FAULT_INJECTION: forcing a failure.
[  246.367368][T10883] name failslab, interval 1, probability 0, space 0, times 0
[  246.370881][T10883] CPU: 2 UID: 0 PID: 10883 Comm: syz.0.1579 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  246.370895][T10883] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  246.370901][T10883] Call Trace:
[  246.370905][T10883]  <TASK>
[  246.370909][T10883]  dump_stack_lvl+0x16c/0x1f0
[  246.370927][T10883]  should_fail_ex+0x50a/0x650
[  246.370959][T10883]  should_failslab+0xc2/0x120
[  246.370970][T10883]  kmem_cache_alloc_noprof+0x6e/0x3d0
[  246.370988][T10883]  ? skb_clone+0x190/0x3f0
[  246.371005][T10883]  skb_clone+0x190/0x3f0
[  246.371021][T10883]  netlink_deliver_tap+0xabd/0xd30
[  246.371039][T10883]  netlink_unicast+0x5e1/0x7f0
[  246.371067][T10883]  ? __pfx_netlink_unicast+0x10/0x10
[  246.371083][T10883]  ? __phys_addr_symbol+0x30/0x80
[  246.371094][T10883]  ? __check_object_size+0x488/0x710
[  246.371107][T10883]  netlink_sendmsg+0x8b8/0xd70
[  246.371123][T10883]  ? __pfx_netlink_sendmsg+0x10/0x10
[  246.371142][T10883]  ____sys_sendmsg+0xaaf/0xc90
[  246.371155][T10883]  ? __pfx_____sys_sendmsg+0x10/0x10
[  246.371166][T10883]  ? get_compat_msghdr+0x11b/0x170
[  246.371185][T10883]  ___sys_sendmsg+0x135/0x1e0
[  246.371201][T10883]  ? __pfx____sys_sendmsg+0x10/0x10
[  246.371227][T10883]  ? __pfx_lock_release+0x10/0x10
[  246.371246][T10883]  ? trace_lock_acquire+0x14e/0x1f0
[  246.371263][T10883]  ? __fget_files+0x206/0x3a0
[  246.371282][T10883]  __sys_sendmsg+0x16e/0x220
[  246.371303][T10883]  ? __pfx___sys_sendmsg+0x10/0x10
[  246.371336][T10883]  __do_fast_syscall_32+0x73/0x120
[  246.371352][T10883]  do_fast_syscall_32+0x32/0x80
[  246.371366][T10883]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  246.371384][T10883] RIP: 0023:0xf7f64579
[  246.371392][T10883] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  246.371404][T10883] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  246.371415][T10883] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  246.371421][T10883] RDX: 0000000000040000 RSI: 0000000000000000 RDI: 0000000000000000
[  246.371427][T10883] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  246.371433][T10883] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  246.371439][T10883] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  246.371454][T10883]  </TASK>
[  246.372408][T10883] netlink: 188 bytes leftover after parsing attributes in process `syz.0.1579'.
[  246.619852][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  247.659860][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  247.661709][T10897] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1583'.
[  248.048865][T10909] netlink: 'syz.2.1586': attribute type 13 has an invalid length.
[  248.298995][T10914] bridge0: port 2(bridge_slave_1) entered disabled state
[  248.302276][T10914] bridge0: port 1(bridge_slave_0) entered disabled state
[  248.327261][T10913] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  248.330045][T10913] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  248.332972][T10913] vhci_hcd vhci_hcd.0: Device attached
[  248.579911][    T9] usb 39-1: new low-speed USB device number 3 using vhci_hcd
[  248.604768][T10914] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  248.622368][T10914] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  248.699858][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  248.734425][T10914] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  248.740036][T10914] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  248.743274][T10914] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  248.746455][T10914] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  249.122976][T10918] vhci_hcd: connection reset by peer
[  249.127586][   T11] vhci_hcd: stop threads
[  249.129478][   T11] vhci_hcd: release socket
[  249.132014][   T11] vhci_hcd: disconnect device
[  249.739840][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  250.257921][T10965] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1598'.
[  250.780006][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  250.981014][T10972] syz.0.1599: attempt to access beyond end of device
[  250.981014][T10972] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  250.986777][T10972] XFS (nbd0): SB validate failed with error -5.
[  251.218249][T10987] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.289837][T10987] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.378589][T10987] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.444600][T10987] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.462420][T10972] Process accounting resumed
[  251.529481][T10987] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  251.536491][T10987] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  251.543519][T10987] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  251.550196][T10987] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  251.600705][T10996] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1606'.
[  251.608298][T10996] bond5: entered promiscuous mode
[  251.612670][T10996] 8021q: adding VLAN 0 to HW filter on device bond5
[  251.711583][T10996] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1606'.
[  251.806312][T11000] block device autoloading is deprecated and will be removed.
[  251.819853][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  252.059058][T11008] netlink: 1068 bytes leftover after parsing attributes in process `syz.2.1608'.
[  252.568995][T11011] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1609'.
[  252.841009][T11020] netlink: 830 bytes leftover after parsing attributes in process `syz.1.1611'.
[  252.869850][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  253.317912][T11039] netlink: 'syz.2.1617': attribute type 39 has an invalid length.
[  253.426177][T11041] warning: `syz.2.1618' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  253.539877][   T30] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  253.670051][   T30] usb 5-1: device descriptor read/64, error -71
[  253.750016][    T9] vhci_hcd: vhci_device speed not set
[  253.863261][T11045] overlayfs: failed to clone upperpath
[  253.899920][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  253.909861][   T30] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  254.049849][   T30] usb 5-1: device descriptor read/64, error -71
[  254.188748][   T30] usb usb5-port1: attempt power cycle
[  254.304058][T11052] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1622'.
[  254.529859][   T30] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  254.550226][   T30] usb 5-1: device descriptor read/8, error -71
[  254.628154][   T65] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  254.794848][T11056] IPVS: rr: SCTP 172.20.20.187:0 - no destination available
[  254.809919][   T30] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  254.830567][   T30] usb 5-1: device descriptor read/8, error -71
[  254.939923][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  254.979881][   T30] usb usb5-port1: unable to enumerate USB device
[  255.113678][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  255.116336][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  255.261211][T11061] netlink: 'syz.3.1624': attribute type 4 has an invalid length.
[  255.979838][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  256.576012][T11083] macvlan0: entered promiscuous mode
[  256.577680][T11083] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1629'.
[  257.019866][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  257.222123][T11111] program syz.1.1636 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  257.257652][T11113] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1637'.
[  257.405379][   T65] Bluetooth: hci3: ACL packet for unknown connection handle 200
[  257.567445][T11131] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1642'.
[  257.819414][T11140] FAULT_INJECTION: forcing a failure.
[  257.819414][T11140] name failslab, interval 1, probability 0, space 0, times 0
[  257.823100][T11140] CPU: 0 UID: 0 PID: 11140 Comm: syz.1.1646 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  257.823114][T11140] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  257.823120][T11140] Call Trace:
[  257.823124][T11140]  <TASK>
[  257.823128][T11140]  dump_stack_lvl+0x16c/0x1f0
[  257.823146][T11140]  should_fail_ex+0x50a/0x650
[  257.823163][T11140]  ? fs_reclaim_acquire+0xae/0x150
[  257.823178][T11140]  ? nft_trans_alloc_gfp+0x26/0x2e0
[  257.823190][T11140]  should_failslab+0xc2/0x120
[  257.823200][T11140]  __kmalloc_noprof+0xcb/0x510
[  257.823216][T11140]  ? __pfx_nft_rhash_key+0x10/0x10
[  257.823226][T11140]  ? __pfx_nft_rhash_obj+0x10/0x10
[  257.823239][T11140]  nft_trans_alloc_gfp+0x26/0x2e0
[  257.823251][T11140]  nf_tables_newset+0x3309/0x42c0
[  257.823267][T11140]  ? __pfx_nf_tables_newset+0x10/0x10
[  257.823279][T11140]  ? __pfx___lock_acquire+0x10/0x10
[  257.823293][T11140]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  257.823312][T11140]  ? __nla_validate_parse+0x601/0x2880
[  257.823334][T11140]  ? net_generic+0xea/0x2a0
[  257.823349][T11140]  ? __pfx_lock_release+0x10/0x10
[  257.823366][T11140]  ? __nla_parse+0x40/0x60
[  257.823380][T11140]  nfnetlink_rcv_batch+0x1a2a/0x24e0
[  257.823403][T11140]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[  257.823419][T11140]  ? __pfx_lock_release+0x10/0x10
[  257.823436][T11140]  ? __local_bh_enable_ip+0xa4/0x120
[  257.823452][T11140]  ? lockdep_hardirqs_on+0x7c/0x110
[  257.823473][T11140]  ? __pfx___dev_queue_xmit+0x10/0x10
[  257.823498][T11140]  ? __nla_parse+0x40/0x60
[  257.823511][T11140]  nfnetlink_rcv+0x3c3/0x430
[  257.823526][T11140]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  257.823545][T11140]  netlink_unicast+0x53c/0x7f0
[  257.823562][T11140]  ? __pfx_netlink_unicast+0x10/0x10
[  257.823576][T11140]  ? __phys_addr_symbol+0x30/0x80
[  257.823587][T11140]  ? __check_object_size+0x488/0x710
[  257.823599][T11140]  netlink_sendmsg+0x8b8/0xd70
[  257.823616][T11140]  ? __pfx_netlink_sendmsg+0x10/0x10
[  257.823635][T11140]  ____sys_sendmsg+0xaaf/0xc90
[  257.823648][T11140]  ? __pfx_____sys_sendmsg+0x10/0x10
[  257.823659][T11140]  ? get_compat_msghdr+0x11b/0x170
[  257.823677][T11140]  ___sys_sendmsg+0x135/0x1e0
[  257.823693][T11140]  ? __pfx____sys_sendmsg+0x10/0x10
[  257.823714][T11140]  ? __pfx_lock_release+0x10/0x10
[  257.823728][T11140]  ? trace_lock_acquire+0x14e/0x1f0
[  257.823744][T11140]  ? __fget_files+0x206/0x3a0
[  257.823763][T11140]  __sys_sendmsg+0x16e/0x220
[  257.823778][T11140]  ? __pfx___sys_sendmsg+0x10/0x10
[  257.823802][T11140]  __do_fast_syscall_32+0x73/0x120
[  257.823817][T11140]  do_fast_syscall_32+0x32/0x80
[  257.823831][T11140]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  257.823848][T11140] RIP: 0023:0xf740e579
[  257.823856][T11140] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  257.823867][T11140] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  257.823877][T11140] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[  257.823883][T11140] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  257.823889][T11140] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  257.823895][T11140] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  257.823900][T11140] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  257.823912][T11140]  </TASK>
[  257.869366][T11141] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1647'.
[  258.059961][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  258.820483][T11183] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1658'.
[  259.023723][T11194] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1662'.
[  259.099912][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  259.933584][T11221] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1670'.
[  259.965347][T11223] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1671'.
[  260.139823][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  260.303345][T11244] overlayfs: failed to clone upperpath
[  260.305801][T11245] overlayfs: failed to clone upperpath
[  260.433017][T11249] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1679'.
[  260.508488][T11253] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1681'.
[  261.179998][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  261.733154][T11280] __nla_validate_parse: 1 callbacks suppressed
[  261.733165][T11280] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1690'.
[  261.891686][T11271] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  262.219905][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  262.328955][T11284] netlink: 'syz.2.1691': attribute type 1 has an invalid length.
[  262.737687][T11315] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1699'.
[  262.808611][T11317] netlink: 'syz.2.1700': attribute type 4 has an invalid length.
[  263.259869][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  263.340703][   T65] Bluetooth: hci0: command 0x040f tx timeout
[  263.506689][T11339] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1704'.
[  263.782556][T11348] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1707'.
[  263.844557][T11355] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1709'.
[  263.915753][T11355] netlink: 'syz.2.1709': attribute type 2 has an invalid length.
[  263.993977][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[  263.997025][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[  264.087440][T11371] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1715'.
[  264.163273][T11375] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1716'.
[  264.309816][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  264.944940][T11405] random: crng reseeded on system resumption
[  265.004036][T11407] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1724'.
[  265.279186][T11412] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1726'.
[  265.349884][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  265.368938][T11420] 8021q: adding VLAN 0 to HW filter on device bond8
[  265.493097][T11432] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1732'.
[  265.563138][T11437] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.654083][T11437] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.711707][T11437] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.794437][T11437] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  265.862456][T11437] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  265.867216][T11437] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  265.873673][T11437] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  265.878249][T11437] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  265.959643][T11444] bridge0: port 2(bridge_slave_1) entered disabled state
[  265.962810][T11444] bridge0: port 1(bridge_slave_0) entered disabled state
[  266.034132][T11444] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  266.045335][T11444] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  266.061456][   T65] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  266.061498][ T5948] Bluetooth: hci4: command 0x1003 tx timeout
[  266.103397][T11444] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  266.105844][T11444] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  266.108235][T11444] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  266.110836][T11444] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  266.139243][T11449] 8021q: adding VLAN 0 to HW filter on device bond9
[  266.212722][T11455] random: crng reseeded on system resumption
[  266.379844][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  266.552696][T11472] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.615370][T11472] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.674020][T11472] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.776402][T11472] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.863215][T11472] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  266.867908][T11472] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  266.872634][T11472] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  266.877180][T11472] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  266.993840][T11490] netlink: 'syz.3.1749': attribute type 1 has an invalid length.
[  267.004070][T11490] 8021q: adding VLAN 0 to HW filter on device bond5
[  267.041209][T11493] __nla_validate_parse: 3 callbacks suppressed
[  267.041224][T11493] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1750'.
[  267.419879][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  267.615495][T11520] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1757'.
[  267.700440][T11513] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1753'.
[  267.821706][T11526] random: crng reseeded on system resumption
[  268.147402][T11533] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  268.232069][T11533] /dev/sr0: Can't open blockdev
[  268.459866][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  269.499823][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  269.787842][T11594] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1775'.
[  269.815221][T11574] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1770'.
[  270.171673][T11607] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1778'.
[  270.539995][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  271.137589][T11623] lo speed is unknown, defaulting to 1000
[  271.139560][T11623] lo speed is unknown, defaulting to 1000
[  271.143951][T11623] lo speed is unknown, defaulting to 1000
[  271.147639][T11623] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  271.152771][T11623] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  271.164997][T11623] lo speed is unknown, defaulting to 1000
[  271.167603][T11623] lo speed is unknown, defaulting to 1000
[  271.169640][T11623] lo speed is unknown, defaulting to 1000
[  271.171693][T11623] lo speed is unknown, defaulting to 1000
[  271.198641][T11623] tipc: Enabled bearer <eth:vlan0>, priority 10
[  271.474012][T11626] lo speed is unknown, defaulting to 1000
[  271.580273][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  271.589419][T11631] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  271.702310][T11631] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  271.823203][T11631] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  271.982025][T11631] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  272.175600][T11631] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  272.182171][T11631] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  272.188346][T11631] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  272.195376][T11631] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  272.619952][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  273.230672][T11653] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  273.285640][T11654] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  273.374024][T11653] /dev/sr0: Can't open blockdev
[  273.423584][   T65] Bluetooth: hci1: unexpected event for opcode 0x0809
[  273.450532][T11654] /dev/sr0: Can't open blockdev
[  273.640537][T11670] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  273.659869][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  273.683720][T11670] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  273.775525][T11670] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  273.865915][T11670] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  274.120511][T11674] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1798'.
[  274.653688][T11699] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1805'.
[  274.699909][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  274.739861][   T25] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  274.912569][   T25] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  274.915210][   T25] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  274.918498][   T25] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[  274.921633][   T25] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  274.924772][   T25] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  274.929077][   T25] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  274.931832][   T25] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  274.934149][   T25] usb 6-1: Product: syz
[  274.935783][   T25] usb 6-1: Manufacturer: syz
[  274.939489][   T25] cdc_wdm 6-1:1.0: skipping garbage
[  274.941215][   T25] cdc_wdm 6-1:1.0: skipping garbage
[  274.946123][   T25] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  274.948779][   T25] cdc_wdm 6-1:1.0: Unknown control protocol
[  275.739856][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  276.258013][T11720] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1812'.
[  276.389608][T11725] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1813'.
[  276.698539][   T39] kauditd_printk_skb: 11 callbacks suppressed
[  276.698550][   T39] audit: type=1800 audit(1740808845.728:53): pid=11727 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1814" name="SYSV00000000" dev="tmpfs" ino=1 res=0 errno=0
[  276.716833][T11670] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  276.722624][T11670] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  276.727174][T11670] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  276.731972][T11670] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  276.779864][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  276.939667][T11731] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1814'.
[  276.970279][T11731] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  276.972690][T11731] batman_adv: batadv0: Removing interface: batadv_slave_0
[  276.985372][T11731] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  277.184299][T11731] batman_adv: batadv0: Removing interface: batadv_slave_1
[  277.341772][T11741] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1818'.
[  277.454640][   T25] usb 6-1: USB disconnect, device number 16
[  277.828759][T11757] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1823'.
[  277.829803][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  277.924435][T11766] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  278.471489][T11773] random: crng reseeded on system resumption
[  278.542062][T11769] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1824'.
[  278.859835][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  279.191971][   T77] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.251314][T11793] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1832'.
[  279.257144][   T77] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.322601][   T77] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.399260][ T5948] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  279.399586][   T77] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  279.403309][ T5948] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  279.407365][ T5948] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  279.411335][ T5948] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  279.413753][ T5948] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  279.415943][ T5948] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  279.463149][T11803] lo speed is unknown, defaulting to 1000
[  279.470588][T11809] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1838'.
[  279.572697][T11803] chnl_net:caif_netlink_parms(): no params data found
[  279.709874][T11806] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  279.712038][T11806] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  279.720377][T11806] vhci_hcd vhci_hcd.0: Device attached
[  279.777758][T11826] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1842'.
[  279.899837][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  279.910367][   T77] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  279.930001][   T77] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  279.935712][   T77] bond0 (unregistering): Released all slaves
[  279.984699][   T25] usb 39-1: new low-speed USB device number 4 using vhci_hcd
[  280.122845][   T77] bond1 (unregistering): Released all slaves
[  280.200660][   T77] bond2 (unregistering): Released all slaves
[  280.281771][   T77] bond3 (unregistering): Released all slaves
[  280.359066][   T77] bond4 (unregistering): Released all slaves
[  280.455952][   T77] bond5 (unregistering): Released all slaves
[  280.576608][T11803] bridge0: port 1(bridge_slave_0) entered blocking state
[  280.578791][T11803] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.584764][T11803] bridge_slave_0: entered allmulticast mode
[  280.587097][T11803] bridge_slave_0: entered promiscuous mode
[  280.590013][T11803] bridge0: port 2(bridge_slave_1) entered blocking state
[  280.592476][T11803] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.594614][T11803] bridge_slave_1: entered allmulticast mode
[  280.596736][   T77] tipc: Left network mode
[  280.598895][T11803] bridge_slave_1: entered promiscuous mode
[  280.629166][T11838] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1843'.
[  280.669332][T11803] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  280.673781][T11803] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  280.684116][T11822] vhci_hcd: connection reset by peer
[  280.685938][ T1176] vhci_hcd: stop threads
[  280.687221][ T1176] vhci_hcd: release socket
[  280.688803][ T1176] vhci_hcd: disconnect device
[  280.716561][T11803] team0: Port device team_slave_0 added
[  280.719381][T11803] team0: Port device team_slave_1 added
[  280.739343][T11803] batman_adv: batadv0: Adding interface: batadv_slave_0
[  280.742381][T11803] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  280.749910][T11803] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  280.759507][T11803] batman_adv: batadv0: Adding interface: batadv_slave_1
[  280.762746][T11803] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  280.771129][T11803] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  280.838309][T11803] hsr_slave_0: entered promiscuous mode
[  280.844666][T11803] hsr_slave_1: entered promiscuous mode
[  280.847015][T11803] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  280.849684][T11803] Cannot create hsr debugfs directory
[  280.899132][   T77] hsr_slave_0: left promiscuous mode
[  280.901888][   T77] hsr_slave_1: left promiscuous mode
[  280.927325][   T77] veth1_macvtap: left promiscuous mode
[  280.929235][   T77] veth0_macvtap: left promiscuous mode
[  280.931631][   T77] veth1_vlan: left promiscuous mode
[  280.933308][   T77] veth0_vlan: left promiscuous mode
[  280.939890][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  280.979619][   T77] pimreg (unregistering): left allmulticast mode
[  281.524189][T11864] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1848'.
[  281.527572][   T65] Bluetooth: hci3: command tx timeout
[  281.979921][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  282.036504][   T77] team0 (unregistering): Port device team_slave_1 removed
[  282.051213][T11883] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request
[  282.137046][   T77] team0 (unregistering): Port device team_slave_0 removed
[  282.730070][T11887] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1852'.
[  282.836920][T11803] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  282.846829][T11893] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1854'.
[  282.854261][T11803] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  282.859201][T11803] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  282.869691][T11803] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  282.897268][T11898] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1855'.
[  282.900155][T11898] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1855'.
[  282.930129][T11803] 8021q: adding VLAN 0 to HW filter on device bond0
[  282.938524][T11803] 8021q: adding VLAN 0 to HW filter on device team0
[  282.943251][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.945370][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  282.973720][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.975786][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  283.019843][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  283.102982][T11803] 8021q: adding VLAN 0 to HW filter on device batadv0
[  283.363999][T11803] veth0_vlan: entered promiscuous mode
[  283.367877][T11803] veth1_vlan: entered promiscuous mode
[  283.383551][T11803] veth0_macvtap: entered promiscuous mode
[  283.390896][T11803] veth1_macvtap: entered promiscuous mode
[  283.414980][T11803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  283.418048][T11803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.422205][T11803] batman_adv: batadv0: Interface activated: batadv_slave_0
[  283.426816][T11803] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  283.430824][T11803] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  283.434135][T11803] batman_adv: batadv0: Interface activated: batadv_slave_1
[  283.438079][T11803] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  283.441283][T11803] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  283.443833][T11803] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  283.446359][T11803] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  283.493248][ T1149] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.495602][ T1149] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  283.509260][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.512092][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  283.572240][T11949] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1834'.
[  283.580070][   T65] Bluetooth: hci3: command tx timeout
[  283.601183][T11938] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  283.603053][T11938] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  283.606546][T11938] vhci_hcd vhci_hcd.0: Device attached
[  284.059904][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  284.462411][T11951] vhci_hcd: connection closed
[  284.462678][ T1149] vhci_hcd: stop threads
[  284.465615][ T1149] vhci_hcd: release socket
[  284.467006][ T1149] vhci_hcd: disconnect device
[  284.677915][T12002] overlay: ./file1 is not a directory
[  285.090016][   T25] vhci_hcd: vhci_device speed not set
[  285.109814][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  285.658762][T12032] __nla_validate_parse: 3 callbacks suppressed
[  285.658792][T12032] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1876'.
[  285.660002][   T65] Bluetooth: hci3: command tx timeout
[  286.139884][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  286.331816][T12054] sock: sock_timestamping_bind_phc: sock not bind to device
[  286.348659][T12056] 9pnet_virtio: no channels available for device syz
[  286.966896][T12068] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1887'.
[  287.179815][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  287.602380][T12087] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.661970][T12087] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.720561][T12087] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.739904][   T65] Bluetooth: hci3: command tx timeout
[  287.833147][T12087] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.927051][T12087] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  287.931984][T12087] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  287.937136][T12087] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  287.946614][T12087] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  288.219877][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  288.475504][   T65] Bluetooth: hci0: unexpected event 0x12 length: 10 > 8
[  288.530270][T12102] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1898'.
[  288.889823][T12119] random: crng reseeded on system resumption
[  289.259830][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  289.547985][T12143] FAULT_INJECTION: forcing a failure.
[  289.547985][T12143] name failslab, interval 1, probability 0, space 0, times 0
[  289.557801][T12143] CPU: 3 UID: 0 PID: 12143 Comm: syz.1.1908 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  289.557826][T12143] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  289.557837][T12143] Call Trace:
[  289.557843][T12143]  <TASK>
[  289.557849][T12143]  dump_stack_lvl+0x16c/0x1f0
[  289.557895][T12143]  should_fail_ex+0x50a/0x650
[  289.557922][T12143]  ? find_held_lock+0x2d/0x110
[  289.557943][T12143]  should_failslab+0xc2/0x120
[  289.557960][T12143]  __kmalloc_node_track_caller_noprof+0xcf/0x510
[  289.557987][T12143]  ? __pfx_lock_release+0x10/0x10
[  289.558009][T12143]  ? gnet_stats_copy_app+0x71/0x2f0
[  289.558037][T12143]  kmemdup_noprof+0x29/0x60
[  289.558058][T12143]  gnet_stats_copy_app+0x71/0x2f0
[  289.558087][T12143]  fq_pie_dump_stats+0x3a9/0x7b0
[  289.558112][T12143]  ? __pfx_fq_pie_dump_stats+0x10/0x10
[  289.558132][T12143]  ? __nla_put_64bit+0x27/0x40
[  289.558149][T12143]  ? __asan_memcpy+0x3c/0x60
[  289.558176][T12143]  ? gnet_stats_start_copy_compat+0x1e4/0x470
[  289.558203][T12143]  ? __pfx_fq_pie_dump_stats+0x10/0x10
[  289.558224][T12143]  tc_fill_qdisc+0x9de/0x12f0
[  289.558256][T12143]  ? __pfx_tc_fill_qdisc+0x10/0x10
[  289.558281][T12143]  ? __build_skb_around+0x278/0x3b0
[  289.558316][T12143]  qdisc_notify.isra.0+0x369/0x3f0
[  289.558346][T12143]  qdisc_graft+0xd9c/0x1780
[  289.558377][T12143]  ? __pfx_qdisc_graft+0x10/0x10
[  289.558403][T12143]  ? __pfx_qdisc_create+0x10/0x10
[  289.558435][T12143]  tc_modify_qdisc+0x1145/0x1d30
[  289.558470][T12143]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  289.558496][T12143]  ? rtnetlink_rcv_msg+0x372/0xea0
[  289.558529][T12143]  ? trace_lock_acquire+0x14e/0x1f0
[  289.558554][T12143]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  289.558581][T12143]  rtnetlink_rcv_msg+0x3c7/0xea0
[  289.558607][T12143]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  289.558632][T12143]  ? __pfx___lock_acquire+0x10/0x10
[  289.558656][T12143]  ? __pfx___lock_acquire+0x10/0x10
[  289.558677][T12143]  ? hlock_class+0x4e/0x130
[  289.558693][T12143]  ? __lock_acquire+0xcc5/0x3c40
[  289.558721][T12143]  netlink_rcv_skb+0x16b/0x440
[  289.558745][T12143]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  289.558771][T12143]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  289.558808][T12143]  ? netlink_deliver_tap+0x1ae/0xd30
[  289.558834][T12143]  netlink_unicast+0x53c/0x7f0
[  289.558860][T12143]  ? __pfx_netlink_unicast+0x10/0x10
[  289.558883][T12143]  ? __phys_addr_symbol+0x30/0x80
[  289.558901][T12143]  ? __check_object_size+0x488/0x710
[  289.558922][T12143]  netlink_sendmsg+0x8b8/0xd70
[  289.558949][T12143]  ? __pfx_netlink_sendmsg+0x10/0x10
[  289.558982][T12143]  ____sys_sendmsg+0xaaf/0xc90
[  289.559003][T12143]  ? __pfx_____sys_sendmsg+0x10/0x10
[  289.559021][T12143]  ? get_compat_msghdr+0x11b/0x170
[  289.559052][T12143]  ___sys_sendmsg+0x135/0x1e0
[  289.559083][T12143]  ? __pfx____sys_sendmsg+0x10/0x10
[  289.559117][T12143]  ? __pfx_lock_release+0x10/0x10
[  289.559140][T12143]  ? trace_lock_acquire+0x14e/0x1f0
[  289.559168][T12143]  ? __fget_files+0x206/0x3a0
[  289.559199][T12143]  __sys_sendmsg+0x16e/0x220
[  289.559224][T12143]  ? __pfx___sys_sendmsg+0x10/0x10
[  289.559264][T12143]  __do_fast_syscall_32+0x73/0x120
[  289.559287][T12143]  do_fast_syscall_32+0x32/0x80
[  289.559308][T12143]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  289.559333][T12143] RIP: 0023:0xf740e579
[  289.559345][T12143] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  289.559360][T12143] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  289.559377][T12143] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[  289.559388][T12143] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  289.559398][T12143] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  289.559408][T12143] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  289.559419][T12143] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  289.559441][T12143]  </TASK>
[  290.299809][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  290.372227][T12169] FAULT_INJECTION: forcing a failure.
[  290.372227][T12169] name failslab, interval 1, probability 0, space 0, times 0
[  290.375869][T12169] CPU: 2 UID: 0 PID: 12169 Comm: syz.0.1915 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  290.375883][T12169] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  290.375890][T12169] Call Trace:
[  290.375893][T12169]  <TASK>
[  290.375898][T12169]  dump_stack_lvl+0x16c/0x1f0
[  290.375916][T12169]  should_fail_ex+0x50a/0x650
[  290.375934][T12169]  ? fs_reclaim_acquire+0xae/0x150
[  290.375949][T12169]  should_failslab+0xc2/0x120
[  290.375960][T12169]  __kmalloc_node_noprof+0xd1/0x510
[  290.375976][T12169]  ? fifo_init+0x394/0x710
[  290.375986][T12169]  ? qdisc_alloc+0xbb/0xc50
[  290.376001][T12169]  qdisc_alloc+0xbb/0xc50
[  290.376016][T12169]  qdisc_create_dflt+0x73/0x430
[  290.376030][T12169]  taprio_init+0x4b3/0x940
[  290.376043][T12169]  ? __pfx_taprio_init+0x10/0x10
[  290.376053][T12169]  ? qdisc_alloc+0x950/0xc50
[  290.376066][T12169]  ? __pfx_taprio_init+0x10/0x10
[  290.376076][T12169]  qdisc_create+0x4f1/0x1100
[  290.376094][T12169]  ? __pfx_qdisc_create+0x10/0x10
[  290.376119][T12169]  tc_modify_qdisc+0x4d8/0x1d30
[  290.376139][T12169]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  290.376156][T12169]  ? rtnetlink_rcv_msg+0x372/0xea0
[  290.376176][T12169]  ? trace_lock_acquire+0x14e/0x1f0
[  290.376192][T12169]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  290.376209][T12169]  rtnetlink_rcv_msg+0x3c7/0xea0
[  290.376225][T12169]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  290.376247][T12169]  netlink_rcv_skb+0x16b/0x440
[  290.376261][T12169]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  290.376277][T12169]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  290.376299][T12169]  ? netlink_deliver_tap+0x1ae/0xd30
[  290.376315][T12169]  netlink_unicast+0x53c/0x7f0
[  290.376330][T12169]  ? __pfx_netlink_unicast+0x10/0x10
[  290.376345][T12169]  ? __phys_addr_symbol+0x30/0x80
[  290.376356][T12169]  ? __check_object_size+0x488/0x710
[  290.376368][T12169]  netlink_sendmsg+0x8b8/0xd70
[  290.376385][T12169]  ? __pfx_netlink_sendmsg+0x10/0x10
[  290.376405][T12169]  ____sys_sendmsg+0xaaf/0xc90
[  290.376418][T12169]  ? __pfx_____sys_sendmsg+0x10/0x10
[  290.376429][T12169]  ? get_compat_msghdr+0x11b/0x170
[  290.376447][T12169]  ___sys_sendmsg+0x135/0x1e0
[  290.376463][T12169]  ? __pfx____sys_sendmsg+0x10/0x10
[  290.376484][T12169]  ? __pfx_lock_release+0x10/0x10
[  290.376498][T12169]  ? trace_lock_acquire+0x14e/0x1f0
[  290.376514][T12169]  ? __fget_files+0x206/0x3a0
[  290.376533][T12169]  __sys_sendmsg+0x16e/0x220
[  290.376551][T12169]  ? __pfx___sys_sendmsg+0x10/0x10
[  290.376583][T12169]  __do_fast_syscall_32+0x73/0x120
[  290.376603][T12169]  do_fast_syscall_32+0x32/0x80
[  290.376623][T12169]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  290.376646][T12169] RIP: 0023:0xf7f64579
[  290.376658][T12169] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  290.376672][T12169] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  290.376687][T12169] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800007c0
[  290.376697][T12169] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  290.376706][T12169] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  290.376714][T12169] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  290.376724][T12169] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  290.376744][T12169]  </TASK>
[  290.377978][T12154] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1910'.
[  290.785883][T12172] bond0: (slave bond_slave_0): Releasing backup interface
[  290.807066][T12172] bond0: (slave bond_slave_1): Releasing backup interface
[  291.186934][T12172] team0: Port device team_slave_0 removed
[  291.197399][T12172] team0: Port device team_slave_1 removed
[  291.199277][T12172] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  291.201327][T12172] batman_adv: batadv0: Removing interface: batadv_slave_0
[  291.204083][T12172] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  291.206230][T12172] batman_adv: batadv0: Removing interface: batadv_slave_1
[  291.329335][T12185] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1919'.
[  291.339988][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  291.373000][T12187] FAULT_INJECTION: forcing a failure.
[  291.373000][T12187] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  291.376757][T12187] CPU: 3 UID: 0 PID: 12187 Comm: syz.0.1920 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  291.376770][T12187] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  291.376777][T12187] Call Trace:
[  291.376780][T12187]  <TASK>
[  291.376784][T12187]  dump_stack_lvl+0x16c/0x1f0
[  291.376802][T12187]  should_fail_ex+0x50a/0x650
[  291.376822][T12187]  _copy_from_user+0x2e/0xd0
[  291.376834][T12187]  get_compat_msghdr+0xa8/0x170
[  291.376847][T12187]  ? __pfx_get_compat_msghdr+0x10/0x10
[  291.376864][T12187]  ___sys_recvmsg+0x193/0x1a0
[  291.376880][T12187]  ? __pfx____sys_recvmsg+0x10/0x10
[  291.376895][T12187]  ? __fget_files+0x1fc/0x3a0
[  291.376912][T12187]  ? trace_lock_acquire+0x14e/0x1f0
[  291.376929][T12187]  ? __fget_files+0x206/0x3a0
[  291.376944][T12187]  ? __pfx___might_resched+0x10/0x10
[  291.376963][T12187]  do_recvmmsg+0x55d/0x740
[  291.376980][T12187]  ? __pfx_do_recvmmsg+0x10/0x10
[  291.376996][T12187]  ? vfs_write+0x306/0x1150
[  291.377018][T12187]  ? __fget_files+0x206/0x3a0
[  291.377038][T12187]  __sys_recvmmsg+0x21e/0x280
[  291.377054][T12187]  ? __pfx___sys_recvmmsg+0x10/0x10
[  291.377071][T12187]  ? __pfx_ksys_write+0x10/0x10
[  291.377087][T12187]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  291.377100][T12187]  ? lockdep_hardirqs_on+0x7c/0x110
[  291.377114][T12187]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  291.377129][T12187]  __do_fast_syscall_32+0x73/0x120
[  291.377144][T12187]  do_fast_syscall_32+0x32/0x80
[  291.377158][T12187]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  291.377176][T12187] RIP: 0023:0xf7f64579
[  291.377183][T12187] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  291.377194][T12187] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  291.377204][T12187] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800004c0
[  291.377211][T12187] RDX: 0000000000000f00 RSI: 00000000000000f0 RDI: 0000000000000000
[  291.377217][T12187] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  291.377222][T12187] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  291.377228][T12187] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  291.377240][T12187]  </TASK>
[  292.214612][T12205] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1928'.
[  292.365819][T12212] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1931'.
[  292.368393][T12212] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1931'.
[  292.371708][T12212] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1931'.
[  292.389843][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  293.076063][T12223] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  293.133546][T12223] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  293.241582][T12223] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  293.352326][T12223] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  293.419908][    C2] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  293.432177][T12223] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  293.441747][T12223] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  293.454152][T12223] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  293.464299][T12223] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  293.531034][T12232] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1938'.
[  293.642383][T12241] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1940'.
[  294.406890][T12239] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1939'.
[  294.459923][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  294.982709][T12277] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.055229][T12277] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.115598][T12277] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.202559][T12277] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.356721][T12298] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1950'.
[  295.509859][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  295.551918][T12319] kAFS: unparsable volume name
[  295.956320][T12342] FAULT_INJECTION: forcing a failure.
[  295.956320][T12342] name failslab, interval 1, probability 0, space 0, times 0
[  295.960149][T12342] CPU: 0 UID: 0 PID: 12342 Comm: syz.0.1956 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  295.960166][T12342] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  295.960172][T12342] Call Trace:
[  295.960177][T12342]  <TASK>
[  295.960181][T12342]  dump_stack_lvl+0x16c/0x1f0
[  295.960205][T12342]  should_fail_ex+0x50a/0x650
[  295.960229][T12342]  ? fs_reclaim_acquire+0xae/0x150
[  295.960251][T12342]  ? tomoyo_encode2+0x100/0x3e0
[  295.960274][T12342]  should_failslab+0xc2/0x120
[  295.960286][T12342]  __kmalloc_noprof+0xcb/0x510
[  295.960302][T12342]  ? d_absolute_path+0x137/0x1b0
[  295.960320][T12342]  ? rcu_is_watching+0x12/0xc0
[  295.960340][T12342]  tomoyo_encode2+0x100/0x3e0
[  295.960363][T12342]  tomoyo_encode+0x29/0x50
[  295.960382][T12342]  tomoyo_realpath_from_path+0x19d/0x720
[  295.960405][T12342]  tomoyo_path_number_perm+0x248/0x590
[  295.960422][T12342]  ? tomoyo_path_number_perm+0x235/0x590
[  295.960442][T12342]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  295.960478][T12342]  ? __pfx_lock_release+0x10/0x10
[  295.960494][T12342]  ? trace_lock_acquire+0x14e/0x1f0
[  295.960515][T12342]  ? lock_acquire+0x2f/0xb0
[  295.960534][T12342]  ? __fget_files+0x40/0x3a0
[  295.960558][T12342]  ? __fget_files+0x206/0x3a0
[  295.960577][T12342]  security_file_ioctl_compat+0x9b/0x240
[  295.960593][T12342]  __do_compat_sys_ioctl+0x4e/0x2c0
[  295.960607][T12342]  __do_fast_syscall_32+0x73/0x120
[  295.960623][T12342]  do_fast_syscall_32+0x32/0x80
[  295.960639][T12342]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  295.960663][T12342] RIP: 0023:0xf7f64579
[  295.960675][T12342] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  295.960690][T12342] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  295.960705][T12342] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000000007a6
[  295.960714][T12342] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  295.960720][T12342] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  295.960727][T12342] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  295.960736][T12342] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  295.960757][T12342]  </TASK>
[  295.960768][T12342] ERROR: Out of memory at tomoyo_realpath_from_path.
[  296.431598][T12359] befs: (nullb0): No write support. Marking filesystem read-only
[  296.435660][T12359] befs: (nullb0): invalid magic header
[  296.539874][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  297.548454][T12387] FAULT_INJECTION: forcing a failure.
[  297.548454][T12387] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  297.553385][T12387] CPU: 0 UID: 0 PID: 12387 Comm: syz.0.1970 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  297.553406][T12387] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  297.553416][T12387] Call Trace:
[  297.553421][T12387]  <TASK>
[  297.553426][T12387]  dump_stack_lvl+0x16c/0x1f0
[  297.553452][T12387]  should_fail_ex+0x50a/0x650
[  297.553480][T12387]  _copy_from_user+0x2e/0xd0
[  297.553497][T12387]  cmsghdr_from_user_compat_to_kern+0x517/0x800
[  297.553523][T12387]  ? __pfx_cmsghdr_from_user_compat_to_kern+0x10/0x10
[  297.553542][T12387]  ? __import_iovec+0x1f2/0x6a0
[  297.553564][T12387]  ____sys_sendmsg+0x45c/0xc90
[  297.553583][T12387]  ? __pfx_____sys_sendmsg+0x10/0x10
[  297.553599][T12387]  ? get_compat_msghdr+0x11b/0x170
[  297.553625][T12387]  ___sys_sendmsg+0x135/0x1e0
[  297.553648][T12387]  ? __pfx____sys_sendmsg+0x10/0x10
[  297.553679][T12387]  ? __pfx_lock_release+0x10/0x10
[  297.553701][T12387]  ? trace_lock_acquire+0x14e/0x1f0
[  297.553726][T12387]  ? __fget_files+0x206/0x3a0
[  297.553754][T12387]  __sys_sendmsg+0x16e/0x220
[  297.553775][T12387]  ? __pfx___sys_sendmsg+0x10/0x10
[  297.553809][T12387]  __do_fast_syscall_32+0x73/0x120
[  297.553853][T12387]  do_fast_syscall_32+0x32/0x80
[  297.553874][T12387]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  297.553898][T12387] RIP: 0023:0xf7f64579
[  297.553910][T12387] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  297.553924][T12387] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  297.553940][T12387] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080004900
[  297.553956][T12387] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[  297.553965][T12387] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  297.553974][T12387] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  297.553983][T12387] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  297.554002][T12387]  </TASK>
[  297.636826][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  298.276816][T12277] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  298.282447][T12277] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  298.287017][T12277] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  298.292066][T12277] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  298.585611][T12417] netlink: 'syz.4.1981': attribute type 3 has an invalid length.
[  298.587889][T12417] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.1981'.
[  298.700042][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  299.295704][   T65] Bluetooth: hci2: unexpected event for opcode 0x0c2d
[  299.749884][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  300.022333][   T39] audit: type=1326 audit(1740808869.058:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12464 comm="syz.4.1998" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f92579 code=0x0
[  300.140801][T12466] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1998'.
[  300.387116][   T65] Bluetooth: hci1: SCO packet for unknown connection handle 200
[  300.493895][   T39] audit: type=1326 audit(1740808869.528:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12477 comm="syz.2.2002" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  300.502865][   T39] audit: type=1326 audit(1740808869.528:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12477 comm="syz.2.2002" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  300.509130][   T39] audit: type=1326 audit(1740808869.538:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12477 comm="syz.2.2002" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  300.517435][   T39] audit: type=1326 audit(1740808869.538:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12477 comm="syz.2.2002" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  300.526235][   T39] audit: type=1326 audit(1740808869.538:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12477 comm="syz.2.2002" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  300.532557][   T39] audit: type=1326 audit(1740808869.538:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12477 comm="syz.2.2002" exe="/syz-executor" sig=0 arch=40000003 syscall=226 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  300.538751][   T39] audit: type=1326 audit(1740808869.538:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12477 comm="syz.2.2002" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  300.546901][   T39] audit: type=1326 audit(1740808869.538:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12477 comm="syz.2.2002" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  300.553293][   T39] audit: type=1326 audit(1740808869.538:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12477 comm="syz.2.2002" exe="/syz-executor" sig=0 arch=40000003 syscall=227 compat=1 ip=0xf7f34579 code=0x7ffc0000
[  300.652787][T12487] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  300.657689][ T1176] tipc: Subscription rejected, illegal request
[  300.789970][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  301.512325][T12503] overlayfs: failed to clone upperpath
[  301.594397][T12506] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  301.596336][T12506] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  301.599313][T12506] vhci_hcd vhci_hcd.0: Device attached
[  301.819872][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  301.940957][   T30] usb 39-1: new low-speed USB device number 5 using vhci_hcd
[  302.332773][T12512] vhci_hcd: connection reset by peer
[  302.335132][   T12] vhci_hcd: stop threads
[  302.336487][   T12] vhci_hcd: release socket
[  302.337852][   T12] vhci_hcd: disconnect device
[  302.869851][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  303.024815][T12538] netlink: 'syz.1.2022': attribute type 10 has an invalid length.
[  303.027825][T12538] netlink: 2 bytes leftover after parsing attributes in process `syz.1.2022'.
[  303.030882][T12538] team0: entered promiscuous mode
[  303.032951][T12538] team_slave_0: entered promiscuous mode
[  303.035582][T12538] team_slave_1: entered promiscuous mode
[  303.038945][T12538] 8021q: adding VLAN 0 to HW filter on device team0
[  303.042244][T12538] bridge0: port 3(team0) entered blocking state
[  303.044947][T12538] bridge0: port 3(team0) entered disabled state
[  303.047572][T12538] team0: entered allmulticast mode
[  303.049683][T12538] team_slave_0: entered allmulticast mode
[  303.052053][T12538] team_slave_1: entered allmulticast mode
[  303.258112][T12554] random: crng reseeded on system resumption
[  303.343098][   T65] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  303.346190][   T65] Bluetooth: hci2: Injecting HCI hardware error event
[  303.350100][ T5948] Bluetooth: hci2: hardware error 0x00
[  303.886797][T12579] netlink: 'syz.1.2026': attribute type 1 has an invalid length.
[  303.889532][T12579] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2026'.
[  303.900047][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  304.134816][T12605] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2030'.
[  304.138778][T12605] netlink: 'syz.2.2030': attribute type 29 has an invalid length.
[  304.142353][T12605] netlink: 'syz.2.2030': attribute type 29 has an invalid length.
[  304.145177][T12605] netlink: 'syz.2.2030': attribute type 29 has an invalid length.
[  304.147634][T12605] netlink: 'syz.2.2030': attribute type 29 has an invalid length.
[  304.150340][T12605] netlink: 'syz.2.2030': attribute type 29 has an invalid length.
[  304.160485][T12605] netlink: 'syz.2.2030': attribute type 29 has an invalid length.
[  304.163869][T12605] netlink: 'syz.2.2030': attribute type 29 has an invalid length.
[  304.234196][T12612] ieee802154 phy0 wpan0: encryption failed: -90
[  304.940758][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  305.435332][ T5948] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  305.980009][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  306.345404][T12652] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2043'.
[  306.390731][   T65] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  306.393543][   T65] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  306.396605][   T65] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  306.399200][   T65] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  306.405668][   T65] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  306.407983][   T65] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  306.424968][T12655] lo speed is unknown, defaulting to 1000
[  306.492510][T12655] chnl_net:caif_netlink_parms(): no params data found
[  306.614785][T12655] bridge0: port 1(bridge_slave_0) entered blocking state
[  306.616843][T12655] bridge0: port 1(bridge_slave_0) entered disabled state
[  306.619422][T12655] bridge_slave_0: entered allmulticast mode
[  306.625771][T12655] bridge_slave_0: entered promiscuous mode
[  306.629957][T12655] bridge0: port 2(bridge_slave_1) entered blocking state
[  306.633237][T12655] bridge0: port 2(bridge_slave_1) entered disabled state
[  306.636186][T12655] bridge_slave_1: entered allmulticast mode
[  306.639477][T12655] bridge_slave_1: entered promiscuous mode
[  306.674998][T12655] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  306.678650][T12655] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  306.715236][T12655] team0: Port device team_slave_0 added
[  306.718086][T12655] team0: Port device team_slave_1 added
[  306.780463][T12655] batman_adv: batadv0: Adding interface: batadv_slave_0
[  306.782568][T12655] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  306.791478][T12655] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  306.810768][T12655] batman_adv: batadv0: Adding interface: batadv_slave_1
[  306.814582][T12655] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  306.823138][T12655] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  306.872641][T12655] hsr_slave_0: entered promiscuous mode
[  306.883609][T12655] hsr_slave_1: entered promiscuous mode
[  306.885488][T12655] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  306.887908][T12655] Cannot create hsr debugfs directory
[  306.975789][ T1171] bridge_slave_1: left allmulticast mode
[  306.978359][ T1171] bridge_slave_1: left promiscuous mode
[  306.984424][ T1171] bridge0: port 2(bridge_slave_1) entered disabled state
[  306.988536][ T1171] bridge_slave_0: left allmulticast mode
[  306.998359][ T1171] bridge_slave_0: left promiscuous mode
[  307.003198][ T1171] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.029824][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  307.099902][   T30] vhci_hcd: vhci_device speed not set
[  307.247724][ T1171] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  307.256984][ T1171] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  307.268528][ T1171] bond0 (unregistering): Released all slaves
[  307.354564][ T1171] bond1 (unregistering): Released all slaves
[  307.356503][T12684] netlink: 260 bytes leftover after parsing attributes in process `syz.1.2047'.
[  307.359862][T12684] netlink: 256 bytes leftover after parsing attributes in process `syz.1.2047'.
[  307.434959][ T1171] bond2 (unregistering): Released all slaves
[  307.525547][ T1171] bond3 (unregistering): Released all slaves
[  307.597860][ T1171] bond4 (unregistering): Released all slaves
[  307.669376][ T1171] bond5 (unregistering): Released all slaves
[  307.687421][T12678] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  307.752607][ T1171] bond6 (unregistering): Released all slaves
[  307.838568][ T1171] bond7 (unregistering): Released all slaves
[  307.957027][ T1171] bond8 (unregistering): Released all slaves
[  308.059906][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  308.096826][ T1171] bond9 (unregistering): Released all slaves
[  308.145890][T12684] lo speed is unknown, defaulting to 1000
[  308.220476][ T1171] tipc: Disabling bearer <udp:syz2>
[  308.222387][ T1171] tipc: Disabling bearer <eth:vlan0>
[  308.231492][ T1171] tipc: Left network mode
[  308.269082][ T1171] IPVS: stopping backup sync thread 6345 ...
[  308.463100][ T5948] Bluetooth: hci2: command tx timeout
[  308.536665][ T1171] hsr_slave_0: left promiscuous mode
[  308.538035][T12701] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  308.545798][ T1171] hsr_slave_1: left promiscuous mode
[  308.547578][ T1171] batman_adv: batadv0: Removing interface: batadv_slave_0
[  308.552820][ T1171] batman_adv: batadv0: Removing interface: batadv_slave_1
[  308.607564][T12703] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2051'.
[  308.867538][T12705] overlay: ./file1 is not a directory
[  309.019885][ T5948] Bluetooth: hci0: command 0x040f tx timeout
[  309.109900][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  309.234663][ T1171] team0 (unregistering): Port device team_slave_1 removed
[  309.351198][ T1171] team0 (unregistering): Port device team_slave_0 removed
[  309.408048][ T1171] team0 (unregistering): Port device veth0_to_team removed
[  310.129508][T12655] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  310.137517][T12655] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  310.140426][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  310.143927][T12655] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  310.147788][T12655] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  310.239402][T12655] 8021q: adding VLAN 0 to HW filter on device bond0
[  310.255515][T12655] 8021q: adding VLAN 0 to HW filter on device team0
[  310.261364][   T69] bridge0: port 1(bridge_slave_0) entered blocking state
[  310.263454][   T69] bridge0: port 1(bridge_slave_0) entered forwarding state
[  310.268785][   T69] bridge0: port 2(bridge_slave_1) entered blocking state
[  310.270926][   T69] bridge0: port 2(bridge_slave_1) entered forwarding state
[  310.359683][T12655] 8021q: adding VLAN 0 to HW filter on device batadv0
[  310.412727][T12655] veth0_vlan: entered promiscuous mode
[  310.417180][T12655] veth1_vlan: entered promiscuous mode
[  310.450028][T12655] veth0_macvtap: entered promiscuous mode
[  310.452979][T12655] veth1_macvtap: entered promiscuous mode
[  310.521045][T12655] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  310.524371][T12655] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  310.532494][T12655] batman_adv: batadv0: Interface activated: batadv_slave_0
[  310.540336][T12655] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  310.542770][ T5948] Bluetooth: hci2: command tx timeout
[  310.543485][T12655] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  310.548916][T12655] batman_adv: batadv0: Interface activated: batadv_slave_1
[  310.584665][T12655] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  310.587507][T12655] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  310.599293][T12655] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  310.603633][T12655] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  310.766430][ T1149] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  310.774714][ T1149] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  310.798748][   T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  310.803456][   T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  310.822819][ T1171] IPVS: stop unused estimator thread 0...
[  311.189866][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  311.218450][T12755] netlink: 'syz.0.2058': attribute type 10 has an invalid length.
[  311.226022][T12755] batman_adv: batadv0: Adding interface: team0
[  311.228642][T12755] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  311.237460][T12755] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  311.249938][T12755] netlink: 'syz.0.2058': attribute type 10 has an invalid length.
[  311.253026][T12755] netlink: 2 bytes leftover after parsing attributes in process `syz.0.2058'.
[  311.255694][T12755] team0: entered promiscuous mode
[  311.268027][T12755] 8021q: adding VLAN 0 to HW filter on device team0
[  311.272002][T12755] batman_adv: batadv0: Interface activated: team0
[  311.274668][T12755] batman_adv: batadv0: Interface deactivated: team0
[  311.276845][T12755] batman_adv: batadv0: Removing interface: team0
[  311.538768][T12752] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.542117][T12752] bridge0: port 1(bridge_slave_0) entered disabled state
[  311.995651][T12752] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  312.013645][T12752] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  312.063116][T12752] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  312.065846][T12752] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  312.068636][T12752] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  312.076541][T12752] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  312.229236][T12768] overlay: ./file1 is not a directory
[  312.229931][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  312.373971][T12772] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2063'.
[  312.632281][ T5948] Bluetooth: hci2: command tx timeout
[  313.125496][T12782] netlink: 'syz.2.2066': attribute type 1 has an invalid length.
[  313.139444][T12782] 8021q: adding VLAN 0 to HW filter on device bond1
[  313.259905][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  313.640280][T12800] bridge_slave_1: left allmulticast mode
[  313.643908][T12800] bridge_slave_1: left promiscuous mode
[  313.650439][T12800] bridge0: port 2(bridge_slave_1) entered disabled state
[  313.707014][T12801] 9pnet_fd: Insufficient options for proto=fd
[  313.712622][T12801] FAULT_INJECTION: forcing a failure.
[  313.712622][T12801] name failslab, interval 1, probability 0, space 0, times 0
[  313.717646][T12801] CPU: 0 UID: 0 PID: 12801 Comm: syz.4.2071 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  313.717686][T12801] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  313.717697][T12801] Call Trace:
[  313.717703][T12801]  <TASK>
[  313.717710][T12801]  dump_stack_lvl+0x16c/0x1f0
[  313.717755][T12801]  should_fail_ex+0x50a/0x650
[  313.717787][T12801]  ? rcu_is_watching+0x12/0xc0
[  313.717809][T12801]  ? nfulnl_recv_config+0xee5/0x1600
[  313.717827][T12801]  should_failslab+0xc2/0x120
[  313.717844][T12801]  __kmalloc_cache_noprof+0x68/0x410
[  313.717867][T12801]  ? lock_acquire+0x2f/0xb0
[  313.717888][T12801]  ? nfulnl_recv_config+0xd3a/0x1600
[  313.717912][T12801]  nfulnl_recv_config+0xee5/0x1600
[  313.717939][T12801]  nfnetlink_rcv_msg+0x9c3/0x11e0
[  313.717975][T12801]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  313.718003][T12801]  ? find_held_lock+0x2d/0x110
[  313.718058][T12801]  netlink_rcv_skb+0x16b/0x440
[  313.718081][T12801]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  313.718108][T12801]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  313.718130][T12801]  ? __pfx_aa_get_newest_label+0x10/0x10
[  313.718164][T12801]  ? bpf_lsm_capable+0x9/0x10
[  313.718182][T12801]  ? security_capable+0x7e/0x260
[  313.718201][T12801]  ? ns_capable+0xd7/0x110
[  313.718228][T12801]  nfnetlink_rcv+0x1b4/0x430
[  313.718253][T12801]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  313.718277][T12801]  ? netlink_deliver_tap+0x1ae/0xd30
[  313.718305][T12801]  netlink_unicast+0x53c/0x7f0
[  313.718330][T12801]  ? __pfx_netlink_unicast+0x10/0x10
[  313.718353][T12801]  ? __phys_addr_symbol+0x30/0x80
[  313.718369][T12801]  ? __check_object_size+0x488/0x710
[  313.718390][T12801]  netlink_sendmsg+0x8b8/0xd70
[  313.718417][T12801]  ? __pfx_netlink_sendmsg+0x10/0x10
[  313.718450][T12801]  ____sys_sendmsg+0xaaf/0xc90
[  313.718471][T12801]  ? __pfx_____sys_sendmsg+0x10/0x10
[  313.718488][T12801]  ? get_compat_msghdr+0x11b/0x170
[  313.718520][T12801]  ___sys_sendmsg+0x135/0x1e0
[  313.718546][T12801]  ? __pfx____sys_sendmsg+0x10/0x10
[  313.718581][T12801]  ? __pfx_lock_release+0x10/0x10
[  313.718603][T12801]  ? trace_lock_acquire+0x14e/0x1f0
[  313.718631][T12801]  ? __fget_files+0x206/0x3a0
[  313.718663][T12801]  __sys_sendmsg+0x16e/0x220
[  313.718687][T12801]  ? __pfx___sys_sendmsg+0x10/0x10
[  313.718729][T12801]  __do_fast_syscall_32+0x73/0x120
[  313.718753][T12801]  do_fast_syscall_32+0x32/0x80
[  313.718776][T12801]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  313.718803][T12801] RIP: 0023:0xf7f92579
[  313.718816][T12801] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  313.718832][T12801] RSP: 002b:00000000f507455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  313.718849][T12801] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000100
[  313.718860][T12801] RDX: 0000000004000000 RSI: 0000000000000000 RDI: 0000000000000000
[  313.718871][T12801] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  313.718881][T12801] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  313.718891][T12801] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  313.718912][T12801]  </TASK>
[  313.720133][ T5987] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  313.941470][ T5987] usb 5-1: device descriptor read/64, error -71
[  314.189984][ T5987] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[  314.300186][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  314.329977][ T5987] usb 5-1: device descriptor read/64, error -71
[  314.449974][ T5987] usb usb5-port1: attempt power cycle
[  314.710092][ T5948] Bluetooth: hci2: command tx timeout
[  314.799865][ T5987] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  314.830709][ T5987] usb 5-1: device descriptor read/8, error -71
[  314.848204][T12811] syz.2.2074 (12811): drop_caches: 1
[  314.880537][T12811] syz.2.2074 (12811): drop_caches: 1
[  315.024436][T12819] netlink: 'syz.2.2077': attribute type 1 has an invalid length.
[  315.044205][T12819] 8021q: adding VLAN 0 to HW filter on device bond2
[  315.089876][ T5987] usb 5-1: new high-speed USB device number 43 using dummy_hcd
[  315.120374][ T5987] usb 5-1: device descriptor read/8, error -71
[  315.230060][ T5987] usb usb5-port1: unable to enumerate USB device
[  315.339847][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  316.389907][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  316.545501][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  316.872575][T12875] netlink: 'syz.4.2086': attribute type 1 has an invalid length.
[  316.879364][T12875] 8021q: adding VLAN 0 to HW filter on device bond1
[  317.429841][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  318.272996][T12903] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  318.469846][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  318.936471][T12917] e1000e 0000:00:02.0 eth1: NIC Link is Down
[  319.012413][T12934] FAULT_INJECTION: forcing a failure.
[  319.012413][T12934] name failslab, interval 1, probability 0, space 0, times 0
[  319.017692][T12934] CPU: 0 UID: 0 PID: 12934 Comm: syz.4.2099 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  319.017713][T12934] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  319.017723][T12934] Call Trace:
[  319.017728][T12934]  <TASK>
[  319.017734][T12934]  dump_stack_lvl+0x16c/0x1f0
[  319.017760][T12934]  should_fail_ex+0x50a/0x650
[  319.017784][T12934]  ? fs_reclaim_acquire+0xae/0x150
[  319.017806][T12934]  ? snd_pcm_oss_change_params_locked+0x6d9/0x3a60
[  319.017825][T12934]  should_failslab+0xc2/0x120
[  319.017839][T12934]  __kmalloc_cache_noprof+0x68/0x410
[  319.017859][T12934]  ? _snd_pcm_hw_param_min+0x259/0x630
[  319.017872][T12934]  snd_pcm_oss_change_params_locked+0x6d9/0x3a60
[  319.017889][T12934]  ? rcu_is_watching+0x12/0xc0
[  319.017909][T12934]  ? __mutex_lock+0x1cc/0xb10
[  319.017932][T12934]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[  319.017950][T12934]  ? __mutex_lock+0x1cc/0xb10
[  319.017971][T12934]  ? __pfx___mutex_lock+0x10/0x10
[  319.018005][T12934]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[  319.018028][T12934]  snd_pcm_oss_ioctl+0x21d5/0x3780
[  319.018050][T12934]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[  319.018071][T12934]  ? __fget_files+0x206/0x3a0
[  319.018102][T12934]  ? __pfx_snd_pcm_oss_ioctl_compat+0x10/0x10
[  319.018121][T12934]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  319.018143][T12934]  __do_fast_syscall_32+0x73/0x120
[  319.018165][T12934]  do_fast_syscall_32+0x32/0x80
[  319.018186][T12934]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  319.018210][T12934] RIP: 0023:0xf7f92579
[  319.018222][T12934] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  319.018238][T12934] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  319.018254][T12934] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0045002
[  319.018264][T12934] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  319.018274][T12934] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  319.018283][T12934] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  319.018292][T12934] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  319.018312][T12934]  </TASK>
[  319.297110][T12946] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  319.299812][T12946] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  319.304135][T12946] vhci_hcd vhci_hcd.0: Device attached
[  319.378446][T12961] random: crng reseeded on system resumption
[  319.499827][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  319.559819][ T5947] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  319.739976][ T5948] Bluetooth: hci0: command 0x040f tx timeout
[  319.742252][T12958] Bluetooth: hci0: Opcode 0x0401 failed: -110
[  320.091153][T12954] vhci_hcd: connection reset by peer
[  320.093039][   T45] vhci_hcd: stop threads
[  320.094713][   T45] vhci_hcd: release socket
[  320.097721][   T45] vhci_hcd: disconnect device
[  320.539840][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  321.049907][T13015] random: crng reseeded on system resumption
[  321.509955][T13027] sp0: Synchronizing with TNC
[  321.531127][T13006] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  321.579833][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  321.819894][ T5948] Bluetooth: hci0: command 0x040f tx timeout
[  322.612342][T13065] FAULT_INJECTION: forcing a failure.
[  322.612342][T13065] name failslab, interval 1, probability 0, space 0, times 0
[  322.616064][T13065] CPU: 2 UID: 0 PID: 13065 Comm: syz.1.2130 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  322.616083][T13065] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  322.616093][T13065] Call Trace:
[  322.616099][T13065]  <TASK>
[  322.616105][T13065]  dump_stack_lvl+0x16c/0x1f0
[  322.616130][T13065]  should_fail_ex+0x50a/0x650
[  322.616155][T13065]  ? fs_reclaim_acquire+0xae/0x150
[  322.616178][T13065]  ? tomoyo_realpath_from_path+0xb9/0x720
[  322.616201][T13065]  should_failslab+0xc2/0x120
[  322.616216][T13065]  __kmalloc_noprof+0xcb/0x510
[  322.616238][T13065]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  322.616265][T13065]  tomoyo_realpath_from_path+0xb9/0x720
[  322.616285][T13065]  ? tomoyo_path_number_perm+0x235/0x590
[  322.616302][T13065]  ? tomoyo_path_number_perm+0x235/0x590
[  322.616321][T13065]  tomoyo_path_number_perm+0x248/0x590
[  322.616337][T13065]  ? tomoyo_path_number_perm+0x235/0x590
[  322.616356][T13065]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  322.616396][T13065]  ? __pfx_lock_release+0x10/0x10
[  322.616417][T13065]  ? trace_lock_acquire+0x14e/0x1f0
[  322.616438][T13065]  ? lock_acquire+0x2f/0xb0
[  322.616458][T13065]  ? __fget_files+0x40/0x3a0
[  322.616483][T13065]  ? __fget_files+0x206/0x3a0
[  322.616508][T13065]  security_file_ioctl_compat+0x9b/0x240
[  322.616529][T13065]  __do_compat_sys_ioctl+0x4e/0x2c0
[  322.616553][T13065]  __do_fast_syscall_32+0x73/0x120
[  322.616578][T13065]  do_fast_syscall_32+0x32/0x80
[  322.616599][T13065]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  322.616624][T13065] RIP: 0023:0xf740e579
[  322.616636][T13065] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  322.616652][T13065] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  322.616668][T13065] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004008ae8a
[  322.616678][T13065] RDX: 0000000080000080 RSI: 0000000000000000 RDI: 0000000000000000
[  322.616688][T13065] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  322.616697][T13065] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  322.616706][T13065] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  322.616725][T13065]  </TASK>
[  322.616731][T13065] ERROR: Out of memory at tomoyo_realpath_from_path.
[  322.619943][    C0] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  322.943634][T13074] ==================================================================
[  322.946918][T13074] BUG: KASAN: slab-use-after-free in hci_sock_get_cookie+0x42/0x50
[  322.950111][T13074] Read of size 4 at addr ffff8880252035b8 by task syz.1.2134/13074
[  322.950130][T13074] 
[  322.950136][T13074] CPU: 3 UID: 0 PID: 13074 Comm: syz.1.2134 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  322.950156][T13074] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  322.950166][T13074] Call Trace:
[  322.950172][T13074]  <TASK>
[  322.950178][T13074]  dump_stack_lvl+0x116/0x1f0
[  322.950202][T13074]  print_report+0xc3/0x670
[  322.950228][T13074]  ? __virt_addr_valid+0x5e/0x590
[  322.950245][T13074]  ? __phys_addr+0xc6/0x150
[  322.950262][T13074]  kasan_report+0xd9/0x110
[  322.950276][T13074]  ? hci_sock_get_cookie+0x42/0x50
[  322.950303][T13074]  ? hci_sock_get_cookie+0x42/0x50
[  322.950330][T13074]  hci_sock_get_cookie+0x42/0x50
[  322.950355][T13074]  mgmt_cmd_status+0x229/0x520
[  322.950380][T13074]  cmd_complete_rsp+0x165/0x1e0
[  322.950403][T13074]  mgmt_pending_foreach+0xdf/0x140
[  322.950425][T13074]  ? __pfx_cmd_complete_rsp+0x10/0x10
[  322.950449][T13074]  mgmt_index_removed+0x145/0x300
[  322.950469][T13074]  ? __pfx_mgmt_index_removed+0x10/0x10
[  322.950487][T13074]  ? print_lock+0x220/0x310
[  322.950506][T13074]  ? hci_dev_get+0x46/0x1e0
[  322.950523][T13074]  ? do_raw_read_unlock+0x44/0xe0
[  322.950538][T13074]  ? _raw_read_unlock+0x28/0x50
[  322.950557][T13074]  ? hci_dev_get+0xf5/0x1e0
[  322.950572][T13074]  hci_sock_bind+0xb57/0x14d0
[  322.950597][T13074]  ? __pfx_hci_sock_bind+0x10/0x10
[  322.950625][T13074]  __sys_bind+0x213/0x260
[  322.950645][T13074]  ? __pfx___sys_bind+0x10/0x10
[  322.950668][T13074]  ? rcu_is_watching+0x12/0xc0
[  322.950687][T13074]  __ia32_sys_bind+0x71/0xb0
[  322.950705][T13074]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  322.950727][T13074]  __do_fast_syscall_32+0x73/0x120
[  322.950755][T13074]  do_fast_syscall_32+0x32/0x80
[  322.950776][T13074]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  322.950800][T13074] RIP: 0023:0xf740e579
[  322.950812][T13074] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  322.950827][T13074] RSP: 002b:00000000f507555c EFLAGS: 00000296 ORIG_RAX: 0000000000000169
[  322.950846][T13074] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000040
[  322.950855][T13074] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000000
[  322.950864][T13074] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  322.950874][T13074] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  322.950883][T13074] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  322.950897][T13074]  </TASK>
[  322.950902][T13074] 
[  323.042361][T13074] Allocated by task 9482:
[  323.043660][T13074]  kasan_save_stack+0x33/0x60
[  323.045086][T13074]  kasan_save_track+0x14/0x30
[  323.046513][T13074]  __kasan_kmalloc+0xaa/0xb0
[  323.047930][T13074]  __kmalloc_noprof+0x21c/0x510
[  323.049395][T13074]  sk_prot_alloc+0x1a8/0x2a0
[  323.050790][T13074]  sk_alloc+0x36/0xc20
[  323.052045][T13074]  bt_sock_alloc+0x3b/0x3a0
[  323.053471][T13074]  hci_sock_create+0xbc/0x1a0
[  323.054872][T13074]  bt_sock_create+0x182/0x350
[  323.056266][T13074]  __sock_create+0x335/0x8d0
[  323.057670][T13074]  __sys_socket+0x14f/0x260
[  323.059172][T13074]  __ia32_sys_socket+0x72/0xb0
[  323.061127][T13074]  __do_fast_syscall_32+0x73/0x120
[  323.063189][T13074]  do_fast_syscall_32+0x32/0x80
[  323.065122][T13074]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  323.067634][T13074] 
[  323.068606][T13074] Freed by task 13073:
[  323.070270][T13074]  kasan_save_stack+0x33/0x60
[  323.072094][T13074]  kasan_save_track+0x14/0x30
[  323.073918][T13074]  kasan_save_free_info+0x3b/0x60
[  323.075960][T13074]  __kasan_slab_free+0x51/0x70
[  323.077930][T13074]  kfree+0x2c4/0x4d0
[  323.079538][T13074]  __sk_destruct+0x5ef/0x6f0
[  323.081379][T13074]  sk_destruct+0xc2/0xf0
[  323.083107][T13074]  __sk_free+0xf4/0x3e0
[  323.084766][T13074]  sk_free+0x6a/0x90
[  323.086382][T13074]  mgmt_pending_free+0xc0/0xf0
[  323.088325][T13074]  cmd_complete_rsp+0x16d/0x1e0
[  323.090316][T13074]  mgmt_pending_foreach+0xdf/0x140
[  323.092423][T13074]  __mgmt_power_off+0x12a/0x2c0
[  323.094298][T13074]  hci_dev_close_sync+0xcbb/0x11a0
[  323.096070][T13074]  hci_dev_do_close+0x2e/0x90
[  323.097453][T13074]  hci_dev_close+0x183/0x1e0
[  323.098817][T13074]  hci_sock_ioctl+0x2b5/0x7d0
[  323.100233][T13074]  hci_sock_compat_ioctl+0x43/0x80
[  323.101889][T13074]  compat_sock_ioctl+0x17b/0x7e0
[  323.103320][T13074]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  323.104897][T13074]  __do_fast_syscall_32+0x73/0x120
[  323.106412][T13074]  do_fast_syscall_32+0x32/0x80
[  323.107975][T13074]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  323.109817][T13074] 
[  323.110529][T13074] The buggy address belongs to the object at ffff888025203000
[  323.110529][T13074]  which belongs to the cache kmalloc-2k of size 2048
[  323.114428][T13074] The buggy address is located 1464 bytes inside of
[  323.114428][T13074]  freed 2048-byte region [ffff888025203000, ffff888025203800)
[  323.118393][T13074] 
[  323.119104][T13074] The buggy address belongs to the physical page:
[  323.120979][T13074] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x25200
[  323.123485][T13074] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  323.125937][T13074] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  323.128204][T13074] page_type: f5(slab)
[  323.129377][T13074] raw: 00fff00000000040 ffff88801b042f00 0000000000000000 dead000000000001
[  323.131977][T13074] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[  323.134592][T13074] head: 00fff00000000040 ffff88801b042f00 0000000000000000 dead000000000001
[  323.137167][T13074] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[  323.139830][T13074] head: 00fff00000000003 ffffea0000948001 ffffffffffffffff 0000000000000000
[  323.142526][T13074] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  323.145086][T13074] page dumped because: kasan: bad access detected
[  323.147009][T13074] page_owner tracks the page as allocated
[  323.148708][T13074] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd28c0(GFP_NOWAIT|__GFP_IO|__GFP_FS|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5945, tgid 5945 (syz-executor), ts 46877656055, free_ts 46866959206
[  323.155810][T13074]  post_alloc_hook+0x181/0x1b0
[  323.155837][T13074]  get_page_from_freelist+0xfce/0x2f80
[  323.155863][T13074]  __alloc_frozen_pages_noprof+0x221/0x2470
[  323.161944][T13074]  alloc_pages_mpol+0x1fc/0x540
[  323.163876][T13074]  new_slab+0x23d/0x330
[  323.165571][T13074]  ___slab_alloc+0xc5d/0x1720
[  323.167470][T13074]  __slab_alloc.constprop.0+0x56/0xb0
[  323.169728][T13074]  __kmalloc_node_track_caller_noprof+0x2f1/0x510
[  323.172343][T13074]  kmalloc_reserve+0xef/0x2c0
[  323.173826][T13074]  pskb_expand_head+0x243/0x1240
[  323.175292][T13074]  netlink_trim+0x22d/0x310
[  323.176619][T13074]  netlink_broadcast_filtered+0xc7/0xef0
[  323.178357][T13074]  nlmsg_notify+0x9e/0x220
[  323.180124][T13074]  rtnetlink_event+0x177/0x1f0
[  323.182038][T13074]  notifier_call_chain+0xb7/0x410
[  323.184082][T13074]  call_netdevice_notifiers_info+0xbe/0x140
[  323.186221][T13074] page last free pid 5954 tgid 5954 stack trace:
[  323.188220][T13074]  free_frozen_pages+0x6db/0xfb0
[  323.189700][T13074]  qlist_free_all+0x4e/0x120
[  323.191109][T13074]  kasan_quarantine_reduce+0x195/0x1e0
[  323.192699][T13074]  __kasan_slab_alloc+0x69/0x90
[  323.194123][T13074]  __kmalloc_cache_noprof+0x243/0x410
[  323.195666][T13074]  ref_tracker_alloc+0x17c/0x5b0
[  323.197129][T13074]  net_rx_queue_update_kobjects+0x284/0x5f0
[  323.198851][T13074]  netdev_register_kobject+0x269/0x3a0
[  323.200445][T13074]  register_netdevice+0x147b/0x1eb0
[  323.202079][T13074]  veth_newlink+0x291/0x8f0
[  323.203410][T13074]  rtnl_newlink+0xb95/0x1d60
[  323.204848][T13074]  rtnetlink_rcv_msg+0x95b/0xea0
[  323.206587][T13074]  netlink_rcv_skb+0x16b/0x440
[  323.208010][T13074]  netlink_unicast+0x53c/0x7f0
[  323.209536][T13074]  netlink_sendmsg+0x8b8/0xd70
[  323.211072][T13074]  __sys_sendto+0x488/0x4f0
[  323.212438][T13074] 
[  323.213168][T13074] Memory state around the buggy address:
[  323.214781][T13074]  ffff888025203480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  323.217111][T13074]  ffff888025203500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  323.219414][T13074] >ffff888025203580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  323.221965][T13074]                                         ^
[  323.223969][T13074]  ffff888025203600: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  323.227074][T13074]  ffff888025203680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  323.229636][T13074] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  323.259854][T13074] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  323.262346][T13074] CPU: 2 UID: 0 PID: 13074 Comm: syz.1.2134 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
[  323.265417][T13074] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  323.268673][T13074] Call Trace:
[  323.269964][T13074]  <TASK>
[  323.271010][T13074]  dump_stack_lvl+0x3d/0x1f0
[  323.272373][T13074]  panic+0x71d/0x800
[  323.273572][T13074]  ? __pfx_panic+0x10/0x10
[  323.275363][T13074]  ? preempt_schedule_thunk+0x1a/0x30
[  323.277363][T13074]  ? preempt_schedule_common+0x44/0xc0
[  323.278942][T13074]  ? check_panic_on_warn+0x1f/0xb0
[  323.280546][T13074]  check_panic_on_warn+0xab/0xb0
[  323.282085][T13074]  end_report+0x117/0x180
[  323.283579][T13074]  kasan_report+0xe9/0x110
[  323.285376][T13074]  ? hci_sock_get_cookie+0x42/0x50
[  323.287393][T13074]  ? hci_sock_get_cookie+0x42/0x50
[  323.289141][T13074]  hci_sock_get_cookie+0x42/0x50
[  323.290647][T13074]  mgmt_cmd_status+0x229/0x520
[  323.292405][T13074]  cmd_complete_rsp+0x165/0x1e0
[  323.293835][T13074]  mgmt_pending_foreach+0xdf/0x140
[  323.295309][T13074]  ? __pfx_cmd_complete_rsp+0x10/0x10
[  323.296859][T13074]  mgmt_index_removed+0x145/0x300
[  323.298348][T13074]  ? __pfx_mgmt_index_removed+0x10/0x10
[  323.299949][T13074]  ? print_lock+0x220/0x310
[  323.301330][T13074]  ? hci_dev_get+0x46/0x1e0
[  323.302651][T13074]  ? do_raw_read_unlock+0x44/0xe0
[  323.304106][T13074]  ? _raw_read_unlock+0x28/0x50
[  323.305526][T13074]  ? hci_dev_get+0xf5/0x1e0
[  323.306850][T13074]  hci_sock_bind+0xb57/0x14d0
[  323.308214][T13074]  ? __pfx_hci_sock_bind+0x10/0x10
[  323.309576][T13074]  __sys_bind+0x213/0x260
[  323.310851][T13074]  ? __pfx___sys_bind+0x10/0x10
[  323.312375][T13074]  ? rcu_is_watching+0x12/0xc0
[  323.313767][T13074]  __ia32_sys_bind+0x71/0xb0
[  323.315108][T13074]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  323.316994][T13074]  __do_fast_syscall_32+0x73/0x120
[  323.318489][T13074]  do_fast_syscall_32+0x32/0x80
[  323.319917][T13074]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  323.321803][T13074] RIP: 0023:0xf740e579
[  323.322985][T13074] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  323.328823][T13074] RSP: 002b:00000000f507555c EFLAGS: 00000296 ORIG_RAX: 0000000000000169
[  323.332103][T13074] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000040
[  323.335283][T13074] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000000
[  323.338465][T13074] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  323.341620][T13074] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  323.344781][T13074] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  323.347947][T13074]  </TASK>
[  323.349826][T13074] Kernel Offset: disabled
[  323.351585][T13074] Rebooting in 86400 seconds..

VM DIAGNOSIS:
06:01:21  Registers:
info registers vcpu 0

CPU#0
RAX=000000000002f60b RBX=ffffed100446b000 RCX=1ffffffff20c46d1 RDX=0000000000000000
RSI=ffffffff8b6ced80 RDI=0000000000000001 RBP=ffff888022358000 RSP=ffffc90022a8f778
R8 =0000000000000001 R9 =0000000000000001 R10=ffffffff90627a17 R11=0000000000000003
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8b5643fc RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000579864c0 CR3=000000004ab8e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000009000000000 0000000200000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000009000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000000e RBX=ffff88801d695392 RCX=0000000000000005 RDX=0000000000000002
RSI=0000000000000008 RDI=ffff88801d695391 RBP=0000000000000000 RSP=ffffc9000047fb78
R8 =0000000000000000 R9 =0000000000000001 R10=ffffffff96ebeccf R11=0000000000000000
R12=0000000000000000 R13=ffff88801d694880 R14=0000000000000053 R15=ffff88801d695370
RIP=ffffffff81966877 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080032000 CR3=000000004ab8e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff853e6870 RDI=ffffffff9ab6ee60 RBP=ffffffff9ab6ee20 RSP=ffffc90022106a98
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000007
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff356de1e R15=dffffc0000000000
RIP=ffffffff853e6897 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000800063c0 CR3=000000006c16a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000032 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff853e67b5 RDI=ffffffff9ab6ee60 RBP=ffffffff9ab6ee20 RSP=ffffc90022a375f8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000032 R14=ffffffff9ab6ee20 R15=0000000000000000
RIP=ffffffff853e67df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000006c16a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000