last executing test programs:

19.933205731s ago: executing program 1 (id=1002):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
fsetxattr(0xffffffffffffffff, &(0x7f0000000480)=ANY=[@ANYBLOB="73656375cc4839002b83559aaab9726974792e3a00ae5220be03e34a3aca12511e53c38a5d5883636d4a6a261cbed94249a5fbc1772fae030f88bac61311dc8d8fd1fed27e0943cfa35c302da436bbd86c166a99ac4555757403deed4029832cb56447488663356c3066433b15b5ce22955478b085ba9ca1"], 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x20, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x9, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x10000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x4}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x200008c0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r1, 0x80045017, &(0x7f0000000040))
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg(r5, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r6 = socket$inet(0x2, 0x2, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(0xffffffffffffffff, 0xc0045006, &(0x7f0000000340)=0x10001)
writev(r7, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff08000400", 0x32}], 0x1)
writev(r7, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_mreqsrc(r6, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)

19.013002453s ago: executing program 1 (id=1009):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000600000049bcfcb5", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r1 = syz_io_uring_complete(0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xc, 0x1c, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000080000000000000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000ff0300008500000083000000bf09000000000000550901000000000095000000000000001800000008000000000000002082cf541850000022000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000bf91000000000000b7020000010000008500000085000000b7000000000000009500"/200], &(0x7f0000000840)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = io_uring_setup(0x53c4, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r2, 0x13, 0xffffffffffffffff, 0x2)
r3 = socket(0x10, 0x803, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x2, 0xa, 0x2)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0xc080}, 0x40000)
sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=@newtfilter={0x38, 0x2c, 0xd2b, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, r7, {0x1}, {}, {0xe, 0xffe0}}, [@filter_kind_options=@f_fw={{0x7}, {0xc, 0x2, [@TCA_FW_CLASSID={0x8, 0x1, {0xfff1, 0xffe0}}]}}]}, 0x38}}, 0x4000084)
fanotify_init(0x8, 0x0)
r8 = epoll_create1(0x0)
r9 = fcntl$dupfd(r8, 0x2, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000006c0)={0x56, 0x5, 0xfefc, {0x7, 0x1}, {0xad, 0x2}, @ramp={0x9, 0xfbe, {0x15ea, 0x5, 0x1, 0x3}}})
r12 = syz_open_dev$evdev(&(0x7f0000000080), 0x1, 0x8c2b01)
write$char_usb(r12, &(0x7f0000000040)="e2", 0x12d8)
openat$pmem0(0xffffff9c, &(0x7f00000000c0), 0x165101, 0x0)
r13 = dup(r9)
write$6lowpan_enable(r13, &(0x7f0000000000)='0', 0xfffffd2c)
connect$unix(r10, &(0x7f00000006c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r11, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r10, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r14 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x1, 0x8000, 0x40024e}, &(0x7f0000000340)=<r15=>0x0, &(0x7f0000000180)=<r16=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r15, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r15, r16, &(0x7f00000001c0)=@IORING_OP_MSG_RING={0x28, 0x40, 0x0, r14, 0x1, 0x0, 0x41, 0x2})

18.573153371s ago: executing program 2 (id=1016):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240"], 0x7c}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSET(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x34, 0xa, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x9}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x2000c801}, 0x20000080)

18.545790471s ago: executing program 2 (id=1018):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
r1 = syz_open_dev$cec(&(0x7f0000000200), 0x0, 0x82)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
getsockopt(r3, 0x0, 0x5, &(0x7f0000000140)=""/181, &(0x7f0000000000)=0xb5)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYRESOCT, @ANYRES64, @ANYBLOB, @ANYRESDEC], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
writev(r7, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000100), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
ioctl$VIDIOC_QBUF(r0, 0xc058565d, 0x0)
madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x11)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
pread64(r8, &(0x7f0000000080)=""/203, 0xcb, 0xa)
ioctl$VIDIOC_S_INPUT(r8, 0xc0045627, &(0x7f0000000280)=0x2)

18.411412606s ago: executing program 1 (id=1019):
r0 = socket$kcm(0x29, 0x5, 0x0)
write$cgroup_pressure(r0, &(0x7f0000000140)={'full'}, 0xfffffdef)
r1 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000000), 0x2503, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xffffffff}, 0x1c)
ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000140))
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x5452, 0x0)
r2 = syz_io_uring_setup(0x10d, &(0x7f0000000980)={0x0, 0x45885, 0x80, 0x0, 0x8}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)
r5 = fcntl$dupfd(r0, 0x406, r2)
r6 = eventfd(0x322)
ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000000)={0x0, r6})
r7 = syz_io_uring_setup(0x80010d, &(0x7f00000001c0)={0x0, 0x25ec, 0x8000, 0x4, 0x1bc}, &(0x7f00000000c0)=<r8=>0x0, &(0x7f0000000040)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r7, 0x3516, 0x0, 0x0, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r7, 0xc01cf509, &(0x7f0000000100)={r6, 0xc})

18.292382363s ago: executing program 0 (id=1022):
socket$kcm(0x11, 0x3, 0x0)
openat$sndseq(0xffffff9c, &(0x7f00000003c0), 0x2000)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043e060c"], 0x9)
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24)
sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="bae362d4cc40fce2836d0000"], 0x10, 0x7000000}, 0xf401}], 0x1, 0x0)
sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[{0x10, 0x110, 0x1}], 0x10, 0x7000000}, 0xf401}], 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)=@newtaction={0x16c, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x158, 0x1, [@m_ct={0x44, 0x0, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_connmark={0x110, 0x2, 0x0, 0x0, {{0xd}, {0xac, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x7, 0x9, 0x10000000, 0x7fffffff, 0xfffffff7}, 0x7}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x2, 0x0, 0x3, 0xfffffffd, 0x5}, 0x8}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x0, 0x1, 0x7, 0x1, 0x2}, 0x4}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x80000001, 0x1, 0x3, 0x9, 0xf92}, 0x9}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x7b34, 0x414, 0x2, 0x3, 0x4}}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x6, 0x0, 0x1, 0x0, 0xfffffffe}, 0x4}}]}, {0x35, 0x6, "7401dbc67ff55b6a21024a03ff4bea8cf8a9f5a30373110c35416de491fbd2712e1501e3fdfd0add9fb792a0bb0861a368"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}]}, 0x16c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8008, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$vim2m_VIDIOC_TRY_FMT(0xffffffffffffffff, 0xc0cc5640, &(0x7f0000000700)={0x0, @pix={0x7, 0x4bf9075a, 0x32314752, 0x0, 0xe39c, 0x6, 0x7, 0x9, 0x1, 0x4, 0x1, 0x6}})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(0xffffffffffffffff, 0xc01064c2, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r4, 0xffffffffffffffff, 0x0)

17.933789305s ago: executing program 3 (id=1024):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0xc8800)
fcntl$dupfd(r0, 0x406, r0)
ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000f40)=ANY=[@ANYBLOB="50000000480011012abd7000fedbdf250a006000", @ANYRES32=0x0, @ANYBLOB="02000000080002000700000008000200070000000800020000000000140001"], 0x50}}, 0x10)
r2 = openat$thread_pidfd(0xffffff9c, &(0x7f0000000000), 0x2080, 0x0)
r3 = syz_open_procfs$userns(0x0, &(0x7f0000001100))
ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40046607, &(0x7f0000001140)=0xfffffff0)
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x9, 0x2)
close_range(r2, r4, 0xe011bda3b223e06e)
r5 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
getsockopt$bt_BT_CHANNEL_POLICY(r5, 0x112, 0xa, 0x0, &(0x7f0000000480))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f00000003c0)=[{0x74, 0x0, 0x0, 0xd5d}]})
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
preadv(r6, &(0x7f0000000040), 0x0, 0x300, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r4, 0x8983, &(0x7f00000010c0)={0x0, 'ip6gre0\x00', {0x3}, 0x9})
fdatasync(r4)

17.923373394s ago: executing program 0 (id=1025):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0xea000, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$int_in(r1, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f00000007c0))
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = dup(r0)
r4 = fcntl$dupfd(r1, 0x406, r2)
ioctl$int_in(r2, 0x5421, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000100)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/251, 0x0, 0x4000})
ioctl$VHOST_NET_SET_BACKEND(r4, 0x4008af30, &(0x7f0000000080)={0x0, r3})
ioctl$VHOST_NET_SET_BACKEND(r1, 0xaf02, 0x0) (fail_nth: 1)

16.973060855s ago: executing program 3 (id=1026):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0xea000, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$int_in(0xffffffffffffffff, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000007c0))
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup(r0)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e1c, @local}, 0x10)
r4 = fcntl$dupfd(0xffffffffffffffff, 0x406, r1)
ioctl$int_in(r1, 0x5421, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000100)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/251, 0x0, 0x4000})
mkdir(&(0x7f0000000000)='./file0\x00', 0x170)
ioctl$VHOST_NET_SET_BACKEND(r4, 0x4008af30, &(0x7f0000000080)={0x0, r2})
ioctl$VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000040)={0x1, 0x10001})
ioctl$VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0xaf02, 0x0)

16.972728365s ago: executing program 0 (id=1027):
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
socket$key(0xf, 0x3, 0x2)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = syz_open_dev$vim2m(&(0x7f0000000000), 0x618c, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000080)={0x8, 0x0, 0x1, "993b27de4ec973e86ea34542bcf20588e8d7925e447c282ee0fd4319afee0c40", 0x4a5ff6e51666f770})
openat$vimc0(0xffffff9c, &(0x7f0000000340), 0x2, 0x0)
connect$phonet_pipe(0xffffffffffffffff, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x20040010)
ptrace$ARCH_MAP_VDSO_X32(0x1e, 0x0, 0x2, 0x2001)
r2 = openat$nullb(0xffffffffffffff9c, 0x0, 0x44000, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000040)=ANY=[@ANYRESOCT=r3, @ANYRES8=0x0, @ANYRESHEX=r2], 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x329, 0xfffffffffffffea4, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x1b, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$can_bcm(0x1d, 0x2, 0x2)
memfd_create(&(0x7f0000000d00)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x89\xf0\x9e\b\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x05\x00\x00\x00\x00\x00\x00\x00_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xdcLF\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8o8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZJ\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\n\x83\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\xed\x8eS\xaeX\x93\x7f\xd3\xb9\x84Q\x9c\"\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x8c\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x90\x1f\x94\x01M.\x16\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\xabJ^c\xf7\x19\xb4\xd8\xe4\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1\x00\x10\x00\x00\x00\x00\x00\x00\x82\x13\xb2\xa9\xef\xa5\xf8\x8bk\xb3\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)\x1b\xe2\xd6\b\x94b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|$k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf8\xa4O\xb4\xef\xc8\xccH\xd1=\xbe\xbex\xb5-\x05\x01\x11\xfa\xcf\x1dm\xb5X\xe9\xb5O\x15\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xf7\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\xc6C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17\xe6\xcauM\xe3\x05)\xe2\x03\xe2j$F1n@\xde\n9t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5\xa4\x05#\x7f\xa8\x01\x00\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebh\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x85\x1b8OE\x04\x9a\xd8\x80\x10x\xbf\n0\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\xba\x8b\x14\x9a?\x8e\x03;\xe5\x04\xd8\xa9\x9a\xd3\x05(\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96{\xc0e\xa1\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!)\xf4\x9b\x1dI\x9ex;\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\xe6k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xecZ`\xa4\xa0(\xf9\x98B\xaf\xde*\x91\xddk\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\x00C\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84p\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;\x8c\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x14\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcaQ\xdf\x87\xbdjp\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd0k\\\x92\x19a6Sv\x05%{\xe2\xe9\xf1\xddRB$8\xb0q9\xa1g&\x17\xe5P\xef\xb1<\xb6\xe2\xb2\xc06^\x0f4\xba\x10\xba\x00\x00\x00\x00\x00\x00\x00\x00\xef\xba\"\xb7\xc7~T\xc4Ei\xfdk\xa9\"F\xa9C\xa0\xd3\xa0\x1b\xbf\x13\xfb\x14S<\xa6\n5\x86\x9e\xb2=8\'g`\x8f\xa8\x027\xbd\xb5s\xe9dti\xc0\xbd\\H\xe5v\xdd\x0fP\x8b+-\x02i\x8eZU\xa8YB\xfc\xc2R7\xe9\x11\x06\x1aRd\xa93\xa1\\\xf4_s\xf7\xe8+\xbdg\x13\xaea\x04\xd8\x82\xf6\x90\xaf1\x86b\x81J\xb7E\xb0\xe2\xd0\xac\x01\x9b\x98\xcb\xf9\xde=\xd6T\x8d\xea\xab\xa9Z!\xd3-\xa6_\xc4\xa4\xb6+\x89\xdc]O<g\x06~\x12W\x86\x06\xba\x15#\xa7Q\xffa\x926>\xf0y\xd6\xb0\xf2\x9f\xa7\xcf\xad\x86\\\xec\xec\xd6\x9d\bT\xcd\xa2\xea', 0x8)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r4, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)

16.972517233s ago: executing program 2 (id=1028):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
ioctl$sock_ifreq(r0, 0x8943, &(0x7f0000000080)={'dummy0\x00', @ifru_ivalue})
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000000)=0x6, 0x2)

16.972259853s ago: executing program 2 (id=1029):
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff7c, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0xb, 0x1000000}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r4, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc)
setsockopt$inet_mreqn(r4, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc)

16.97207554s ago: executing program 1 (id=1030):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
r1 = syz_open_dev$cec(&(0x7f0000000200), 0x0, 0x82)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
getsockopt(r3, 0x0, 0x5, &(0x7f0000000140)=""/181, &(0x7f0000000000)=0xb5)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYRESOCT, @ANYRES64, @ANYBLOB, @ANYRESDEC], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
writev(r7, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000100), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
ioctl$VIDIOC_QBUF(r0, 0xc058565d, 0x0)
madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x11)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
pread64(r8, &(0x7f0000000080)=""/203, 0xcb, 0xa)
ioctl$VIDIOC_S_INPUT(r8, 0xc0045627, &(0x7f0000000280)=0x2)

16.97194344s ago: executing program 3 (id=1031):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0xc8800)
fcntl$dupfd(r0, 0x406, r0)
ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000f40)=ANY=[@ANYBLOB="50000000480011012abd7000fedbdf250a006000", @ANYRES32=0x0, @ANYBLOB="02000000080002000700000008000200070000000800020000000000140001"], 0x50}}, 0x10)
r2 = openat$thread_pidfd(0xffffff9c, &(0x7f0000000000), 0x2080, 0x0)
r3 = syz_open_procfs$userns(0x0, &(0x7f0000001100))
ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40046607, &(0x7f0000001140)=0xfffffff0)
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x9, 0x2)
close_range(r2, r4, 0xe011bda3b223e06e)
r5 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
getsockopt$bt_BT_CHANNEL_POLICY(r5, 0x112, 0xa, 0x0, &(0x7f0000000480))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f00000003c0)=[{0x74, 0x0, 0x0, 0xd5d}]})
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
preadv(r6, &(0x7f0000000040)=[{0x0}], 0x1, 0x300, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r4, 0x8983, &(0x7f00000010c0)={0x0, 'ip6gre0\x00', {0x3}, 0x9})
fdatasync(r4)

16.932177623s ago: executing program 3 (id=1032):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002e0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095"], &(0x7f0000000bc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r3, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0xffffffffffffff42, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRESHEX=r0, @ANYRES32=r1], 0x3c}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1, 0x5d032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r7, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r7, 0x8949, &(0x7f0000000000))
r8 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f0000000440)={0x0, 0x8, 0x0, 'queue1\x00', 0x4000001})
sendto$inet6(r7, 0x0, 0x0, 0x20009000, &(0x7f0000000300)={0xa, 0x4e20, 0xafa7, @dev={0xfe, 0x80, '\x00', 0x39}, 0x6}, 0x1c)

16.640551674s ago: executing program 0 (id=1033):
set_mempolicy(0x2, 0x0, 0xf5)
socket$kcm(0x11, 0x3, 0x0)
openat$sndseq(0xffffff9c, &(0x7f00000003c0), 0x2000)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043e060c"], 0x9)
r0 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24)
sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="bae362d4cc40fce2836d0000"], 0x10, 0x7000000}, 0xf401}], 0x1, 0x0)
sendmmsg(r0, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=[{0x10, 0x110, 0x1}], 0x10, 0x7000000}, 0xf401}], 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)=@newtaction={0x16c, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x158, 0x1, [@m_ct={0x44, 0x0, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_connmark={0x110, 0x2, 0x0, 0x0, {{0xd}, {0xac, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x7, 0x9, 0x10000000, 0x7fffffff, 0xfffffff7}, 0x7}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x2, 0x0, 0x3, 0xfffffffd, 0x5}, 0x8}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x0, 0x1, 0x7, 0x1, 0x2}, 0x4}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x80000001, 0x1, 0x3, 0x9, 0xf92}, 0x9}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x7b34, 0x414, 0x2, 0x3, 0x4}}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x6, 0x0, 0x1, 0x0, 0xfffffffe}, 0x4}}]}, {0x35, 0x6, "7401dbc67ff55b6a21024a03ff4bea8cf8a9f5a30373110c35416de491fbd2712e1501e3fdfd0add9fb792a0bb0861a368"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}]}, 0x16c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8008, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$vim2m_VIDIOC_TRY_FMT(0xffffffffffffffff, 0xc0cc5640, &(0x7f0000000700)={0x0, @pix={0x7, 0x4bf9075a, 0x32314752, 0x0, 0xe39c, 0x6, 0x7, 0x9, 0x1, 0x4, 0x1, 0x6}})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(0xffffffffffffffff, 0xc01064c2, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r4, 0xffffffffffffffff, 0x0)

16.639997711s ago: executing program 2 (id=1034):
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xa, 0x4, 0x2, 0x2, 0x0, 0x1, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0xd, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x4d, 0x11e41e7a, 0x20000000, 0x2000000, 0xd}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ife={0x48, 0x1001, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x44)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xff, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
openat$vhost_vsock(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000440)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r4 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000000)=0x10000)
mknod$loop(&(0x7f0000000340)='./file0\x00', 0x2480, 0x1)
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='ubifs\x00', 0x0, 0x0)
connect$netrom(r3, 0x0, 0x0)
sendto$netrom(r3, 0x0, 0x0, 0x0, &(0x7f0000000000)={{0x6, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0xfffffffe}, [@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null]}, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x0, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x20, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x101}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x0, 0x80000}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x6}}}}]}]}, 0x70}}, 0x20040000)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c0002001c0000001f000000060001000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}}, 0x0)

16.638064511s ago: executing program 3 (id=1035):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYRESDEC=r0, @ANYRES8=0x0, @ANYRES64=0x0], 0x528}}, 0xc000)

16.610673465s ago: executing program 3 (id=1036):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000300)={{{@in6, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@remote}, 0x0, @in=@dev}}, &(0x7f0000000040)=0xe4)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0xe}, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000080)="64aa81394e01cf1c550d7c3fba397d933c0e06105820f54ae8c80c716ba9b5b4c22751e965eeb6a6a1169f4c04928eef948c713e8694caddd6d4d13a04c69898d3824ac21c41f8514d35cd052f35e2742846824a2b3d07ead58274", 0x5b}], 0x1, &(0x7f0000001d40)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="440000290500000000000005020001001f00000100c20400000008000100010200000401fdc910fc01000000000000000000000000000100000000499521066d5c32d85c9550ca7cdea64eac87bc0b3df75796b74ee579cdebd5ae4d1333d05cd581ef1a9db01d2b5956edd8941e0e7deb60284cef0341ae349feb348cf94248c39b7370f2c1ce4503af838eb369d79d1658d0c3"], 0x1b0}}, {{0x0, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1, &(0x7f0000000400)=[@pktinfo={{0x20, 0x29, 0x32, {@remote, r2}}}], 0x20}}, {{&(0x7f0000000500)={0xa, 0x4e22, 0x8, @local, 0x1}, 0x1c, &(0x7f0000000580)=[{0x0}, {&(0x7f0000000980)="1e20959d8e92fd0fc4ea7c9f788661213c3c4b21642af132379678bf537b52d3b39000238a66678cfc8d6ec6d7bbbe4e0e77fa1870526248435876918f9a39dead8b7ce580161675c69b6bf041bac305c2191340b9a784653f17a23ee670c3cbfcd176640df1d319c19798097fb6f0f3168336ff2c450ec2e9c8666094dab0d48687fd523a743acf3c9e6100e0094f6238ef2116d3684b8964dd4e816c3682", 0x9f}, {0x0}, {&(0x7f0000000b40)="00d4df45533c9d668fef242e95f75e5c3726d7411181325c6eb796f7d22f4936ed9bbbf904fe15f08fa24121ebacaa95d74e150e54bbd0985d68cc43c6ef05cda14f5f11a0bba35e0cd92f615176e703a3c5dfb8a99fe74a93cb1d1bb4be452846f63d775db1405c3b5ce1e0d143a78062151d0449531e335548fc45673150df45f1bfa156249a6006", 0x89}, {&(0x7f0000000c00)}], 0x5, &(0x7f0000002040)}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000600)="016f0200000000000000c8b1f4a90df31df1c1829806c9f6e159af582f75d447b05d773b657b122b05314dbec0f3b2e0c691de96be83f7fdd59609f604425f6e09d0a9ac7aee0b147622d309eb80a86751917f0f2e1968cb4961591195c2a7a47c79290d282ca720305db83747d120c2", 0x70}, {&(0x7f0000000d80)="a740ae650539dc457c6b8dbecd35fc6746c1345daf047cd1d62a6bc38ff371f0c39708bd4f8dd70e839a28a45f802b841147f9c9d53a46bd60819416e7a959b0a6e0c3f390350749135e9b6f32220e2629fe11a0343a7b1ec5b3ecb006c96b4d6c4167aa37a1dd18d35399948fee95e3f962ccad1c5b931738927584c21958680985f0dd75033ef988f46591bcda48bcc4b6041fb0bfe984d636e82b20c531dcb11eac397502a674696e1829de363f64", 0xb0}, {&(0x7f0000000e40)="6793bb41413aff1f5e406cee5052a1ee51bc41a808f4a05a776b596fe25579e525a3340326171c04f9a9b5752427b47bbebd5b70293916681ece3133aaf2ac8c23e76adcc41a80e481eccb8a814972a6d29c0e99db3a473ef5fbdec23e8e2e5cb59c1f3c1402b4f1fbfd66ce83c51189e99574b403cd705a3c3b01c8a7a8c20a6896e26e068c43bf6518bb427fa3dae9ee4e55f38ba9b3017b4b23a003e4adf92412662bd9d244273dc1d6ea197c667d0da04060712c5e05b5093cc65dfa6bb9e21f74b41f451fd8889cbc794a4757f674e6467ebdc5a2a90212495d", 0xdc}, {&(0x7f0000000f40)="ffe5c37605600452d2a8f06d5055b9751ac796991405026ff10b7b536fe7049a348556567e86075dc8d36cda77eb3702f61b05473602b618f23ce6c373f9b28cf0ddf76b51f0c5556b7f22", 0x4b}], 0x4, &(0x7f0000003300)=[@rthdr={{0x74, 0x29, 0x39, {0x3c, 0xc, 0x1, 0x5, 0x0, [@local, @private1, @remote, @private1, @private2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}]}}}, @tclass={{0x10, 0x29, 0x43, 0xf66}}, @flowinfo={{0x10, 0x29, 0xb, 0x8000}}, @dstopts={{0x1c, 0x29, 0x37, {0x3b, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x5}]}}}], 0xb0}}, {{&(0x7f0000003400)={0xa, 0x4e22, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}, 0xc}, 0x1c, &(0x7f0000003500)}}, {{0x0, 0x0, &(0x7f00000036c0)=[{&(0x7f0000003540)="ec18137709396d727292846ba32d1a5c5bccb141cc3bfded8fe35b7c93b7b6eb94a6dd016503a44d3576bfa5b40e85adb6d40769c312dd531d9628e421c7829bbf7233f1396277a148af1d9a04ae5c365b005c42410243639a5aa1c71fdfa7f6d45c967122d64dfe6abfebdffd0f7b79d3ddf34b47e4657b2f6f22a3b8ad9340d505b44c6fdfb1849569f546a5925de6dd82dbb51710e0d0d9b78f6282e438bea429349c439b47e24e64e0db", 0xac}, {&(0x7f0000003600)="b2298d133b4c05c844789659f55624113d2eaffeb3e9d9e07e882ddde695692cb6d3d794aabf6e5973f1bf0d3338fd3c8de0bfa7a288450fb77f93f4dbc49f241792ab852a536bca886c107b2874d2dbbee1e11ccb33e68c77fceacaae3fb009012c0f", 0x63}, {&(0x7f0000003680)="74a6193e25472506b85c3ace8267bc75640dd9a74484655147733aab9e9902b7b44ef4b37f6ec47ae7da743c2f55c799", 0x30}], 0x3}}, {{0x0, 0x0, &(0x7f00000038c0)=[{0x0}, {&(0x7f00000037c0)="9ed52824123970c1f3d1c50df0ed5b85b6a6497eb1b15423a6c6632c9d40166f54ad439aa0707a9be3a9db9709fe787337204848b289f7dddd20308824dbf0288679c41672586da5f1ee06496c648aa2fe6b71e928127bc3a4629e7fabfa0d2c1a24a92da029b37976d86d0a3fe0a6f7f03bebb4d414a7decc13669b71212947693ea251523822f9771bce60b2b76b4be26873ab89a0624cbe2358d71d8fe92580a37dab0d311d5212da63ee6974fa37bc", 0xb1}, {&(0x7f0000000680)="7bc8f639eb0c56ba72a08d5c504a204d603893811c2a555bff9fb2f380401550b6eabec73874360930d69e59728e87f613dc7e9c382a", 0x36}], 0x3}}, {{&(0x7f0000003a00)={0xa, 0x4e24, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x643fc874}, 0x1c, &(0x7f0000004b00)=[{&(0x7f0000003a40)="767f92a69ff6a69be5b15653", 0xc}, {&(0x7f0000003ac0)}, {&(0x7f0000003b00)="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", 0x1000}], 0x3, &(0x7f0000000d00)=[@rthdr_2292={{0x54, 0x29, 0x39, {0x2b, 0x8, 0x2, 0x1, 0x0, [@mcast1, @local, @remote, @remote]}}}], 0x54}}, {{&(0x7f0000004b80)={0xa, 0x4e22, 0xffff, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c, &(0x7f0000000fc0)=[{&(0x7f0000004bc0)="f5fc5b407cb8a5216192587a94b20759253c58a24f8d66445247e3dfa0d3a15ad318170d163709e80f9df74f8ce029d9c57dd333fa0692851caee531207bef6f8aae285c211956eea97b2892a1203599cb753d3c1ee41c32f4cf26ee3e75e35caffb2fc976988d794e1699773ce096aecdf6e0bf81e3fa5af709b225035391ed961b01da363a2bf38610c69e8cf55bc7332da9147b6fa2c70a5700bd4a88b859954d942005be51602f1bd05de514f703b71270c0770cd77502aa4b0ffb960c8635c357f095152df1e2b7eae9b971f7cb6cbf4b7893e6f17626d598c99e6c", 0xde}, {&(0x7f0000000880)="a12f23167e57e78c48483eb54564895858d680a92e39b923a1f18498362e74dcb8e3d06f8408beb8231e9153527da76aaf1b27217a0a49dbdde5d1f74e7697649b7434ebaa83c8a9e126b768272fb7e0d0f89d05c2e77700fcf3b6bf3c6aed86d2bf293ae80d1c0846422cbb064126a3888abecff48d9bafd8861cd9111ef1348a28806cc60acf2d0ce8e884d5e643610c7e0939d9f0f9bc", 0x98}], 0x2}}], 0x9, 0x404c040)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x6)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000140), 0x41, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x101121)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
r8 = syz_io_uring_setup(0x1c57, &(0x7f0000000300)={0x0, 0x40ac, 0x10000, 0x2, 0x3f, 0x0, r7}, &(0x7f0000000180)=<r9=>0x0, &(0x7f00000001c0)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r6})
io_uring_enter(r8, 0x2def, 0x4000, 0x0, 0x0, 0x0)
setrlimit(0x40000000000008, &(0x7f0000000000))
mlockall(0x5)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x401, 0x7ffffffffffffffd}, 0x0, &(0x7f00000006c0)={0x3ff, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x7fffffff}, 0x0, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10)
syz_open_dev$loop(&(0x7f0000000440), 0xfcb, 0x0)
r11 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r11, 0xffffffffffffffff, 0x0)
r12 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x1a8)
r13 = fanotify_init(0xf00, 0x0)
fanotify_mark(r13, 0x451, 0x8000010, r12, 0x0)

16.50943785s ago: executing program 0 (id=1037):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
r1 = syz_open_dev$cec(&(0x7f0000000200), 0x0, 0x82)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
getsockopt(r3, 0x0, 0x5, &(0x7f0000000140)=""/181, &(0x7f0000000000)=0xb5)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYRESOCT, @ANYRES64, @ANYBLOB, @ANYRESDEC], &(0x7f0000000280)='GPL\x00', 0xa, 0xb9, &(0x7f0000000140)=""/185, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(0xffffffffffffffff, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000100), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
ioctl$VIDIOC_QBUF(r0, 0xc058565d, 0x0)
madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x11)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
pread64(r7, &(0x7f0000000080)=""/203, 0xcb, 0xa)
ioctl$VIDIOC_S_INPUT(r7, 0xc0045627, &(0x7f0000000280)=0x2)

15.618133289s ago: executing program 1 (id=1038):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000003b80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000001400000018000180140002006e657464657673696d3000000000000008001a000200000008001700030000000800130000000000080003"], 0x5c}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=@newtfilter={0x24, 0x2c, 0x1, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, 0x0, {0xd, 0x7}, {}, {0x1, 0x8}}}, 0x24}, 0x1, 0x0, 0x0, 0x48801}, 0x20000000)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), r1)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000680)={'wpan0\x00', <r3=>0x0})
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="070200000000000000004b0000000f00a8007365636f6e646e616d6500006d0000000f0002006e657464657673696d3000002fce71f21905ff5d950cf28fb5c5809cdfe142b76fe45fa51c55359e5bb7a34fda68163943b5a5ad6ea4e94ce3a40b2e5ed71f4e2ad1548354a5948f61d7f3dc00"/126], 0x44}}, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_DEV(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000280)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010028bd7000fbdbdf251a00000004002e8008000300", @ANYRES32=r3, @ANYBLOB='4\x00.'], 0x6c}, 0x1, 0x0, 0x0, 0x20040040}, 0x20040)

15.617436931s ago: executing program 1 (id=1039):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs2/custom0\x00', 0x800, 0x0) (async)
pselect6(0x40, &(0x7f0000000040)={0xd, 0x62ca, 0x1f, 0xfffffffffffffffd, 0x3, 0x7, 0x53, 0x10ecbc}, 0x0, 0x0, 0x0, 0x0) (async)
unshare(0x68040200) (async)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
getpeername$qrtr(0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000300)=0xc) (async)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r1, &(0x7f0000000240)={@val={0x0, 0x800}, @val={0x1, 0x5, 0x6, 0xffff, 0x80, 0x6}, @ipv6=@udp={0x0, 0x6, "d2341f", 0x60, 0x11, 0x0, @mcast1, @dev={0xfe, 0x80, '\x00', 0xf}, {[], {0x4e23, 0x4e23, 0x60, 0x0, @gue={{0x1, 0x1, 0x1, 0x2, 0x0, @void}, "79881cfbbd2f447d213ed1c3f1158ad983dcdf87291fc6e76c5b7cec6f57fc8330352cce33d187fa4e7edb5bb5dd06101d85b7825c1d225a3c797ba8e90fc6d38a3e82684dc23acbf61bca1f17b7ce8dc5a2386b"}}}}}, 0x96) (async)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0), 0x2, 0x1}}, 0x20)
fcntl$notify(r0, 0x402, 0x0) (async)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})
r3 = openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x10d901, 0x0) (async)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
fcntl$setstatus(r4, 0x4, 0x2000) (async)
ioctl$DVD_AUTH(r3, 0x5390, &(0x7f0000000040)=@type=0x2)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r5], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)}) (async)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000340)={&(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, r5, 0x0, r5, r5, r5, 0x0, 0x0], 0xb, 0x800}) (async)
r6 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f00020000000905050200de7e001009058b1e20"], 0x0)
syz_usb_control_io$uac1(r6, 0x0, &(0x7f0000000140)={0x24, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async, rerun: 64)
r7 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) (rerun: 64)
ioctl$FS_IOC_GETVERSION(r7, 0x40045b0a, &(0x7f0000000040))
r8 = socket(0x2b, 0x80801, 0x1)
setsockopt$EBT_SO_SET_COUNTERS(r8, 0x0, 0x81, &(0x7f0000000240)={'filter\x00', 0x0, 0x0, 0x0, [0x3, 0x6, 0x101, 0x8, 0x7, 0x1ff], 0x1, 0x0, 0x0, [{}]}, 0x60) (async)
ioctl$CDROMRESET(r3, 0x5312) (async, rerun: 32)
socket$xdp(0x2c, 0x3, 0x0) (async, rerun: 32)
close_range(r2, 0xffffffffffffffff, 0x0)

15.598306312s ago: executing program 2 (id=1040):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0xc8800)
fcntl$dupfd(r0, 0x406, r0)
ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000f40)=ANY=[@ANYBLOB="50000000480011012abd7000fedbdf250a006000", @ANYRES32=0x0, @ANYBLOB="02000000080002000700000008000200070000000800020000000000140001"], 0x50}}, 0x10)
r2 = openat$thread_pidfd(0xffffff9c, &(0x7f0000000000), 0x2080, 0x0)
r3 = syz_open_procfs$userns(0x0, &(0x7f0000001100))
ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40046607, &(0x7f0000001140)=0xfffffff0)
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x9, 0x2)
close_range(r2, r4, 0xe011bda3b223e06e)
r5 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
getsockopt$bt_BT_CHANNEL_POLICY(r5, 0x112, 0xa, 0x0, &(0x7f0000000480))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f00000003c0)=[{0x74, 0x0, 0x0, 0xd5d}]})
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
preadv(r6, &(0x7f0000000040)=[{0x0}], 0x1, 0x300, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r4, 0x8983, &(0x7f00000010c0)={0x0, 'ip6gre0\x00', {0x3}, 0x9})
fdatasync(r4)

15.51706403s ago: executing program 0 (id=1041):
r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = io_uring_setup(0x78f2, &(0x7f0000000200)={0x0, 0xf0fd, 0x10, 0x2, 0x1f2})
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x7, &(0x7f0000000180), 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0xd)
r2 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
r3 = dup(r2)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x18, 0x55, 0x1e5}, 0x18}}, 0x0)
epoll_create1(0x0)
epoll_create1(0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
r7 = add_key$user(&(0x7f0000000280), &(0x7f0000000300)={'syz', 0x3}, &(0x7f00000003c0)="daf04102d4d17fb795b16715b2840308427d7dad3d61c0da3877d4c79ff502fab2ace475356b4eeaef33332bb84ce2dbd180", 0x32, 0xfffffffffffffffe)
r8 = request_key(&(0x7f00000004c0)='cifs.idmap\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000000300)='R\x10suse\x00\x00\x00\x00\x00\x00\x00\'n\x00\x00\x00', 0x0)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYRES16=r9, @ANYBLOB="050006d97200c4fb1be8", @ANYRESOCT=r8, @ANYBLOB="1fc430b5ba"], 0x24}}, 0x0)
keyctl$dh_compute(0x17, &(0x7f0000000440)={r7, 0x0, r8}, &(0x7f0000000480)=""/245, 0xf5, &(0x7f0000000600)={&(0x7f0000000580)={'sha3-224\x00'}, &(0x7f00000005c0)="59ceab74e2b9e3f32a57cac2240810b67306c4ae53e3ba73cdd22f3872b09565a694a51bf2ef", 0x26})
mlock2(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
write$UHID_INPUT(r3, 0x0, 0x0)

1.439422801s ago: executing program 32 (id=1036):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000300)={{{@in6, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@remote}, 0x0, @in=@dev}}, &(0x7f0000000040)=0xe4)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0xe}, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000080)="64aa81394e01cf1c550d7c3fba397d933c0e06105820f54ae8c80c716ba9b5b4c22751e965eeb6a6a1169f4c04928eef948c713e8694caddd6d4d13a04c69898d3824ac21c41f8514d35cd052f35e2742846824a2b3d07ead58274", 0x5b}], 0x1, &(0x7f0000001d40)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="440000290500000000000005020001001f00000100c20400000008000100010200000401fdc910fc01000000000000000000000000000100000000499521066d5c32d85c9550ca7cdea64eac87bc0b3df75796b74ee579cdebd5ae4d1333d05cd581ef1a9db01d2b5956edd8941e0e7deb60284cef0341ae349feb348cf94248c39b7370f2c1ce4503af838eb369d79d1658d0c3"], 0x1b0}}, {{0x0, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1, &(0x7f0000000400)=[@pktinfo={{0x20, 0x29, 0x32, {@remote, r2}}}], 0x20}}, {{&(0x7f0000000500)={0xa, 0x4e22, 0x8, @local, 0x1}, 0x1c, &(0x7f0000000580)=[{0x0}, {&(0x7f0000000980)="1e20959d8e92fd0fc4ea7c9f788661213c3c4b21642af132379678bf537b52d3b39000238a66678cfc8d6ec6d7bbbe4e0e77fa1870526248435876918f9a39dead8b7ce580161675c69b6bf041bac305c2191340b9a784653f17a23ee670c3cbfcd176640df1d319c19798097fb6f0f3168336ff2c450ec2e9c8666094dab0d48687fd523a743acf3c9e6100e0094f6238ef2116d3684b8964dd4e816c3682", 0x9f}, {0x0}, {&(0x7f0000000b40)="00d4df45533c9d668fef242e95f75e5c3726d7411181325c6eb796f7d22f4936ed9bbbf904fe15f08fa24121ebacaa95d74e150e54bbd0985d68cc43c6ef05cda14f5f11a0bba35e0cd92f615176e703a3c5dfb8a99fe74a93cb1d1bb4be452846f63d775db1405c3b5ce1e0d143a78062151d0449531e335548fc45673150df45f1bfa156249a6006", 0x89}, {&(0x7f0000000c00)}], 0x5, &(0x7f0000002040)}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000600)="016f0200000000000000c8b1f4a90df31df1c1829806c9f6e159af582f75d447b05d773b657b122b05314dbec0f3b2e0c691de96be83f7fdd59609f604425f6e09d0a9ac7aee0b147622d309eb80a86751917f0f2e1968cb4961591195c2a7a47c79290d282ca720305db83747d120c2", 0x70}, {&(0x7f0000000d80)="a740ae650539dc457c6b8dbecd35fc6746c1345daf047cd1d62a6bc38ff371f0c39708bd4f8dd70e839a28a45f802b841147f9c9d53a46bd60819416e7a959b0a6e0c3f390350749135e9b6f32220e2629fe11a0343a7b1ec5b3ecb006c96b4d6c4167aa37a1dd18d35399948fee95e3f962ccad1c5b931738927584c21958680985f0dd75033ef988f46591bcda48bcc4b6041fb0bfe984d636e82b20c531dcb11eac397502a674696e1829de363f64", 0xb0}, {&(0x7f0000000e40)="6793bb41413aff1f5e406cee5052a1ee51bc41a808f4a05a776b596fe25579e525a3340326171c04f9a9b5752427b47bbebd5b70293916681ece3133aaf2ac8c23e76adcc41a80e481eccb8a814972a6d29c0e99db3a473ef5fbdec23e8e2e5cb59c1f3c1402b4f1fbfd66ce83c51189e99574b403cd705a3c3b01c8a7a8c20a6896e26e068c43bf6518bb427fa3dae9ee4e55f38ba9b3017b4b23a003e4adf92412662bd9d244273dc1d6ea197c667d0da04060712c5e05b5093cc65dfa6bb9e21f74b41f451fd8889cbc794a4757f674e6467ebdc5a2a90212495d", 0xdc}, {&(0x7f0000000f40)="ffe5c37605600452d2a8f06d5055b9751ac796991405026ff10b7b536fe7049a348556567e86075dc8d36cda77eb3702f61b05473602b618f23ce6c373f9b28cf0ddf76b51f0c5556b7f22", 0x4b}], 0x4, &(0x7f0000003300)=[@rthdr={{0x74, 0x29, 0x39, {0x3c, 0xc, 0x1, 0x5, 0x0, [@local, @private1, @remote, @private1, @private2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}]}}}, @tclass={{0x10, 0x29, 0x43, 0xf66}}, @flowinfo={{0x10, 0x29, 0xb, 0x8000}}, @dstopts={{0x1c, 0x29, 0x37, {0x3b, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x5}]}}}], 0xb0}}, {{&(0x7f0000003400)={0xa, 0x4e22, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}, 0xc}, 0x1c, &(0x7f0000003500)}}, {{0x0, 0x0, &(0x7f00000036c0)=[{&(0x7f0000003540)="ec18137709396d727292846ba32d1a5c5bccb141cc3bfded8fe35b7c93b7b6eb94a6dd016503a44d3576bfa5b40e85adb6d40769c312dd531d9628e421c7829bbf7233f1396277a148af1d9a04ae5c365b005c42410243639a5aa1c71fdfa7f6d45c967122d64dfe6abfebdffd0f7b79d3ddf34b47e4657b2f6f22a3b8ad9340d505b44c6fdfb1849569f546a5925de6dd82dbb51710e0d0d9b78f6282e438bea429349c439b47e24e64e0db", 0xac}, {&(0x7f0000003600)="b2298d133b4c05c844789659f55624113d2eaffeb3e9d9e07e882ddde695692cb6d3d794aabf6e5973f1bf0d3338fd3c8de0bfa7a288450fb77f93f4dbc49f241792ab852a536bca886c107b2874d2dbbee1e11ccb33e68c77fceacaae3fb009012c0f", 0x63}, {&(0x7f0000003680)="74a6193e25472506b85c3ace8267bc75640dd9a74484655147733aab9e9902b7b44ef4b37f6ec47ae7da743c2f55c799", 0x30}], 0x3}}, {{0x0, 0x0, &(0x7f00000038c0)=[{0x0}, {&(0x7f00000037c0)="9ed52824123970c1f3d1c50df0ed5b85b6a6497eb1b15423a6c6632c9d40166f54ad439aa0707a9be3a9db9709fe787337204848b289f7dddd20308824dbf0288679c41672586da5f1ee06496c648aa2fe6b71e928127bc3a4629e7fabfa0d2c1a24a92da029b37976d86d0a3fe0a6f7f03bebb4d414a7decc13669b71212947693ea251523822f9771bce60b2b76b4be26873ab89a0624cbe2358d71d8fe92580a37dab0d311d5212da63ee6974fa37bc", 0xb1}, {&(0x7f0000000680)="7bc8f639eb0c56ba72a08d5c504a204d603893811c2a555bff9fb2f380401550b6eabec73874360930d69e59728e87f613dc7e9c382a", 0x36}], 0x3}}, {{&(0x7f0000003a00)={0xa, 0x4e24, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x643fc874}, 0x1c, &(0x7f0000004b00)=[{&(0x7f0000003a40)="767f92a69ff6a69be5b15653", 0xc}, {&(0x7f0000003ac0)}, {&(0x7f0000003b00)="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", 0x1000}], 0x3, &(0x7f0000000d00)=[@rthdr_2292={{0x54, 0x29, 0x39, {0x2b, 0x8, 0x2, 0x1, 0x0, [@mcast1, @local, @remote, @remote]}}}], 0x54}}, {{&(0x7f0000004b80)={0xa, 0x4e22, 0xffff, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c, &(0x7f0000000fc0)=[{&(0x7f0000004bc0)="f5fc5b407cb8a5216192587a94b20759253c58a24f8d66445247e3dfa0d3a15ad318170d163709e80f9df74f8ce029d9c57dd333fa0692851caee531207bef6f8aae285c211956eea97b2892a1203599cb753d3c1ee41c32f4cf26ee3e75e35caffb2fc976988d794e1699773ce096aecdf6e0bf81e3fa5af709b225035391ed961b01da363a2bf38610c69e8cf55bc7332da9147b6fa2c70a5700bd4a88b859954d942005be51602f1bd05de514f703b71270c0770cd77502aa4b0ffb960c8635c357f095152df1e2b7eae9b971f7cb6cbf4b7893e6f17626d598c99e6c", 0xde}, {&(0x7f0000000880)="a12f23167e57e78c48483eb54564895858d680a92e39b923a1f18498362e74dcb8e3d06f8408beb8231e9153527da76aaf1b27217a0a49dbdde5d1f74e7697649b7434ebaa83c8a9e126b768272fb7e0d0f89d05c2e77700fcf3b6bf3c6aed86d2bf293ae80d1c0846422cbb064126a3888abecff48d9bafd8861cd9111ef1348a28806cc60acf2d0ce8e884d5e643610c7e0939d9f0f9bc", 0x98}], 0x2}}], 0x9, 0x404c040)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
r3 = socket(0x10, 0x3, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x6)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000140), 0x41, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x101121)
r7 = dup(r6)
write$6lowpan_enable(r7, &(0x7f0000000000)='0', 0xfffffd2c)
r8 = syz_io_uring_setup(0x1c57, &(0x7f0000000300)={0x0, 0x40ac, 0x10000, 0x2, 0x3f, 0x0, r7}, &(0x7f0000000180)=<r9=>0x0, &(0x7f00000001c0)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r6})
io_uring_enter(r8, 0x2def, 0x4000, 0x0, 0x0, 0x0)
setrlimit(0x40000000000008, &(0x7f0000000000))
mlockall(0x5)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x401, 0x7ffffffffffffffd}, 0x0, &(0x7f00000006c0)={0x3ff, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x7fffffff}, 0x0, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10)
syz_open_dev$loop(&(0x7f0000000440), 0xfcb, 0x0)
r11 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r11, 0xffffffffffffffff, 0x0)
r12 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x1a8)
r13 = fanotify_init(0xf00, 0x0)
fanotify_mark(r13, 0x451, 0x8000010, r12, 0x0)

503.443191ms ago: executing program 33 (id=1039):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs2/custom0\x00', 0x800, 0x0) (async)
pselect6(0x40, &(0x7f0000000040)={0xd, 0x62ca, 0x1f, 0xfffffffffffffffd, 0x3, 0x7, 0x53, 0x10ecbc}, 0x0, 0x0, 0x0, 0x0) (async)
unshare(0x68040200) (async)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
getpeername$qrtr(0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000300)=0xc) (async)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r1, &(0x7f0000000240)={@val={0x0, 0x800}, @val={0x1, 0x5, 0x6, 0xffff, 0x80, 0x6}, @ipv6=@udp={0x0, 0x6, "d2341f", 0x60, 0x11, 0x0, @mcast1, @dev={0xfe, 0x80, '\x00', 0xf}, {[], {0x4e23, 0x4e23, 0x60, 0x0, @gue={{0x1, 0x1, 0x1, 0x2, 0x0, @void}, "79881cfbbd2f447d213ed1c3f1158ad983dcdf87291fc6e76c5b7cec6f57fc8330352cce33d187fa4e7edb5bb5dd06101d85b7825c1d225a3c797ba8e90fc6d38a3e82684dc23acbf61bca1f17b7ce8dc5a2386b"}}}}}, 0x96) (async)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000003c0), 0x2, 0x1}}, 0x20)
fcntl$notify(r0, 0x402, 0x0) (async)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})
r3 = openat$cdrom(0xffffff9c, &(0x7f0000000000), 0x10d901, 0x0) (async)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
fcntl$setstatus(r4, 0x4, 0x2000) (async)
ioctl$DVD_AUTH(r3, 0x5390, &(0x7f0000000040)=@type=0x2)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(0xffffffffffffffff, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r5], &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)}) (async)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000340)={&(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, r5, 0x0, r5, r5, r5, 0x0, 0x0], 0xb, 0x800}) (async)
r6 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f00020000000905050200de7e001009058b1e20"], 0x0)
syz_usb_control_io$uac1(r6, 0x0, &(0x7f0000000140)={0x24, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async, rerun: 64)
r7 = syz_open_dev$char_usb(0xc, 0xb4, 0x0) (rerun: 64)
ioctl$FS_IOC_GETVERSION(r7, 0x40045b0a, &(0x7f0000000040))
r8 = socket(0x2b, 0x80801, 0x1)
setsockopt$EBT_SO_SET_COUNTERS(r8, 0x0, 0x81, &(0x7f0000000240)={'filter\x00', 0x0, 0x0, 0x0, [0x3, 0x6, 0x101, 0x8, 0x7, 0x1ff], 0x1, 0x0, 0x0, [{}]}, 0x60) (async)
ioctl$CDROMRESET(r3, 0x5312) (async, rerun: 32)
socket$xdp(0x2c, 0x3, 0x0) (async, rerun: 32)
close_range(r2, 0xffffffffffffffff, 0x0)

425.755198ms ago: executing program 34 (id=1040):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0xc8800)
fcntl$dupfd(r0, 0x406, r0)
ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000f40)=ANY=[@ANYBLOB="50000000480011012abd7000fedbdf250a006000", @ANYRES32=0x0, @ANYBLOB="02000000080002000700000008000200070000000800020000000000140001"], 0x50}}, 0x10)
r2 = openat$thread_pidfd(0xffffff9c, &(0x7f0000000000), 0x2080, 0x0)
r3 = syz_open_procfs$userns(0x0, &(0x7f0000001100))
ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40046607, &(0x7f0000001140)=0xfffffff0)
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x9, 0x2)
close_range(r2, r4, 0xe011bda3b223e06e)
r5 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
getsockopt$bt_BT_CHANNEL_POLICY(r5, 0x112, 0xa, 0x0, &(0x7f0000000480))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f00000003c0)=[{0x74, 0x0, 0x0, 0xd5d}]})
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
preadv(r6, &(0x7f0000000040)=[{0x0}], 0x1, 0x300, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r4, 0x8983, &(0x7f00000010c0)={0x0, 'ip6gre0\x00', {0x3}, 0x9})
fdatasync(r4)

0s ago: executing program 35 (id=1041):
r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = io_uring_setup(0x78f2, &(0x7f0000000200)={0x0, 0xf0fd, 0x10, 0x2, 0x1f2})
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r1, 0x7, &(0x7f0000000180), 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0xd)
r2 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
r3 = dup(r2)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x18, 0x55, 0x1e5}, 0x18}}, 0x0)
epoll_create1(0x0)
epoll_create1(0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
r7 = add_key$user(&(0x7f0000000280), &(0x7f0000000300)={'syz', 0x3}, &(0x7f00000003c0)="daf04102d4d17fb795b16715b2840308427d7dad3d61c0da3877d4c79ff502fab2ace475356b4eeaef33332bb84ce2dbd180", 0x32, 0xfffffffffffffffe)
r8 = request_key(&(0x7f00000004c0)='cifs.idmap\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000000300)='R\x10suse\x00\x00\x00\x00\x00\x00\x00\'n\x00\x00\x00', 0x0)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYRES16=r9, @ANYBLOB="050006d97200c4fb1be8", @ANYRESOCT=r8, @ANYBLOB="1fc430b5ba"], 0x24}}, 0x0)
keyctl$dh_compute(0x17, &(0x7f0000000440)={r7, 0x0, r8}, &(0x7f0000000480)=""/245, 0xf5, &(0x7f0000000600)={&(0x7f0000000580)={'sha3-224\x00'}, &(0x7f00000005c0)="59ceab74e2b9e3f32a57cac2240810b67306c4ae53e3ba73cdd22f3872b09565a694a51bf2ef", 0x26})
mlock2(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
write$UHID_INPUT(r3, 0x0, 0x0)

kernel console output (not intermixed with test programs):

32/0x80
[   84.087418][ T6919]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   84.087431][ T6919] RIP: 0023:0xf7f97579
[   84.087439][ T6919] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   84.087449][ T6919] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   84.087459][ T6919] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000c0045520
[   84.087465][ T6919] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[   84.087471][ T6919] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   84.087477][ T6919] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   84.087483][ T6919] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   84.087495][ T6919]  </TASK>
[   84.087511][ T6919] ERROR: Out of memory at tomoyo_realpath_from_path.
[   84.162231][  T840] usb 8-1: USB disconnect, device number 6
[   84.269157][ T6934] input: syz0 as /devices/virtual/input/input5
[   84.457920][ T6937] netlink: 8 bytes leftover after parsing attributes in process `syz.0.255'.
[   84.460895][ T6937] netlink: 'syz.0.255': attribute type 18 has an invalid length.
[   84.463881][ T6937] netlink: 4 bytes leftover after parsing attributes in process `syz.0.255'.
[   86.232323][   T40] audit: type=1804 audit(1749748057.361:3): pid=6973 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.263" name="file0" dev="tmpfs" ino=502 res=1 errno=0
[   86.436019][ T6979] netlink: 424 bytes leftover after parsing attributes in process `syz.1.266'.
[   86.542762][ T6984] FAULT_INJECTION: forcing a failure.
[   86.542762][ T6984] name failslab, interval 1, probability 0, space 0, times 0
[   86.547370][ T6984] CPU: 2 UID: 0 PID: 6984 Comm: syz.3.265 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[   86.547396][ T6984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.547402][ T6984] Call Trace:
[   86.547406][ T6984]  <TASK>
[   86.547410][ T6984]  dump_stack_lvl+0x16c/0x1f0
[   86.547431][ T6984]  should_fail_ex+0x512/0x640
[   86.547447][ T6984]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   86.547463][ T6984]  should_failslab+0xc2/0x120
[   86.547473][ T6984]  __kmalloc_cache_noprof+0x6a/0x3e0
[   86.547485][ T6984]  ? binder_get_thread+0x1eb/0x8c0
[   86.547496][ T6984]  ? binder_get_thread+0x225/0x8c0
[   86.547506][ T6984]  ? __pfx_binder_poll+0x10/0x10
[   86.547516][ T6984]  binder_get_thread+0x225/0x8c0
[   86.547528][ T6984]  ? __pfx_binder_poll+0x10/0x10
[   86.547538][ T6984]  binder_poll+0x3f/0x400
[   86.547548][ T6984]  ? __pfx_binder_poll+0x10/0x10
[   86.547557][ T6984]  do_select+0xd3d/0x17e0
[   86.547569][ T6984]  ? __page_table_check_zero+0x346/0x5d0
[   86.547599][ T6984]  ? __pfx_do_select+0x10/0x10
[   86.547613][ T6984]  ? __pfx___pollwait+0x10/0x10
[   86.547627][ T6984]  ? __pfx_pollwake+0x10/0x10
[   86.547641][ T6984]  ? __pfx_pollwake+0x10/0x10
[   86.547654][ T6984]  ? __pfx_pollwake+0x10/0x10
[   86.547667][ T6984]  ? __pfx_pollwake+0x10/0x10
[   86.547681][ T6984]  ? __pfx_pollwake+0x10/0x10
[   86.547707][ T6984]  ? find_held_lock+0x2b/0x80
[   86.547718][ T6984]  ? compat_core_sys_select+0x1dd/0x880
[   86.547733][ T6984]  ? compat_core_sys_select+0x685/0x880
[   86.547745][ T6984]  compat_core_sys_select+0x685/0x880
[   86.547762][ T6984]  ? __pfx_compat_core_sys_select+0x10/0x10
[   86.547778][ T6984]  ? proc_fail_nth_write+0x9f/0x250
[   86.547800][ T6984]  ? set_compat_user_sigmask+0x213/0x2a0
[   86.547811][ T6984]  ? __pfx_set_compat_user_sigmask+0x10/0x10
[   86.547824][ T6984]  __ia32_compat_sys_pselect6_time32+0x2d1/0x390
[   86.547841][ T6984]  ? __pfx___ia32_compat_sys_pselect6_time32+0x10/0x10
[   86.547855][ T6984]  ? fput+0x70/0xf0
[   86.547864][ T6984]  ? ksys_write+0x1ac/0x250
[   86.547879][ T6984]  ? __pfx_ksys_write+0x10/0x10
[   86.547894][ T6984]  ? rcu_is_watching+0x12/0xc0
[   86.547906][ T6984]  __do_fast_syscall_32+0x7c/0x3a0
[   86.547917][ T6984]  do_fast_syscall_32+0x32/0x80
[   86.547926][ T6984]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   86.547939][ T6984] RIP: 0023:0xf7f97579
[   86.547947][ T6984] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   86.547956][ T6984] RSP: 002b:00000000f507455c EFLAGS: 00000296 ORIG_RAX: 0000000000000134
[   86.547966][ T6984] RAX: ffffffffffffffda RBX: 0000000000000040 RCX: 00000000800001c0
[   86.547972][ T6984] RDX: 0000000000000000 RSI: 00000000800002c0 RDI: 0000000000000000
[   86.547978][ T6984] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   86.547984][ T6984] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   86.547989][ T6984] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   86.548002][ T6984]  </TASK>
[   86.974288][ T6992] Invalid source name
[   86.975879][ T6992] UBIFS error (pid: 6992): cannot open "./file0", error -22
[   87.030282][ T6992] ip6gretap0: entered promiscuous mode
[   87.111352][ T6992] vlan2: entered promiscuous mode
[   87.501151][ T6998] netlink: 24 bytes leftover after parsing attributes in process `syz.0.269'.
[   87.569557][ T7000] Invalid source name
[   87.579503][ T7000] UBIFS error (pid: 7000): cannot open "./file0", error -22
[   87.593880][ T7000] ip6gretap0: entered promiscuous mode
[   87.598400][ T7000] vlan2: entered promiscuous mode
[   88.087614][   T63] Bluetooth: hci1: unexpected cc 0x0809 length: 68 > 4
[   88.374450][ T7024] Driver unsupported XDP return value 0 on prog  (id 61) dev N/A, expect packet loss!
[   88.462637][ T7028] warn_alloc: 5 callbacks suppressed
[   88.462670][ T7028] syz.3.277: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   88.470776][ T7028] CPU: 1 UID: 0 PID: 7028 Comm: syz.3.277 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[   88.470811][ T7028] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.470822][ T7028] Call Trace:
[   88.470855][ T7028]  <TASK>
[   88.470862][ T7028]  dump_stack_lvl+0x16c/0x1f0
[   88.470914][ T7028]  warn_alloc+0x248/0x3a0
[   88.470941][ T7028]  ? __pfx_warn_alloc+0x10/0x10
[   88.470966][ T7028]  ? __pfx_stack_trace_save+0x10/0x10
[   88.470986][ T7028]  ? stack_depot_save_flags+0x28/0xa40
[   88.471027][ T7028]  ? kasan_save_stack+0x42/0x60
[   88.471051][ T7028]  ? kasan_save_stack+0x33/0x60
[   88.471076][ T7028]  ? kasan_save_track+0x14/0x30
[   88.471100][ T7028]  ? xskq_create+0x52/0x1d0
[   88.471125][ T7028]  ? xsk_setsockopt+0x640/0x840
[   88.471144][ T7028]  ? do_sock_setsockopt+0x221/0x470
[   88.471164][ T7028]  ? xskq_create+0xfb/0x1d0
[   88.471187][ T7028]  __vmalloc_node_range_noprof+0xff5/0x14b0
[   88.471222][ T7028]  ? xskq_create+0xfb/0x1d0
[   88.471253][ T7028]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   88.471284][ T7028]  ? xskq_create+0xfb/0x1d0
[   88.471308][ T7028]  vmalloc_user_noprof+0x9e/0xe0
[   88.471336][ T7028]  ? xskq_create+0xfb/0x1d0
[   88.471360][ T7028]  xskq_create+0xfb/0x1d0
[   88.471387][ T7028]  xsk_setsockopt+0x640/0x840
[   88.471413][ T7028]  ? __pfx_xsk_setsockopt+0x10/0x10
[   88.471436][ T7028]  ? __pfx_aa_sk_perm+0x10/0x10
[   88.471460][ T7028]  ? errseq_sample+0x53/0x70
[   88.471492][ T7028]  ? __pfx_xsk_setsockopt+0x10/0x10
[   88.471514][ T7028]  do_sock_setsockopt+0x221/0x470
[   88.471534][ T7028]  ? __pfx_do_sock_setsockopt+0x10/0x10
[   88.471570][ T7028]  __sys_setsockopt+0x120/0x1a0
[   88.471601][ T7028]  __ia32_sys_setsockopt+0xbc/0x160
[   88.471641][ T7028]  ? lockdep_hardirqs_on+0x7c/0x110
[   88.471670][ T7028]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   88.471699][ T7028]  __do_fast_syscall_32+0x7c/0x3a0
[   88.471718][ T7028]  do_fast_syscall_32+0x32/0x80
[   88.471735][ T7028]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   88.471757][ T7028] RIP: 0023:0xf7f97579
[   88.471769][ T7028] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   88.471784][ T7028] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[   88.471819][ T7028] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000000000011b
[   88.471826][ T7028] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[   88.471833][ T7028] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   88.471840][ T7028] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   88.471846][ T7028] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   88.471860][ T7028]  </TASK>
[   88.577255][ T7028] Mem-Info:
[   88.578456][ T7028] active_anon:8659 inactive_anon:53 isolated_anon:0
[   88.578456][ T7028]  active_file:3149 inactive_file:36634 isolated_file:0
[   88.578456][ T7028]  unevictable:1768 dirty:463 writeback:0
[   88.578456][ T7028]  slab_reclaimable:9649 slab_unreclaimable:53940
[   88.578456][ T7028]  mapped:27204 shmem:5138 pagetables:1112
[   88.578456][ T7028]  sec_pagetables:314 bounce:0
[   88.578456][ T7028]  kernel_misc_reclaimable:0
[   88.578456][ T7028]  free:53907 free_pcp:13717 free_cma:0
[   88.592820][ T7028] Node 0 active_anon:332kB inactive_anon:212kB active_file:0kB inactive_file:24kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:2252kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8292kB pagetables:1744kB sec_pagetables:1160kB all_unreclaimable? yes Balloon:0kB
[   88.605182][ T7028] Node 1 active_anon:34276kB inactive_anon:0kB active_file:12596kB inactive_file:146512kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:106520kB dirty:1868kB writeback:0kB shmem:17016kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4788kB pagetables:2664kB sec_pagetables:96kB all_unreclaimable? no Balloon:0kB
[   88.615510][ T7028] Node 0 DMA free:2088kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:580kB local_pcp:140kB free_cma:0kB
[   88.625744][ T7028] lowmem_reserve[]: 0 289 289 289 289
[   88.627503][ T7028] Node 0 DMA32 free:17120kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:4096KB free_highatomic:544KB active_anon:332kB inactive_anon:212kB active_file:0kB inactive_file:24kB unevictable:3536kB writepending:4kB present:1032196kB managed:296672kB mlocked:0kB bounce:0kB free_pcp:12372kB local_pcp:3452kB free_cma:0kB
[   88.637180][ T7028] lowmem_reserve[]: 0 0 0 0 0
[   88.638709][ T7028] Node 1 DMA32 free:196372kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:34276kB inactive_anon:0kB active_file:12596kB inactive_file:146512kB unevictable:3536kB writepending:1868kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:41916kB local_pcp:7528kB free_cma:0kB
[   88.649740][ T7028] lowmem_reserve[]: 0 0 0 0 0
[   88.651276][ T7028] Node 0 DMA: 28*4kB (UM) 19*8kB (UM) 2*16kB (UM) 14*32kB (UM) 3*64kB (UM) 1*128kB (M) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2088kB
[   88.655737][ T7028] Node 0 DMA32: 161*4kB (UMEH) 71*8kB (MEH) 50*16kB (ME) 54*32kB (UMEH) 46*64kB (UME) 19*128kB (UME) 11*256kB (UME) 4*512kB (UM) 1*1024kB (U) 1*2048kB (M) 0*4096kB = 17052kB
[   88.661176][ T7028] Node 1 DMA32: 753*4kB (UME) 521*8kB (UME) 282*16kB (UME) 180*32kB (UME) 191*64kB (UME) 113*128kB (UME) 42*256kB (UME) 20*512kB (UME) 6*1024kB (UME) 7*2048kB (UM) 27*4096kB (UM) = 196204kB
[   88.668321][ T7028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   88.671326][ T7028] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[   88.674232][ T7028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   88.677153][ T7028] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[   88.679990][ T7028] 45187 total pagecache pages
[   88.681982][ T7028] 268 pages in swap cache
[   88.685604][ T7028] Free swap  = 121396kB
[   88.686967][ T7028] Total swap = 124996kB
[   88.688335][ T7028] 524155 pages RAM
[   88.689514][ T7028] 0 pages HighMem/MovableOnly
[   88.690995][ T7028] 209080 pages reserved
[   88.712036][ T7028] 0 pages cma reserved
[   89.519990][ T7049] random: crng reseeded on system resumption
[   90.422500][ T7074] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   90.424975][ T7074] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   90.431915][ T7074] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   90.442372][ T7074] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   90.444303][ T7074] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   90.459353][ T7074] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   90.464934][ T7074] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   90.467968][ T7074] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   90.476369][ T7074] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   90.480279][ T7074] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   90.482392][ T7074] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   90.493651][ T7074] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   90.557393][ T7083] FAULT_INJECTION: forcing a failure.
[   90.557393][ T7083] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.562563][ T7083] CPU: 1 UID: 0 PID: 7083 Comm: syz.0.291 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[   90.562578][ T7083] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.562584][ T7083] Call Trace:
[   90.562589][ T7083]  <TASK>
[   90.562593][ T7083]  dump_stack_lvl+0x16c/0x1f0
[   90.562613][ T7083]  should_fail_ex+0x512/0x640
[   90.562632][ T7083]  _copy_to_user+0x32/0xd0
[   90.562650][ T7083]  simple_read_from_buffer+0xcb/0x170
[   90.562664][ T7083]  proc_fail_nth_read+0x197/0x270
[   90.562677][ T7083]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   90.562690][ T7083]  ? rw_verify_area+0xcf/0x680
[   90.562703][ T7083]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   90.562714][ T7083]  vfs_read+0x1e1/0xc60
[   90.562728][ T7083]  ? fdget_pos+0x2a2/0x370
[   90.562744][ T7083]  ? __pfx_vfs_read+0x10/0x10
[   90.562756][ T7083]  ? find_held_lock+0x2b/0x80
[   90.562770][ T7083]  ? __fget_files+0x20e/0x3c0
[   90.562783][ T7083]  ? handle_mm_fault+0x230/0xd10
[   90.562799][ T7083]  ksys_read+0x12a/0x250
[   90.562813][ T7083]  ? __pfx_ksys_read+0x10/0x10
[   90.562828][ T7083]  ? rcu_is_watching+0x12/0xc0
[   90.562840][ T7083]  __do_fast_syscall_32+0x7c/0x3a0
[   90.562851][ T7083]  do_fast_syscall_32+0x32/0x80
[   90.562861][ T7083]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   90.562873][ T7083] RIP: 0023:0xf7fd3579
[   90.562882][ T7083] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   90.562892][ T7083] RSP: 002b:00000000f50f6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   90.562901][ T7083] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f50f6620
[   90.562908][ T7083] RDX: 000000000000000f RSI: 00000000f7462ff4 RDI: 0000000000000000
[   90.562914][ T7083] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   90.562919][ T7083] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   90.562925][ T7083] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   90.562937][ T7083]  </TASK>
[   91.142033][ T7100] netlink: 72 bytes leftover after parsing attributes in process `syz.1.293'.
[   92.236020][ T7128] netlink: 16 bytes leftover after parsing attributes in process `syz.3.304'.
[   92.290190][  T840] libceph: connect (1)[c::]:6789 error -101
[   92.292587][  T840] libceph: mon0 (1)[c::]:6789 connect error
[   92.399236][ T7128] ceph: No mds server is up or the cluster is laggy
[   92.421811][   T63] Bluetooth: hci0: command 0x0c1a tx timeout
[   92.491825][   T63] Bluetooth: hci1: command 0x0c1a tx timeout
[   92.492670][ T5951] Bluetooth: hci3: command 0x0405 tx timeout
[   92.493675][   T63] Bluetooth: hci2: command 0x0c1a tx timeout
[   92.770528][ T7155] netlink: 32 bytes leftover after parsing attributes in process `syz.2.311'.
[   92.829606][ T7161] FAULT_INJECTION: forcing a failure.
[   92.829606][ T7161] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.833798][ T7162] netlink: 64 bytes leftover after parsing attributes in process `syz.2.314'.
[   92.836971][ T7161] CPU: 1 UID: 0 PID: 7161 Comm: syz.1.313 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[   92.836986][ T7161] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   92.836993][ T7161] Call Trace:
[   92.836997][ T7161]  <TASK>
[   92.837001][ T7161]  dump_stack_lvl+0x16c/0x1f0
[   92.837030][ T7161]  should_fail_ex+0x512/0x640
[   92.837053][ T7161]  _copy_from_user+0x2e/0xd0
[   92.837075][ T7161]  get_compat_msghdr+0xa7/0x170
[   92.837090][ T7161]  ? __pfx_get_compat_msghdr+0x10/0x10
[   92.837114][ T7161]  ___sys_sendmsg+0x1ae/0x1d0
[   92.837142][ T7161]  ? __pfx____sys_sendmsg+0x10/0x10
[   92.837174][ T7161]  ? find_held_lock+0x2b/0x80
[   92.837217][ T7161]  __sys_sendmsg+0x16d/0x220
[   92.837233][ T7161]  ? __pfx___sys_sendmsg+0x10/0x10
[   92.837255][ T7161]  ? rcu_is_watching+0x12/0xc0
[   92.837268][ T7161]  __do_fast_syscall_32+0x7c/0x3a0
[   92.837279][ T7161]  do_fast_syscall_32+0x32/0x80
[   92.837288][ T7161]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   92.837302][ T7161] RIP: 0023:0xf7f32579
[   92.837311][ T7161] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   92.837321][ T7161] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   92.837332][ T7161] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000280
[   92.837339][ T7161] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   92.837345][ T7161] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   92.837351][ T7161] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   92.837357][ T7161] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   92.837370][ T7161]  </TASK>
[   92.870950][ T7162] netlink: 4 bytes leftover after parsing attributes in process `syz.2.314'.
[   93.018888][ T7172] netlink: 28 bytes leftover after parsing attributes in process `syz.2.316'.
[   93.140611][ T7175] batadv_slave_1: entered promiscuous mode
[   93.396611][ T7176] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.675969][ T7176] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.750860][ T7204] gtp1: entered promiscuous mode
[   93.755479][ T7204] netlink: 4 bytes leftover after parsing attributes in process `syz.0.326'.
[   94.110934][ T7176] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.242353][ T7176] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.332685][ T7176] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.340321][ T7176] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.349393][ T7176] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.357736][ T7176] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.492984][ T5955] Bluetooth: hci0: command 0x0c1a tx timeout
[   94.571902][ T5955] Bluetooth: hci3: command 0x0405 tx timeout
[   94.571943][   T63] Bluetooth: hci1: command 0x0c1a tx timeout
[   94.571992][ T5951] Bluetooth: hci2: command 0x0c1a tx timeout
[   94.715081][ T7224] 9p: Unknown access argument `: -22
[   94.757350][ T7228] IPv6: NLM_F_REPLACE set, but no existing node found!
[   94.789723][ T7229] netlink: 4 bytes leftover after parsing attributes in process `syz.3.332'.
[   95.130084][ T7238] netlink: 8 bytes leftover after parsing attributes in process `syz.3.334'.
[   95.143875][ T7238] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   95.261361][ T7242] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   95.265680][ T7242] netlink: 8 bytes leftover after parsing attributes in process `syz.2.335'.
[   95.337596][ T7248] FAULT_INJECTION: forcing a failure.
[   95.337596][ T7248] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.341782][ T7248] CPU: 2 UID: 0 PID: 7248 Comm: syz.1.337 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[   95.341798][ T7248] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.341804][ T7248] Call Trace:
[   95.341808][ T7248]  <TASK>
[   95.341812][ T7248]  dump_stack_lvl+0x16c/0x1f0
[   95.341832][ T7248]  should_fail_ex+0x512/0x640
[   95.341850][ T7248]  _copy_from_user+0x2e/0xd0
[   95.341867][ T7248]  __sys_bpf+0x21d/0x4d80
[   95.341884][ T7248]  ? __pfx___sys_bpf+0x10/0x10
[   95.341901][ T7248]  ? ksys_write+0x190/0x250
[   95.341917][ T7248]  ? __mutex_unlock_slowpath+0x161/0x6a0
[   95.341942][ T7248]  ? fput+0x70/0xf0
[   95.341951][ T7248]  ? ksys_write+0x1ac/0x250
[   95.341965][ T7248]  ? __pfx_ksys_write+0x10/0x10
[   95.342000][ T7248]  __ia32_sys_bpf+0x76/0xe0
[   95.342010][ T7248]  __do_fast_syscall_32+0x7c/0x3a0
[   95.342021][ T7248]  do_fast_syscall_32+0x32/0x80
[   95.342031][ T7248]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   95.342043][ T7248] RIP: 0023:0xf7f32579
[   95.342052][ T7248] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   95.342061][ T7248] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   95.342071][ T7248] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000240
[   95.342078][ T7248] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000
[   95.342084][ T7248] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   95.342089][ T7248] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   95.342095][ T7248] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   95.342107][ T7248]  </TASK>
[   95.403546][    C2] hpet: Lost 2 RTC interrupts
[   95.884881][ T7258] SET target dimension over the limit!
[   95.897703][ T7260] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[   96.062476][ T7275] FAULT_INJECTION: forcing a failure.
[   96.062476][ T7275] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.066582][ T7275] CPU: 2 UID: 0 PID: 7275 Comm: syz.3.347 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[   96.066608][ T7275] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   96.066615][ T7275] Call Trace:
[   96.066619][ T7275]  <TASK>
[   96.066623][ T7275]  dump_stack_lvl+0x16c/0x1f0
[   96.066643][ T7275]  should_fail_ex+0x512/0x640
[   96.066661][ T7275]  _copy_to_user+0x32/0xd0
[   96.066678][ T7275]  simple_read_from_buffer+0xcb/0x170
[   96.066693][ T7275]  proc_fail_nth_read+0x197/0x270
[   96.066706][ T7275]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   96.066719][ T7275]  ? rw_verify_area+0xcf/0x680
[   96.066732][ T7275]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   96.066743][ T7275]  vfs_read+0x1e1/0xc60
[   96.066758][ T7275]  ? fdget_pos+0x2a2/0x370
[   96.066774][ T7275]  ? __pfx_vfs_read+0x10/0x10
[   96.066786][ T7275]  ? find_held_lock+0x2b/0x80
[   96.066801][ T7275]  ? __fget_files+0x20e/0x3c0
[   96.066818][ T7275]  ksys_read+0x12a/0x250
[   96.066832][ T7275]  ? __pfx_ksys_read+0x10/0x10
[   96.066846][ T7275]  ? rcu_is_watching+0x12/0xc0
[   96.066858][ T7275]  __do_fast_syscall_32+0x7c/0x3a0
[   96.066870][ T7275]  do_fast_syscall_32+0x32/0x80
[   96.066879][ T7275]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   96.066892][ T7275] RIP: 0023:0xf7f97579
[   96.066900][ T7275] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   96.066909][ T7275] RSP: 002b:00000000f50b6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   96.066919][ T7275] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000f50b6620
[   96.066925][ T7275] RDX: 000000000000000f RSI: 00000000f7422ff4 RDI: 0000000000000000
[   96.066931][ T7275] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   96.066936][ T7275] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   96.066941][ T7275] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   96.066954][ T7275]  </TASK>
[   96.132337][    C2] hpet: Lost 3 RTC interrupts
[   96.427721][ T7282] __nla_validate_parse: 1 callbacks suppressed
[   96.427733][ T7282] netlink: 12 bytes leftover after parsing attributes in process `syz.3.349'.
[   96.443972][ T7284] FAULT_INJECTION: forcing a failure.
[   96.443972][ T7284] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.448061][ T7284] CPU: 0 UID: 0 PID: 7284 Comm: syz.1.350 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[   96.448076][ T7284] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   96.448085][ T7284] Call Trace:
[   96.448090][ T7284]  <TASK>
[   96.448096][ T7284]  dump_stack_lvl+0x16c/0x1f0
[   96.448122][ T7284]  should_fail_ex+0x512/0x640
[   96.448149][ T7284]  _copy_from_user+0x2e/0xd0
[   96.448177][ T7284]  get_compat_msghdr+0xa7/0x170
[   96.448193][ T7284]  ? __pfx_get_compat_msghdr+0x10/0x10
[   96.448210][ T7284]  ___sys_sendmsg+0x1ae/0x1d0
[   96.448244][ T7284]  ? __pfx____sys_sendmsg+0x10/0x10
[   96.448266][ T7284]  ? find_held_lock+0x2b/0x80
[   96.448285][ T7284]  __sys_sendmsg+0x16d/0x220
[   96.448301][ T7284]  ? __pfx___sys_sendmsg+0x10/0x10
[   96.448323][ T7284]  ? rcu_is_watching+0x12/0xc0
[   96.448335][ T7284]  __do_fast_syscall_32+0x7c/0x3a0
[   96.448347][ T7284]  do_fast_syscall_32+0x32/0x80
[   96.448357][ T7284]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   96.448370][ T7284] RIP: 0023:0xf7f32579
[   96.448378][ T7284] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   96.448388][ T7284] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   96.448398][ T7284] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[   96.448404][ T7284] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   96.448410][ T7284] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   96.448415][ T7284] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   96.448421][ T7284] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   96.448433][ T7284]  </TASK>
[   96.581791][   T63] Bluetooth: hci0: command 0x0c1a tx timeout
[   96.651794][ T5955] Bluetooth: hci2: command 0x0c1a tx timeout
[   96.651833][ T5951] Bluetooth: hci3: command 0x0405 tx timeout
[   96.653713][   T63] Bluetooth: hci1: command 0x0c1a tx timeout
[   96.744352][ T7292] netlink: 8 bytes leftover after parsing attributes in process `syz.1.351'.
[   96.764717][ T7292] erspan0: left promiscuous mode
[   96.773920][ T7292] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   96.924262][ T7299] netlink: 24 bytes leftover after parsing attributes in process `syz.3.353'.
[   97.499598][ T7310] FAULT_INJECTION: forcing a failure.
[   97.499598][ T7310] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.506907][ T7310] CPU: 3 UID: 0 PID: 7310 Comm: syz.0.358 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[   97.506923][ T7310] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   97.506929][ T7310] Call Trace:
[   97.506933][ T7310]  <TASK>
[   97.506938][ T7310]  dump_stack_lvl+0x16c/0x1f0
[   97.506958][ T7310]  should_fail_ex+0x512/0x640
[   97.506975][ T7310]  strncpy_from_user+0x3b/0x2e0
[   97.506991][ T7310]  __do_sys_add_key+0xce/0x470
[   97.507021][ T7310]  ? __pfx___do_sys_add_key+0x10/0x10
[   97.507036][ T7310]  ? ksys_write+0x1ac/0x250
[   97.507053][ T7310]  ? rcu_is_watching+0x12/0xc0
[   97.507066][ T7310]  __do_fast_syscall_32+0x7c/0x3a0
[   97.507077][ T7310]  do_fast_syscall_32+0x32/0x80
[   97.507087][ T7310]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   97.507099][ T7310] RIP: 0023:0xf7fd3579
[   97.507107][ T7310] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   97.507117][ T7310] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 000000000000011e
[   97.507127][ T7310] RAX: ffffffffffffffda RBX: 0000000080000080 RCX: 0000000000000000
[   97.507134][ T7310] RDX: 0000000080000200 RSI: 0000000000000002 RDI: 000000002470b54b
[   97.507140][ T7310] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   97.507146][ T7310] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   97.507151][ T7310] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   97.507164][ T7310]  </TASK>
[   97.695165][ T7318] FAULT_INJECTION: forcing a failure.
[   97.695165][ T7318] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.699403][ T7318] CPU: 1 UID: 0 PID: 7318 Comm: syz.1.361 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[   97.699441][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   97.699456][ T7318] Call Trace:
[   97.699463][ T7318]  <TASK>
[   97.699470][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   97.699501][ T7318]  should_fail_ex+0x512/0x640
[   97.699529][ T7318]  _copy_from_user+0x2e/0xd0
[   97.699554][ T7318]  get_compat_msghdr+0xa7/0x170
[   97.699566][ T7318]  ? __pfx_get_compat_msghdr+0x10/0x10
[   97.699581][ T7318]  ___sys_sendmsg+0x1ae/0x1d0
[   97.699598][ T7318]  ? __pfx____sys_sendmsg+0x10/0x10
[   97.699621][ T7318]  ? find_held_lock+0x2b/0x80
[   97.699640][ T7318]  __sys_sendmsg+0x16d/0x220
[   97.699656][ T7318]  ? __pfx___sys_sendmsg+0x10/0x10
[   97.699678][ T7318]  ? rcu_is_watching+0x12/0xc0
[   97.699690][ T7318]  __do_fast_syscall_32+0x7c/0x3a0
[   97.699701][ T7318]  do_fast_syscall_32+0x32/0x80
[   97.699711][ T7318]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   97.699723][ T7318] RIP: 0023:0xf7f32579
[   97.699732][ T7318] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   97.699742][ T7318] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   97.699752][ T7318] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[   97.699758][ T7318] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   97.699764][ T7318] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   97.699770][ T7318] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   97.699775][ T7318] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   97.699788][ T7318]  </TASK>
[   97.752507][ T7312] netlink: 28 bytes leftover after parsing attributes in process `syz.0.359'.
[   97.754260][    C1] vkms_vblank_simulate: vblank timer overrun
[   97.842698][ T7320] CUSE: unknown device info "�
"
[   97.844193][ T7320] CUSE: zero length info key specified
[   98.746244][ T7349] netlink: 4 bytes leftover after parsing attributes in process `syz.1.371'.
[   98.764611][ T7350] netlink: 8 bytes leftover after parsing attributes in process `syz.0.370'.
[   98.918103][ T7350] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   99.111362][ T7362] Invalid source name
[   99.112757][ T7362] UBIFS error (pid: 7362): cannot open "./file0", error -22
[   99.461318][ T7372] warn_alloc: 3 callbacks suppressed
[   99.461331][ T7372] syz.2.379: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   99.471183][ T7372] CPU: 3 UID: 0 PID: 7372 Comm: syz.2.379 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[   99.471199][ T7372] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   99.471205][ T7372] Call Trace:
[   99.471215][ T7372]  <TASK>
[   99.471220][ T7372]  dump_stack_lvl+0x16c/0x1f0
[   99.471240][ T7372]  warn_alloc+0x248/0x3a0
[   99.471258][ T7372]  ? __pfx_warn_alloc+0x10/0x10
[   99.471273][ T7372]  ? __pfx_stack_trace_save+0x10/0x10
[   99.471284][ T7372]  ? stack_depot_save_flags+0x28/0xa40
[   99.471305][ T7372]  ? kasan_save_stack+0x42/0x60
[   99.471319][ T7372]  ? kasan_save_stack+0x33/0x60
[   99.471331][ T7372]  ? kasan_save_track+0x14/0x30
[   99.471345][ T7372]  ? xskq_create+0x52/0x1d0
[   99.471357][ T7372]  ? xsk_setsockopt+0x640/0x840
[   99.471368][ T7372]  ? do_sock_setsockopt+0x221/0x470
[   99.471381][ T7372]  ? xskq_create+0xfb/0x1d0
[   99.471395][ T7372]  __vmalloc_node_range_noprof+0xff5/0x14b0
[   99.471413][ T7372]  ? xskq_create+0xfb/0x1d0
[   99.471429][ T7372]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   99.471446][ T7372]  ? xskq_create+0xfb/0x1d0
[   99.471460][ T7372]  vmalloc_user_noprof+0x9e/0xe0
[   99.471471][ T7372]  ? xskq_create+0xfb/0x1d0
[   99.471485][ T7372]  xskq_create+0xfb/0x1d0
[   99.471500][ T7372]  xsk_setsockopt+0x640/0x840
[   99.471516][ T7372]  ? __pfx_xsk_setsockopt+0x10/0x10
[   99.471528][ T7372]  ? __pfx_aa_sk_perm+0x10/0x10
[   99.471541][ T7372]  ? errseq_sample+0x53/0x70
[   99.471559][ T7372]  ? __pfx_xsk_setsockopt+0x10/0x10
[   99.471572][ T7372]  do_sock_setsockopt+0x221/0x470
[   99.471583][ T7372]  ? __pfx_do_sock_setsockopt+0x10/0x10
[   99.471602][ T7372]  __sys_setsockopt+0x120/0x1a0
[   99.471619][ T7372]  __ia32_sys_setsockopt+0xbc/0x160
[   99.471647][ T7372]  ? lockdep_hardirqs_on+0x7c/0x110
[   99.471663][ T7372]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   99.471679][ T7372]  __do_fast_syscall_32+0x7c/0x3a0
[   99.471690][ T7372]  do_fast_syscall_32+0x32/0x80
[   99.471701][ T7372]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   99.471715][ T7372] RIP: 0023:0xf7f57579
[   99.471724][ T7372] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   99.471733][ T7372] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[   99.471744][ T7372] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000011b
[   99.471750][ T7372] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[   99.471756][ T7372] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   99.471762][ T7372] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   99.471767][ T7372] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   99.471780][ T7372]  </TASK>
[   99.572829][ T7372] Mem-Info:
[   99.573849][ T7372] active_anon:12856 inactive_anon:52 isolated_anon:0
[   99.573849][ T7372]  active_file:3192 inactive_file:36640 isolated_file:0
[   99.573849][ T7372]  unevictable:1768 dirty:723 writeback:0
[   99.573849][ T7372]  slab_reclaimable:9860 slab_unreclaimable:54044
[   99.573849][ T7372]  mapped:30902 shmem:9346 pagetables:1207
[   99.573849][ T7372]  sec_pagetables:311 bounce:0
[   99.573849][ T7372]  kernel_misc_reclaimable:0
[   99.573849][ T7372]  free:45144 free_pcp:16027 free_cma:0
[   99.588294][ T7372] Node 0 active_anon:1372kB inactive_anon:208kB active_file:0kB inactive_file:32kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:2484kB dirty:0kB writeback:0kB shmem:4764kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8128kB pagetables:1600kB sec_pagetables:1148kB all_unreclaimable? yes Balloon:0kB
[   99.598167][ T7372] Node 1 active_anon:53352kB inactive_anon:0kB active_file:12768kB inactive_file:146528kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:124424kB dirty:2892kB writeback:0kB shmem:35820kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4924kB pagetables:3228kB sec_pagetables:96kB all_unreclaimable? no Balloon:0kB
[   99.609641][ T7372] Node 0 DMA free:2088kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:580kB local_pcp:156kB free_cma:0kB
[   99.619755][ T7372] lowmem_reserve[]: 0 289 289 289 289
[   99.621435][ T7372] Node 0 DMA32 free:17068kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:4096KB free_highatomic:544KB active_anon:1372kB inactive_anon:208kB active_file:0kB inactive_file:32kB unevictable:3536kB writepending:0kB present:1032196kB managed:296672kB mlocked:0kB bounce:0kB free_pcp:13288kB local_pcp:4048kB free_cma:0kB
[   99.631749][ T7372] lowmem_reserve[]: 0 0 0 0 0
[   99.633304][ T7372] Node 1 DMA32 free:153920kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:55652kB inactive_anon:0kB active_file:12768kB inactive_file:146528kB unevictable:3536kB writepending:2892kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:52352kB local_pcp:16712kB free_cma:0kB
[   99.642906][ T7372] lowmem_reserve[]: 0 0 0 0 0
[   99.644471][ T7372] Node 0 DMA: 28*4kB (UM) 19*8kB (UM) 2*16kB (UM) 14*32kB (UM) 3*64kB (UM) 1*128kB (M) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2088kB
[   99.651865][ T7372] Node 0 DMA32: 91*4kB (UMH) 148*8kB (UMEH) 62*16kB (UME) 88*32kB (UMEH) 21*64kB (UME) 15*128kB (UME) 11*256kB (UME) 3*512kB (UM) 2*1024kB (U) 1*2048kB (M) 0*4096kB = 17068kB
[   99.657365][ T7372] Node 1 DMA32: 28*4kB (UM) 24*8kB (UE) 3*16kB (UME) 0*32kB 4*64kB (UE) 46*128kB (UME) 38*256kB (UME) 25*512kB (UME) 10*1024kB (UME) 0*2048kB 28*4096kB (UM) = 153952kB
[   99.662998][ T7372] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   99.667042][ T7372] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[   99.670557][ T7372] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   99.675684][ T7372] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[   99.679814][ T7372] 48122 total pagecache pages
[   99.681699][ T7372] 277 pages in swap cache
[   99.683407][ T7372] Free swap  = 121420kB
[   99.685052][ T7372] Total swap = 124996kB
[   99.686720][ T7372] 524155 pages RAM
[   99.688208][ T7372] 0 pages HighMem/MovableOnly
[   99.690829][ T7372] 209080 pages reserved
[   99.693238][ T7372] 0 pages cma reserved
[   99.720708][ T7381] netlink: 24 bytes leftover after parsing attributes in process `syz.0.382'.
[  100.197105][ T7399] netlink: 8 bytes leftover after parsing attributes in process `syz.2.386'.
[  100.290125][ T7399] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  100.465089][ T7408] FAULT_INJECTION: forcing a failure.
[  100.465089][ T7408] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.469199][ T7408] CPU: 3 UID: 0 PID: 7408 Comm: syz.0.389 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  100.469218][ T7408] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  100.469224][ T7408] Call Trace:
[  100.469229][ T7408]  <TASK>
[  100.469233][ T7408]  dump_stack_lvl+0x16c/0x1f0
[  100.469253][ T7408]  should_fail_ex+0x512/0x640
[  100.469271][ T7408]  _copy_from_user+0x2e/0xd0
[  100.469288][ T7408]  get_compat_msghdr+0xa7/0x170
[  100.469310][ T7408]  ? __pfx_get_compat_msghdr+0x10/0x10
[  100.469327][ T7408]  ___sys_sendmsg+0x1ae/0x1d0
[  100.469344][ T7408]  ? __pfx____sys_sendmsg+0x10/0x10
[  100.469367][ T7408]  ? find_held_lock+0x2b/0x80
[  100.469386][ T7408]  __sys_sendmsg+0x16d/0x220
[  100.469402][ T7408]  ? __pfx___sys_sendmsg+0x10/0x10
[  100.469424][ T7408]  ? rcu_is_watching+0x12/0xc0
[  100.469437][ T7408]  __do_fast_syscall_32+0x7c/0x3a0
[  100.469448][ T7408]  do_fast_syscall_32+0x32/0x80
[  100.469458][ T7408]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  100.469470][ T7408] RIP: 0023:0xf7fd3579
[  100.469478][ T7408] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  100.469488][ T7408] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  100.469499][ T7408] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000080
[  100.469505][ T7408] RDX: 0000000004000080 RSI: 0000000000000000 RDI: 0000000000000000
[  100.469511][ T7408] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  100.469517][ T7408] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  100.469523][ T7408] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  100.469535][ T7408]  </TASK>
[  100.770328][ T7414] overlayfs: conflicting lowerdir path
[  100.994535][ T7423] FAULT_INJECTION: forcing a failure.
[  100.994535][ T7423] name failslab, interval 1, probability 0, space 0, times 0
[  100.998282][ T7423] CPU: 1 UID: 0 PID: 7423 Comm: syz.3.392 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  100.998308][ T7423] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  100.998316][ T7423] Call Trace:
[  100.998320][ T7423]  <TASK>
[  100.998324][ T7423]  dump_stack_lvl+0x16c/0x1f0
[  100.998343][ T7423]  should_fail_ex+0x512/0x640
[  100.998358][ T7423]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  100.998375][ T7423]  should_failslab+0xc2/0x120
[  100.998385][ T7423]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  100.998400][ T7423]  ? getname_flags.part.0+0x4c/0x550
[  100.998411][ T7423]  ? fput+0x70/0xf0
[  100.998422][ T7423]  getname_flags.part.0+0x4c/0x550
[  100.998435][ T7423]  getname_flags+0x93/0xf0
[  100.998448][ T7423]  __ia32_sys_rename+0x57/0xa0
[  100.998462][ T7423]  __do_fast_syscall_32+0x7c/0x3a0
[  100.998473][ T7423]  do_fast_syscall_32+0x32/0x80
[  100.998483][ T7423]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  100.998496][ T7423] RIP: 0023:0xf7f97579
[  100.998504][ T7423] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  100.998514][ T7423] RSP: 002b:00000000f507455c EFLAGS: 00000296 ORIG_RAX: 0000000000000026
[  100.998523][ T7423] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000080000040
[  100.998530][ T7423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  100.998535][ T7423] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  100.998541][ T7423] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  100.998547][ T7423] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  100.998560][ T7423]  </TASK>
[  101.053074][    C1] vkms_vblank_simulate: vblank timer overrun
[  101.784987][ T7446] fuse: Bad value for 'user_id'
[  101.786860][ T7446] fuse: Bad value for 'user_id'
[  102.088642][ T7443] block device autoloading is deprecated and will be removed.
[  102.098997][ T7443] syz.0.399: attempt to access beyond end of device
[  102.098997][ T7443] md2: rw=2048, sector=0, nr_sectors = 8 limit=0
[  102.257532][ T7453] syz.3.401: attempt to access beyond end of device
[  102.257532][ T7453] loop7: rw=0, sector=0, nr_sectors = 1 limit=0
[  102.262148][ T7453] FAT-fs (loop7): unable to read boot sector
[  102.879494][ T7462] netlink: 8 bytes leftover after parsing attributes in process `syz.1.403'.
[  102.894160][ T7462] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  103.577798][ T7472] netlink: 'syz.0.406': attribute type 11 has an invalid length.
[  103.613939][ T7474] netlink: 4 bytes leftover after parsing attributes in process `syz.0.408'.
[  103.686207][ T7452] Set syz1 is full, maxelem 65536 reached
[  103.915251][ T7485] netlink: 'syz.0.411': attribute type 10 has an invalid length.
[  103.923590][ T7485] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.927378][ T7485] bond0: (slave wlan1): Opening slave failed
[  104.433682][ T7499] syz_tun: entered promiscuous mode
[  104.436083][ T7499] syz_tun: left promiscuous mode
[  104.524843][ T7500] netlink: 8 bytes leftover after parsing attributes in process `syz.0.414'.
[  104.539592][ T7500] 8021q: adding VLAN 0 to HW filter on device bond0
[  104.559460][ T7500] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  104.600971][ T7504] netlink: 12 bytes leftover after parsing attributes in process `syz.2.418'.
[  105.372703][ T7535] netlink: 'syz.0.428': attribute type 2 has an invalid length.
[  105.375131][ T7535] netlink: 1184 bytes leftover after parsing attributes in process `syz.0.428'.
[  105.380793][ T7535] netlink: 8 bytes leftover after parsing attributes in process `syz.0.428'.
[  105.413107][ T7539] FAULT_INJECTION: forcing a failure.
[  105.413107][ T7539] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.418529][ T7539] CPU: 3 UID: 0 PID: 7539 Comm: syz.0.429 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  105.418553][ T7539] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.418563][ T7539] Call Trace:
[  105.418571][ T7539]  <TASK>
[  105.418578][ T7539]  dump_stack_lvl+0x16c/0x1f0
[  105.418609][ T7539]  should_fail_ex+0x512/0x640
[  105.418637][ T7539]  _copy_from_user+0x2e/0xd0
[  105.418665][ T7539]  __sys_bpf+0x21d/0x4d80
[  105.418695][ T7539]  ? __pfx___sys_bpf+0x10/0x10
[  105.418721][ T7539]  ? ksys_write+0x190/0x250
[  105.418749][ T7539]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  105.418791][ T7539]  ? fput+0x70/0xf0
[  105.418806][ T7539]  ? ksys_write+0x1ac/0x250
[  105.418829][ T7539]  ? __pfx_ksys_write+0x10/0x10
[  105.418856][ T7539]  __ia32_sys_bpf+0x76/0xe0
[  105.418890][ T7539]  __do_fast_syscall_32+0x7c/0x3a0
[  105.418909][ T7539]  do_fast_syscall_32+0x32/0x80
[  105.418925][ T7539]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  105.418945][ T7539] RIP: 0023:0xf7fd3579
[  105.418957][ T7539] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  105.418971][ T7539] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  105.418985][ T7539] RAX: ffffffffffffffda RBX: 000000000000000f RCX: 0000000080000180
[  105.418994][ T7539] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  105.419002][ T7539] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  105.419011][ T7539] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  105.419019][ T7539] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  105.419037][ T7539]  </TASK>
[  106.505719][ T7562] Invalid source name
[  106.507055][ T7562] UBIFS error (pid: 7562): cannot open "./file0", error -22
[  106.511162][ T7562] syz_tun: entered promiscuous mode
[  106.515361][ T7562] vlan2: entered promiscuous mode
[  106.525093][ T7561] netlink: 8 bytes leftover after parsing attributes in process `syz.2.434'.
[  106.532083][ T7561] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  107.477197][   T63] Bluetooth: hci2: unexpected event for opcode 0x1408
[  107.934809][ T7608] Invalid source name
[  107.936125][ T7608] UBIFS error (pid: 7608): cannot open "./file0", error -22
[  107.937440][ T7608] 8021q: VLANs not supported on sit0
[  107.947314][ T7609] netlink: 8 bytes leftover after parsing attributes in process `syz.1.447'.
[  107.963667][ T7609] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  109.932485][ T7647] Invalid source name
[  109.933874][ T7647] UBIFS error (pid: 7647): cannot open "./file0", error -22
[  109.937132][ T7647] 8021q: VLANs not supported on sit0
[  109.940160][ T7650] netlink: 36 bytes leftover after parsing attributes in process `syz.3.463'.
[  109.969924][ T7654] FAULT_INJECTION: forcing a failure.
[  109.969924][ T7654] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.974167][ T7654] CPU: 3 UID: 0 PID: 7654 Comm: syz.3.465 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  109.974181][ T7654] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.974188][ T7654] Call Trace:
[  109.974192][ T7654]  <TASK>
[  109.974196][ T7654]  dump_stack_lvl+0x16c/0x1f0
[  109.974216][ T7654]  should_fail_ex+0x512/0x640
[  109.974234][ T7654]  _copy_from_user+0x2e/0xd0
[  109.974251][ T7654]  move_addr_to_kernel+0x65/0x170
[  109.974266][ T7654]  __get_compat_msghdr+0x3f1/0x4d0
[  109.974277][ T7654]  get_compat_msghdr+0xd2/0x170
[  109.974287][ T7654]  ? __pfx_get_compat_msghdr+0x10/0x10
[  109.974298][ T7654]  ? __pfx__kstrtoull+0x10/0x10
[  109.974312][ T7654]  ___sys_sendmsg+0x1ae/0x1d0
[  109.974329][ T7654]  ? __pfx____sys_sendmsg+0x10/0x10
[  109.974349][ T7654]  ? __lock_acquire+0x622/0x1c90
[  109.974379][ T7654]  __sys_sendmmsg+0x2f9/0x420
[  109.974390][ T7654]  ? __pfx___sys_sendmmsg+0x10/0x10
[  109.974403][ T7654]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  109.974426][ T7654]  ? fput+0x70/0xf0
[  109.974436][ T7654]  ? ksys_write+0x1ac/0x250
[  109.974450][ T7654]  ? __pfx_ksys_write+0x10/0x10
[  109.974466][ T7654]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  109.974477][ T7654]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  109.974493][ T7654]  __do_fast_syscall_32+0x7c/0x3a0
[  109.974504][ T7654]  do_fast_syscall_32+0x32/0x80
[  109.974514][ T7654]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  109.974526][ T7654] RIP: 0023:0xf7f97579
[  109.974535][ T7654] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  109.974545][ T7654] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  109.974556][ T7654] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080001500
[  109.974562][ T7654] RDX: 0000000000000001 RSI: 0000000004000000 RDI: 0000000000000000
[  109.974568][ T7654] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  109.974574][ T7654] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  109.974580][ T7654] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  109.974592][ T7654]  </TASK>
[  110.503430][ T7665] input: syz1 as /devices/virtual/input/input7
[  110.553975][ T7669] FAULT_INJECTION: forcing a failure.
[  110.553975][ T7669] name failslab, interval 1, probability 0, space 0, times 0
[  110.558284][ T7669] CPU: 3 UID: 0 PID: 7669 Comm: syz.1.469 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  110.558298][ T7669] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  110.558305][ T7669] Call Trace:
[  110.558309][ T7669]  <TASK>
[  110.558313][ T7669]  dump_stack_lvl+0x16c/0x1f0
[  110.558333][ T7669]  should_fail_ex+0x512/0x640
[  110.558349][ T7669]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  110.558366][ T7669]  should_failslab+0xc2/0x120
[  110.558377][ T7669]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  110.558392][ T7669]  ? __alloc_skb+0x2b2/0x380
[  110.558410][ T7669]  __alloc_skb+0x2b2/0x380
[  110.558425][ T7669]  ? __pfx___alloc_skb+0x10/0x10
[  110.558442][ T7669]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  110.558457][ T7669]  netlink_alloc_large_skb+0x69/0x130
[  110.558469][ T7669]  netlink_sendmsg+0x6a1/0xdd0
[  110.558483][ T7669]  ? __pfx_netlink_sendmsg+0x10/0x10
[  110.558495][ T7669]  ? __import_iovec+0x1dd/0x650
[  110.558508][ T7669]  ____sys_sendmsg+0xa95/0xc70
[  110.558522][ T7669]  ? __pfx_____sys_sendmsg+0x10/0x10
[  110.558533][ T7669]  ? get_compat_msghdr+0x11a/0x170
[  110.558550][ T7669]  ___sys_sendmsg+0x134/0x1d0
[  110.558567][ T7669]  ? __pfx____sys_sendmsg+0x10/0x10
[  110.558589][ T7669]  ? find_held_lock+0x2b/0x80
[  110.558608][ T7669]  __sys_sendmsg+0x16d/0x220
[  110.558624][ T7669]  ? __pfx___sys_sendmsg+0x10/0x10
[  110.558646][ T7669]  ? rcu_is_watching+0x12/0xc0
[  110.558659][ T7669]  __do_fast_syscall_32+0x7c/0x3a0
[  110.558670][ T7669]  do_fast_syscall_32+0x32/0x80
[  110.558679][ T7669]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  110.558693][ T7669] RIP: 0023:0xf7f32579
[  110.558701][ T7669] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  110.558711][ T7669] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  110.558722][ T7669] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000200
[  110.558728][ T7669] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  110.558734][ T7669] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  110.558740][ T7669] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  110.558746][ T7669] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.558758][ T7669]  </TASK>
[  111.213879][ T7687] netlink: 28 bytes leftover after parsing attributes in process `syz.0.475'.
[  111.308373][ T7687] 8021q: VLANs not supported on ip6gre0
[  111.705267][ T7697] FAULT_INJECTION: forcing a failure.
[  111.705267][ T7697] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  111.709972][ T7697] CPU: 1 UID: 0 PID: 7697 Comm: syz.3.478 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  111.709993][ T7697] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  111.710002][ T7697] Call Trace:
[  111.710008][ T7697]  <TASK>
[  111.710014][ T7697]  dump_stack_lvl+0x16c/0x1f0
[  111.710043][ T7697]  should_fail_ex+0x512/0x640
[  111.710069][ T7697]  _copy_from_user+0x2e/0xd0
[  111.710094][ T7697]  __io_register_rsrc_update+0x6f7/0x1110
[  111.710132][ T7697]  ? __pfx___io_register_rsrc_update+0x10/0x10
[  111.710156][ T7697]  ? find_held_lock+0x2b/0x80
[  111.710170][ T7697]  ? __might_fault+0xe3/0x190
[  111.710192][ T7697]  ? __might_fault+0xe3/0x190
[  111.710210][ T7697]  ? __might_fault+0x13b/0x190
[  111.710241][ T7697]  io_register_rsrc_update+0x11b/0x180
[  111.710265][ T7697]  ? __pfx_io_register_rsrc_update+0x10/0x10
[  111.710292][ T7697]  ? __pfx___mutex_trylock_common+0x10/0x10
[  111.710322][ T7697]  __io_uring_register+0x1ca/0x2320
[  111.710345][ T7697]  ? trace_contention_end+0xdd/0x130
[  111.710365][ T7697]  ? __pfx___io_uring_register+0x10/0x10
[  111.710389][ T7697]  ? __ia32_sys_io_uring_register+0x159/0x280
[  111.710413][ T7697]  ? __pfx___mutex_lock+0x10/0x10
[  111.710435][ T7697]  ? __fget_files+0x20e/0x3c0
[  111.710454][ T7697]  ? fput+0x60/0xf0
[  111.710475][ T7697]  __ia32_sys_io_uring_register+0x169/0x280
[  111.710500][ T7697]  __do_fast_syscall_32+0x7c/0x3a0
[  111.710518][ T7697]  do_fast_syscall_32+0x32/0x80
[  111.710533][ T7697]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  111.710553][ T7697] RIP: 0023:0xf7f97579
[  111.710566][ T7697] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  111.710581][ T7697] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 00000000000001ab
[  111.710596][ T7697] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000010
[  111.710605][ T7697] RDX: 0000000080000600 RSI: 0000000000000020 RDI: 0000000000000000
[  111.710614][ T7697] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  111.710623][ T7697] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  111.710632][ T7697] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  111.710653][ T7697]  </TASK>
[  112.609610][ T7734] Invalid source name
[  112.611082][ T7734] UBIFS error (pid: 7734): cannot open "./file0", error -22
[  112.620885][ T7734] vlan2: entered promiscuous mode
[  113.184548][ T7760] FAULT_INJECTION: forcing a failure.
[  113.184548][ T7760] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  113.189019][ T7760] CPU: 2 UID: 0 PID: 7760 Comm: syz.0.502 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  113.189034][ T7760] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  113.189041][ T7760] Call Trace:
[  113.189045][ T7760]  <TASK>
[  113.189050][ T7760]  dump_stack_lvl+0x16c/0x1f0
[  113.189070][ T7760]  should_fail_ex+0x512/0x640
[  113.189089][ T7760]  should_fail_alloc_page+0xe7/0x130
[  113.189100][ T7760]  prepare_alloc_pages+0x3c2/0x610
[  113.189112][ T7760]  ? __lock_acquire+0xb8a/0x1c90
[  113.189127][ T7760]  __alloc_frozen_pages_noprof+0x18b/0x23f0
[  113.189146][ T7760]  ? lock_acquire+0x179/0x350
[  113.189159][ T7760]  ? find_held_lock+0x2b/0x80
[  113.189171][ T7760]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  113.189187][ T7760]  ? finish_task_switch.isra.0+0x221/0xc10
[  113.189202][ T7760]  ? __lock_acquire+0x622/0x1c90
[  113.189217][ T7760]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  113.189233][ T7760]  ? policy_nodemask+0xea/0x4e0
[  113.189250][ T7760]  alloc_pages_mpol+0x1fb/0x550
[  113.189267][ T7760]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  113.189286][ T7760]  ? page_table_check_set+0x627/0x750
[  113.189312][ T7760]  alloc_pages_noprof+0x131/0x390
[  113.189339][ T7760]  pte_alloc_one+0x1c/0x3a0
[  113.189358][ T7760]  __pte_alloc+0x6d/0x3c0
[  113.189369][ T7760]  ? __pfx___pte_alloc+0x10/0x10
[  113.189379][ T7760]  ? find_held_lock+0x2b/0x80
[  113.189390][ T7760]  __handle_mm_fault+0x4358/0x5490
[  113.189407][ T7760]  ? __pfx___handle_mm_fault+0x10/0x10
[  113.189419][ T7760]  ? folio_mark_accessed+0xc1/0xc00
[  113.189447][ T7760]  handle_mm_fault+0x589/0xd10
[  113.189463][ T7760]  __get_user_pages+0x589/0x3b80
[  113.189480][ T7760]  ? __pfx___get_user_pages+0x10/0x10
[  113.189491][ T7760]  ? __pfx_down_read_killable+0x10/0x10
[  113.189503][ T7760]  ? __gup_longterm_locked+0xfec/0x1850
[  113.189518][ T7760]  __gup_longterm_locked+0x20d/0x1850
[  113.189534][ T7760]  ? __pfx___gup_longterm_locked+0x10/0x10
[  113.189552][ T7760]  gup_fast_fallback+0x1ab3/0x29e0
[  113.189573][ T7760]  ? __pfx_gup_fast_fallback+0x10/0x10
[  113.189584][ T7760]  ? __pfx___might_resched+0x10/0x10
[  113.189596][ T7760]  ? rcu_is_watching+0x12/0xc0
[  113.189606][ T7760]  ? trace_contention_end+0xdd/0x130
[  113.189619][ T7760]  ? __mutex_lock+0x1ca/0xb90
[  113.189632][ T7760]  get_user_pages_fast+0xa7/0xf0
[  113.189657][ T7760]  ? __pfx_get_user_pages_fast+0x10/0x10
[  113.189670][ T7760]  ? iov_iter_advance+0x7d/0x6c0
[  113.189688][ T7760]  __iov_iter_get_pages_alloc+0x81b/0x2050
[  113.189707][ T7760]  ? pipe_wait_writable+0x4a9/0x560
[  113.189722][ T7760]  ? pipe_wait_writable+0x451/0x560
[  113.189738][ T7760]  ? __pfx___iov_iter_get_pages_alloc+0x10/0x10
[  113.189756][ T7760]  ? __pfx_pipe_wait_writable+0x10/0x10
[  113.189772][ T7760]  ? __pfx___mutex_lock+0x10/0x10
[  113.189781][ T7760]  ? __pfx_autoremove_wake_function+0x10/0x10
[  113.189796][ T7760]  iov_iter_get_pages2+0xa3/0x100
[  113.189834][ T7760]  ? __pfx_iov_iter_get_pages2+0x10/0x10
[  113.189853][ T7760]  ? wait_for_space+0x232/0x2e0
[  113.189867][ T7760]  ? add_to_pipe+0x181/0x3b0
[  113.189879][ T7760]  __do_sys_vmsplice+0xa47/0x1180
[  113.189896][ T7760]  ? __pfx___do_sys_vmsplice+0x10/0x10
[  113.189911][ T7760]  ? get_pid_task+0x106/0x250
[  113.189926][ T7760]  ? find_held_lock+0x2b/0x80
[  113.189938][ T7760]  ? find_held_lock+0x2b/0x80
[  113.189948][ T7760]  ? ksys_write+0x190/0x250
[  113.189970][ T7760]  ? __fget_files+0x20e/0x3c0
[  113.189982][ T7760]  ? handle_mm_fault+0x230/0xd10
[  113.190000][ T7760]  ? __pfx_ksys_write+0x10/0x10
[  113.190017][ T7760]  ? __do_fast_syscall_32+0x7c/0x3a0
[  113.190027][ T7760]  __do_fast_syscall_32+0x7c/0x3a0
[  113.190037][ T7760]  do_fast_syscall_32+0x32/0x80
[  113.190047][ T7760]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  113.190060][ T7760] RIP: 0023:0xf7fd3579
[  113.190068][ T7760] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  113.190079][ T7760] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 000000000000013c
[  113.190090][ T7760] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000140
[  113.190096][ T7760] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  113.190102][ T7760] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  113.190108][ T7760] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  113.190114][ T7760] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  113.190127][ T7760]  </TASK>
[  113.342015][    C2] hpet: Lost 8 RTC interrupts
[  113.379774][ T7765] warn_alloc: 1 callbacks suppressed
[  113.379785][ T7765] syz.0.503: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  113.385939][ T7765] CPU: 2 UID: 0 PID: 7765 Comm: syz.0.503 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  113.385965][ T7765] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  113.385978][ T7765] Call Trace:
[  113.385985][ T7765]  <TASK>
[  113.385993][ T7765]  dump_stack_lvl+0x16c/0x1f0
[  113.386026][ T7765]  warn_alloc+0x248/0x3a0
[  113.386054][ T7765]  ? __pfx_warn_alloc+0x10/0x10
[  113.386075][ T7765]  ? __pfx_stack_trace_save+0x10/0x10
[  113.386093][ T7765]  ? stack_depot_save_flags+0x28/0xa40
[  113.386140][ T7765]  ? kasan_save_stack+0x42/0x60
[  113.386165][ T7765]  ? kasan_save_stack+0x33/0x60
[  113.386188][ T7765]  ? kasan_save_track+0x14/0x30
[  113.386212][ T7765]  ? xskq_create+0x52/0x1d0
[  113.386233][ T7765]  ? xsk_setsockopt+0x640/0x840
[  113.386253][ T7765]  ? do_sock_setsockopt+0x221/0x470
[  113.386275][ T7765]  ? xskq_create+0xfb/0x1d0
[  113.386299][ T7765]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  113.386338][ T7765]  ? xskq_create+0xfb/0x1d0
[  113.386370][ T7765]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  113.386402][ T7765]  ? xskq_create+0xfb/0x1d0
[  113.386428][ T7765]  vmalloc_user_noprof+0x9e/0xe0
[  113.386450][ T7765]  ? xskq_create+0xfb/0x1d0
[  113.386474][ T7765]  xskq_create+0xfb/0x1d0
[  113.386499][ T7765]  xsk_setsockopt+0x640/0x840
[  113.386522][ T7765]  ? __pfx_xsk_setsockopt+0x10/0x10
[  113.386545][ T7765]  ? __pfx_aa_sk_perm+0x10/0x10
[  113.386566][ T7765]  ? errseq_sample+0x53/0x70
[  113.386607][ T7765]  ? __pfx_xsk_setsockopt+0x10/0x10
[  113.386632][ T7765]  do_sock_setsockopt+0x221/0x470
[  113.386652][ T7765]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  113.386688][ T7765]  __sys_setsockopt+0x120/0x1a0
[  113.386719][ T7765]  __ia32_sys_setsockopt+0xbc/0x160
[  113.386744][ T7765]  ? lockdep_hardirqs_on+0x7c/0x110
[  113.386770][ T7765]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  113.386797][ T7765]  __do_fast_syscall_32+0x7c/0x3a0
[  113.386816][ T7765]  do_fast_syscall_32+0x32/0x80
[  113.386833][ T7765]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  113.386855][ T7765] RIP: 0023:0xf7fd3579
[  113.386882][ T7765] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  113.386899][ T7765] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  113.386916][ T7765] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000000000011b
[  113.386928][ T7765] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  113.386939][ T7765] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  113.386951][ T7765] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  113.386962][ T7765] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  113.386986][ T7765]  </TASK>
[  113.387043][ T7765] Mem-Info:
[  113.510877][ T7765] active_anon:8534 inactive_anon:36 isolated_anon:0
[  113.510877][ T7765]  active_file:3248 inactive_file:36648 isolated_file:0
[  113.510877][ T7765]  unevictable:1768 dirty:381 writeback:0
[  113.510877][ T7765]  slab_reclaimable:9786 slab_unreclaimable:56094
[  113.510877][ T7765]  mapped:27635 shmem:5154 pagetables:1188
[  113.510877][ T7765]  sec_pagetables:313 bounce:0
[  113.510877][ T7765]  kernel_misc_reclaimable:0
[  113.510877][ T7765]  free:44127 free_pcp:18556 free_cma:0
[  113.527229][ T7765] Node 0 active_anon:72kB inactive_anon:144kB active_file:0kB inactive_file:32kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:1256kB dirty:16kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8128kB pagetables:1396kB sec_pagetables:1152kB all_unreclaimable? yes Balloon:0kB
[  113.537430][ T7765] Node 1 active_anon:34064kB inactive_anon:0kB active_file:12992kB inactive_file:146560kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:109284kB dirty:1508kB writeback:0kB shmem:17080kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5044kB pagetables:3356kB sec_pagetables:100kB all_unreclaimable? no Balloon:0kB
[  113.547928][ T7765] Node 0 DMA free:2088kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:596kB local_pcp:220kB free_cma:0kB
[  113.557260][ T7765] lowmem_reserve[]: 0 289 289 289 289
[  113.559140][ T7765] Node 0 DMA32 free:16564kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:4096KB free_highatomic:544KB active_anon:72kB inactive_anon:144kB active_file:0kB inactive_file:32kB unevictable:3536kB writepending:16kB present:1032196kB managed:296672kB mlocked:0kB bounce:0kB free_pcp:14776kB local_pcp:3776kB free_cma:0kB
[  113.569962][ T7765] lowmem_reserve[]: 0 0 0 0 0
[  113.571500][ T7765] Node 1 DMA32 free:158216kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:34064kB inactive_anon:0kB active_file:12992kB inactive_file:146560kB unevictable:3536kB writepending:1508kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:58608kB local_pcp:4900kB free_cma:0kB
[  113.581882][ T7765] lowmem_reserve[]: 0 0 0 0 0
[  113.584216][ T7765] Node 0 DMA: 28*4kB (UM) 19*8kB (UM) 2*16kB (UM) 14*32kB (UM) 3*64kB (UM) 1*128kB (M) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2088kB
[  113.590191][ T7765] Node 0 DMA32: 83*4kB (UMEH) 45*8kB (MEH) 30*16kB (ME) 75*32kB (UMEH) 33*64kB (UME) 17*128kB (UME) 12*256kB (UME) 3*512kB (UM) 2*1024kB (U) 1*2048kB (M) 0*4096kB = 16564kB
[  113.600061][ T7765] Node 1 DMA32: 328*4kB (UM) 281*8kB (UME) 123*16kB (UME) 24*32kB (ME) 73*64kB (UME) 58*128kB (UME) 27*256kB (UME) 7*512kB (UME) 10*1024kB (UME) 4*2048kB (UM) 27*4096kB (UM) = 157912kB
[  113.606592][ T7765] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  113.609590][ T7765] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  113.614176][ T7765] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  113.618077][ T7765] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  113.624932][ T7765] 46672 total pagecache pages
[  113.627231][ T7765] 153 pages in swap cache
[  113.629065][ T7765] Free swap  = 122240kB
[  113.630853][ T7765] Total swap = 124996kB
[  113.633067][ T7765] 524155 pages RAM
[  113.634825][ T7765] 0 pages HighMem/MovableOnly
[  113.636832][ T7765] 209080 pages reserved
[  113.638690][ T7765] 0 pages cma reserved
[  114.195417][ T7795] netlink: 'syz.3.511': attribute type 11 has an invalid length.
[  114.257329][ T7796] Invalid source name
[  114.258977][ T7796] UBIFS error (pid: 7796): cannot open "./file0", error -22
[  114.278653][ T7799] Invalid source name
[  114.278700][ T7799] UBIFS error (pid: 7799): cannot open "./file0", error -22
[  114.280832][ T7801] binder: 7800:7801 ioctl c0306201 80000240 returned -14
[  114.300969][ T7796] syz_tun: entered promiscuous mode
[  114.301183][ T7796] vlan2: entered promiscuous mode
[  114.339749][ T7803] binder: 7802:7803 unknown command 0
[  114.345479][ T7803] binder: 7802:7803 ioctl c0306201 800003c0 returned -22
[  114.349071][ T7803] binder: 7802:7803 ioctl c0306201 80000240 returned -14
[  114.381841][ T7799] 8021q: VLANs not supported on sit0
[  114.701383][ T7813] overlay: Bad value for 'nfs_export'
[  114.985399][ T7822] netlink: 8 bytes leftover after parsing attributes in process `syz.2.520'.
[  116.596479][ T7857] usb usb8: usbfs: process 7857 (syz.0.528) did not claim interface 0 before use
[  116.611823][ T7857] netdevsim netdevsim0: Direct firmware load for ��0���Pq���D"�2�N�ktT�Wj��%�N�� failed with error -2
[  116.616180][ T7857] netdevsim netdevsim0: Falling back to sysfs fallback for: ��0���Pq���D"�2�N�ktT�Wj��%�N��
[  116.634205][ T7860] tmpfs: Bad value for 'mpol'
[  116.794062][ T7865] 9pnet_fd: Insufficient options for proto=fd
[  116.813702][ T7867] binder: 7866:7867 ioctl c0306201 80000240 returned -11
[  117.044069][ T7871] Invalid source name
[  117.045498][ T7871] UBIFS error (pid: 7871): cannot open "./file0", error -22
[  117.062517][ T7871] vlan2: entered promiscuous mode
[  117.683569][ T7881] Invalid source name
[  117.684937][ T7881] UBIFS error (pid: 7881): cannot open "./file0", error -22
[  117.691980][ T7881] 8021q: VLANs not supported on ip6_vti0
[  118.208486][ T7885] netlink: 4 bytes leftover after parsing attributes in process `syz.1.536'.
[  118.416947][ T7889] netlink: 36 bytes leftover after parsing attributes in process `syz.3.538'.
[  118.497518][ T7889] 8021q: VLANs not supported on ip6gre0
[  119.070426][ T7907] trusted_key: encrypted_key: insufficient parameters specified
[  119.081901][ T7907] trusted_key: encrypted_key: insufficient parameters specified
[  119.133707][ T7907] netlink: 'syz.1.543': attribute type 10 has an invalid length.
[  119.136258][ T7907] netlink: 40 bytes leftover after parsing attributes in process `syz.1.543'.
[  119.164244][ T7907] team0: Port device geneve0 added
[  120.370795][ T7936] netlink: 'syz.2.552': attribute type 12 has an invalid length.
[  120.375854][ T7936] netlink: 'syz.2.552': attribute type 28 has an invalid length.
[  120.378543][ T7936] netlink: 148 bytes leftover after parsing attributes in process `syz.2.552'.
[  121.811535][ T7973] netlink: 'syz.2.562': attribute type 3 has an invalid length.
[  121.818635][ T7973] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.562'.
[  122.012464][ T7975] netlink: 'syz.2.562': attribute type 10 has an invalid length.
[  122.015345][ T7975] 
: (slave wlan1): Opening slave failed
[  122.205572][ T7977] netlink: 4 bytes leftover after parsing attributes in process `syz.3.563'.
[  122.209810][ T7977] FAULT_INJECTION: forcing a failure.
[  122.209810][ T7977] name failslab, interval 1, probability 0, space 0, times 0
[  122.215414][ T7977] CPU: 2 UID: 0 PID: 7977 Comm: syz.3.563 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  122.215429][ T7977] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  122.215436][ T7977] Call Trace:
[  122.215439][ T7977]  <TASK>
[  122.215443][ T7977]  dump_stack_lvl+0x16c/0x1f0
[  122.215464][ T7977]  should_fail_ex+0x512/0x640
[  122.215479][ T7977]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  122.215496][ T7977]  should_failslab+0xc2/0x120
[  122.215506][ T7977]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  122.215521][ T7977]  ? __alloc_skb+0x2b2/0x380
[  122.215540][ T7977]  __alloc_skb+0x2b2/0x380
[  122.215557][ T7977]  ? __pfx___alloc_skb+0x10/0x10
[  122.215577][ T7977]  netlink_alloc_large_skb+0x69/0x130
[  122.215591][ T7977]  netlink_sendmsg+0x6a1/0xdd0
[  122.215604][ T7977]  ? __pfx_netlink_sendmsg+0x10/0x10
[  122.215617][ T7977]  ? __import_iovec+0x1dd/0x650
[  122.215630][ T7977]  ____sys_sendmsg+0xa95/0xc70
[  122.215644][ T7977]  ? __pfx_____sys_sendmsg+0x10/0x10
[  122.215655][ T7977]  ? get_compat_msghdr+0x11a/0x170
[  122.215672][ T7977]  ___sys_sendmsg+0x134/0x1d0
[  122.215689][ T7977]  ? __pfx____sys_sendmsg+0x10/0x10
[  122.215711][ T7977]  ? find_held_lock+0x2b/0x80
[  122.215730][ T7977]  __sys_sendmsg+0x16d/0x220
[  122.215746][ T7977]  ? __pfx___sys_sendmsg+0x10/0x10
[  122.215768][ T7977]  ? rcu_is_watching+0x12/0xc0
[  122.215780][ T7977]  __do_fast_syscall_32+0x7c/0x3a0
[  122.215791][ T7977]  do_fast_syscall_32+0x32/0x80
[  122.215801][ T7977]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  122.215813][ T7977] RIP: 0023:0xf7f97579
[  122.215822][ T7977] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  122.215831][ T7977] RSP: 002b:00000000f50b655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  122.215841][ T7977] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000340
[  122.215848][ T7977] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  122.215853][ T7977] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  122.215859][ T7977] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  122.215865][ T7977] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  122.215877][ T7977]  </TASK>
[  122.291413][    C2] hpet: Lost 4 RTC interrupts
[  122.549936][ T7990] netlink: 4 bytes leftover after parsing attributes in process `syz.0.568'.
[  122.674260][   T40] audit: type=1326 audit(1749748093.801:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7981 comm="syz.3.565" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f97579 code=0x0
[  122.714148][ T7998] 9pnet_fd: Insufficient options for proto=fd
[  123.569607][ T8008] Invalid source name
[  123.605702][ T8008] UBIFS error (pid: 8008): cannot open "./file0", error -22
[  123.773778][ T8007] syz_tun: entered promiscuous mode
[  123.779009][ T8007] vlan2: entered promiscuous mode
[  123.928114][ T8021] netlink: 'syz.0.577': attribute type 11 has an invalid length.
[  123.931444][ T8021] netlink: 224 bytes leftover after parsing attributes in process `syz.0.577'.
[  124.150797][ T8024] Invalid source name
[  124.169452][ T8024] UBIFS error (pid: 8024): cannot open "./file0", error -22
[  124.285691][ T8024] vlan2: entered promiscuous mode
[  124.936040][ T8047] overlay: filesystem on ./bus not supported as upperdir
[  125.752466][ T8063] program syz.1.588 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  125.865563][ T8064] netlink: 24 bytes leftover after parsing attributes in process `syz.1.588'.
[  126.475948][ T8089] warn_alloc: 2 callbacks suppressed
[  126.475960][ T8089] syz.2.598: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  126.482533][ T8089] CPU: 1 UID: 0 PID: 8089 Comm: syz.2.598 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  126.482549][ T8089] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.482557][ T8089] Call Trace:
[  126.482562][ T8089]  <TASK>
[  126.482567][ T8089]  dump_stack_lvl+0x16c/0x1f0
[  126.482588][ T8089]  warn_alloc+0x248/0x3a0
[  126.482604][ T8089]  ? __pfx_warn_alloc+0x10/0x10
[  126.482618][ T8089]  ? __pfx_stack_trace_save+0x10/0x10
[  126.482630][ T8089]  ? stack_depot_save_flags+0x28/0xa40
[  126.482649][ T8089]  ? kasan_save_stack+0x42/0x60
[  126.482663][ T8089]  ? kasan_save_stack+0x33/0x60
[  126.482678][ T8089]  ? kasan_save_track+0x14/0x30
[  126.482692][ T8089]  ? xskq_create+0x52/0x1d0
[  126.482705][ T8089]  ? xsk_setsockopt+0x640/0x840
[  126.482716][ T8089]  ? do_sock_setsockopt+0x221/0x470
[  126.482729][ T8089]  ? xskq_create+0xfb/0x1d0
[  126.482743][ T8089]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  126.482760][ T8089]  ? xskq_create+0xfb/0x1d0
[  126.482776][ T8089]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  126.482793][ T8089]  ? xskq_create+0xfb/0x1d0
[  126.482806][ T8089]  vmalloc_user_noprof+0x9e/0xe0
[  126.482818][ T8089]  ? xskq_create+0xfb/0x1d0
[  126.482832][ T8089]  xskq_create+0xfb/0x1d0
[  126.482846][ T8089]  xsk_setsockopt+0x640/0x840
[  126.482861][ T8089]  ? __pfx_xsk_setsockopt+0x10/0x10
[  126.482875][ T8089]  ? __pfx_aa_sk_perm+0x10/0x10
[  126.482887][ T8089]  ? errseq_sample+0x53/0x70
[  126.482905][ T8089]  ? __pfx_xsk_setsockopt+0x10/0x10
[  126.482918][ T8089]  do_sock_setsockopt+0x221/0x470
[  126.482929][ T8089]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  126.482948][ T8089]  __sys_setsockopt+0x120/0x1a0
[  126.482965][ T8089]  __ia32_sys_setsockopt+0xbc/0x160
[  126.482980][ T8089]  ? lockdep_hardirqs_on+0x7c/0x110
[  126.482994][ T8089]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  126.483010][ T8089]  __do_fast_syscall_32+0x7c/0x3a0
[  126.483020][ T8089]  do_fast_syscall_32+0x32/0x80
[  126.483030][ T8089]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  126.483042][ T8089] RIP: 0023:0xf7f57579
[  126.483051][ T8089] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  126.483060][ T8089] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  126.483070][ T8089] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000011b
[  126.483076][ T8089] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  126.483082][ T8089] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  126.483088][ T8089] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  126.483093][ T8089] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  126.483106][ T8089]  </TASK>
[  126.483110][ T8089] Mem-Info:
[  126.571707][ T8089] active_anon:8535 inactive_anon:36 isolated_anon:0
[  126.571707][ T8089]  active_file:12869 inactive_file:36654 isolated_file:0
[  126.571707][ T8089]  unevictable:1768 dirty:651 writeback:0
[  126.571707][ T8089]  slab_reclaimable:9837 slab_unreclaimable:55989
[  126.571707][ T8089]  mapped:27352 shmem:5138 pagetables:1165
[  126.571707][ T8089]  sec_pagetables:314 bounce:0
[  126.571707][ T8089]  kernel_misc_reclaimable:0
[  126.571707][ T8089]  free:37642 free_pcp:15154 free_cma:0
[  126.585461][ T8089] Node 0 active_anon:320kB inactive_anon:144kB active_file:0kB inactive_file:48kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:1256kB dirty:16kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8216kB pagetables:1692kB sec_pagetables:1152kB all_unreclaimable? yes Balloon:0kB
[  126.595357][ T8089] Node 1 active_anon:33820kB inactive_anon:0kB active_file:51476kB inactive_file:146568kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:108152kB dirty:2588kB writeback:0kB shmem:17016kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4848kB pagetables:2968kB sec_pagetables:104kB all_unreclaimable? no Balloon:0kB
[  126.605412][ T8089] Node 0 DMA free:2088kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:596kB local_pcp:64kB free_cma:0kB
[  126.614226][ T8089] lowmem_reserve[]: 0 289 289 289 289
[  126.616010][ T8089] Node 0 DMA32 free:17512kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:4096KB free_highatomic:544KB active_anon:320kB inactive_anon:144kB active_file:0kB inactive_file:48kB unevictable:3536kB writepending:16kB present:1032196kB managed:296672kB mlocked:0kB bounce:0kB free_pcp:11720kB local_pcp:3984kB free_cma:0kB
[  126.625622][ T8089] lowmem_reserve[]: 0 0 0 0 0
[  126.627176][ T8089] Node 1 DMA32 free:130968kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB free_highatomic:0KB active_anon:33820kB inactive_anon:0kB active_file:51476kB inactive_file:146568kB unevictable:3536kB writepending:2588kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:48280kB local_pcp:12964kB free_cma:0kB
[  126.636702][ T8089] lowmem_reserve[]: 0 0 0 0 0
[  126.638249][ T8089] Node 0 DMA: 28*4kB (UM) 19*8kB (UM) 2*16kB (UM) 14*32kB (UM) 3*64kB (UM) 1*128kB (M) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2088kB
[  126.642937][ T8089] Node 0 DMA32: 130*4kB (UMEH) 53*8kB (UMEH) 14*16kB (UM) 64*32kB (UMH) 44*64kB (UME) 20*128kB (UME) 13*256kB (UME) 3*512kB (UM) 2*1024kB (U) 1*2048kB (M) 0*4096kB = 17552kB
[  126.648367][ T8089] Node 1 DMA32: 178*4kB (UE) 272*8kB (UME) 405*16kB (UME) 203*32kB (UME) 281*64kB (UME) 68*128kB (UME) 23*256kB (UME) 11*512kB (UME) 7*1024kB (UME) 2*2048kB (M) 16*4096kB (M) = 130872kB
[  126.654287][ T8089] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  126.657230][ T8089] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  126.660141][ T8089] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  126.663247][ T8089] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  126.666168][ T8089] 54819 total pagecache pages
[  126.667675][ T8089] 153 pages in swap cache
[  126.669057][ T8089] Free swap  = 122240kB
[  126.670372][ T8089] Total swap = 124996kB
[  126.671764][ T8089] 524155 pages RAM
[  126.672958][ T8089] 0 pages HighMem/MovableOnly
[  126.674452][ T8089] 209080 pages reserved
[  126.675825][ T8089] 0 pages cma reserved
[  126.882243][  T838] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  127.561928][ T8105] 8021q: VLANs not supported on ip6gre0
[  127.830735][ T8114] Invalid source name
[  127.832206][ T8114] UBIFS error (pid: 8114): cannot open "./file0", error -22
[  127.847169][ T8114] vlan2: entered promiscuous mode
[  128.236876][ T8120] veth2: entered allmulticast mode
[  128.263433][ T8121] netlink: 8 bytes leftover after parsing attributes in process `syz.3.606'.
[  128.278585][ T8121] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  128.954313][ T8129] Invalid source name
[  128.955678][ T8129] UBIFS error (pid: 8129): cannot open "./file0", error -22
[  128.974807][ T8129] vlan2: entered promiscuous mode
[  129.436226][ T8142] netlink: 4 bytes leftover after parsing attributes in process `syz.3.610'.
[  129.466354][ T8141] veth1_macvtap: left promiscuous mode
[  129.671542][ T8151] netlink: 32 bytes leftover after parsing attributes in process `syz.0.616'.
[  130.293411][ T8161] netlink: zone id is out of range
[  130.295608][ T8161] netlink: zone id is out of range
[  130.298882][ T8161] netlink: zone id is out of range
[  130.304360][ T8161] netlink: zone id is out of range
[  130.306500][ T8161] netlink: zone id is out of range
[  130.317118][ T8161] netlink: set zone limit has 4 unknown bytes
[  130.354684][ T8167] netlink: 700 bytes leftover after parsing attributes in process `syz.3.621'.
[  130.361125][ T8167] bond0: option fail_over_mac: unable to set because the bond device has slaves
[  130.366001][ T8167] netlink: 'syz.3.621': attribute type 10 has an invalid length.
[  130.370373][ T8167] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.372936][ T8167] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.379023][ T8167] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.381402][ T8167] bridge0: port 2(bridge_slave_1) entered forwarding state
[  130.383905][ T8167] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.386133][ T8167] bridge0: port 1(bridge_slave_0) entered forwarding state
[  130.390036][ T8167] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  130.532786][ T8173] 8021q: VLANs not supported on ip6gre0
[  130.661592][ T2299] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  130.821313][ T2299] usb 8-1: device descriptor read/64, error -71
[  130.870537][ T8179] netlink: 24 bytes leftover after parsing attributes in process `syz.0.625'.
[  131.061791][ T2299] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  131.191754][ T2299] usb 8-1: device descriptor read/64, error -71
[  131.302178][ T2299] usb usb8-port1: attempt power cycle
[  131.691865][ T2299] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  131.712468][ T2299] usb 8-1: device descriptor read/8, error -71
[  131.784299][ T8191] Invalid source name
[  131.786157][ T8191] UBIFS error (pid: 8191): cannot open "./file0", error -22
[  131.789168][ T8190] netlink: 36 bytes leftover after parsing attributes in process `syz.0.629'.
[  131.802500][ T8191] 8021q: VLANs not supported on sit0
[  131.961784][ T2299] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  131.998691][ T2299] usb 8-1: device descriptor read/8, error -71
[  132.101973][ T2299] usb usb8-port1: unable to enumerate USB device
[  132.255964][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  132.258067][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  132.563796][ T8203] netlink: 48 bytes leftover after parsing attributes in process `syz.2.633'.
[  132.713688][ T8211] 8021q: VLANs not supported on ip6gre0
[  132.927423][ T8230] netlink: 8 bytes leftover after parsing attributes in process `syz.1.634'.
[  132.947166][ T8230] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  133.014947][ T2299] libceph: connect (1)[c::]:6789 error -101
[  133.017504][ T2299] libceph: mon0 (1)[c::]:6789 connect error
[  133.326304][ T2299] libceph: connect (1)[c::]:6789 error -101
[  133.331506][ T2299] libceph: mon0 (1)[c::]:6789 connect error
[  133.616985][ T8231] ceph: No mds server is up or the cluster is laggy
[  134.526157][ T8260] netlink: 88 bytes leftover after parsing attributes in process `syz.1.648'.
[  134.607292][ T8263] 8021q: VLANs not supported on ip6gre0
[  135.593424][ T8279] 9pnet_fd: Insufficient options for proto=fd
[  135.819466][ T8281] binder: 8280:8281 ioctl c0046209 0 returned -22
[  135.857778][   T63] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  136.463720][ T8292] netlink: 'syz.2.657': attribute type 1 has an invalid length.
[  136.492864][   T63] Bluetooth: hci3: unexpected event for opcode 0x1005
[  136.796829][ T8320] netlink: 24 bytes leftover after parsing attributes in process `syz.3.668'.
[  136.801873][ T8319] netlink: 24 bytes leftover after parsing attributes in process `syz.3.668'.
[  136.893140][ T8313] 9pnet_fd: Insufficient options for proto=fd
[  138.152317][ T8365] 9pnet_fd: Insufficient options for proto=fd
[  138.609971][ T8370] netlink: 'syz.0.679': attribute type 6 has an invalid length.
[  138.612605][ T8370] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.679'.
[  138.836330][ T8380] netlink: 52 bytes leftover after parsing attributes in process `syz.2.683'.
[  138.891915][   T63] Bluetooth: hci0: command 0x0c1a tx timeout
[  138.965736][ T8387] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  139.006558][ T8391] syz.2.688: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  139.012214][ T8391] CPU: 1 UID: 0 PID: 8391 Comm: syz.2.688 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  139.012230][ T8391] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  139.012237][ T8391] Call Trace:
[  139.012241][ T8391]  <TASK>
[  139.012245][ T8391]  dump_stack_lvl+0x16c/0x1f0
[  139.012288][ T8391]  warn_alloc+0x248/0x3a0
[  139.012307][ T8391]  ? __pfx_warn_alloc+0x10/0x10
[  139.012321][ T8391]  ? __pfx_stack_trace_save+0x10/0x10
[  139.012334][ T8391]  ? stack_depot_save_flags+0x28/0xa40
[  139.012353][ T8391]  ? kasan_save_stack+0x42/0x60
[  139.012367][ T8391]  ? kasan_save_stack+0x33/0x60
[  139.012381][ T8391]  ? kasan_save_track+0x14/0x30
[  139.012395][ T8391]  ? xskq_create+0x52/0x1d0
[  139.012407][ T8391]  ? xsk_setsockopt+0x640/0x840
[  139.012419][ T8391]  ? do_sock_setsockopt+0x221/0x470
[  139.012431][ T8391]  ? xskq_create+0xfb/0x1d0
[  139.012445][ T8391]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  139.012463][ T8391]  ? xskq_create+0xfb/0x1d0
[  139.012480][ T8391]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  139.012497][ T8391]  ? xskq_create+0xfb/0x1d0
[  139.012510][ T8391]  vmalloc_user_noprof+0x9e/0xe0
[  139.012522][ T8391]  ? xskq_create+0xfb/0x1d0
[  139.012536][ T8391]  xskq_create+0xfb/0x1d0
[  139.012550][ T8391]  xsk_setsockopt+0x640/0x840
[  139.012564][ T8391]  ? __pfx_xsk_setsockopt+0x10/0x10
[  139.012577][ T8391]  ? __pfx_aa_sk_perm+0x10/0x10
[  139.012590][ T8391]  ? errseq_sample+0x53/0x70
[  139.012609][ T8391]  ? __pfx_xsk_setsockopt+0x10/0x10
[  139.012622][ T8391]  do_sock_setsockopt+0x221/0x470
[  139.012633][ T8391]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  139.012653][ T8391]  __sys_setsockopt+0x120/0x1a0
[  139.012670][ T8391]  __ia32_sys_setsockopt+0xbc/0x160
[  139.012684][ T8391]  ? lockdep_hardirqs_on+0x7c/0x110
[  139.012700][ T8391]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  139.012715][ T8391]  __do_fast_syscall_32+0x7c/0x3a0
[  139.012726][ T8391]  do_fast_syscall_32+0x32/0x80
[  139.012735][ T8391]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  139.012748][ T8391] RIP: 0023:0xf7f57579
[  139.012757][ T8391] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  139.012775][ T8391] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  139.012786][ T8391] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000011b
[  139.012793][ T8391] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  139.012799][ T8391] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  139.012806][ T8391] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  139.012812][ T8391] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  139.012826][ T8391]  </TASK>
[  139.024716][ T8393] netlink: 4 bytes leftover after parsing attributes in process `syz.1.689'.
[  139.027041][ T8391] Mem-Info:
[  139.135253][ T8391] active_anon:16106 inactive_anon:14486 isolated_anon:0
[  139.135253][ T8391]  active_file:3753 inactive_file:45393 isolated_file:0
[  139.135253][ T8391]  unevictable:1768 dirty:718 writeback:0
[  139.135253][ T8391]  slab_reclaimable:9904 slab_unreclaimable:54219
[  139.135253][ T8391]  mapped:30364 shmem:27174 pagetables:1167
[  139.135253][ T8391]  sec_pagetables:314 bounce:0
[  139.135253][ T8391]  kernel_misc_reclaimable:0
[  139.135253][ T8391]  free:22946 free_pcp:9322 free_cma:0
[  139.152528][ T8391] Node 0 active_anon:6996kB inactive_anon:144kB active_file:288kB inactive_file:48kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5436kB dirty:16kB writeback:0kB shmem:10388kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8192kB pagetables:1556kB sec_pagetables:1152kB all_unreclaimable? yes Balloon:0kB
[  139.165128][ T8391] Node 1 active_anon:57428kB inactive_anon:57800kB active_file:14724kB inactive_file:181524kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:116020kB dirty:2856kB writeback:0kB shmem:98312kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4816kB pagetables:3112kB sec_pagetables:104kB all_unreclaimable? no Balloon:0kB
[  139.182013][ T8391] Node 0 DMA free:1804kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:240kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:620kB local_pcp:196kB free_cma:0kB
[  139.197559][ T8391] lowmem_reserve[]: 0 289 289 289 289
[  139.201816][ T8391] Node 0 DMA32 free:13296kB boost:0kB min:13332kB low:16664kB high:19996kB reserved_highatomic:4096KB free_highatomic:544KB active_anon:6704kB inactive_anon:144kB active_file:288kB inactive_file:48kB unevictable:3536kB writepending:16kB present:1032196kB managed:296672kB mlocked:0kB bounce:0kB free_pcp:10824kB local_pcp:2460kB free_cma:0kB
[  139.214248][ T8391] lowmem_reserve[]: 0 0 0 0 0
[  139.215799][ T8391] Node 1 DMA32 free:76652kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:10240KB free_highatomic:1912KB active_anon:57468kB inactive_anon:57604kB active_file:14724kB inactive_file:181524kB unevictable:3536kB writepending:2856kB present:1048432kB managed:948268kB mlocked:0kB bounce:0kB free_pcp:25912kB local_pcp:3028kB free_cma:0kB
[  139.225877][ T8391] lowmem_reserve[]: 0 0 0 0 0
[  139.227411][ T8391] Node 0 DMA: 27*4kB (U) 16*8kB (U) 2*16kB (U) 10*32kB (U) 3*64kB (UM) 0*128kB 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 1804kB
[  139.231790][ T8391] Node 0 DMA32: 228*4kB (UMEH) 92*8kB (UMEH) 72*16kB (UM) 78*32kB (UMH) 29*64kB (UME) 7*128kB (UME) 6*256kB (UME) 3*512kB (UM) 2*1024kB (U) 1*2048kB (M) 0*4096kB = 15216kB
[  139.237123][ T8391] Node 1 DMA32: 615*4kB (UMEH) 508*8kB (UMEH) 295*16kB (UMEH) 502*32kB (UMEH) 149*64kB (UMEH) 29*128kB (UMEH) 11*256kB (UME) 11*512kB (UME) 7*1024kB (UME) 2*2048kB (UM) 4*4096kB (UM) = 76652kB
[  139.243644][ T8391] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  139.246578][ T8391] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  139.249462][ T8391] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  139.252591][ T8391] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  139.255790][ T8391] 74552 total pagecache pages
[  139.257433][ T8391] 147 pages in swap cache
[  139.258963][ T8391] Free swap  = 122268kB
[  139.263048][ T8391] Total swap = 124996kB
[  139.264398][ T8391] 524155 pages RAM
[  139.265596][ T8391] 0 pages HighMem/MovableOnly
[  139.267113][ T8391] 209080 pages reserved
[  139.268436][ T8391] 0 pages cma reserved
[  139.313529][ T8400] fuse: Unknown parameter ''
[  139.317352][   T40] audit: type=1326 audit(1749748110.441:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8399 comm="syz.2.691" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x0
[  139.554884][ T8414] netlink: 52 bytes leftover after parsing attributes in process `syz.1.695'.
[  139.575888][ T8414] 8021q: VLANs not supported on ip6gre0
[  139.606774][ T8418] random: crng reseeded on system resumption
[  139.779455][ T8430] input: syz1 as /devices/virtual/input/input10
[  139.825342][ T8427] netlink: 24 bytes leftover after parsing attributes in process `syz.1.699'.
[  140.635317][   T54] libceph: connect (1)[c::]:6789 error -101
[  140.639713][   T54] libceph: mon0 (1)[c::]:6789 connect error
[  140.899050][ T8459] fuse: Unknown parameter 'ro�tmode'
[  140.902390][   T54] libceph: connect (1)[c::]:6789 error -101
[  140.904397][   T54] libceph: mon0 (1)[c::]:6789 connect error
[  141.323974][ T8447] ceph: No mds server is up or the cluster is laggy
[  141.757939][ T8511] netlink: 8 bytes leftover after parsing attributes in process `syz.1.721'.
[  143.786280][ T8600] bridge1: entered promiscuous mode
[  144.265985][   T40] audit: type=1326 audit(1749748115.391:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8583 comm="syz.0.753" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd3579 code=0x7fc00000
[  144.821962][ T8631] vivid-000: =================  START STATUS  =================
[  144.824587][ T8631] vivid-000: Test Pattern: 75% Colorbar
[  144.826485][ T8631] vivid-000: Fill Percentage of Frame: 100
[  144.828354][ T8631] vivid-000: Horizontal Movement: No Movement
[  144.830737][ T8631] vivid-000: Vertical Movement: No Movement
[  144.832835][ T8631] vivid-000: OSD Text Mode: All
[  144.834449][ T8631] vivid-000: Show Border: false
[  144.836223][ T8631] vivid-000: Show Square: false
[  144.838941][ T8631] vivid-000: Sensor Flipped Horizontally: false
[  144.841155][ T8631] vivid-000: Sensor Flipped Vertically: false
[  144.843430][ T8631] vivid-000: Insert SAV Code in Image: false
[  144.845329][ T8631] vivid-000: Insert EAV Code in Image: false
[  144.851817][ T8631] vivid-000: Insert Video Guard Band: false
[  144.853699][ T8631] vivid-000: Reduced Framerate: false
[  144.855416][ T8631] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[  144.860493][ T8631] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[  144.864194][ T8631] vivid-000: Enable Capture Cropping: true
[  144.866084][ T8631] vivid-000: Enable Capture Composing: true
[  144.868108][ T8631] vivid-000: Enable Capture Scaler: true
[  144.869892][ T8631] vivid-000: Timestamp Source: End of Frame
[  144.872007][ T8631] vivid-000: Colorspace: sRGB
[  144.873533][ T8631] vivid-000: Transfer Function: Default
[  144.875916][ T8631] vivid-000: Y'CbCr Encoding: Default
[  144.877737][ T8631] vivid-000: HSV Encoding: Hue 0-179
[  144.879914][ T8631] vivid-000: Quantization: Default
[  144.881559][ T8631] vivid-000: Apply Alpha To Red Only: false
[  144.883507][ T8631] vivid-000: Standard Aspect Ratio: 4x3
[  144.885347][ T8631] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[  144.887649][ T8631] vivid-000: DV Timings: 640x480p59 inactive
[  144.889466][ T8631] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[  144.892191][ T8631] vivid-000: Maximum EDID Blocks: 2
[  144.893885][ T8631] vivid-000: Limited RGB Range (16-235): false
[  144.896696][ T8631] vivid-000: Rx RGB Quantization Range: Automatic
[  144.899272][ T8631] vivid-000: Power Present: 0x00000001
[  144.901130][ T8631] tpg source WxH: 320x180 (R'G'B)
[  144.903100][ T8631] tpg field: 1
[  144.904470][ T8631] tpg crop: (0,0)/320x180
[  144.906167][ T8631] tpg compose: (0,0)/320x180
[  144.908205][ T8631] tpg colorspace: 8
[  144.909624][ T8631] tpg transfer function: 0/0
[  144.911599][ T8631] tpg quantization: 0/0
[  144.913034][ T8631] tpg RGB range: 0/2
[  144.914303][ T8631] vivid-000: ==================  END STATUS  ==================
[  145.163253][ T2299] kernel read not supported for file /audio1 (pid: 2299 comm: kworker/1:2)
[  145.461128][ T8650] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  145.464018][ T8650] IPv6: NLM_F_CREATE should be set when creating new route
[  145.467304][ T8650] lo: entered allmulticast mode
[  145.470781][ T8650] tunl0: entered allmulticast mode
[  145.473580][ T8650] gre0: entered allmulticast mode
[  145.478285][ T8650] gretap0: entered allmulticast mode
[  145.481815][ T8650] erspan0: entered allmulticast mode
[  145.484960][ T8650] ip_vti0: entered allmulticast mode
[  145.487694][ T8650] ip6_vti0: entered allmulticast mode
[  145.490840][ T8650] sit0: entered allmulticast mode
[  145.494889][ T8650] ip6tnl0: entered allmulticast mode
[  145.498398][ T8650] ip6gre0: entered allmulticast mode
[  145.505033][ T8650] syz_tun: entered allmulticast mode
[  145.508719][ T8651] program syz.0.772 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  145.514213][ T8650] ip6gretap0: entered allmulticast mode
[  145.517595][ T8650] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.521297][ T8650] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.524232][ T8650] bridge0: entered allmulticast mode
[  145.527452][ T8650] vcan0: entered allmulticast mode
[  145.530972][ T8650] 
: entered allmulticast mode
[  145.535789][ T8650] bond_slave_0: entered allmulticast mode
[  145.537672][ T8650] bond_slave_1: entered allmulticast mode
[  145.544824][ T8650] team0: entered allmulticast mode
[  145.546478][ T8650] team_slave_0: entered allmulticast mode
[  145.549037][ T8650] team_slave_1: entered allmulticast mode
[  145.550930][ T8650] geneve0: entered allmulticast mode
[  145.554937][ T8650] dummy0: entered allmulticast mode
[  145.559653][ T8650] nlmon0: entered allmulticast mode
[  145.562117][ T8650] caif0: entered allmulticast mode
[  145.564297][ T8650] batadv0: entered allmulticast mode
[  145.567415][ T8650] vxcan0: entered allmulticast mode
[  145.569555][ T8650] vxcan1: entered allmulticast mode
[  145.572820][ T8650] veth0: entered allmulticast mode
[  145.576173][ T8650] veth1: entered allmulticast mode
[  145.580653][ T8650] wg0: entered allmulticast mode
[  145.583716][ T8650] wg1: entered allmulticast mode
[  145.587944][ T8650] wg2: entered allmulticast mode
[  145.591983][ T8650] veth0_to_bridge: entered allmulticast mode
[  145.596504][ T8650] veth1_to_bridge: entered allmulticast mode
[  145.601036][ T8650] veth0_to_bond: entered allmulticast mode
[  145.605380][ T8650] veth1_to_bond: entered allmulticast mode
[  145.610098][ T8650] veth0_to_team: entered allmulticast mode
[  145.615299][ T8650] veth1_to_team: entered allmulticast mode
[  145.619721][ T8650] veth0_to_batadv: entered allmulticast mode
[  145.624010][ T8650] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  145.626949][ T8650] batadv_slave_0: entered allmulticast mode
[  145.630510][ T8650] veth1_to_batadv: entered allmulticast mode
[  145.634267][ T8650] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  145.637132][ T8650] batadv_slave_1: entered allmulticast mode
[  145.640333][ T8650] xfrm0: entered allmulticast mode
[  145.643924][ T8650] veth0_to_hsr: entered allmulticast mode
[  145.646839][ T8650] hsr_slave_0: entered allmulticast mode
[  145.649871][ T8650] veth1_to_hsr: entered allmulticast mode
[  145.652830][ T8650] hsr_slave_1: entered allmulticast mode
[  145.655995][ T8650] hsr0: entered allmulticast mode
[  145.660121][ T8650] veth1_virt_wifi: entered allmulticast mode
[  145.664082][ T8650] veth0_virt_wifi: entered allmulticast mode
[  145.667062][ T8650] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  145.670102][ T8650] veth1_vlan: entered allmulticast mode
[  145.673738][ T8650] veth0_vlan: entered allmulticast mode
[  145.679622][ T8650] vlan0: entered allmulticast mode
[  145.681320][ T8650] vlan1: entered allmulticast mode
[  145.686525][ T8650] macvlan0: entered allmulticast mode
[  145.689785][ T8650] macvlan1: entered allmulticast mode
[  145.693890][ T8650] ipvlan0: entered allmulticast mode
[  145.696449][ T8650] ipvlan1: entered allmulticast mode
[  145.700076][ T8650] veth1_macvtap: entered allmulticast mode
[  145.708921][ T8650] veth0_macvtap: entered allmulticast mode
[  145.744139][ T8650] macvtap0: entered allmulticast mode
[  145.749258][ T8650] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  145.752436][ T8650] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  145.755906][ T8650] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  145.759675][ T8650] geneve1: entered allmulticast mode
[  145.767328][ T8650] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  145.774586][ T8650] netdevsim netdevsim2 netdevsim1: entered allmulticast mode
[  145.785629][ T8650] netdevsim netdevsim2 netdevsim2: entered allmulticast mode
[  145.791479][ T8650] netdevsim netdevsim2 netdevsim3: entered allmulticast mode
[  145.794594][ T8650] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode
[  145.796920][ T8650] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  145.799540][ T8650] ipvlan2: left promiscuous mode
[  145.801137][ T8650] ipvlan2: entered allmulticast mode
[  145.804087][ T8650] batadv1: left promiscuous mode
[  145.805660][ T8650] batadv1: entered allmulticast mode
[  145.807472][ T8650] hsr1: entered allmulticast mode
[  145.809188][ T8650] veth3: entered allmulticast mode
[  145.907702][ T8667] random: crng reseeded on system resumption
[  146.710940][ T8699] 9pnet: Found fid 0 not clunked
[  147.425765][ T6185] usb 8-1: new full-speed USB device number 11 using dummy_hcd
[  147.592958][ T6185] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  147.596152][ T6185] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  147.599544][ T6185] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  147.602582][ T6185] usb 8-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  147.607327][ T6185] usb 8-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  147.610112][ T6185] usb 8-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  147.613274][ T6185] usb 8-1: Manufacturer: syz
[  147.617413][ T6185] usb 8-1: config 0 descriptor??
[  147.871778][ T6185] rc_core: IR keymap rc-hauppauge not found
[  147.873683][ T6185] Registered IR keymap rc-empty
[  147.876012][ T6185] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  147.891782][ T6185] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  147.912863][ T6185] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0
[  147.918267][ T6185] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/rc/rc0/input11
[  147.925786][ T6185] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  147.941792][ T6185] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  147.971696][ T6185] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  148.001767][ T6185] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  148.031761][ T6185] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  148.051839][ T6185] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  148.071774][ T6185] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  148.091747][ T6185] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  148.111759][ T6185] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  148.123324][ T8727] netlink: 8 bytes leftover after parsing attributes in process `syz.1.795'.
[  148.128011][ T8727] binder: 8726:8727 unknown command 0
[  148.129809][ T8727] binder: 8726:8727 ioctl c0306201 80000340 returned -22
[  148.131717][ T6185] mceusb 8-1:0.0: Error: mce write submit urb error = -90
[  148.134104][ T8727] binder: BINDER_SET_CONTEXT_MGR already set
[  148.136962][ T8727] binder: 8726:8727 ioctl 4018620d 800001c0 returned -16
[  148.153013][ T6185] mceusb 8-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  148.156051][ T6185] mceusb 8-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  149.293188][ T8746] 9pnet_fd: Insufficient options for proto=fd
[  149.754495][    T9] usb 8-1: USB disconnect, device number 11
[  150.526262][ T8763] syz.1.803: attempt to access beyond end of device
[  150.526262][ T8763] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  150.530615][ T8763] hpfs: hpfs_map_sector(): read error
[  150.646916][ T8765] 9p: Unknown Cache mode or invalid value fscacheƿ�GT)���K�h��ƿ�GT)���K�h��ƿ./file0
[  150.748189][ T8773] netlink: 52 bytes leftover after parsing attributes in process `syz.0.806'.
[  150.821162][ T8776] 8021q: VLANs not supported on ip6gre0
[  150.844640][ T8777] binder: 8762:8777 ioctl 400c620e 80000000 returned -22
[  150.968517][ T8782] netlink: 8 bytes leftover after parsing attributes in process `syz.2.810'.
[  151.538056][ T8794] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  151.540808][ T8794] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  152.138460][ T2299] IPVS: starting estimator thread 0...
[  152.166644][ T8809] 9pnet_fd: Insufficient options for proto=fd
[  152.221873][ T8807] IPVS: using max 44 ests per chain, 105600 per kthread
[  152.968367][ T8821] 8021q: VLANs not supported on sit0
[  153.855641][ T8840] netlink: 8 bytes leftover after parsing attributes in process `syz.3.825'.
[  153.879131][ T8840] 8021q: VLANs not supported on ip6gre0
[  154.980924][ T8876] netlink: 8 bytes leftover after parsing attributes in process `syz.2.835'.
[  155.279819][ T8878] vlan2: entered promiscuous mode
[  155.427819][ T8900] 9pnet_fd: Insufficient options for proto=fd
[  156.200986][ T8914] netlink: 8 bytes leftover after parsing attributes in process `syz.3.846'.
[  156.227146][ T8914] 8021q: VLANs not supported on ip6gre0
[  156.487732][ T8923] can0: slcan on pty26.
[  156.601986][   T10] usb 6-1: new full-speed USB device number 2 using dummy_hcd
[  156.702833][ T8934] 8021q: VLANs not supported on sit0
[  156.763077][   T10] usb 6-1: config index 0 descriptor too short (expected 31, got 27)
[  156.765654][   T10] usb 6-1: config 1 interface 0 altsetting 253 endpoint 0x1 has invalid wMaxPacketSize 0
[  156.769278][   T10] usb 6-1: config 1 interface 0 has no altsetting 0
[  156.773698][   T10] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= b.97
[  156.777100][   T10] usb 6-1: New USB device strings: Mfr=28, Product=37, SerialNumber=3
[  156.780255][   T10] usb 6-1: Product: syz
[  156.784468][   T10] usb 6-1: Manufacturer: syz
[  156.786360][   T10] usb 6-1: SerialNumber: syz
[  157.409970][   T10] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  157.611920][   T10] usb 6-1: USB disconnect, device number 2
[  157.615135][   T10] usblp0: removed
[  157.743634][ T8941] 9pnet_fd: Insufficient options for proto=fd
[  158.287610][ T8952] netlink: 8 bytes leftover after parsing attributes in process `syz.1.855'.
[  158.308672][ T8952] 8021q: VLANs not supported on ip6gre0
[  158.525764][ T8963] netlink: 'syz.1.858': attribute type 2 has an invalid length.
[  159.240709][   T40] audit: type=1326 audit(1749748130.361:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8971 comm="syz.2.862" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000
[  159.249461][   T40] audit: type=1326 audit(1749748130.361:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8971 comm="syz.2.862" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[  159.256813][   T40] audit: type=1326 audit(1749748130.361:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8971 comm="syz.2.862" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[  159.265147][   T40] audit: type=1326 audit(1749748130.361:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8971 comm="syz.2.862" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000
[  159.272667][   T40] audit: type=1326 audit(1749748130.361:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8971 comm="syz.2.862" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[  159.303678][   T40] audit: type=1326 audit(1749748130.361:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8971 comm="syz.2.862" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000
[  159.322377][   T40] audit: type=1326 audit(1749748130.361:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8971 comm="syz.2.862" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[  159.330616][   T40] audit: type=1326 audit(1749748130.361:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8971 comm="syz.2.862" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f57598 code=0x7ffc0000
[  159.340956][   T40] audit: type=1326 audit(1749748130.361:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8971 comm="syz.2.862" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[  159.351156][   T40] audit: type=1326 audit(1749748130.361:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8971 comm="syz.2.862" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x7ffc0000
[  159.382702][ T8928] can0 (unregistered): slcan off pty26.
[  159.501127][ T8989] netlink: 8 bytes leftover after parsing attributes in process `syz.2.867'.
[  159.583108][ T9000] netlink: 4 bytes leftover after parsing attributes in process `syz.2.869'.
[  159.640977][ T9004] netlink: 8 bytes leftover after parsing attributes in process `syz.2.869'.
[  159.974440][ T9016] Invalid source name
[  159.976098][ T9016] UBIFS error (pid: 9016): cannot open "./file0", error -22
[  159.980775][ T9016] 8021q: VLANs not supported on sit0
[  160.756332][ T9031] netlink: 8 bytes leftover after parsing attributes in process `syz.1.876'.
[  160.784639][ T9031] 8021q: VLANs not supported on ip6gre0
[  161.798239][ T9045] 9pnet_fd: Insufficient options for proto=fd
[  161.937998][ T9047] netlink: 8 bytes leftover after parsing attributes in process `syz.3.880'.
[  161.944087][ T9047] fuse: Bad value for 'fd'
[  163.440846][ T9088] netlink: 84 bytes leftover after parsing attributes in process `syz.2.888'.
[  163.455020][ T9095] IPVS: sync thread started: state = MASTER, mcast_ifn = sit0, syncid = 0, id = 0
[  163.798784][ T9105] Invalid source name
[  163.800497][ T9105] UBIFS error (pid: 9105): cannot open "./file0", error -22
[  163.808033][ T9105] 8021q: VLANs not supported on sit0
[  164.382122][ T9119] random: crng reseeded on system resumption
[  164.493119][ T9123] netlink: 20 bytes leftover after parsing attributes in process `syz.0.897'.
[  164.496290][ T9123] netlink: 20 bytes leftover after parsing attributes in process `syz.0.897'.
[  164.548880][ T9128] netlink: 8 bytes leftover after parsing attributes in process `syz.2.899'.
[  165.069863][ T9139] netlink: 24 bytes leftover after parsing attributes in process `syz.2.903'.
[  165.127177][ T9139] netlink: 4 bytes leftover after parsing attributes in process `syz.2.903'.
[  165.179726][ T9144] random: crng reseeded on system resumption
[  165.327753][ T9153] netlink: 8 bytes leftover after parsing attributes in process `syz.0.908'.
[  165.349678][ T9153] 8021q: VLANs not supported on ip6gre0
[  165.488715][ T9162] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  165.665067][ T9165] netlink: 1 bytes leftover after parsing attributes in process `syz.0.913'.
[  165.668739][ T9165] netlink: 12 bytes leftover after parsing attributes in process `syz.0.913'.
[  165.672690][ T9165] netlink: 1 bytes leftover after parsing attributes in process `syz.0.913'.
[  166.009859][ T9173] ucma_write: process 675 (syz.0.915) changed security contexts after opening file descriptor, this is not allowed.
[  166.342412][ T9179] netlink: 8 bytes leftover after parsing attributes in process `syz.1.917'.
[  166.374884][ T9182] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[  166.379112][ T9182] /dev/nullb0: Can't open blockdev
[  166.396451][ T9179] 8021q: VLANs not supported on ip6gre0
[  167.264849][ T9220] input: syz0 as /devices/virtual/input/input13
[  167.798031][ T9231] netlink: 488 bytes leftover after parsing attributes in process `syz.2.935'.
[  167.800899][ T9231] netlink: 488 bytes leftover after parsing attributes in process `syz.2.935'.
[  168.646079][ T9247] Invalid source name
[  168.648221][ T9247] UBIFS error (pid: 9247): cannot open "./file0", error -22
[  168.670333][ T9247] 8021q: VLANs not supported on sit0
[  169.876816][ T9270] __nla_validate_parse: 4 callbacks suppressed
[  169.876826][ T9270] netlink: 40 bytes leftover after parsing attributes in process `syz.3.949'.
[  169.891368][   T40] kauditd_printk_skb: 375 callbacks suppressed
[  169.891380][   T40] audit: type=1326 audit(1749748141.011:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9267 comm="syz.1.948" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f32598 code=0x7ffc0000
[  169.902054][   T40] audit: type=1326 audit(1749748141.011:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9267 comm="syz.1.948" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f32598 code=0x7ffc0000
[  169.908801][   T40] audit: type=1326 audit(1749748141.011:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9267 comm="syz.1.948" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f32598 code=0x7ffc0000
[  169.917274][   T40] audit: type=1326 audit(1749748141.011:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9267 comm="syz.1.948" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f32598 code=0x7ffc0000
[  169.924111][   T40] audit: type=1326 audit(1749748141.011:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9267 comm="syz.1.948" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f32598 code=0x7ffc0000
[  169.930728][   T40] audit: type=1326 audit(1749748141.011:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9267 comm="syz.1.948" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f32598 code=0x7ffc0000
[  169.937553][   T40] audit: type=1326 audit(1749748141.011:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9267 comm="syz.1.948" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f32598 code=0x7ffc0000
[  169.945894][   T40] audit: type=1326 audit(1749748141.011:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9267 comm="syz.1.948" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f32598 code=0x7ffc0000
[  169.952763][   T40] audit: type=1326 audit(1749748141.011:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9267 comm="syz.1.948" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f32598 code=0x7ffc0000
[  169.959357][   T40] audit: type=1326 audit(1749748141.021:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9267 comm="syz.1.948" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7f32598 code=0x7ffc0000
[  170.243394][ T9281] netlink: 4 bytes leftover after parsing attributes in process `syz.3.953'.
[  170.319427][ T9288] netlink: 8 bytes leftover after parsing attributes in process `syz.3.954'.
[  170.353582][ T9288] 8021q: VLANs not supported on ip6gre0
[  171.910196][ T9314] netlink: 8 bytes leftover after parsing attributes in process `syz.0.963'.
[  171.959963][ T9314] 8021q: VLANs not supported on ip6gre0
[  172.907015][ T9327] netlink: 28 bytes leftover after parsing attributes in process `syz.0.967'.
[  173.101889][   T54] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  173.781807][   T54] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  173.933564][   T54] usb 6-1: Using ep0 maxpacket: 8
[  173.936545][   T54] usb 6-1: config 16 has an invalid descriptor of length 165, skipping remainder of the config
[  173.940005][   T54] usb 6-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  173.944855][   T54] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  173.947642][   T54] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  173.955622][   T54] usbtmc 6-1:16.0: bulk endpoints not found
[  173.963507][ T9362] netlink: 8 bytes leftover after parsing attributes in process `syz.2.972'.
[  176.382682][   T55] usb 6-1: USB disconnect, device number 3
[  186.860973][ T9384] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  187.936720][ T9407] bridge_slave_0: left promiscuous mode
[  187.938634][ T9407] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.944265][ T9407] bridge_slave_1: left promiscuous mode
[  187.946100][ T9407] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.950484][ T9407] 
: (slave bond_slave_0): Releasing backup interface
[  187.954171][ T9407] 
: (slave bond_slave_1): Releasing backup interface
[  187.960232][ T9407] team0: Port device team_slave_0 removed
[  187.983904][ T9407] team0: Port device team_slave_1 removed
[  187.985919][ T9407] batman_adv: batadv0: Removing interface: batadv_slave_0
[  187.990333][ T9407] batman_adv: batadv0: Removing interface: batadv_slave_1
[  187.992880][ T9408] 9pnet_fd: Insufficient options for proto=fd
[  187.999215][ T9407] team0: Port device geneve0 removed
[  188.001267][ T9408] vlan0: entered promiscuous mode
[  188.003208][ T9408] vlan0: left allmulticast mode
[  188.710958][ T9425] Invalid source name
[  188.713526][ T9425] UBIFS error (pid: 9425): cannot open "./file0", error -22
[  188.723757][ T9420] 8021q: VLANs not supported on sit0
[  189.638870][ T9448] netlink: 8 bytes leftover after parsing attributes in process `syz.1.993'.
[  190.120510][   T40] kauditd_printk_skb: 3144 callbacks suppressed
[  190.120527][   T40] audit: type=1326 audit(1749748161.241:3546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9459 comm="syz.2.998" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f57579 code=0x0
[  190.208963][ T9479] netlink: 'syz.1.1002': attribute type 4 has an invalid length.
[  190.263542][ T9481] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1003'.
[  190.308378][ T9481] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  191.337519][ T9518] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1015'.
[  191.340990][ T9518] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1015'.
[  191.344521][ T9518] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1015'.
[  191.546067][ T9530] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1020'.
[  191.642223][ T9538] 8021q: VLANs not supported on ip6gre0
[  191.726309][ T9540] 9pnet_fd: Insufficient options for proto=fd
[  191.774843][ T9542] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1023'.
[  191.962195][  T838] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  191.976634][ T9547] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1024'.
[  192.022887][ T9549] FAULT_INJECTION: forcing a failure.
[  192.022887][ T9549] name failslab, interval 1, probability 0, space 0, times 0
[  192.026888][ T9549] CPU: 1 UID: 0 PID: 9549 Comm: syz.0.1025 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  192.026902][ T9549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  192.026909][ T9549] Call Trace:
[  192.026913][ T9549]  <TASK>
[  192.026917][ T9549]  dump_stack_lvl+0x16c/0x1f0
[  192.026937][ T9549]  should_fail_ex+0x512/0x640
[  192.026952][ T9549]  ? fs_reclaim_acquire+0xae/0x150
[  192.026966][ T9549]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  192.026981][ T9549]  should_failslab+0xc2/0x120
[  192.026991][ T9549]  __kmalloc_noprof+0xd2/0x510
[  192.027009][ T9549]  tomoyo_realpath_from_path+0xc2/0x6e0
[  192.027025][ T9549]  ? tomoyo_profile+0x47/0x60
[  192.027041][ T9549]  tomoyo_path_number_perm+0x245/0x580
[  192.027052][ T9549]  ? tomoyo_path_number_perm+0x237/0x580
[  192.027076][ T9549]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  192.027104][ T9549]  ? find_held_lock+0x2b/0x80
[  192.027115][ T9549]  ? hook_file_ioctl_common+0x145/0x410
[  192.027128][ T9549]  ? __fget_files+0x20e/0x3c0
[  192.027141][ T9549]  ? fput+0x60/0xf0
[  192.027153][ T9549]  security_file_ioctl_compat+0x9b/0x240
[  192.027167][ T9549]  __ia32_compat_sys_ioctl+0xc3/0x370
[  192.027181][ T9549]  __do_fast_syscall_32+0x7c/0x3a0
[  192.027193][ T9549]  do_fast_syscall_32+0x32/0x80
[  192.027202][ T9549]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  192.027215][ T9549] RIP: 0023:0xf7fd3579
[  192.027224][ T9549] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  192.027233][ T9549] RSP: 002b:00000000f50f655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  192.027244][ T9549] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000af02
[  192.027261][ T9549] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  192.027267][ T9549] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  192.027273][ T9549] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  192.027279][ T9549] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  192.027292][ T9549]  </TASK>
[  192.027310][ T9547] 8021q: VLANs not supported on ip6gre0
[  192.027520][ T9549] ERROR: Out of memory at tomoyo_realpath_from_path.
[  192.495504][ T9561] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1031'.
[  192.526108][ T9561] 8021q: VLANs not supported on ip6gre0
[  193.091896][ T9571] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1032'.
[  193.282146][   T54] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  193.696711][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  193.826558][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  193.856854][ T9591] Invalid source name
[  193.858305][ T9591] UBIFS error (pid: 9591): cannot open "./file0", error -22
[  193.863477][ T9591] 8021q: VLANs not supported on sit0
[  194.014239][   T40] audit: type=1326 audit(1749748165.141:3547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9595 comm="syz.1.1039" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x0
[  208.588410][ T5951] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  208.592740][ T5951] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  208.595547][ T5951] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  208.598862][ T5951] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  208.601574][ T5951] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  209.616204][   T63] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  209.620245][   T63] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  209.623208][   T63] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  209.627165][   T63] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  209.629809][   T63] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  209.707872][   T63] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  209.711410][   T63] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  209.714357][   T63] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  209.718879][   T63] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  209.721534][   T63] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  209.951077][ T1424] ==================================================================
[  209.953631][ T1424] BUG: KASAN: slab-use-after-free in handle_tx+0x5a5/0x630
[  209.955853][ T1424] Read of size 8 at addr ffff88806c597020 by task aoe_tx0/1424
[  209.958811][ T1424] 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  209.960128][ T1424] CPU: 0 UID: 0 PID: 1424 Comm: aoe_tx0 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  209.960142][ T1424] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  209.960149][ T1424] Call Trace:
[  209.960154][ T1424]  <TASK>
[  209.960158][ T1424]  dump_stack_lvl+0x116/0x1f0
[  209.960179][ T1424]  print_report+0xcd/0x680
[  209.960195][ T1424]  ? __virt_addr_valid+0x81/0x610
[  209.960206][ T1424]  ? __phys_addr+0xe8/0x180
[  209.960217][ T1424]  ? handle_tx+0x5a5/0x630
[  209.960231][ T1424]  kasan_report+0xe0/0x110
[  209.960246][ T1424]  ? handle_tx+0x5a5/0x630
[  209.960257][ T1424]  handle_tx+0x5a5/0x630
[  209.960268][ T1424]  dev_hard_start_xmit+0x94/0x740
[  209.960285][ T1424]  __dev_queue_xmit+0x7eb/0x43e0
[  209.960300][ T1424]  ? lockdep_hardirqs_on+0x7c/0x110
[  209.960315][ T1424]  ? finish_task_switch.isra.0+0x221/0xc10
[  209.960327][ T1424]  ? rcu_is_watching+0x12/0xc0
[  209.960337][ T1424]  ? __pfx___dev_queue_xmit+0x10/0x10
[  209.960352][ T1424]  ? __lock_acquire+0xb8a/0x1c90
[  209.960366][ T1424]  ? __lock_acquire+0xb8a/0x1c90
[  209.960380][ T1424]  ? do_raw_spin_lock+0x12c/0x2b0
[  209.960398][ T1424]  ? rcu_is_watching+0x12/0xc0
[  209.960408][ T1424]  tx+0xcc/0x190
[  209.960419][ T1424]  ? __pfx_tx+0x10/0x10
[  209.960429][ T1424]  kthread+0x1e1/0x3e0
[  209.960438][ T1424]  ? find_held_lock+0x2b/0x80
[  209.960447][ T1424]  ? __pfx_kthread+0x10/0x10
[  209.960456][ T1424]  ? __pfx_default_wake_function+0x10/0x10
[  209.960467][ T1424]  ? lockdep_hardirqs_on+0x7c/0x110
[  209.960482][ T1424]  ? __kthread_parkme+0x19e/0x250
[  209.960493][ T1424]  ? __pfx_kthread+0x10/0x10
[  209.960502][ T1424]  kthread+0x3c2/0x780
[  209.960516][ T1424]  ? __pfx_kthread+0x10/0x10
[  209.960529][ T1424]  ? rcu_is_watching+0x12/0xc0
[  209.960538][ T1424]  ? __pfx_kthread+0x10/0x10
[  209.960552][ T1424]  ret_from_fork+0x5d4/0x6f0
[  209.960565][ T1424]  ? __pfx_kthread+0x10/0x10
[  209.960578][ T1424]  ret_from_fork_asm+0x1a/0x30
[  209.960592][ T1424]  </TASK>
[  209.960595][ T1424] 
[  210.021836][ T1424] Allocated by task 8480:
[  210.023176][ T1424]  kasan_save_stack+0x33/0x60
[  210.024654][ T1424]  kasan_save_track+0x14/0x30
[  210.026146][ T1424]  __kasan_kmalloc+0xaa/0xb0
[  210.027626][ T1424]  alloc_tty_struct+0x96/0x8c0
[  210.029161][ T1424]  tty_init_dev.part.0+0x1e/0x500
[  210.030743][ T1424]  tty_open+0xa50/0xf90
[  210.032044][ T1424]  chrdev_open+0x234/0x6a0
[  210.033463][ T1424]  do_dentry_open+0x741/0x1c10
[  210.034982][ T1424]  vfs_open+0x82/0x3f0
[  210.036262][ T1424]  path_openat+0x1de4/0x2cb0
[  210.037758][ T1424]  do_filp_open+0x20b/0x470
[  210.039185][ T1424]  do_sys_openat2+0x11b/0x1d0
[  210.040659][ T1424]  __ia32_compat_sys_openat+0x16d/0x210
[  210.042388][ T1424]  __do_fast_syscall_32+0x7c/0x3a0
[  210.043983][ T1424]  do_fast_syscall_32+0x32/0x80
[  210.045515][ T1424]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  210.047646][ T1424] 
[  210.048413][ T1424] Freed by task 1024:
[  210.049680][ T1424]  kasan_save_stack+0x33/0x60
[  210.051202][ T1424]  kasan_save_track+0x14/0x30
[  210.052676][ T1424]  kasan_save_free_info+0x3b/0x60
[  210.054301][ T1424]  __kasan_slab_free+0x51/0x70
[  210.055796][ T1424]  kfree+0x2b4/0x4d0
[  210.057035][ T1424]  process_one_work+0x9cf/0x1b70
[  210.058582][ T1424]  worker_thread+0x6c8/0xf10
[  210.060073][ T1424]  kthread+0x3c2/0x780
[  210.061473][ T1424]  ret_from_fork+0x5d4/0x6f0
[  210.063051][ T1424]  ret_from_fork_asm+0x1a/0x30
[  210.064537][ T1424] 
[  210.065309][ T1424] Last potentially related work creation:
[  210.067122][ T1424]  kasan_save_stack+0x33/0x60
[  210.068582][ T1424]  kasan_record_aux_stack+0xa7/0xc0
[  210.070205][ T1424]  insert_work+0x36/0x230
[  210.071616][ T1424]  __queue_work+0x97e/0x10f0
[  210.073071][ T1424]  queue_work_on+0x1a4/0x1f0
[  210.074517][ T1424]  release_tty+0x4de/0x5d0
[  210.075910][ T1424]  tty_release_struct+0xb7/0xe0
[  210.077466][ T1424]  tty_release+0xe2d/0x1430
[  210.078883][ T1424]  __fput+0x402/0xb70
[  210.080136][ T1424]  task_work_run+0x150/0x240
[  210.081656][ T1424]  do_exit+0x864/0x2bd0
[  210.082955][ T1424]  do_group_exit+0xd3/0x2a0
[  210.084375][ T1424]  get_signal+0x2673/0x26d0
[  210.085801][ T1424]  arch_do_signal_or_restart+0x8f/0x790
[  210.087539][ T1424]  exit_to_user_mode_loop+0x84/0x110
[  210.089205][ T1424]  __do_fast_syscall_32+0x2ac/0x3a0
[  210.090832][ T1424]  do_fast_syscall_32+0x32/0x80
[  210.092351][ T1424]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  210.094321][ T1424] 
[  210.095073][ T1424] The buggy address belongs to the object at ffff88806c597000
[  210.095073][ T1424]  which belongs to the cache kmalloc-cg-2k of size 2048
[  210.099470][ T1424] The buggy address is located 32 bytes inside of
[  210.099470][ T1424]  freed 2048-byte region [ffff88806c597000, ffff88806c597800)
[  210.103654][ T1424] 
[  210.104417][ T1424] The buggy address belongs to the physical page:
[  210.106524][ T1424] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6c590
[  210.109397][ T1424] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  210.112021][ T1424] memcg:ffff88806a640581
[  210.113406][ T1424] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[  210.115745][ T1424] page_type: f5(slab)
[  210.117012][ T1424] raw: 04fff00000000040 ffff88801b44c140 ffffea0001afe400 dead000000000002
[  210.119680][ T1424] raw: 0000000000000000 0000000000080008 00000000f5000000 ffff88806a640581
[  210.122450][ T1424] head: 04fff00000000040 ffff88801b44c140 ffffea0001afe400 dead000000000002
[  210.125100][ T1424] head: 0000000000000000 0000000000080008 00000000f5000000 ffff88806a640581
[  210.127762][ T1424] head: 04fff00000000003 ffffea0001b16401 00000000ffffffff 00000000ffffffff
[  210.130440][ T1424] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  210.133208][ T1424] page dumped because: kasan: bad access detected
[  210.135239][ T1424] page_owner tracks the page as allocated
[  210.136988][ T1424] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5944, tgid 5944 (syz-executor), ts 47113549038, free_ts 47025020635
[  210.143472][ T1424]  post_alloc_hook+0x1c0/0x230
[  210.145041][ T1424]  get_page_from_freelist+0x1321/0x3890
[  210.146779][ T1424]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  210.148643][ T1424]  alloc_pages_mpol+0x1fb/0x550
[  210.150204][ T1424]  new_slab+0x23b/0x330
[  210.151504][ T1424]  ___slab_alloc+0xd9c/0x1940
[  210.153003][ T1424]  __slab_alloc.constprop.0+0x56/0xb0
[  210.154691][ T1424]  __kmalloc_node_track_caller_noprof+0x2ee/0x510
[  210.156590][ T1424]  kmemdup_noprof+0x29/0x60
[  210.158038][ T1424]  __devinet_sysctl_register+0xbc/0x360
[  210.159788][ T1424]  devinet_sysctl_register+0x17b/0x200
[  210.161500][ T1424]  inetdev_init+0x2b8/0x5a0
[  210.162911][ T1424]  inetdev_event+0xc5f/0x18a0
[  210.164411][ T1424]  notifier_call_chain+0xbc/0x410
[  210.166032][ T1424]  call_netdevice_notifiers_info+0xbe/0x140
[  210.167886][ T1424]  register_netdevice+0x182e/0x2270
[  210.169530][ T1424] page last free pid 5948 tgid 5948 stack trace:
[  210.171472][ T1424]  __free_frozen_pages+0x7fe/0x1180
[  210.173084][ T1424]  __put_partials+0x16d/0x1c0
[  210.174565][ T1424]  qlist_free_all+0x4d/0x120
[  210.176061][ T1424]  kasan_quarantine_reduce+0x195/0x1e0
[  210.177774][ T1424]  __kasan_slab_alloc+0x69/0x90
[  210.179335][ T1424]  __kmalloc_cache_noprof+0x1f1/0x3e0
[  210.181022][ T1424]  netdevice_event+0x365/0x9d0
[  210.182523][ T1424]  notifier_call_chain+0xbc/0x410
[  210.184091][ T1424]  call_netdevice_notifiers_info+0xbe/0x140
[  210.185937][ T1424]  __dev_notify_flags+0x12c/0x2e0
[  210.187553][ T1424]  netif_change_flags+0x108/0x160
[  210.189133][ T1424]  do_setlink.constprop.0+0xb53/0x4380
[  210.190834][ T1424]  rtnl_newlink+0x1446/0x2000
[  210.192276][ T1424]  rtnetlink_rcv_msg+0x95b/0xe90
[  210.193841][ T1424]  netlink_rcv_skb+0x155/0x420
[  210.195343][ T1424]  netlink_unicast+0x53d/0x7f0
[  210.197002][ T1424] 
[  210.197826][ T1424] Memory state around the buggy address:
[  210.199566][ T1424]  ffff88806c596f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  210.202035][ T1424]  ffff88806c596f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  210.204484][ T1424] >ffff88806c597000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  210.207033][ T1424]                                ^
[  210.208627][ T1424]  ffff88806c597080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  210.211190][ T1424]  ffff88806c597100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  210.213535][ T1424] ==================================================================
[  210.216065][ T1424] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  210.218276][ T1424] CPU: 0 UID: 0 PID: 1424 Comm: aoe_tx0 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(full) 
[  210.221771][ T1424] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  210.225181][ T1424] Call Trace:
[  210.226802][ T1424]  <TASK>
[  210.227823][ T1424]  dump_stack_lvl+0x3d/0x1f0
[  210.229341][ T1424]  panic+0x71c/0x800
[  210.230594][ T1424]  ? __pfx_panic+0x10/0x10
[  210.232007][ T1424]  ? irqentry_exit+0x3b/0x90
[  210.233492][ T1424]  ? lockdep_hardirqs_on+0x7c/0x110
[  210.235157][ T1424]  ? handle_tx+0x5a5/0x630
[  210.236575][ T1424]  ? check_panic_on_warn+0x1f/0xb0
[  210.238306][ T1424]  ? handle_tx+0x5a5/0x630
[  210.239726][ T1424]  check_panic_on_warn+0xab/0xb0
[  210.241310][ T1424]  end_report+0x107/0x170
[  210.242737][ T1424]  kasan_report+0xee/0x110
[  210.244152][ T1424]  ? handle_tx+0x5a5/0x630
[  210.245578][ T1424]  handle_tx+0x5a5/0x630
[  210.246924][ T1424]  dev_hard_start_xmit+0x94/0x740
[  210.248524][ T1424]  __dev_queue_xmit+0x7eb/0x43e0
[  210.250110][ T1424]  ? lockdep_hardirqs_on+0x7c/0x110
[  210.251751][ T1424]  ? finish_task_switch.isra.0+0x221/0xc10
[  210.253614][ T1424]  ? rcu_is_watching+0x12/0xc0
[  210.255123][ T1424]  ? __pfx___dev_queue_xmit+0x10/0x10
[  210.256807][ T1424]  ? __lock_acquire+0xb8a/0x1c90
[  210.258402][ T1424]  ? __lock_acquire+0xb8a/0x1c90
[  210.259962][ T1424]  ? do_raw_spin_lock+0x12c/0x2b0
[  210.261567][ T1424]  ? rcu_is_watching+0x12/0xc0
[  210.263069][ T1424]  tx+0xcc/0x190
[  210.264217][ T1424]  ? __pfx_tx+0x10/0x10
[  210.265555][ T1424]  kthread+0x1e1/0x3e0
[  210.266864][ T1424]  ? find_held_lock+0x2b/0x80
[  210.268362][ T1424]  ? __pfx_kthread+0x10/0x10
[  210.269861][ T1424]  ? __pfx_default_wake_function+0x10/0x10
[  210.271682][ T1424]  ? lockdep_hardirqs_on+0x7c/0x110
[  210.273363][ T1424]  ? __kthread_parkme+0x19e/0x250
[  210.274943][ T1424]  ? __pfx_kthread+0x10/0x10
[  210.276397][ T1424]  kthread+0x3c2/0x780
[  210.277713][ T1424]  ? __pfx_kthread+0x10/0x10
[  210.279176][ T1424]  ? rcu_is_watching+0x12/0xc0
[  210.280691][ T1424]  ? __pfx_kthread+0x10/0x10
[  210.282166][ T1424]  ret_from_fork+0x5d4/0x6f0
[  210.283636][ T1424]  ? __pfx_kthread+0x10/0x10
[  210.285140][ T1424]  ret_from_fork_asm+0x1a/0x30
[  210.286670][ T1424]  </TASK>
[  210.288335][ T1424] Kernel Offset: disabled
[  210.289718][ T1424] Rebooting in 86400 seconds..

VM DIAGNOSIS:
17:09:41  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff8557d610 RDI=ffffffff9ae6ca80 RBP=ffffffff9ae6ca40 RSP=ffffc90007d4f400
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552
R12=0000000000000000 R13=0000000000000020 R14=fffffbfff35cd9a2 R15=dffffc0000000000
RIP=ffffffff8557d637 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097762000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c2b5093 CR3=000000000e182000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000077107b RBX=0000000000000001 RCX=ffffffff8b7bec69 RDX=0000000000000000
RSI=ffffffff8dc12c81 RDI=ffffffff8bf55a60 RBP=ffffed1003b59488 RSP=ffffc9000046fdf8
R8 =0000000000000001 R9 =ffffed1005666645 R10=ffff88802b33322b R11=0000000000000001
R12=0000000000000001 R13=ffff88801daca440 R14=ffffffff90882750 R15=0000000000000000
RIP=ffffffff8b7bd7cf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097862000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f519dfe9 CR3=000000000e182000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f73c2ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=07ffffffff50ee0a RCX=ffffffff8205baf2 RDX=ffff888021758000
RSI=ffffffff8205bb05 RDI=0000000000000005 RBP=ffff8880282ef368 RSP=ffffc9000384f750
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=07ffffffff50ee00 R13=0000000000000000 R14=0000000000000002 R15=0000000000000008
RIP=ffffffff81bb7951 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097962000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f26e40 CR3=000000004befd000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f73c2ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000001 RBX=ffff88802b541cc0 RCX=ffffffff81984493 RDX=0000000000000000
RSI=0000000000000004 RDI=ffff88802b541cc0 RBP=ffff88802b541cc8 RSP=ffffc900033f7880
R8 =0000000000000000 R9 =ffffed10056a8398 R10=ffff88802b541cc3 R11=0000000000000001
R12=ffff88802b541cd0 R13=0000000000000060 R14=000000000000450e R15=dffffc0000000000
RIP=ffffffff8b7e8f00 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097a62000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73c4fe8 CR3=0000000012225000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000020210058
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffff0f0e0d0c
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000