last executing test programs:

4m2.313393701s ago: executing program 1 (id=110):
r0 = socket(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000580)={'veth1_virt_wifi\x00', <r1=>0x0})
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000000)=0x3, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000280)=0x4b4d, 0x4)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local}, 0x14)
sendto$packet(r0, &(0x7f00000002c0)="913dcf3296db5d6d52d2f3", 0xb, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x2000)

4m2.313196799s ago: executing program 1 (id=111):
socket$qrtr(0x2a, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000080)=[{}], 0x1)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000001dc0)=@ethtool_rxnfc={0x32, 0x1, 0x15b, {0x10, @usr_ip6_spec={@loopback, @mcast1, 0x8001, 0x60, 0x9}, {0x0, @empty, 0x0, 0x0, [0xeda00000, 0xb]}, @usr_ip6_spec={@mcast1, @private2={0xfc, 0x2, '\x00', 0x1}, 0x640a, 0x4, 0x7}, {0x0, @remote, 0x2, 0x6, [0x80, 0x1d03]}, 0x5, 0x4}}})
listen(0xffffffffffffffff, 0x0)
r2 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x458, 0x5011, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x394}}}}]}}]}}, 0x0)
syz_usb_control_io(r2, 0x0, 0x0)
syz_usb_control_io$hid(r2, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)
ioctl$HIDIOCAPPLICATION(0xffffffffffffffff, 0x4802, 0x2)

4m0.43055905s ago: executing program 1 (id=118):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
r1 = add_key$user(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000100)="92", 0x1, 0xffffffffffffffff)
keyctl$revoke(0x3, r1)
keyctl$read(0xb, r1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000, 0x6, &(0x7f0000fff000/0x1000)=nil)
connect$unix(r3, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e21, @local}, 0x10)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r5 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_elf32(r5, &(0x7f0000000580)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x5, 0xe, 0x81, 0x10001, 0x2, 0x0, 0x9, 0x296, 0x38, 0x2ea, 0x1, 0x4, 0x20, 0x2, 0x2, 0x3, 0x9}, [{0x4, 0x6, 0x3ff, 0x8, 0x2, 0x3, 0x100, 0x6}, {0x60000003, 0xfffffffd, 0x2, 0xffffffff, 0x3c, 0x1ff, 0x3, 0x7f0}], "b07cb3224fe8304e56ed63a200670d2b183cfee00fb13958049f41f9eef94f5c722871623db397b6a61ccfcaf3f997aa9ede5f194f5faebb5ecbb8a7f9d1566820aab0f6328b85cfc6ce2cb3d8c6339cdb7b0f974e6dfd86daf73f14dd2925a706bdbd9f219bf20683056230db3d000298498d4eb64dd47a7c7f4e26bb211f7f77007c9e09f7aa2181ac896b2b47a538f7fb30f67ea5e5bcf955528842cc1f7bb744", ['\x00', '\x00']}, 0x31a)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
ioctl$vim2m_VIDIOC_STREAMOFF(0xffffffffffffffff, 0x40045612, &(0x7f0000000240)=0x2)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
creat(&(0x7f0000000000)='./file0\x00', 0xfe)

3m59.481782315s ago: executing program 1 (id=138):
close(0xffffffffffffffff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r1}, &(0x7f0000000000), &(0x7f0000000080)}, 0x20)

3m59.420247189s ago: executing program 1 (id=140):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='debugfs\x00', 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
lseek(r0, 0x5, 0x0)
getdents(r0, 0xfffffffffffffffd, 0x58)
open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000200)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
mkdirat(r1, &(0x7f00000001c0)='./bus\x00', 0x34)
unlinkat(r1, &(0x7f0000000280)='./file0\x00', 0x200)

3m59.345536231s ago: executing program 1 (id=145):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = open(&(0x7f0000000380)='./file1\x00', 0x42042, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000004000000000000000000850000002300000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x8f, &(0x7f00000002c0)=""/143, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000380)='sched_switch\x00', r4}, 0x10)
openat$full(0xffffffffffffff9c, 0x0, 0x20100, 0x0)
socket(0x10, 0x80002, 0x4)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x800448f0, &(0x7f0000000080))
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x9)
ftruncate(r3, 0x2007ffb)

3m44.333505205s ago: executing program 32 (id=145):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = open(&(0x7f0000000380)='./file1\x00', 0x42042, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000004000000000000000000850000002300000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x8f, &(0x7f00000002c0)=""/143, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000380)='sched_switch\x00', r4}, 0x10)
openat$full(0xffffffffffffff9c, 0x0, 0x20100, 0x0)
socket(0x10, 0x80002, 0x4)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x800448f0, &(0x7f0000000080))
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r1, 0x9)
ftruncate(r3, 0x2007ffb)

2.129027108s ago: executing program 0 (id=3322):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x2c, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x48, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x1c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'geneve0\x00'}]}]}]}], {0x14, 0x10}}, 0x9c}}, 0x0)

2.128035874s ago: executing program 0 (id=3325):
r0 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f0000000040))
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
getsockopt$bt_BT_RCVMTU(r1, 0x112, 0xf, 0x0, &(0x7f0000000080))
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$VIDIOC_STREAMON(0xffffffffffffffff, 0x40045612, &(0x7f00000000c0)=0x51)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000005c0)={0x4c, r4, 0x1, 0x0, 0x0, {0x4e}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xab}}, {0x8}, {0x6}}]}, 0x4c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x84, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}}], {0x14}}, 0xac}}, 0x0)

1.998867707s ago: executing program 0 (id=3327):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f00000010c0)=0x5, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
syz_emit_ethernet(0xfdef, &(0x7f0000001b80)={@multicast, @dev, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty=0x2, @multicast2}}}}}, 0x0)

1.997397253s ago: executing program 0 (id=3329):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='bbr\x00', 0x4)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
r1 = socket$inet6(0x10, 0x2, 0x4)
sendto$inet6(r1, &(0x7f0000000200)="4c00000012001f15b9409b84ffffffffffffffff000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdb942352359a351d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/user\x00')
setns(r3, 0x80)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r4=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r2, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r4, 0x0, <r5=>0x0, 0x0, <r6=>0x0})
ioctl$IOMMU_HWPT_ALLOC$NONE(r2, 0x3b89, &(0x7f0000000180)={0x28, 0x1, r6, r4, <r7=>0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)})
ioctl$IOMMU_HWPT_ALLOC$TEST(r2, 0x3b89, &(0x7f0000000200)={0x28, 0x0, r6, r7, <r8=>0x0, 0x0, 0xdead, 0x4, &(0x7f0000000240)})
ioctl$IOMMU_HWPT_INVALIDATE$TEST(r2, 0x3b8d, &(0x7f0000000280)={0x20, r8, &(0x7f00000002c0)=[{}], 0xdeadbeef, 0x8, 0x1})
ioctl$IOMMU_DESTROY$hwpt(r2, 0x3b80, &(0x7f0000000300)={0x8, r8})
ioctl$IOMMU_DESTROY$hwpt(r2, 0x3b80, &(0x7f0000000340)={0x8, r7})
ioctl$IOMMU_GET_HW_INFO(r2, 0x3b8a, &(0x7f0000000380)={0x24, 0x0, r6, 0x1c, &(0x7f00000003c0)=""/28})
ioctl$IOMMU_DESTROY$stdev(r2, 0x3b80, &(0x7f0000000400)={0x8, r5})
ioctl$IOMMU_DESTROY$ioas(r2, 0x3b80, &(0x7f0000000440)={0x8, r4})
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000001540)=<r9=>0x0, &(0x7f0000001580)=0x4)
sendmsg$MPTCP_PM_CMD_REMOVE(0xffffffffffffffff, &(0x7f00000016c0)={&(0x7f0000001500)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001680)={&(0x7f00000015c0)={0xa0, 0x0, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r9}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}]}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x48, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0xe}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private2}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x8}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x14, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @loopback}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x5}]}, @MPTCP_PM_ATTR_ADDR={0x4}]}, 0xa0}, 0x1, 0x0, 0x0, 0x10afd6be7602452}, 0x880)
close(r2)
r10 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140), 0x4)
r11 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e0000000000010001800000f4ffffff00200000", @ANYRES32, @ANYBLOB="0600"/20, @ANYRES32=r9, @ANYRES32=r10, @ANYBLOB="0300000005000000030000000300000010f2ffffffffffffff000000"], 0x50)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xc, 0x13, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7020000000000008500000017000000bf91800000000000b7020000000000008500060000000000b7000000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe2(&(0x7f00000004c0)={0xffffffffffffffff, <r13=>0xffffffffffffffff}, 0x4000)
ioctl$EVIOCGEFFECTS(r13, 0x80044584, &(0x7f0000000500)=""/4096)
r14 = socket(0xa, 0x2, 0x0)
getsockopt$bt_BT_SECURITY(r14, 0x29, 0x3c, 0x0, 0x20000000)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r12, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b800000500000000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x10, 0x0)

1.639866854s ago: executing program 3 (id=3343):
getpeername$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@bridge_newneigh={0x3c, 0x1c, 0x1, 0x70bd29, 0xdbe0, {0x1c, 0x0, 0x0, r0, 0x2, 0xce, 0x1}, [@NDA_LINK_NETNSID={0x8, 0xa, 0x5}, @NDA_VNI={0x8, 0x7, 0x2}, @NDA_VNI={0x8, 0x7, 0x8000}, @NDA_NH_ID={0x8, 0xd, 0x6}]}, 0x3c}}, 0x4010)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000080)=""/5, 0x202000, 0x1000}, 0x20)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x89f0, 0x0)
r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r2, &(0x7f0000000440)={{0x6, @bcast, 0x2}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast]}, 0x48)
connect$netrom(r2, 0x0, 0x0)
ioctl$BTRFS_IOC_QUOTA_CTL(r2, 0xc0109428, 0x0)
setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00'})
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r3, &(0x7f0000000140)={{0x6, @rose}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000003680)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x18, 0x3a, 0xff, @remote, @mcast2, {[], @mld={0x84, 0x0, 0x0, 0xc, 0x7, @dev={0xfe, 0x80, '\x00', 0x1c}}}}}}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x400448e6, &(0x7f0000000100)={'nr0\x00', 0x2})

1.639722747s ago: executing program 3 (id=3344):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f00000010c0)=0x5, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
syz_emit_ethernet(0xfdef, &(0x7f0000001b80)={@multicast, @dev, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty=0x2, @multicast2}}}}}, 0x0)
syz_emit_ethernet(0x50, &(0x7f0000000040)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@mpls_mc={0x8848, {[{0xe8aec, 0x0, 0x1}, {0x401, 0x0, 0x1}, {0x97}, {0x8}, {0xffff, 0x0, 0x1}, {0x1, 0x0, 0x1}, {0x6, 0x0, 0x1}], @generic="09d8b5f91e59c60738c6532db62355531e86ed577efd311454219cd85c80819b3d74d240af15"}}}}, 0x0)

1.570123484s ago: executing program 3 (id=3345):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f00000010c0)=0x5, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
syz_emit_ethernet(0xfdef, &(0x7f0000001b80)={@multicast, @dev, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty=0x2, @multicast2}}}}}, 0x0) (fail_nth: 3)

1.56996485s ago: executing program 3 (id=3346):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000080)={0xf0f006, 0x1})
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r1 = shmget$private(0x0, 0x2000, 0x1000, &(0x7f0000ffc000/0x2000)=nil)
getsockopt$IP6T_SO_GET_ENTRIES(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
shmat(r1, &(0x7f00003b7000/0x1000)=nil, 0x6000)
r2 = syz_usb_connect(0x0, 0x24, &(0x7f0000000280)={{0x12, 0x1, 0x0, 0xe3, 0xdd, 0xef, 0x20, 0x1d50, 0x60a1, 0xa14f, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x9d, 0x14, 0x4e}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ecm(r2, 0x0, &(0x7f0000000240)={0x1c, &(0x7f0000000140)=ANY=[@ANYBLOB], 0x0, 0x0})
syz_pidfd_open(0x0, 0x0)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f00000000c0)={'veth1_to_team\x00', &(0x7f0000000000)=@ethtool_rx_ntuple={0x25, {0x0, @ether_spec={@dev, @multicast}, @usr_ip4_spec={@empty}}}})
sendmsg$RDMA_NLDEV_CMD_SET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001500)=ANY=[@ANYBLOB="240000001a1401002abd700001dcdf250800010000000000090002"], 0x24}, 0x1, 0x0, 0x0, 0x4000801}, 0x40810)

1.088209076s ago: executing program 0 (id=3350):
getpeername$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@bridge_newneigh={0x3c, 0x1c, 0x1, 0x70bd29, 0xdbe0, {0x1c, 0x0, 0x0, r0, 0x2, 0xce, 0x1}, [@NDA_LINK_NETNSID={0x8, 0xa, 0x5}, @NDA_VNI={0x8, 0x7, 0x2}, @NDA_VNI={0x8, 0x7, 0x8000}, @NDA_NH_ID={0x8, 0xd, 0x6}]}, 0x3c}}, 0x4010)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000080)=""/5, 0x202000, 0x1000}, 0x20)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x89f0, 0x0)
r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r2, &(0x7f0000000440)={{0x6, @bcast, 0x2}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast]}, 0x48)
connect$netrom(r2, 0x0, 0x0)
ioctl$BTRFS_IOC_QUOTA_CTL(r2, 0xc0109428, 0x0)
setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00'})
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r3, &(0x7f0000000140)={{0x6, @rose}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000003680)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x18, 0x3a, 0xff, @remote, @mcast2, {[], @mld={0x84, 0x0, 0x0, 0xc, 0x7, @dev={0xfe, 0x80, '\x00', 0x1c}}}}}}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000100)={'nr0\x00', 0x2}) (fail_nth: 4)

998.561914ms ago: executing program 0 (id=3351):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000050cb5340450c10108e492940a80909021b00090000000009040002"], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r2, &(0x7f0000000140)='0', 0x1)
write$char_usb(r1, &(0x7f0000000140)='0', 0x1)
syz_usb_disconnect(r0)

878.854083ms ago: executing program 4 (id=3352):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$unix(0x1, 0x5, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000740)={'wlan1\x00', <r5=>0x0})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REGISTER_FRAME(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000c80)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000003a00000008000300", @ANYRES32=r5, @ANYBLOB="05005b"], 0x24}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)

871.999549ms ago: executing program 4 (id=3353):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$unix(0x1, 0x5, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000740)={'wlan1\x00', <r5=>0x0})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REGISTER_FRAME(r6, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000c80)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000003a00000008000300", @ANYRES32=r5, @ANYBLOB="05005b"], 0x24}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) (fail_nth: 2)

719.952735ms ago: executing program 4 (id=3354):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r1, 0xd04, 0x70bd26, 0xfffffff9, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xd71}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x401}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xe}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x10001}]}, 0x34}, 0x1, 0x0, 0x0, 0x20008081}, 0x0) (async)
sendmsg$IPVS_CMD_GET_CONFIG(r0, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)={0x104, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x88}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x3a}]}, @IPVS_CMD_ATTR_SERVICE={0x64, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x3c}}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x22}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x5}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x10, 0x2}}]}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e23}, @IPVS_DEST_ATTR_L_THRESH={0x8}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x9}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}]}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x7}]}]}, 0x104}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000800)
sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f0000000540)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000500)={&(0x7f0000000380)={0x144, r1, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x34, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x13}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x2c}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_DAEMON={0x34, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_vlan\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}]}, @IPVS_CMD_ATTR_DEST={0x44, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x1}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x6ca7}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x7}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x1}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x8}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e20}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x9}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e21}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1000}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_SERVICE={0x5c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xd6}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x14, 0x8}}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x39, 0x10}}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x22}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x6}]}, 0x144}, 0x1, 0x0, 0x0, 0x80}, 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000580)={0xa, 0x0, 0x80000000, @mcast2, 0x1, 0x1}, 0x20) (async)
syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), r2) (async)
r3 = socket$l2tp6(0xa, 0x2, 0x73) (async)
r4 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000600), 0x80001, 0x0)
ioctl$CDROMVOLCTRL(r4, 0x530a, &(0x7f0000000640)={0x9, 0x6, 0x6d, 0x7f})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r4)
sendmsg$NL80211_CMD_SET_QOS_MAP(r2, &(0x7f00000008c0)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000880)={&(0x7f0000000700)={0x148, r5, 0x10, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x7, 0x4d}}}}, [@NL80211_ATTR_QOS_MAP={0x28, 0xc7, {[{0xd, 0x6}, {0x4, 0x1}, {0x0, 0x1}, {0xe, 0x1}, {0x7e, 0x4}, {0x81, 0x6}, {0x1}, {0x4f, 0x3}, {0x2, 0x6}, {0x5, 0x6}, {0x4, 0x7}, {0x40, 0x5}, {0x82, 0x4}, {0x7, 0x2}], "ff4e67dcdc7f6f0f"}}, @NL80211_ATTR_QOS_MAP={0x28, 0xc7, {[{0x5, 0x2}, {0x8, 0x7}, {0x9, 0x5}, {0xde, 0x1}, {0x4, 0x4}, {0x2, 0x7}, {0xeb, 0x1}, {0x7, 0x5}, {0x6}, {0x37, 0x2}, {0x40, 0x6}, {0x1f, 0x2}, {0xd6}, {0x7, 0x4}], "887085fac8006f83"}}, @NL80211_ATTR_QOS_MAP={0x26, 0xc7, {[{0xcd, 0x6}, {0x3, 0x4}, {0x7, 0x7}, {0x5, 0x2}, {0x8, 0x6}, {0xa1, 0x6}, {0xd, 0x2}, {0x5c, 0x3}, {0x2, 0x1}, {0x4, 0x2}, {0x1, 0x3}, {0xa0, 0x5}, {0x29, 0x2}], "3e8ff815f1873d8c"}}, @NL80211_ATTR_QOS_MAP={0x26, 0xc7, {[{0x6}, {0x9, 0x2}, {0x6, 0x2}, {0x72, 0x7}, {0x5, 0x2}, {0x7, 0x7}, {0x1, 0x5}, {0xd, 0x5}, {0x8, 0x7}, {0x6, 0x4}, {0x6, 0x4}, {0xa, 0x1}, {0xa, 0x1}], "01fcf575aad20090"}}, @NL80211_ATTR_QOS_MAP={0x30, 0xc7, {[{0x8, 0x6}, {0x2, 0x6}, {0xf7}, {0x4, 0x1}, {0xe7, 0x2}, {0xa}, {0x5, 0x7}, {0xd6, 0x7}, {0x2, 0x1}, {0xda, 0x6}, {0x6, 0x4}, {0x4, 0x2}, {0xb, 0x2}, {0x1, 0x4}, {0x8, 0x7}, {0x9, 0x2}, {0x8, 0x3}, {0x0, 0x7}], "f66580994a83709f"}}, @NL80211_ATTR_QOS_MAP={0x2e, 0xc7, {[{0x2, 0x5}, {0xc, 0x1}, {0xc0}, {0x6, 0x5}, {0x45, 0x6}, {0x9, 0x2}, {0xf9, 0x4}, {0x7}, {0x9, 0x3}, {0xff, 0x1}, {0x8}, {0x6, 0x6}, {0x7f, 0x7}, {0x3, 0x4}, {0xdf, 0x4}, {0x9, 0x7}, {0x81, 0x5}], "8c10a3b7df62a8ec"}}, @NL80211_ATTR_QOS_MAP={0x28, 0xc7, {[{0x7, 0x6}, {0x3c, 0x2}, {0x5, 0x7}, {0x2, 0x1}, {0x2, 0x2}, {0x6, 0x3}, {0x9, 0x6}, {0x1}, {0x31, 0x1}, {0x7, 0x7}, {0xf8, 0x1}, {0x7, 0x5}, {0xf, 0x4}, {0x2, 0x7}], "59011480c8ff3d02"}}]}, 0x148}, 0x1, 0x0, 0x0, 0x4010}, 0x20010)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_VERDICT(r6, &(0x7f0000000ac0)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000940)={0x118, 0x1, 0x3, 0x201, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffc, 0x1}}, @NFQA_EXP={0xc, 0xf, 0x0, 0x1, [@CTA_EXPECT_FN={0x8, 0xb, 'sip\x00'}]}, @NFQA_EXP={0xc, 0xf, 0x0, 0x1, [@CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x80000001}]}, @NFQA_PAYLOAD={0xe0, 0xa, "65512032d5cf6bd76e4a1fded56ed840097ba0e4d43f18b08e943c210134d0c1b0448b4da6517bb0e539cad3913394d3f56335d3631aa3c0030b8929639be6ca4bc6387146bf0ef4cb7bd56bbd0801da6aa68f8f02b7ab7b452031fa9e8e2f571e0e464851accb73fe681a8c54c2ee437f397ab7ebcc045f0d4ef87cb5ae9f2e61f43b2b75add964835ab6ea572d9924db2eef824e687a9888d8c2c50acf6bae71a27e0f336d19da1d29dde08c9079d1a77b1242ead056ce3d17e44f848717e9bc109d4028b36d0d75edb8f169c56cbf3eee9cbde59cd64bb7a45c9f"}]}, 0x118}, 0x1, 0x0, 0x0, 0x8c0}, 0x80) (async, rerun: 64)
setsockopt$IP_VS_SO_SET_ZERO(0xffffffffffffffff, 0x0, 0x48f, &(0x7f0000000b00)={0x5e, @multicast1, 0x4e20, 0x4, 'sed\x00', 0x20, 0x1, 0x7c}, 0x2c) (rerun: 64)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000b40))
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000b80)={{0x1, 0x1, 0x18, <r7=>r2}, './file0\x00'})
ioctl$IOMMU_VFIO_GET_API_VERSION(r7, 0x3b64) (async)
r8 = bpf$ITER_CREATE(0x21, &(0x7f0000000bc0)={r7}, 0x8) (async, rerun: 32)
recvmsg(r3, &(0x7f0000002080)={&(0x7f0000000c00)=@pppol2tpin6={0x18, 0x1, {0x0, <r9=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, 0x80, &(0x7f0000001fc0)=[{&(0x7f0000000c80)=""/165, 0xa5}, {&(0x7f0000000d40)=""/4096, 0x1000}, {&(0x7f0000001d40)=""/173, 0xad}, {&(0x7f0000001e00)=""/147, 0x93}, {&(0x7f0000001ec0)=""/68, 0x44}, {&(0x7f0000001f40)=""/90, 0x5a}], 0x6, &(0x7f0000002040)=""/3, 0x3}, 0x20) (async, rerun: 32)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r0, 0xf502, 0x0)
getsockname$packet(r9, &(0x7f00000020c0)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000002100)=0x14) (async)
ioctl$sock_kcm_SIOCKCMATTACH(r8, 0x89e0, &(0x7f0000002140)={r0, r8}) (async)
ioctl$SIOCSIFHWADDR(r7, 0x8924, &(0x7f0000002180)={'bridge_slave_0\x00', @random="3d5d9fd3567d"})
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002200), r8)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r2, &(0x7f00000022c0)={&(0x7f00000021c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000002280)={&(0x7f0000002240)={0x28, r11, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4080}, 0x8000) (async)
openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000002300), 0x1, 0x0) (async)
seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f0000002340))

579.953853ms ago: executing program 4 (id=3355):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001380))
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.time\x00', 0x26e1, 0x0)
close(r1)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0))
ioctl$SIOCSIFHWADDR(r1, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1d}})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
close(r2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
ioctl$TUNSETNOCSUM(r2, 0x541b, 0x20000000)

579.703651ms ago: executing program 4 (id=3356):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f00000001c0)="48b8506e0000000000000f23c80f21f8350c00f0000f23f867460f239c48b800300000000000000f23c00f21f83501000f000f23f80f20d835200000000f22d8660f38810666b859008ee066ba2100b002eef2f4440f011966b8df008ed8", 0x5e}], 0x1, 0xe8, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4e, 0x0, 0x0)
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x100)
ioctl$KVM_SET_NESTED_STATE(r6, 0x4080aebf, &(0x7f0000000440)={{0x0, 0x0, 0x80, {0x80001, 0x2, 0x1}}, "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", "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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

499.519634ms ago: executing program 2 (id=3357):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
write$UHID_INPUT(r0, &(0x7f0000000100)={0x8, {"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", 0x1000}}, 0x1006)
pread64(r0, &(0x7f0000000040)=""/212, 0xd4, 0x1000)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001640)=@ipmr_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {0x80, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, 0x5}, [@RTA_PREFSRC={0x8, 0x7, @dev={0xac, 0x14, 0x14, 0x28}}]}, 0x24}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x10, 0x4, 0x8, 0x7, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2, <r4=>0xffffffffffffffff}, &(0x7f0000000240), &(0x7f0000000280)=r3}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000940)={r4, &(0x7f0000000800), &(0x7f0000000840)=""/215}, 0x20)
r5 = socket(0x10, 0x3, 0x0)
r6 = syz_open_dev$vim2m(&(0x7f0000000040), 0x200, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r6, 0xc0405602, &(0x7f00000054c0)={0x19, 0x1, 0x0, "6106007722366ccef4ba566c4acd3d00e7bfeb8cace586d84a500000000800", 0x34325258})
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d80000001c0081044e81f782db44b9040a1d08030e000000e8fea4a1180015000600142603600e1208000f1000810401a80016000a0001", 0x37}], 0x1, 0x0, 0x0, 0x7400}, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r7}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce620300fe"], 0xfe1b)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
r9 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
pread64(r9, &(0x7f0000000180)=""/77, 0x4d, 0x40000)
close_range(r8, 0xffffffffffffffff, 0x0)
r10 = socket$kcm(0x10, 0x2, 0x0)
r11 = syz_open_procfs(0x0, &(0x7f0000000000)='comm\x00')
faccessat2(r11, &(0x7f0000000040)='\x00', 0x1, 0x1300)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a5c000000060a09040000000000000000020000000900020073797a32000000000900010073797a3000000000300004802c"], 0x84}}, 0x0)
write$cgroup_subtree(r10, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0eab070004000523"], 0xfe33)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, 0x0, 0x0)
write(r5, &(0x7f0000000200)="240000001a005f0400f9f407000904018020200000000000000000000800010000000000", 0x24)

499.369537ms ago: executing program 2 (id=3358):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001040)={'gre0\x00', &(0x7f0000001000)={'syztnl2\x00', 0x0, 0x0, 0xa000, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @empty, @rand_addr=0x3}}}})

420.022768ms ago: executing program 2 (id=3359):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="11000000040000000400000002"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000001000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), r0)
syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x189802)
r4 = syz_open_dev$sndpcmp(&(0x7f0000000500), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r5 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r6, 0x5453, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r5, 0xc0185879, &(0x7f0000000180)={0x6, 0x200002000001, 0x6e3, 0xb, 0x800, 0xfffe, 0x2401})
r7 = openat$cgroup_ro(r5, &(0x7f0000000600)='memory.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r7, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r4, 0xc2604110, &(0x7f0000000000)={0x0, [[0x5, 0x0, 0x0, 0x0, 0xfffffffe], [0x0, 0x1], [0x4]], '\x00', [{}, {}, {0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x2}], '\x00', 0x0, 0x0, 0x0, 0x2})
r8 = syz_io_uring_setup(0x3b67, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000180)=<r9=>0x0)
syz_io_uring_setup(0x48bf, &(0x7f0000000280), &(0x7f0000000080)=<r10=>0x0, &(0x7f00000000c0))
syz_io_uring_submit(r10, r9, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r8, 0xb15, 0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r11=>0x0})
r12 = socket$inet6_udplite(0xa, 0x2, 0x88)
r13 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r13, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000004980)=@newsa={0xf8, 0x18, 0x1, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@local, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@remote, 0x0, 0x6c}, @in=@empty, {0x0, 0x0, 0x0, 0xfffffff7ffffffff}, {0x0, 0x4}, {}, 0x0, 0x0, 0x2, 0x1, 0x6}, [@XFRMA_IF_ID={0x8, 0x1f, 0x3}]}, 0xf8}, 0x1, 0x0, 0x0, 0x4004050}, 0x0)
getsockopt$IP6T_SO_GET_REVISION_TARGET(r12, 0x29, 0x45, &(0x7f00000000c0)={'TPROXY\x00'}, &(0x7f0000000100)=0x1e)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)={0x28, r3, 0x1, 0x0, 0x4, {{}, {@val={0x8, 0x3, r11}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x0)

360.007476ms ago: executing program 4 (id=3360):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000380)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x1a, 0x4, 0x0, 0x2, 0x68, 0x65, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x10, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0]}, @timestamp_prespec={0x44, 0x2c, 0xc0, 0x3, 0xe, [{@private=0xa010102}, {@remote, 0x8000}, {@broadcast}, {@empty}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x4, 0x9c, 0x3, 0x8}, @noop, @noop, @noop, @end, @rr={0x7, 0xf, 0x0, [@loopback, @private=0xa010102, @loopback]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

359.7395ms ago: executing program 2 (id=3361):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5021900000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x8}}], {0x14}}, 0x3c}, 0x1, 0x0, 0x0, 0x4c800}, 0x4004)
ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f0000000180)={0x40000, 0x0, [0x4, 0xfffffffffffffffd, 0x3, 0x3, 0xffffffffffffffff, 0xc, 0x3, 0xcd]})
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="3d0098f36dc4e249cfc284fd66b9800000c00f326635000800000f30670f3583a5f249d90f01cbf376e7b8a4000f00d8", 0x30}], 0x1, 0x5f, &(0x7f0000000140)=[@dstype3={0x7, 0xc}, @flags], 0x2)

359.272634ms ago: executing program 2 (id=3362):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x24, 0x24, 0xf0b, 0x4, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff3}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000800)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xffff}, {}, {0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x10, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}]}]}]}}]}, 0x44}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) (fail_nth: 4)

219.772898ms ago: executing program 2 (id=3363):
openat$procfs(0xffffff9c, 0x0, 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_open_dev$radio(&(0x7f0000000100), 0x3, 0x2)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
eventfd(0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd6016000000102b00fc0100000000000000e2ff0000000000fe8000000000000000000400000000aa"], 0x0)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0xa}, 0x20)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

219.499949ms ago: executing program 3 (id=3364):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r2, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f0000000040)="0f017715b9800000c00f3235000100000f300f01cb0f01c9b8010000000f01c10f090fc7ab008000000f20e035400000000f22e00f01cf0f01c3", 0x3a}], 0x1, 0x0, 0x0, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000380)=[{0x0}, {0x0}, {0x0}], 0x3, 0x20000, 0x100000)
ioctl$KVM_RUN(r3, 0xae80, 0x18)

0s ago: executing program 3 (id=3365):
creat(&(0x7f0000000240)='./file0\x00', 0x148)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000004c0), 0x10400, &(0x7f0000000700)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',cache=mmap'])
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r3 = open$dir(&(0x7f0000000180)='./file0\x00', 0x1, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
ftruncate(r4, 0x2000009)
sendfile(r3, r4, 0x0, 0x7ffff000)
utime(&(0x7f0000003000)='./file0\x00', 0x0) (fail_nth: 4)

kernel console output (not intermixed with test programs):

273.657165][T13820] RIP: 0033:0x7fe950d7e819
[  273.658743][T13820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  273.665437][T13820] RSP: 002b:00007fe951acb038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  273.668417][T13820] RAX: ffffffffffffffda RBX: 00007fe950f35fa0 RCX: 00007fe950d7e819
[  273.671193][T13820] RDX: 0000000000000000 RSI: 0000000000002d3e RDI: 000000000000000c
[  273.673939][T13820] RBP: 00007fe951acb090 R08: 0000000000000000 R09: 0000000000000000
[  273.676676][T13820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  273.676949][T13821] [U] VÔ3¸ÂFÙ¾"WÇÁ/ÉÊ4:ÃXTZ“W¡T‘’LWµ«=
[  273.679438][T13820] R13: 0000000000000000 R14: 00007fe950f35fa0 R15: 00007ffc0b79f1e8
[  273.683821][T13820]  </TASK>
[  273.689738][T13816] syz_tun: left allmulticast mode
[  273.742635][T13825] netlink: 'syz.3.3015': attribute type 8 has an invalid length.
[  273.744842][T13825] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3015'.
[  273.749701][   T39] kauditd_printk_skb: 3 callbacks suppressed
[  273.749715][   T39] audit: type=1326 audit(1732173786.092:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13824 comm="syz.3.3015" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa65c77e819 code=0x0
[  273.866013][T13837] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  274.104162][   T35] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  274.264105][   T35] usb 5-1: Using ep0 maxpacket: 16
[  274.266987][   T35] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  274.269236][   T35] usb 5-1: config 0 has no interface number 0
[  274.270912][   T35] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  274.274358][   T35] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  274.279457][   T35] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  274.281990][   T35] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  274.284317][   T35] usb 5-1: Product: syz
[  274.285605][   T35] usb 5-1: SerialNumber: syz
[  274.288202][   T35] usb 5-1: config 0 descriptor??
[  274.291844][   T35] cm109 5-1:0.8: invalid payload size 0, expected 4
[  274.294800][   T35] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.8/input/input39
[  274.349233][   T39] audit: type=1400 audit(1732173786.692:587): avc:  denied  { connect } for  pid=13849 comm="syz.2.3024" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  274.431899][T13850] vlan0: entered promiscuous mode
[  274.447002][T13850] team0: Port device vlan0 added
[  274.452975][T13850] netlink: 288 bytes leftover after parsing attributes in process `syz.2.3024'.
[  274.457681][T13850] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3024'.
[  274.460773][T13850] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=13850 comm=syz.2.3024
[  274.493847][    C3] cm109 5-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  274.514131][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  274.533449][T13860] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  274.836187][T13879] FAULT_INJECTION: forcing a failure.
[  274.836187][T13879] name failslab, interval 1, probability 0, space 0, times 0
[  274.839771][T13879] CPU: 2 UID: 0 PID: 13879 Comm: syz.2.3036 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  274.842972][T13879] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  274.845656][T13879] Call Trace:
[  274.846561][T13879]  <TASK>
[  274.847330][T13879]  dump_stack_lvl+0x16c/0x1f0
[  274.848589][T13879]  should_fail_ex+0x497/0x5b0
[  274.849831][T13879]  ? fs_reclaim_acquire+0xae/0x150
[  274.851230][T13879]  should_failslab+0xc2/0x120
[  274.852979][T13879]  kmem_cache_alloc_node_noprof+0x71/0x310
[  274.854994][T13879]  ? __alloc_skb+0x2b1/0x380
[  274.856614][T13879]  __alloc_skb+0x2b1/0x380
[  274.858172][T13879]  ? __pfx___alloc_skb+0x10/0x10
[  274.859911][T13879]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  274.862153][T13879]  netlink_alloc_large_skb+0x69/0x130
[  274.864022][T13879]  netlink_sendmsg+0x689/0xd70
[  274.865732][T13879]  ? __pfx_netlink_sendmsg+0x10/0x10
[  274.867627][T13879]  ____sys_sendmsg+0xaaf/0xc90
[  274.869319][T13879]  ? copy_msghdr_from_user+0x10b/0x160
[  274.871239][T13879]  ? __pfx_____sys_sendmsg+0x10/0x10
[  274.873053][T13879]  ___sys_sendmsg+0x135/0x1e0
[  274.874536][T13879]  ? __pfx____sys_sendmsg+0x10/0x10
[  274.876335][T13879]  ? __pfx_lock_release+0x10/0x10
[  274.878099][T13879]  ? trace_lock_acquire+0x14a/0x1d0
[  274.879945][T13879]  ? __fget_files+0x206/0x3a0
[  274.881660][T13879]  __sys_sendmsg+0x16e/0x220
[  274.883309][T13879]  ? __pfx___sys_sendmsg+0x10/0x10
[  274.885194][T13879]  do_syscall_64+0xcd/0x250
[  274.886787][T13879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.888909][T13879] RIP: 0033:0x7f166517e819
[  274.890512][T13879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.897336][T13879] RSP: 002b:00007f1665f20038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  274.900316][T13879] RAX: ffffffffffffffda RBX: 00007f1665335fa0 RCX: 00007f166517e819
[  274.903216][T13879] RDX: 0000000000044080 RSI: 0000000020000040 RDI: 0000000000000003
[  274.906052][T13879] RBP: 00007f1665f20090 R08: 0000000000000000 R09: 0000000000000000
[  274.908408][T13879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  274.910521][T13879] R13: 0000000000000000 R14: 00007f1665335fa0 R15: 00007ffee7f455d8
[  274.912659][T13879]  </TASK>
[  274.940616][T13881] FAULT_INJECTION: forcing a failure.
[  274.940616][T13881] name failslab, interval 1, probability 0, space 0, times 0
[  274.944639][T13881] CPU: 3 UID: 0 PID: 13881 Comm: syz.2.3037 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  274.948208][T13881] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  274.951536][T13881] Call Trace:
[  274.952349][T13881]  <TASK>
[  274.953065][T13881]  dump_stack_lvl+0x16c/0x1f0
[  274.954419][T13881]  should_fail_ex+0x497/0x5b0
[  274.956014][T13881]  ? fs_reclaim_acquire+0xae/0x150
[  274.957382][T13881]  should_failslab+0xc2/0x120
[  274.958726][T13881]  kmem_cache_alloc_node_noprof+0x71/0x310
[  274.960531][T13881]  ? __alloc_skb+0x2b1/0x380
[  274.962181][T13881]  __alloc_skb+0x2b1/0x380
[  274.963733][T13881]  ? __pfx___alloc_skb+0x10/0x10
[  274.965477][T13881]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  274.967306][T13881]  netlink_alloc_large_skb+0x69/0x130
[  274.968821][T13881]  netlink_sendmsg+0x689/0xd70
[  274.970680][T13881]  ? __pfx_netlink_sendmsg+0x10/0x10
[  274.972577][T13881]  ____sys_sendmsg+0xaaf/0xc90
[  274.974272][T13881]  ? copy_msghdr_from_user+0x10b/0x160
[  274.976220][T13881]  ? __pfx_____sys_sendmsg+0x10/0x10
[  274.977998][T13881]  ___sys_sendmsg+0x135/0x1e0
[  274.979423][T13881]  ? __pfx____sys_sendmsg+0x10/0x10
[  274.980823][T13881]  ? __pfx_lock_release+0x10/0x10
[  274.982320][T13881]  ? trace_lock_acquire+0x14a/0x1d0
[  274.984040][T13881]  ? __fget_files+0x206/0x3a0
[  274.985897][T13881]  __sys_sendmsg+0x16e/0x220
[  274.987373][T13881]  ? __pfx___sys_sendmsg+0x10/0x10
[  274.989106][T13881]  do_syscall_64+0xcd/0x250
[  274.990604][T13881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.992293][T13881] RIP: 0033:0x7f166517e819
[  274.993522][T13881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.999409][T13881] RSP: 002b:00007f1665f20038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  275.001596][T13881] RAX: ffffffffffffffda RBX: 00007f1665335fa0 RCX: 00007f166517e819
[  275.004067][T13881] RDX: 0000000000040810 RSI: 0000000020000140 RDI: 0000000000000003
[  275.006267][T13881] RBP: 00007f1665f20090 R08: 0000000000000000 R09: 0000000000000000
[  275.008799][T13881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  275.011234][T13881] R13: 0000000000000000 R14: 00007f1665335fa0 R15: 00007ffee7f455d8
[  275.013804][T13881]  </TASK>
[  275.043681][T13883] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3038'.
[  275.047752][T13883] program syz.2.3038 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  275.186331][T13892] FAULT_INJECTION: forcing a failure.
[  275.186331][T13892] name failslab, interval 1, probability 0, space 0, times 0
[  275.189677][T13892] CPU: 1 UID: 0 PID: 13892 Comm: syz.2.3042 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  275.192469][T13892] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  275.195274][T13892] Call Trace:
[  275.196154][T13892]  <TASK>
[  275.196929][T13892]  dump_stack_lvl+0x16c/0x1f0
[  275.198156][T13892]  should_fail_ex+0x497/0x5b0
[  275.199420][T13892]  ? fs_reclaim_acquire+0xae/0x150
[  275.200803][T13892]  should_failslab+0xc2/0x120
[  275.202412][T13892]  kmem_cache_alloc_node_noprof+0x71/0x310
[  275.204507][T13892]  ? __alloc_skb+0x2b1/0x380
[  275.205723][T13892]  __alloc_skb+0x2b1/0x380
[  275.206922][T13892]  ? __pfx___alloc_skb+0x10/0x10
[  275.208212][T13892]  ? selinux_socket_getpeersec_dgram+0x1a5/0x370
[  275.209859][T13892]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  275.211643][T13892]  netlink_alloc_large_skb+0x69/0x130
[  275.213048][T13892]  netlink_sendmsg+0x689/0xd70
[  275.214315][T13892]  ? __pfx_netlink_sendmsg+0x10/0x10
[  275.215690][T13892]  ____sys_sendmsg+0xaaf/0xc90
[  275.216936][T13892]  ? copy_msghdr_from_user+0x10b/0x160
[  275.218374][T13892]  ? __pfx_____sys_sendmsg+0x10/0x10
[  275.219750][T13892]  ___sys_sendmsg+0x135/0x1e0
[  275.221194][T13892]  ? __pfx____sys_sendmsg+0x10/0x10
[  275.222976][T13892]  ? __pfx_lock_release+0x10/0x10
[  275.224697][T13892]  ? trace_lock_acquire+0x14a/0x1d0
[  275.226472][T13892]  ? __fget_files+0x206/0x3a0
[  275.228087][T13892]  __sys_sendmsg+0x16e/0x220
[  275.229669][T13892]  ? __pfx___sys_sendmsg+0x10/0x10
[  275.231181][T13892]  do_syscall_64+0xcd/0x250
[  275.232834][T13892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.234639][T13892] RIP: 0033:0x7f166517e819
[  275.235812][T13892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.240621][T13892] RSP: 002b:00007f1665f20038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  275.243045][T13892] RAX: ffffffffffffffda RBX: 00007f1665335fa0 RCX: 00007f166517e819
[  275.245220][T13892] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  275.247365][T13892] RBP: 00007f1665f20090 R08: 0000000000000000 R09: 0000000000000000
[  275.249405][T13892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  275.251538][T13892] R13: 0000000000000000 R14: 00007f1665335fa0 R15: 00007ffee7f455d8
[  275.253627][T13892]  </TASK>
[  275.263754][    C2] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71
[  275.263881][ T6061] usb 5-1: USB disconnect, device number 26
[  275.266381][    C2] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  275.280128][ T6061] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  275.535323][   T35] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[  275.554144][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  275.684082][   T35] usb 7-1: Using ep0 maxpacket: 8
[  275.686632][   T35] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  275.688775][   T35] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  275.691324][   T35] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  275.694759][   T35] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  275.698226][   T35] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  275.702687][   T35] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  275.706111][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  275.774170][ T6061] usb 9-1: new high-speed USB device number 26 using dummy_hcd
[  275.804096][ T5303] Bluetooth: hci0: command 0x0401 tx timeout
[  275.917043][   T35] usb 7-1: GET_CAPABILITIES returned 0
[  275.919102][   T35] usbtmc 7-1:16.0: can't read capabilities
[  275.924198][ T6061] usb 9-1: Using ep0 maxpacket: 32
[  275.926783][ T6061] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  275.927448][T13902] FAULT_INJECTION: forcing a failure.
[  275.927448][T13902] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  275.929602][ T6061] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  275.933085][T13902] CPU: 0 UID: 0 PID: 13902 Comm: syz.0.3047 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  275.935834][ T6061] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  275.938049][T13902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  275.941213][ T6061] usb 9-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  275.943972][T13902] Call Trace:
[  275.943984][T13902]  <TASK>
[  275.943990][T13902]  dump_stack_lvl+0x16c/0x1f0
[  275.944005][T13902]  should_fail_ex+0x497/0x5b0
[  275.944022][T13902]  _copy_from_iter+0x2a1/0x1560
[  275.944046][T13902]  ? __pfx__copy_from_iter+0x10/0x10
[  275.944063][T13902]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  275.946290][ T6061] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  275.947113][T13902]  ? tun_build_skb.constprop.0+0x1b8/0x1120
[  275.949259][ T6061] usb 9-1: config 0 descriptor??
[  275.950418][T13902]  ? __pfx_lock_release+0x10/0x10
[  275.960936][T13902]  ? trace_lock_acquire+0x14a/0x1d0
[  275.962306][T13902]  ? __pfx_lock_release+0x10/0x10
[  275.963633][T13902]  copy_page_from_iter+0xa5/0x120
[  275.964961][T13902]  tun_build_skb.constprop.0+0x294/0x1120
[  275.966471][T13902]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[  275.968093][T13902]  ? __pfx___lock_acquire+0x10/0x10
[  275.969461][T13902]  ? register_lock_class+0xb1/0x1240
[  275.970863][T13902]  ? __lock_acquire+0xcc5/0x3c40
[  275.972145][T13902]  tun_get_user+0x872/0x3d80
[  275.973376][T13902]  ? find_held_lock+0x2d/0x110
[  275.974808][T13902]  ? __pfx_tun_get_user+0x10/0x10
[  275.976349][T13902]  ? find_held_lock+0x2d/0x110
[  275.977621][T13902]  ? __pfx_lock_release+0x10/0x10
[  275.978966][T13902]  tun_chr_write_iter+0xdc/0x210
[  275.980287][T13902]  vfs_write+0x5ae/0x1150
[  275.981447][T13902]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  275.982907][T13902]  ? trace_lock_acquire+0x14a/0x1d0
[  275.984276][T13902]  ? __pfx_vfs_write+0x10/0x10
[  275.985535][T13902]  ? __fget_files+0x40/0x3a0
[  275.986765][T13902]  ksys_write+0x12b/0x250
[  275.987904][T13902]  ? __pfx_ksys_write+0x10/0x10
[  275.989190][T13902]  do_syscall_64+0xcd/0x250
[  275.990395][T13902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.991951][T13902] RIP: 0033:0x7fe950d7d2ff
[  275.993058][T13902] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  275.998089][T13902] RSP: 002b:00007fe951acb000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  276.000291][T13902] RAX: ffffffffffffffda RBX: 00007fe950f35fa0 RCX: 00007fe950d7d2ff
[  276.002405][T13902] RDX: 000000000000004e RSI: 0000000020000040 RDI: 00000000000000c8
[  276.004390][T13902] RBP: 00007fe951acb090 R08: 0000000000000000 R09: 0000000000000000
[  276.006468][T13902] R10: 000000000000004e R11: 0000000000000293 R12: 0000000000000001
[  276.008531][T13902] R13: 0000000000000000 R14: 00007fe950f35fa0 R15: 00007ffc0b79f1e8
[  276.010607][T13902]  </TASK>
[  276.098719][T13910] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  276.173892][T13894] usbtmc 7-1:16.0: usb_control_msg returned -71
[  276.174168][   T35] usb 7-1: USB disconnect, device number 29
[  276.368467][ T6061] input: HID 0458:5011 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/0003:0458:5011.0017/input/input40
[  276.436661][ T6061] input: HID 0458:5011 as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:0.0/0003:0458:5011.0017/input/input41
[  276.444503][ T6061] kye 0003:0458:5011.0017: input,hiddev0,hidraw1: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.4-1/input0
[  276.604333][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  276.625480][ T6061] usb 9-1: USB disconnect, device number 26
[  277.068820][T13921] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.3053'.
[  277.071946][T13921] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  277.080504][T13921] af_packet: tpacket_rcv: packet too big, clamped from 212960 to 3952. macoff=96
[  277.132828][T13923] FAULT_INJECTION: forcing a failure.
[  277.132828][T13923] name failslab, interval 1, probability 0, space 0, times 0
[  277.137646][T13923] CPU: 2 UID: 0 PID: 13923 Comm: syz.0.3054 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  277.141233][T13923] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  277.144927][T13923] Call Trace:
[  277.146129][T13923]  <TASK>
[  277.147149][T13923]  dump_stack_lvl+0x16c/0x1f0
[  277.148746][T13923]  should_fail_ex+0x497/0x5b0
[  277.150362][T13923]  ? fs_reclaim_acquire+0xae/0x150
[  277.152106][T13923]  should_failslab+0xc2/0x120
[  277.153678][T13923]  kmem_cache_alloc_node_noprof+0x71/0x310
[  277.155673][T13923]  ? __alloc_skb+0x2b1/0x380
[  277.157244][T13923]  __alloc_skb+0x2b1/0x380
[  277.159373][T13923]  ? __pfx___alloc_skb+0x10/0x10
[  277.162673][T13923]  ? selinux_socket_getpeersec_dgram+0x1a5/0x370
[  277.165484][T13923]  ? __pfx_selinux_socket_getpeersec_dgram+0x10/0x10
[  277.167745][T13923]  netlink_alloc_large_skb+0x69/0x130
[  277.169605][T13923]  netlink_sendmsg+0x689/0xd70
[  277.171429][T13923]  ? __pfx_netlink_sendmsg+0x10/0x10
[  277.173269][T13923]  ____sys_sendmsg+0xaaf/0xc90
[  277.174921][T13923]  ? copy_msghdr_from_user+0x10b/0x160
[  277.176768][T13923]  ? __pfx_____sys_sendmsg+0x10/0x10
[  277.178586][T13923]  ___sys_sendmsg+0x135/0x1e0
[  277.180200][T13923]  ? __pfx____sys_sendmsg+0x10/0x10
[  277.181979][T13923]  ? __pfx_lock_release+0x10/0x10
[  277.183609][T13923]  ? trace_lock_acquire+0x14a/0x1d0
[  277.185406][T13923]  ? __fget_files+0x206/0x3a0
[  277.187037][T13923]  __sys_sendmsg+0x16e/0x220
[  277.188637][T13923]  ? __pfx___sys_sendmsg+0x10/0x10
[  277.190413][T13923]  do_syscall_64+0xcd/0x250
[  277.191979][T13923]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.193887][T13923] RIP: 0033:0x7fe950d7e819
[  277.195420][T13923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  277.201884][T13923] RSP: 002b:00007fe951acb038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  277.204710][T13923] RAX: ffffffffffffffda RBX: 00007fe950f35fa0 RCX: 00007fe950d7e819
[  277.207376][T13923] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  277.209946][T13923] RBP: 00007fe951acb090 R08: 0000000000000000 R09: 0000000000000000
[  277.212615][T13923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  277.215271][T13923] R13: 0000000000000000 R14: 00007fe950f35fa0 R15: 00007ffc0b79f1e8
[  277.217926][T13923]  </TASK>
[  277.271401][T13928] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3056'.
[  277.278177][T13928] vlan2: entered allmulticast mode
[  277.323174][ T5303] Bluetooth: hci3: unknown advertising packet type: 0xcf
[  277.323229][ T5303] Bluetooth: hci3: unknown advertising packet type: 0x4b
[  277.325846][ T5303] Bluetooth: hci3: unknown advertising packet type: 0x73
[  277.327969][ T5303] Bluetooth: hci3: unknown advertising packet type: 0x67
[  277.329884][ T5303] Bluetooth: hci3: Malformed LE Event: 0x02
[  277.480757][T13938] FAULT_INJECTION: forcing a failure.
[  277.480757][T13938] name failslab, interval 1, probability 0, space 0, times 0
[  277.487965][T13938] CPU: 2 UID: 0 PID: 13938 Comm: syz.4.3059 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  277.491463][T13938] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  277.495147][T13938] Call Trace:
[  277.496312][T13938]  <TASK>
[  277.497369][T13938]  dump_stack_lvl+0x16c/0x1f0
[  277.499007][T13938]  should_fail_ex+0x497/0x5b0
[  277.500488][T13938]  ? fs_reclaim_acquire+0xae/0x150
[  277.502288][T13938]  should_failslab+0xc2/0x120
[  277.503816][T13938]  kmem_cache_alloc_node_noprof+0x71/0x310
[  277.505801][T13938]  ? __alloc_skb+0x2b1/0x380
[  277.507407][T13938]  ? __pfx_mark_lock+0x10/0x10
[  277.509065][T13938]  __alloc_skb+0x2b1/0x380
[  277.510621][T13938]  ? __pfx___alloc_skb+0x10/0x10
[  277.512368][T13938]  ? __pfx_lock_release+0x10/0x10
[  277.514101][T13938]  ? trace_lock_acquire+0x14a/0x1d0
[  277.515857][T13938]  ? hlock_class+0x4e/0x130
[  277.517376][T13938]  ? mark_lock+0xb5/0xc60
[  277.518779][T13938]  alloc_skb_with_frags+0xe4/0x850
[  277.520436][T13938]  ? mark_lock+0xb5/0xc60
[  277.521926][T13938]  sock_alloc_send_pskb+0x7f1/0x980
[  277.523691][T13938]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  277.525515][T13938]  ? __lock_acquire+0xcc5/0x3c40
[  277.527212][T13938]  ? hlock_class+0x4e/0x130
[  277.528769][T13938]  ? __lock_acquire+0xcc5/0x3c40
[  277.530400][T13938]  tun_get_user+0xd3d/0x3d80
[  277.531907][T13938]  ? find_held_lock+0x2d/0x110
[  277.533483][T13938]  ? __pfx_tun_get_user+0x10/0x10
[  277.535216][T13938]  ? find_held_lock+0x2d/0x110
[  277.536861][T13938]  ? __pfx_lock_release+0x10/0x10
[  277.538605][T13938]  tun_chr_write_iter+0xdc/0x210
[  277.540294][T13938]  vfs_write+0x5ae/0x1150
[  277.541814][T13938]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  277.543734][T13938]  ? trace_lock_acquire+0x14a/0x1d0
[  277.545549][T13938]  ? __pfx_vfs_write+0x10/0x10
[  277.547278][T13938]  ? __fget_files+0x40/0x3a0
[  277.548919][T13938]  ksys_write+0x12b/0x250
[  277.550509][T13938]  ? __pfx_ksys_write+0x10/0x10
[  277.552261][T13938]  do_syscall_64+0xcd/0x250
[  277.553808][T13938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.555812][T13938] RIP: 0033:0x7f434e97d2ff
[  277.557314][T13938] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  277.563559][T13938] RSP: 002b:00007f434f7db000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  277.566238][T13938] RAX: ffffffffffffffda RBX: 00007f434eb35fa0 RCX: 00007f434e97d2ff
[  277.568776][T13938] RDX: 000000000000fdef RSI: 0000000020001b80 RDI: 00000000000000c8
[  277.571350][T13938] RBP: 00007f434f7db090 R08: 0000000000000000 R09: 0000000000000000
[  277.573962][T13938] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000001
[  277.576742][T13938] R13: 0000000000000000 R14: 00007f434eb35fa0 R15: 00007fff2c78a228
[  277.579535][T13938]  </TASK>
[  277.634194][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  277.911879][T13948] FAULT_INJECTION: forcing a failure.
[  277.911879][T13948] name failslab, interval 1, probability 0, space 0, times 0
[  277.918131][T13948] CPU: 1 UID: 0 PID: 13948 Comm: syz.2.3063 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  277.921063][T13948] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  277.923950][T13948] Call Trace:
[  277.924877][T13948]  <TASK>
[  277.925654][T13948]  dump_stack_lvl+0x16c/0x1f0
[  277.926900][T13948]  should_fail_ex+0x497/0x5b0
[  277.928102][T13948]  ? fs_reclaim_acquire+0xae/0x150
[  277.929448][T13948]  should_failslab+0xc2/0x120
[  277.930676][T13948]  __kmalloc_noprof+0xcb/0x400
[  277.931905][T13948]  tomoyo_encode2+0x100/0x3e0
[  277.933111][T13948]  tomoyo_encode+0x29/0x50
[  277.934350][T13948]  tomoyo_realpath_from_path+0x19d/0x720
[  277.935783][T13948]  ? tomoyo_path_number_perm+0x235/0x590
[  277.937254][T13948]  tomoyo_path_number_perm+0x248/0x590
[  277.938670][T13948]  ? tomoyo_path_number_perm+0x235/0x590
[  277.940120][T13948]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  277.941710][T13948]  ? __pfx_lock_release+0x10/0x10
[  277.943006][T13948]  ? trace_lock_acquire+0x14a/0x1d0
[  277.944501][T13948]  ? lock_acquire+0x2f/0xb0
[  277.946464][T13948]  ? __fget_files+0x40/0x3a0
[  277.947739][T13948]  ? __fget_files+0x206/0x3a0
[  277.948934][T13948]  security_file_ioctl+0x9b/0x240
[  277.950242][T13948]  __x64_sys_ioctl+0xb7/0x200
[  277.951482][T13948]  do_syscall_64+0xcd/0x250
[  277.952670][T13948]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.954255][T13948] RIP: 0033:0x7f166517e819
[  277.955423][T13948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  277.960358][T13948] RSP: 002b:00007f1665f20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  277.962486][T13948] RAX: ffffffffffffffda RBX: 00007f1665335fa0 RCX: 00007f166517e819
[  277.964627][T13948] RDX: 0000000020000100 RSI: 0000000000008914 RDI: 0000000000000008
[  277.966749][T13948] RBP: 00007f1665f20090 R08: 0000000000000000 R09: 0000000000000000
[  277.968869][T13948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  277.970992][T13948] R13: 0000000000000000 R14: 00007f1665335fa0 R15: 00007ffee7f455d8
[  277.973091][T13948]  </TASK>
[  277.976705][T13948] ERROR: Out of memory at tomoyo_realpath_from_path.
[  278.022944][   T39] audit: type=1400 audit(1732173790.362:588): avc:  denied  { setopt } for  pid=13952 comm="syz.2.3066" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  278.028595][T13954] netlink: 112 bytes leftover after parsing attributes in process `syz.2.3066'.
[  278.457247][T13962] netlink: 'syz.0.3070': attribute type 21 has an invalid length.
[  278.459330][T13962] netlink: 'syz.0.3070': attribute type 4 has an invalid length.
[  278.461348][T13962] netlink: 'syz.0.3070': attribute type 5 has an invalid length.
[  278.559575][T13968] netlink: 'syz.4.3071': attribute type 21 has an invalid length.
[  278.561683][T13968] __nla_validate_parse: 2 callbacks suppressed
[  278.561695][T13968] netlink: 128 bytes leftover after parsing attributes in process `syz.4.3071'.
[  278.565964][T13968] netlink: 'syz.4.3071': attribute type 4 has an invalid length.
[  278.568021][T13968] netlink: 'syz.4.3071': attribute type 5 has an invalid length.
[  278.570032][T13968] netlink: 3 bytes leftover after parsing attributes in process `syz.4.3071'.
[  278.598380][T13970] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3072'.
[  278.602392][T13971] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3072'.
[  278.656702][T13977] FAULT_INJECTION: forcing a failure.
[  278.656702][T13977] name failslab, interval 1, probability 0, space 0, times 0
[  278.660084][T13977] CPU: 3 UID: 0 PID: 13977 Comm: syz.4.3074 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  278.663092][T13977] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  278.665878][T13977] Call Trace:
[  278.666826][T13977]  <TASK>
[  278.667618][T13977]  dump_stack_lvl+0x16c/0x1f0
[  278.668884][T13977]  should_fail_ex+0x497/0x5b0
[  278.670133][T13977]  ? fs_reclaim_acquire+0xae/0x150
[  278.671528][T13977]  should_failslab+0xc2/0x120
[  278.672783][T13977]  kmem_cache_alloc_node_noprof+0x71/0x310
[  278.674337][T13977]  ? __alloc_skb+0x2b1/0x380
[  278.675888][T13977]  __alloc_skb+0x2b1/0x380
[  278.677164][T13977]  ? __pfx___alloc_skb+0x10/0x10
[  278.678487][T13977]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  278.680065][T13977]  netlink_alloc_large_skb+0x69/0x130
[  278.681661][T13977]  netlink_sendmsg+0x689/0xd70
[  278.682939][T13977]  ? __pfx_netlink_sendmsg+0x10/0x10
[  278.684342][T13977]  ____sys_sendmsg+0xaaf/0xc90
[  278.685603][T13977]  ? copy_msghdr_from_user+0x10b/0x160
[  278.687050][T13977]  ? __pfx_____sys_sendmsg+0x10/0x10
[  278.688443][T13977]  ___sys_sendmsg+0x135/0x1e0
[  278.689714][T13977]  ? __pfx____sys_sendmsg+0x10/0x10
[  278.691128][T13977]  ? __pfx_lock_release+0x10/0x10
[  278.692463][T13977]  ? trace_lock_acquire+0x14a/0x1d0
[  278.693853][T13977]  ? __fget_files+0x206/0x3a0
[  278.695126][T13977]  __sys_sendmsg+0x16e/0x220
[  278.696386][T13977]  ? __pfx___sys_sendmsg+0x10/0x10
[  278.697740][T13977]  do_syscall_64+0xcd/0x250
[  278.698952][T13977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.701030][T13977] RIP: 0033:0x7f434e97e819
[  278.702637][T13977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  278.709497][T13977] RSP: 002b:00007f434f7db038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  278.712330][T13977] RAX: ffffffffffffffda RBX: 00007f434eb35fa0 RCX: 00007f434e97e819
[  278.714398][T13977] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  278.716449][T13977] RBP: 00007f434f7db090 R08: 0000000000000000 R09: 0000000000000000
[  278.718519][T13977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  278.720599][T13977] R13: 0000000000000000 R14: 00007f434eb35fa0 R15: 00007fff2c78a228
[  278.722723][T13977]  </TASK>
[  278.723799][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  278.920939][T13987] openvswitch: netlink: nsh attr 11881 is out of range max 3
[  279.123234][T13991] tipc: Started in network mode
[  279.124672][T13991] tipc: Node identity ac1414aa, cluster identity 4711
[  279.129790][T13991] tipc: Enabled bearer <udp:s>, priority 10
[  279.182401][T13995] FAULT_INJECTION: forcing a failure.
[  279.182401][T13995] name failslab, interval 1, probability 0, space 0, times 0
[  279.186801][T13995] CPU: 3 UID: 0 PID: 13995 Comm: syz.0.3082 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  279.189661][T13995] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  279.192981][T13995] Call Trace:
[  279.193908][T13995]  <TASK>
[  279.194785][T13995]  dump_stack_lvl+0x16c/0x1f0
[  279.196052][T13995]  should_fail_ex+0x497/0x5b0
[  279.197304][T13995]  ? fs_reclaim_acquire+0xae/0x150
[  279.198656][T13995]  should_failslab+0xc2/0x120
[  279.199896][T13995]  kmem_cache_alloc_node_noprof+0x71/0x310
[  279.201477][T13995]  ? __alloc_skb+0x2b1/0x380
[  279.202714][T13995]  __alloc_skb+0x2b1/0x380
[  279.203891][T13995]  ? __pfx___alloc_skb+0x10/0x10
[  279.205202][T13995]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  279.206792][T13995]  netlink_alloc_large_skb+0x69/0x130
[  279.208212][T13995]  netlink_sendmsg+0x689/0xd70
[  279.209480][T13995]  ? __pfx_netlink_sendmsg+0x10/0x10
[  279.210883][T13995]  ____sys_sendmsg+0xaaf/0xc90
[  279.212583][T13995]  ? copy_msghdr_from_user+0x10b/0x160
[  279.214531][T13995]  ? __pfx_____sys_sendmsg+0x10/0x10
[  279.215927][T13995]  ? __lock_acquire+0xcc5/0x3c40
[  279.217235][T13995]  ___sys_sendmsg+0x135/0x1e0
[  279.218490][T13995]  ? __pfx____sys_sendmsg+0x10/0x10
[  279.219876][T13995]  ? trace_lock_acquire+0x14a/0x1d0
[  279.221348][T13995]  __sys_sendmmsg+0x201/0x420
[  279.222721][T13995]  ? __pfx___sys_sendmmsg+0x10/0x10
[  279.224096][T13995]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  279.225682][T13995]  ? fput+0x67/0x440
[  279.226724][T13995]  ? ksys_write+0x1ba/0x250
[  279.227911][T13995]  ? __pfx_ksys_write+0x10/0x10
[  279.229190][T13995]  __x64_sys_sendmmsg+0x9c/0x100
[  279.230505][T13995]  ? lockdep_hardirqs_on+0x7c/0x110
[  279.231890][T13995]  do_syscall_64+0xcd/0x250
[  279.233096][T13995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.234644][T13995] RIP: 0033:0x7fe950d7e819
[  279.235818][T13995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  279.240828][T13995] RSP: 002b:00007fe951acb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  279.242987][T13995] RAX: ffffffffffffffda RBX: 00007fe950f35fa0 RCX: 00007fe950d7e819
[  279.245054][T13995] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000004
[  279.247126][T13995] RBP: 00007fe951acb090 R08: 0000000000000000 R09: 0000000000000000
[  279.249179][T13995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  279.251241][T13995] R13: 0000000000000000 R14: 00007fe950f35fa0 R15: 00007ffc0b79f1e8
[  279.253302][T13995]  </TASK>
[  279.370450][T14000] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci0/hci0:200/input42
[  279.524184][ T5990] usb 9-1: new high-speed USB device number 27 using dummy_hcd
[  279.608271][   T39] audit: type=1400 audit(1732173791.952:589): avc:  denied  { ioctl } for  pid=14010 comm="syz.0.3086" path="socket:[50551]" dev="sockfs" ino=50551 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  279.617213][T14011] xt_CT: You must specify a L4 protocol and not use inversions on it
[  279.651105][T14013] tipc: Enabling of bearer <udp:s> rejected, already enabled
[  279.684225][ T5990] usb 9-1: Using ep0 maxpacket: 8
[  279.687309][ T5990] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  279.689407][ T5990] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  279.691720][ T5990] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  279.694244][ T5990] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  279.697829][ T5990] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  279.701247][ T5990] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  279.703957][ T5990] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.804170][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  279.913274][ T5990] usb 9-1: GET_CAPABILITIES returned 0
[  279.914927][ T5990] usbtmc 9-1:16.0: can't read capabilities
[  279.980521][T14021] tipc: Started in network mode
[  279.982448][T14021] tipc: Node identity 7f000001, cluster identity 4711
[  279.985561][T14021] tipc: Enabled bearer <udp:syz2>, priority 10
[  280.083570][T14025] FAULT_INJECTION: forcing a failure.
[  280.083570][T14025] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  280.087280][T14025] CPU: 1 UID: 0 PID: 14025 Comm: syz.2.3091 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  280.089755][T14025] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  280.092655][T14025] Call Trace:
[  280.093632][T14025]  <TASK>
[  280.094402][T14025]  dump_stack_lvl+0x16c/0x1f0
[  280.095590][T14025]  should_fail_ex+0x497/0x5b0
[  280.096877][T14025]  strncpy_from_user+0x3b/0x2c0
[  280.098153][T14025]  getname_flags.part.0+0x8f/0x550
[  280.099591][T14025]  getname+0x8d/0xe0
[  280.100649][T14025]  __x64_sys_execve+0x72/0xb0
[  280.101980][T14025]  do_syscall_64+0xcd/0x250
[  280.103358][T14025]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.104884][T14025] RIP: 0033:0x7f166517e819
[  280.106117][T14025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.111084][T14025] RSP: 002b:00007f1665eff038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  280.113349][T14025] RAX: ffffffffffffffda RBX: 00007f1665336080 RCX: 00007f166517e819
[  280.115526][T14025] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080
[  280.117594][T14025] RBP: 00007f1665eff090 R08: 0000000000000000 R09: 0000000000000000
[  280.117603][T14025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.117609][T14025] R13: 0000000000000001 R14: 00007f1665336080 R15: 00007ffee7f455d8
[  280.117621][T14025]  </TASK>
[  280.154080][ T6061] tipc: Node number set to 2886997162
[  280.182290][T14002] usbtmc 9-1:16.0: usb_control_msg returned -71
[  280.182553][   T58] usb 9-1: USB disconnect, device number 27
[  280.651735][T14028] FAULT_INJECTION: forcing a failure.
[  280.651735][T14028] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  280.656620][T14028] CPU: 0 UID: 0 PID: 14028 Comm: syz.0.3092 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  280.660254][T14028] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  280.664009][T14028] Call Trace:
[  280.665282][T14028]  <TASK>
[  280.666375][T14028]  dump_stack_lvl+0x16c/0x1f0
[  280.668093][T14028]  should_fail_ex+0x497/0x5b0
[  280.669827][T14028]  _copy_from_user+0x2e/0xd0
[  280.671486][T14028]  memdup_user+0x71/0xd0
[  280.672684][T14028]  strndup_user+0x78/0xe0
[  280.673825][T14028]  __do_sys_fsconfig+0x2e3/0xbe0
[  280.675342][T14028]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  280.676788][T14028]  do_syscall_64+0xcd/0x250
[  280.678005][T14028]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.679633][T14028] RIP: 0033:0x7fe950d7e819
[  280.681074][T14028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.686863][T14028] RSP: 002b:00007fe951acb038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  280.689792][T14028] RAX: ffffffffffffffda RBX: 00007fe950f35fa0 RCX: 00007fe950d7e819
[  280.692620][T14028] RDX: 0000000020000ac0 RSI: 0000000000000001 RDI: 0000000000000003
[  280.695467][T14028] RBP: 00007fe951acb090 R08: 0000000000000000 R09: 0000000000000000
[  280.698325][T14028] R10: 0000000020000440 R11: 0000000000000246 R12: 0000000000000001
[  280.701154][T14028] R13: 0000000000000000 R14: 00007fe950f35fa0 R15: 00007ffc0b79f1e8
[  280.703929][T14028]  </TASK>
[  280.705095][    C0] vkms_vblank_simulate: vblank timer overrun
[  280.806793][T14030] FAULT_INJECTION: forcing a failure.
[  280.806793][T14030] name failslab, interval 1, probability 0, space 0, times 0
[  280.810753][T14030] CPU: 0 UID: 0 PID: 14030 Comm: syz.0.3093 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  280.813819][T14030] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  280.817529][T14030] Call Trace:
[  280.818765][T14030]  <TASK>
[  280.819793][T14030]  dump_stack_lvl+0x16c/0x1f0
[  280.821473][T14030]  should_fail_ex+0x497/0x5b0
[  280.823102][T14030]  ? fs_reclaim_acquire+0xae/0x150
[  280.824766][T14030]  should_failslab+0xc2/0x120
[  280.826441][T14030]  kmem_cache_alloc_node_noprof+0x71/0x310
[  280.828466][T14030]  ? __alloc_skb+0x2b1/0x380
[  280.830059][T14030]  __alloc_skb+0x2b1/0x380
[  280.831650][T14030]  ? __pfx___alloc_skb+0x10/0x10
[  280.833416][T14030]  ? hlock_class+0x4e/0x130
[  280.835091][T14030]  ? __lock_acquire+0xcc5/0x3c40
[  280.836579][T14030]  ? find_held_lock+0x2d/0x110
[  280.837882][T14030]  alloc_skb_with_frags+0xe4/0x850
[  280.839258][T14030]  ? l2cap_sock_alloc_skb_cb+0xac/0x500
[  280.840738][T14030]  ? __pfx_lock_release+0x10/0x10
[  280.842068][T14030]  ? hlock_class+0x4e/0x130
[  280.843278][T14030]  sock_alloc_send_pskb+0x7f1/0x980
[  280.844087][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  280.844690][T14030]  ? __mutex_unlock_slowpath+0x164/0x690
[  280.848494][T14030]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  280.850073][T14030]  ? hlock_class+0x4e/0x130
[  280.851278][T14030]  ? __lock_acquire+0x15a9/0x3c40
[  280.852564][T14030]  ? lock_acquire.part.0+0x11b/0x380
[  280.853948][T14030]  l2cap_sock_alloc_skb_cb+0xca/0x500
[  280.855389][T14030]  ? __pfx_l2cap_sock_alloc_skb_cb+0x10/0x10
[  280.856932][T14030]  ? __pfx___mutex_trylock_common+0x10/0x10
[  280.858518][T14030]  ? __pfx_l2cap_sock_alloc_skb_cb+0x10/0x10
[  280.860568][T14030]  l2cap_chan_send+0x29f/0x2a30
[  280.862047][T14030]  ? __mutex_lock+0x1cc/0xa60
[  280.863356][T14030]  ? l2cap_sock_sendmsg+0x21a/0x300
[  280.864693][T14030]  ? __pfx_l2cap_chan_send+0x10/0x10
[  280.866086][T14030]  ? l2cap_sock_sendmsg+0x1a4/0x300
[  280.867476][T14030]  l2cap_sock_sendmsg+0x228/0x300
[  280.868918][T14030]  ____sys_sendmsg+0xaaf/0xc90
[  280.870904][T14030]  ? copy_msghdr_from_user+0x10b/0x160
[  280.872802][T14030]  ? __pfx_____sys_sendmsg+0x10/0x10
[  280.874629][T14030]  ? __lock_acquire+0xcc5/0x3c40
[  280.876385][T14030]  ___sys_sendmsg+0x135/0x1e0
[  280.878079][T14030]  ? __pfx____sys_sendmsg+0x10/0x10
[  280.879794][T14030]  ? trace_lock_acquire+0x14a/0x1d0
[  280.881664][T14030]  __sys_sendmmsg+0x201/0x420
[  280.883322][T14030]  ? __pfx___sys_sendmmsg+0x10/0x10
[  280.885329][T14030]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  280.887784][T14030]  ? fput+0x67/0x440
[  280.889331][T14030]  ? ksys_write+0x1ba/0x250
[  280.891048][T14030]  ? __pfx_ksys_write+0x10/0x10
[  280.892861][T14030]  __x64_sys_sendmmsg+0x9c/0x100
[  280.894677][T14030]  ? lockdep_hardirqs_on+0x7c/0x110
[  280.896089][T14030]  do_syscall_64+0xcd/0x250
[  280.897372][T14030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  280.899438][T14030] RIP: 0033:0x7fe950d7e819
[  280.900986][T14030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  280.907759][T14030] RSP: 002b:00007fe951acb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  280.910923][T14030] RAX: ffffffffffffffda RBX: 00007fe950f35fa0 RCX: 00007fe950d7e819
[  280.914076][T14030] RDX: 00000000ffffff80 RSI: 0000000020004100 RDI: 0000000000000004
[  280.916866][T14030] RBP: 00007fe951acb090 R08: 0000000000000000 R09: 0000000000000000
[  280.919839][T14030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  280.922884][T14030] R13: 0000000000000000 R14: 00007fe950f35fa0 R15: 00007ffc0b79f1e8
[  280.924840][T14030]  </TASK>
[  280.925651][    C0] vkms_vblank_simulate: vblank timer overrun
[  281.104190][ T1336] tipc: Node number set to 2130706433
[  281.880988][T14058] netlink: 'syz.0.3100': attribute type 3 has an invalid length.
[  281.883353][T14058] netlink: 7 bytes leftover after parsing attributes in process `syz.0.3100'.
[  281.884165][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  281.987605][T14066] FAULT_INJECTION: forcing a failure.
[  281.987605][T14066] name failslab, interval 1, probability 0, space 0, times 0
[  281.992086][T14066] CPU: 1 UID: 0 PID: 14066 Comm: syz.2.3103 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  281.995748][T14066] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  281.999505][T14066] Call Trace:
[  282.000720][T14066]  <TASK>
[  282.001774][T14066]  dump_stack_lvl+0x16c/0x1f0
[  282.003468][T14066]  should_fail_ex+0x497/0x5b0
[  282.005126][T14066]  ? fs_reclaim_acquire+0xae/0x150
[  282.006933][T14066]  should_failslab+0xc2/0x120
[  282.008603][T14066]  kmem_cache_alloc_node_noprof+0x71/0x310
[  282.010661][T14066]  ? __alloc_skb+0x2b1/0x380
[  282.012328][T14066]  __alloc_skb+0x2b1/0x380
[  282.013957][T14066]  ? __pfx___alloc_skb+0x10/0x10
[  282.016030][T14066]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  282.018079][T14066]  netlink_alloc_large_skb+0x69/0x130
[  282.020132][T14066]  netlink_sendmsg+0x689/0xd70
[  282.021908][T14066]  ? __pfx_netlink_sendmsg+0x10/0x10
[  282.023801][T14066]  ____sys_sendmsg+0xaaf/0xc90
[  282.025498][T14066]  ? copy_msghdr_from_user+0x10b/0x160
[  282.027414][T14066]  ? __pfx_____sys_sendmsg+0x10/0x10
[  282.029298][T14066]  ___sys_sendmsg+0x135/0x1e0
[  282.030971][T14066]  ? __pfx____sys_sendmsg+0x10/0x10
[  282.032793][T14066]  ? __pfx_lock_release+0x10/0x10
[  282.034726][T14066]  ? trace_lock_acquire+0x14a/0x1d0
[  282.036591][T14066]  ? __fget_files+0x206/0x3a0
[  282.038283][T14066]  __sys_sendmsg+0x16e/0x220
[  282.039934][T14066]  ? __pfx___sys_sendmsg+0x10/0x10
[  282.041782][T14066]  do_syscall_64+0xcd/0x250
[  282.043380][T14066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.045445][T14066] RIP: 0033:0x7f166517e819
[  282.047015][T14066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  282.053686][T14066] RSP: 002b:00007f1665f20038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  282.056604][T14066] RAX: ffffffffffffffda RBX: 00007f1665335fa0 RCX: 00007f166517e819
[  282.059367][T14066] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000004
[  282.062157][T14066] RBP: 00007f1665f20090 R08: 0000000000000000 R09: 0000000000000000
[  282.064934][T14066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  282.067698][T14066] R13: 0000000000000000 R14: 00007f1665335fa0 R15: 00007ffee7f455d8
[  282.070459][T14066]  </TASK>
[  282.100494][T14072] FAULT_INJECTION: forcing a failure.
[  282.100494][T14072] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  282.105466][T14072] CPU: 1 UID: 0 PID: 14072 Comm: syz.2.3106 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  282.108943][T14072] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  282.112546][T14072] Call Trace:
[  282.113694][T14072]  <TASK>
[  282.114713][T14072]  dump_stack_lvl+0x16c/0x1f0
[  282.116319][T14072]  should_fail_ex+0x497/0x5b0
[  282.117918][T14072]  _copy_from_user+0x2e/0xd0
[  282.119509][T14072]  xfrm_user_policy+0x4f2/0xb80
[  282.121196][T14072]  ? __pfx_xfrm_user_policy+0x10/0x10
[  282.123031][T14072]  ? cap_capable+0x1cf/0x240
[  282.124625][T14072]  ? bpf_lsm_capable+0x9/0x10
[  282.126243][T14072]  ? ns_capable+0xd7/0x110
[  282.127765][T14072]  do_ip_setsockopt+0x3004/0x38b0
[  282.129480][T14072]  ? __pfx_avc_has_perm+0x10/0x10
[  282.131233][T14072]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  282.133068][T14072]  ? hlock_class+0x4e/0x130
[  282.134614][T14072]  ? sock_has_perm+0x25a/0x2f0
[  282.136253][T14072]  ? selinux_netlbl_socket_setsockopt+0x184/0x470
[  282.138424][T14072]  ip_setsockopt+0x59/0xf0
[  282.139961][T14072]  raw_setsockopt+0xb8/0x290
[  282.141565][T14072]  ? __pfx_raw_setsockopt+0x10/0x10
[  282.143334][T14072]  ? selinux_socket_setsockopt+0x6a/0x80
[  282.145337][T14072]  ? sock_common_setsockopt+0x2e/0xf0
[  282.146791][T14072]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  282.148380][T14072]  do_sock_setsockopt+0x222/0x480
[  282.149700][T14072]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  282.151155][T14072]  ? lock_acquire+0x2f/0xb0
[  282.152370][T14072]  __sys_setsockopt+0x1a0/0x230
[  282.153666][T14072]  __x64_sys_setsockopt+0xbd/0x160
[  282.155041][T14072]  ? do_syscall_64+0x91/0x250
[  282.156290][T14072]  ? lockdep_hardirqs_on+0x7c/0x110
[  282.157675][T14072]  do_syscall_64+0xcd/0x250
[  282.158892][T14072]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.160914][T14072] RIP: 0033:0x7f166517e819
[  282.162436][T14072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  282.168893][T14072] RSP: 002b:00007f1665f20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  282.171707][T14072] RAX: ffffffffffffffda RBX: 00007f1665335fa0 RCX: 00007f166517e819
[  282.174374][T14072] RDX: 0008008000000010 RSI: 0000000000000000 RDI: 0000000000000003
[  282.177038][T14072] RBP: 00007f1665f20090 R08: 00000000000000b8 R09: 0000000000000000
[  282.179710][T14072] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[  282.182393][T14072] R13: 0000000000000000 R14: 00007f1665335fa0 R15: 00007ffee7f455d8
[  282.184499][T14072]  </TASK>
[  282.507574][T14104] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3117'.
[  282.544105][ T1336] usb 9-1: new high-speed USB device number 28 using dummy_hcd
[  282.623159][   T39] audit: type=1400 audit(1732173794.962:590): avc:  denied  { map } for  pid=14105 comm="syz.0.3118" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1294 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  282.631569][   T39] audit: type=1400 audit(1732173794.962:591): avc:  denied  { execute } for  pid=14105 comm="syz.0.3118" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1294 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  282.644671][T14108] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3119'.
[  282.684271][ T1336] usb 9-1: device descriptor read/64, error -71
[  282.722703][T14122] FAULT_INJECTION: forcing a failure.
[  282.722703][T14122] name failslab, interval 1, probability 0, space 0, times 0
[  282.726993][T14122] CPU: 0 UID: 0 PID: 14122 Comm: syz.2.3125 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  282.730420][T14122] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  282.731737][T14121] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3126'.
[  282.734274][T14122] Call Trace:
[  282.734284][T14122]  <TASK>
[  282.734293][T14122]  dump_stack_lvl+0x16c/0x1f0
[  282.734317][T14122]  should_fail_ex+0x497/0x5b0
[  282.734345][T14122]  ? fs_reclaim_acquire+0xae/0x150
[  282.734371][T14122]  should_failslab+0xc2/0x120
[  282.745490][T14122]  kmem_cache_alloc_node_noprof+0x71/0x310
[  282.747460][T14122]  ? __alloc_skb+0x2b1/0x380
[  282.748941][T14122]  __alloc_skb+0x2b1/0x380
[  282.750582][T14122]  ? __pfx___alloc_skb+0x10/0x10
[  282.752396][T14122]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  282.754595][T14122]  netlink_alloc_large_skb+0x69/0x130
[  282.756580][T14122]  netlink_sendmsg+0x689/0xd70
[  282.758361][T14122]  ? __pfx_netlink_sendmsg+0x10/0x10
[  282.760311][T14122]  ____sys_sendmsg+0xaaf/0xc90
[  282.762100][T14122]  ? copy_msghdr_from_user+0x10b/0x160
[  282.764100][T14122]  ? __pfx_____sys_sendmsg+0x10/0x10
[  282.766075][T14122]  ___sys_sendmsg+0x135/0x1e0
[  282.767830][T14122]  ? __pfx____sys_sendmsg+0x10/0x10
[  282.769780][T14122]  ? __pfx_lock_release+0x10/0x10
[  282.771644][T14122]  ? trace_lock_acquire+0x14a/0x1d0
[  282.773557][T14122]  ? __fget_files+0x206/0x3a0
[  282.775312][T14122]  __sys_sendmsg+0x16e/0x220
[  282.777015][T14122]  ? __pfx___sys_sendmsg+0x10/0x10
[  282.778926][T14122]  do_syscall_64+0xcd/0x250
[  282.780638][T14122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.782838][T14122] RIP: 0033:0x7f166517e819
[  282.784025][T14122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  282.789078][T14122] RSP: 002b:00007f1665f20038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  282.791582][T14122] RAX: ffffffffffffffda RBX: 00007f1665335fa0 RCX: 00007f166517e819
[  282.794412][T14122] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  282.797140][T14122] RBP: 00007f1665f20090 R08: 0000000000000000 R09: 0000000000000000
[  282.799928][T14122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  282.802811][T14122] R13: 0000000000000000 R14: 00007f1665335fa0 R15: 00007ffee7f455d8
[  282.805275][T14122]  </TASK>
[  282.806166][    C0] vkms_vblank_simulate: vblank timer overrun
[  282.862274][T14135] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3131'.
[  282.866655][T14135] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3131'.
[  282.887315][   T39] audit: type=1400 audit(1732173795.232:592): avc:  denied  { map } for  pid=14130 comm="syz.0.3130" path="socket:[49841]" dev="sockfs" ino=49841 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  282.914121][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  282.924101][ T1336] usb 9-1: new high-speed USB device number 29 using dummy_hcd
[  282.945607][T14146] netlink: 'syz.2.3136': attribute type 4 has an invalid length.
[  282.974973][T14148] xt_ecn: cannot match TCP bits for non-tcp packets
[  283.028957][T14152] FAULT_INJECTION: forcing a failure.
[  283.028957][T14152] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  283.033488][T14152] CPU: 3 UID: 0 PID: 14152 Comm: syz.0.3139 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  283.037072][T14152] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  283.039831][T14152] Call Trace:
[  283.040909][T14152]  <TASK>
[  283.041770][T14152]  dump_stack_lvl+0x16c/0x1f0
[  283.043044][T14152]  should_fail_ex+0x497/0x5b0
[  283.043121][T14155] netlink: 'syz.3.3137': attribute type 4 has an invalid length.
[  283.044248][T14152]  _copy_to_user+0x32/0xd0
[  283.044267][T14152]  simple_read_from_buffer+0xd0/0x160
[  283.044280][T14152]  proc_fail_nth_read+0x198/0x270
[  283.044296][T14152]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  283.044312][T14152]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  283.044326][T14152]  vfs_read+0x1df/0xbe0
[  283.044337][T14152]  ? __fget_files+0x1fc/0x3a0
[  283.044351][T14152]  ? __pfx___mutex_lock+0x10/0x10
[  283.044367][T14152]  ? __pfx_vfs_read+0x10/0x10
[  283.044392][T14152]  ? __fget_files+0x206/0x3a0
[  283.044418][T14152]  ksys_read+0x12b/0x250
[  283.044436][T14152]  ? __pfx_ksys_read+0x10/0x10
[  283.044458][T14152]  do_syscall_64+0xcd/0x250
[  283.044470][T14152]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.044485][T14152] RIP: 0033:0x7fe950d7d25c
[  283.044495][T14152] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  283.044505][T14152] RSP: 002b:00007fe951acb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  283.044516][T14152] RAX: ffffffffffffffda RBX: 00007fe950f35fa0 RCX: 00007fe950d7d25c
[  283.044523][T14152] RDX: 000000000000000f RSI: 00007fe951acb0a0 RDI: 0000000000000005
[  283.044529][T14152] RBP: 00007fe951acb090 R08: 0000000000000000 R09: 0000000000000000
[  283.044535][T14152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  283.044541][T14152] R13: 0000000000000000 R14: 00007fe950f35fa0 R15: 00007ffc0b79f1e8
[  283.044554][T14152]  </TASK>
[  283.092096][ T1336] usb 9-1: device descriptor read/64, error -71
[  283.189396][T14176] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  283.194301][ T1336] usb usb9-port1: attempt power cycle
[  283.208062][T14171] Context (ID=0x0) not attached to queue pair (handle=0x0:0x0)
[  283.271681][T14176] batman_adv: batadv0: Removing interface: batadv_slave_1
[  283.452144][T14182] vlan2: entered allmulticast mode
[  283.474203][ T6061] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  283.499587][ T5303] Bluetooth: hci0: unknown advertising packet type: 0xcf
[  283.499662][ T5303] Bluetooth: hci0: unknown advertising packet type: 0x4b
[  283.502584][ T5303] Bluetooth: hci0: unknown advertising packet type: 0x73
[  283.506327][ T5303] Bluetooth: hci0: unknown advertising packet type: 0x67
[  283.508791][ T5303] Bluetooth: hci0: Malformed LE Event: 0x02
[  283.556084][ T1336] usb 9-1: new high-speed USB device number 30 using dummy_hcd
[  283.574756][ T1336] usb 9-1: device descriptor read/8, error -71
[  283.604178][ T6061] usb 5-1: device descriptor read/64, error -71
[  283.814274][ T1336] usb 9-1: new high-speed USB device number 31 using dummy_hcd
[  283.834660][ T1336] usb 9-1: device descriptor read/8, error -71
[  283.844470][ T6061] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  283.954105][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  283.954354][ T1336] usb usb9-port1: unable to enumerate USB device
[  283.974182][ T6061] usb 5-1: device descriptor read/64, error -71
[  284.094320][ T6061] usb usb5-port1: attempt power cycle
[  284.444153][ T6061] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  284.465010][ T6061] usb 5-1: device descriptor read/8, error -71
[  284.647200][T14210] syz.2.3162: attempt to access beyond end of device
[  284.647200][T14210] nbd2: rw=0, sector=2, nr_sectors = 1 limit=0
[  284.650447][T14210] hfs: can't find a HFS filesystem on dev nbd2
[  284.704177][ T6061] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  284.725191][ T6061] usb 5-1: device descriptor read/8, error -71
[  284.834456][ T6061] usb usb5-port1: unable to enumerate USB device
[  284.994044][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  285.358224][T14241] FAULT_INJECTION: forcing a failure.
[  285.358224][T14241] name failslab, interval 1, probability 0, space 0, times 0
[  285.361647][T14241] CPU: 1 UID: 0 PID: 14241 Comm: syz.3.3176 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  285.364347][T14241] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  285.367243][T14241] Call Trace:
[  285.368069][T14241]  <TASK>
[  285.368846][T14241]  dump_stack_lvl+0x16c/0x1f0
[  285.370079][T14241]  should_fail_ex+0x497/0x5b0
[  285.371335][T14241]  ? lock_acquire.part.0+0x11b/0x380
[  285.372883][T14241]  should_failslab+0xc2/0x120
[  285.374131][T14241]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  285.375572][T14241]  ? dst_alloc+0x99/0x1a0
[  285.376686][T14241]  ? trace_lock_acquire+0x14a/0x1d0
[  285.378142][T14241]  ? __pfx_ip6_dst_gc+0x10/0x10
[  285.379417][T14241]  dst_alloc+0x99/0x1a0
[  285.380520][T14241]  ip6_dst_alloc+0x2c/0x90
[  285.381710][T14241]  ip6_pol_route+0x956/0x1120
[  285.382979][T14241]  ? __pfx_ip6_pol_route+0x10/0x10
[  285.384602][T14241]  ? __pfx___lock_acquire+0x10/0x10
[  285.386092][T14241]  ? mark_lock+0xb5/0xc60
[  285.387274][T14241]  ? widen_string+0xd8/0x2a0
[  285.388484][T14241]  ? __pfx_ip6_pol_route_output+0x10/0x10
[  285.390320][T14241]  fib6_rule_lookup+0x386/0x720
[  285.392087][T14241]  ? __pfx_fib6_rule_lookup+0x10/0x10
[  285.393700][T14241]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  285.395194][T14241]  ? rcu_is_watching+0x12/0xc0
[  285.396409][T14241]  ? trace_lock_acquire+0x14a/0x1d0
[  285.397722][T14241]  ? ip6_route_output_flags+0x45/0x640
[  285.399199][T14241]  ? lock_acquire+0x2f/0xb0
[  285.400415][T14241]  ? ip6_route_output_flags+0x45/0x640
[  285.401982][T14241]  ip6_route_output_flags+0x1d0/0x640
[  285.403492][T14241]  ip6_dst_lookup_tail.constprop.0+0x56e/0x19e0
[  285.405111][T14241]  ? hlock_class+0x4e/0x130
[  285.406345][T14241]  ? __lock_acquire+0xcc5/0x3c40
[  285.407715][T14241]  ? __pfx_ip6_dst_lookup_tail.constprop.0+0x10/0x10
[  285.409448][T14241]  ? find_held_lock+0x2d/0x110
[  285.410725][T14241]  ? sk_dst_check+0x220/0x540
[  285.412047][T14241]  ip6_dst_lookup_flow+0x99/0x1d0
[  285.413364][T14241]  ? __pfx_ip6_dst_lookup_flow+0x10/0x10
[  285.414825][T14241]  ip6_sk_dst_lookup_flow+0x568/0x960
[  285.416293][T14241]  ? selinux_sk_getsecid+0x7c/0xd0
[  285.417632][T14241]  udpv6_sendmsg+0x1b70/0x3030
[  285.418911][T14241]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  285.420351][T14241]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  285.421789][T14241]  ? release_sock+0x21/0x220
[  285.423005][T14241]  ? find_held_lock+0x2d/0x110
[  285.424261][T14241]  ? __local_bh_enable_ip+0xa4/0x120
[  285.425682][T14241]  ? lockdep_hardirqs_on+0x7c/0x110
[  285.427034][T14241]  ? inet_autobind+0x145/0x1a0
[  285.428273][T14241]  ? __local_bh_enable_ip+0xa4/0x120
[  285.429663][T14241]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  285.431029][T14241]  ? inet6_sendmsg+0x105/0x140
[  285.432427][T14241]  inet6_sendmsg+0x105/0x140
[  285.433661][T14241]  ____sys_sendmsg+0x68c/0xc90
[  285.434971][T14241]  ? copy_msghdr_from_user+0x10b/0x160
[  285.436434][T14241]  ? __pfx_____sys_sendmsg+0x10/0x10
[  285.437858][T14241]  ? __lock_acquire+0xcc5/0x3c40
[  285.439171][T14241]  ___sys_sendmsg+0x135/0x1e0
[  285.440403][T14241]  ? __pfx____sys_sendmsg+0x10/0x10
[  285.441826][T14241]  ? trace_lock_acquire+0x14a/0x1d0
[  285.443181][T14241]  __sys_sendmmsg+0x201/0x420
[  285.444350][T14241]  ? __pfx___sys_sendmmsg+0x10/0x10
[  285.445693][T14241]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  285.447276][T14241]  ? fput+0x67/0x440
[  285.448265][T14241]  ? ksys_write+0x1ba/0x250
[  285.449327][T14241]  ? __pfx_ksys_write+0x10/0x10
[  285.450607][T14241]  __x64_sys_sendmmsg+0x9c/0x100
[  285.452102][T14241]  ? lockdep_hardirqs_on+0x7c/0x110
[  285.453470][T14241]  do_syscall_64+0xcd/0x250
[  285.454686][T14241]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.456179][T14241] RIP: 0033:0x7fa65c77e819
[  285.457316][T14241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  285.462575][T14241] RSP: 002b:00007fa65d524038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  285.464763][T14241] RAX: ffffffffffffffda RBX: 00007fa65c935fa0 RCX: 00007fa65c77e819
[  285.466710][T14241] RDX: 0000000000000001 RSI: 0000000020009940 RDI: 0000000000000006
[  285.468605][T14241] RBP: 00007fa65d524090 R08: 0000000000000000 R09: 0000000000000000
[  285.470551][T14241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  285.472882][T14241] R13: 0000000000000000 R14: 00007fa65c935fa0 R15: 00007fff735de038
[  285.474955][T14241]  </TASK>
[  285.492214][T14243] FAULT_INJECTION: forcing a failure.
[  285.492214][T14243] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  285.496996][T14243] CPU: 2 UID: 0 PID: 14243 Comm: syz.4.3177 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  285.500475][T14243] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  285.504130][T14243] Call Trace:
[  285.505279][T14243]  <TASK>
[  285.506320][T14243]  dump_stack_lvl+0x16c/0x1f0
[  285.507938][T14243]  should_fail_ex+0x497/0x5b0
[  285.509558][T14243]  _copy_from_iter+0x2a1/0x1560
[  285.511202][T14243]  ? __pfx__copy_from_iter+0x10/0x10
[  285.512975][T14243]  ? __virt_addr_valid+0x1a4/0x590
[  285.514819][T14243]  ? __virt_addr_valid+0x5e/0x590
[  285.516464][T14243]  ? __phys_addr_symbol+0x30/0x80
[  285.518157][T14243]  ? __check_object_size+0x488/0x710
[  285.519850][T14243]  hci_sock_sendmsg+0x46d/0x25e0
[  285.521439][T14243]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  285.523180][T14243]  sock_write_iter+0x4fe/0x5b0
[  285.524699][T14243]  ? __pfx_sock_write_iter+0x10/0x10
[  285.526406][T14243]  ? bpf_lsm_file_permission+0x9/0x10
[  285.528152][T14243]  ? security_file_permission+0x71/0x210
[  285.529968][T14243]  vfs_write+0x5ae/0x1150
[  285.531414][T14243]  ? __pfx_sock_write_iter+0x10/0x10
[  285.533211][T14243]  ? trace_lock_acquire+0x14a/0x1d0
[  285.535108][T14243]  ? __pfx_vfs_write+0x10/0x10
[  285.536442][T14243]  ? __fget_files+0x40/0x3a0
[  285.537660][T14243]  ksys_write+0x207/0x250
[  285.539071][T14243]  ? __pfx_ksys_write+0x10/0x10
[  285.540435][T14243]  do_syscall_64+0xcd/0x250
[  285.541750][T14243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.543794][T14243] RIP: 0033:0x7f434e97e819
[  285.545304][T14243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  285.550857][T14243] RSP: 002b:00007f434f7db038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  285.553440][T14243] RAX: ffffffffffffffda RBX: 00007f434eb35fa0 RCX: 00007f434e97e819
[  285.556090][T14243] RDX: 0000000000000006 RSI: 0000000020000040 RDI: 0000000000000004
[  285.558201][T14243] RBP: 00007f434f7db090 R08: 0000000000000000 R09: 0000000000000000
[  285.560354][T14243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  285.562468][T14243] R13: 0000000000000000 R14: 00007f434eb35fa0 R15: 00007fff2c78a228
[  285.564566][T14243]  </TASK>
[  285.588169][   T39] audit: type=1400 audit(1732173797.932:593): avc:  denied  { write } for  pid=14244 comm="syz.3.3178" name="/" dev="9p" ino=36701844 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  285.593882][   T39] audit: type=1400 audit(1732173797.932:594): avc:  denied  { remove_name } for  pid=14244 comm="syz.3.3178" name="file0" dev="9p" ino=36701857 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  285.600867][   T39] audit: type=1400 audit(1732173797.932:595): avc:  denied  { rename } for  pid=14244 comm="syz.3.3178" name="file0" dev="9p" ino=36701857 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  285.607037][   T39] audit: type=1400 audit(1732173797.932:596): avc:  denied  { add_name } for  pid=14244 comm="syz.3.3178" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  285.618039][   T39] audit: type=1400 audit(1732173797.942:597): avc:  denied  { create } for  pid=14244 comm="syz.3.3178" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=fifo_file permissive=1
[  285.623435][   T39] audit: type=1400 audit(1732173797.942:598): avc:  denied  { associate } for  pid=14244 comm="syz.3.3178" name="file0" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  285.708828][T14254] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=35 sclass=netlink_route_socket pid=14254 comm=syz.4.3181
[  285.759734][   T39] audit: type=1400 audit(1732173798.102:599): avc:  denied  { setopt } for  pid=14255 comm="syz.4.3183" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  285.798776][   T39] audit: type=1400 audit(1732173798.142:600): avc:  denied  { getopt } for  pid=14262 comm="syz.2.3185" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  285.811662][T14264] __nla_validate_parse: 3 callbacks suppressed
[  285.811672][T14264] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3185'.
[  286.017367][   T39] audit: type=1326 audit(1732173798.362:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14263 comm="syz.4.3184" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f434e97e819 code=0x7fc00000
[  286.034169][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  286.088651][   T39] audit: type=1400 audit(1732173798.432:602): avc:  denied  { setopt } for  pid=14277 comm="syz.3.3188" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  286.366486][T14309] FAULT_INJECTION: forcing a failure.
[  286.366486][T14309] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  286.371192][T14309] CPU: 3 UID: 0 PID: 14309 Comm: syz.2.3200 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  286.374569][T14309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  286.378038][T14309] Call Trace:
[  286.379132][T14309]  <TASK>
[  286.380095][T14309]  dump_stack_lvl+0x16c/0x1f0
[  286.381602][T14309]  should_fail_ex+0x497/0x5b0
[  286.383114][T14309]  _copy_to_user+0x32/0xd0
[  286.384555][T14309]  simple_read_from_buffer+0xd0/0x160
[  286.386296][T14309]  proc_fail_nth_read+0x198/0x270
[  286.387920][T14309]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  286.389717][T14309]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  286.391571][T14309]  vfs_read+0x1df/0xbe0
[  286.393008][T14309]  ? __fget_files+0x1fc/0x3a0
[  286.394663][T14309]  ? __pfx___mutex_lock+0x10/0x10
[  286.396427][T14309]  ? __pfx_vfs_read+0x10/0x10
[  286.398093][T14309]  ? __fget_files+0x206/0x3a0
[  286.399811][T14309]  ksys_read+0x12b/0x250
[  286.401386][T14309]  ? __pfx_ksys_read+0x10/0x10
[  286.403172][T14309]  do_syscall_64+0xcd/0x250
[  286.404845][T14309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.407047][T14309] RIP: 0033:0x7f166517d25c
[  286.408630][T14309] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  286.415432][T14309] RSP: 002b:00007f1665f20030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  286.418353][T14309] RAX: ffffffffffffffda RBX: 00007f1665335fa0 RCX: 00007f166517d25c
[  286.421201][T14309] RDX: 000000000000000f RSI: 00007f1665f200a0 RDI: 0000000000000005
[  286.423966][T14309] RBP: 00007f1665f20090 R08: 0000000000000000 R09: 0000000000000000
[  286.426853][T14309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  286.429591][T14309] R13: 0000000000000000 R14: 00007f1665335fa0 R15: 00007ffee7f455d8
[  286.432445][T14309]  </TASK>
[  286.684201][ T6061] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  286.760069][T14317] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3203'.
[  286.814662][ T6061] usb 5-1: device descriptor read/64, error -71
[  287.074134][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  287.076047][ T6061] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  287.078200][ T1320] usb 9-1: new high-speed USB device number 32 using dummy_hcd
[  287.108719][T14325] mac80211_hwsim hwsim21 syzkaller0: entered allmulticast mode
[  287.113742][    C3] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  287.119871][T14325] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3207'.
[  287.122088][T14325] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3207'.
[  287.124462][T14325] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3207'.
[  287.126807][T14325] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3207'.
[  287.132137][T14324] mac80211_hwsim hwsim21 syzkaller0: left allmulticast mode
[  287.192681][T14330] openvswitch: netlink: Invalid MD length 0 for MD type 0
[  287.195773][T14330] openvswitch: netlink: Actions may not be safe on all matching packets
[  287.224963][ T6061] usb 5-1: device descriptor read/64, error -71
[  287.254708][ T1320] usb 9-1: too many configurations: 9, using maximum allowed: 8
[  287.258247][ T1320] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  287.261652][ T1320] usb 9-1: config 0 has no interfaces?
[  287.264663][ T1320] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  287.268154][ T1320] usb 9-1: config 0 has no interfaces?
[  287.270811][ T1320] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  287.274220][ T1320] usb 9-1: config 0 has no interfaces?
[  287.284684][ T1320] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  287.288118][ T1320] usb 9-1: config 0 has no interfaces?
[  287.290811][ T1320] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  287.294316][ T1320] usb 9-1: config 0 has no interfaces?
[  287.296957][ T1320] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  287.300312][ T1320] usb 9-1: config 0 has no interfaces?
[  287.303050][ T1320] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  287.306541][ T1320] usb 9-1: config 0 has no interfaces?
[  287.309220][ T1320] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  287.312578][ T1320] usb 9-1: config 0 has no interfaces?
[  287.316297][ T1320] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  287.319345][ T1320] usb 9-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  287.322147][ T1320] usb 9-1: Product: syz
[  287.323573][ T1320] usb 9-1: Manufacturer: syz
[  287.325696][ T1320] usb 9-1: SerialNumber: syz
[  287.328999][ T1320] usb 9-1: config 0 descriptor??
[  287.334528][ T6061] usb usb5-port1: attempt power cycle
[  287.353181][T14345] netlink: 'syz.3.3215': attribute type 21 has an invalid length.
[  287.355238][T14345] netlink: 128 bytes leftover after parsing attributes in process `syz.3.3215'.
[  287.357474][T14345] netlink: 'syz.3.3215': attribute type 4 has an invalid length.
[  287.359497][T14345] netlink: 'syz.3.3215': attribute type 5 has an invalid length.
[  287.361564][T14345] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3215'.
[  287.464802][T14355] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3217'.
[  287.501637][T14358] FAULT_INJECTION: forcing a failure.
[  287.501637][T14358] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  287.506550][T14358] CPU: 2 UID: 0 PID: 14358 Comm: syz.3.3221 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  287.509166][T14358] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  287.511875][T14358] Call Trace:
[  287.512767][T14358]  <TASK>
[  287.513562][T14358]  dump_stack_lvl+0x16c/0x1f0
[  287.514862][T14358]  should_fail_ex+0x497/0x5b0
[  287.516122][T14358]  _copy_from_user+0x2e/0xd0
[  287.517357][T14358]  copy_msghdr_from_user+0x99/0x160
[  287.518754][T14358]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  287.520310][T14358]  ___sys_sendmsg+0xff/0x1e0
[  287.521562][T14358]  ? __pfx____sys_sendmsg+0x10/0x10
[  287.522957][T14358]  ? __pfx_lock_release+0x10/0x10
[  287.524299][T14358]  ? trace_lock_acquire+0x14a/0x1d0
[  287.525686][T14358]  ? __fget_files+0x206/0x3a0
[  287.526959][T14358]  __sys_sendmsg+0x16e/0x220
[  287.528212][T14358]  ? __pfx___sys_sendmsg+0x10/0x10
[  287.529607][T14358]  do_syscall_64+0xcd/0x250
[  287.530827][T14358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.532423][T14358] RIP: 0033:0x7fa65c77e819
[  287.533621][T14358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  287.538727][   T35] usb 9-1: USB disconnect, device number 32
[  287.538877][T14358] RSP: 002b:00007fa65d524038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  287.543191][T14358] RAX: ffffffffffffffda RBX: 00007fa65c935fa0 RCX: 00007fa65c77e819
[  287.545323][T14358] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[  287.547443][T14358] RBP: 00007fa65d524090 R08: 0000000000000000 R09: 0000000000000000
[  287.549588][T14358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  287.551719][T14358] R13: 0000000000000000 R14: 00007fa65c935fa0 R15: 00007fff735de038
[  287.553839][T14358]  </TASK>
[  287.605593][T14362] mac80211_hwsim hwsim21 syzkaller0: entered promiscuous mode
[  287.607514][T14362] mac80211_hwsim hwsim21 syzkaller0: entered allmulticast mode
[  287.674075][ T6061] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  287.704839][ T6061] usb 5-1: device descriptor read/8, error -71
[  287.954224][ T5953] Bluetooth: hci0: command 0x0401 tx timeout
[  287.956337][ T5303] Bluetooth: hci0: Opcode 0x0401 failed: -110
[  287.974124][ T6061] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  288.004554][ T6061] usb 5-1: device descriptor read/8, error -71
[  288.124077][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  288.128028][ T6061] usb usb5-port1: unable to enumerate USB device
[  288.554176][ T6061] usb 9-1: new high-speed USB device number 33 using dummy_hcd
[  288.567251][T14390] FAULT_INJECTION: forcing a failure.
[  288.567251][T14390] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  288.570751][T14390] CPU: 2 UID: 0 PID: 14390 Comm: syz.2.3236 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  288.573443][T14390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  288.576218][T14390] Call Trace:
[  288.577087][T14390]  <TASK>
[  288.577842][T14390]  dump_stack_lvl+0x16c/0x1f0
[  288.579019][T14390]  should_fail_ex+0x497/0x5b0
[  288.580184][T14390]  _copy_from_user+0x2e/0xd0
[  288.581439][T14390]  do_hidp_sock_ioctl.constprop.0+0x369/0x520
[  288.583074][T14390]  ? __pfx_do_hidp_sock_ioctl.constprop.0+0x10/0x10
[  288.584805][T14390]  ? trace_lock_acquire+0x14a/0x1d0
[  288.586191][T14390]  ? find_held_lock+0x2d/0x110
[  288.587460][T14390]  ? __pfx_avc_has_extended_perms+0x10/0x10
[  288.589037][T14390]  sock_do_ioctl+0x116/0x280
[  288.590278][T14390]  ? __pfx_sock_do_ioctl+0x10/0x10
[  288.591637][T14390]  ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460
[  288.593347][T14390]  ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460
[  288.595063][T14390]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  288.596857][T14390]  sock_ioctl+0x228/0x6c0
[  288.598005][T14390]  ? __pfx_sock_ioctl+0x10/0x10
[  288.599312][T14390]  ? selinux_file_ioctl+0x180/0x270
[  288.600702][T14390]  ? selinux_file_ioctl+0xb4/0x270
[  288.602062][T14390]  ? __pfx_sock_ioctl+0x10/0x10
[  288.603356][T14390]  __x64_sys_ioctl+0x190/0x200
[  288.604617][T14390]  do_syscall_64+0xcd/0x250
[  288.605824][T14390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.607382][T14390] RIP: 0033:0x7f166517e819
[  288.608563][T14390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.613588][T14390] RSP: 002b:00007f1665f20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  288.615776][T14390] RAX: ffffffffffffffda RBX: 00007f1665335fa0 RCX: 00007f166517e819
[  288.617842][T14390] RDX: 0000000020000440 RSI: 00000000400448c8 RDI: 0000000000000008
[  288.619912][T14390] RBP: 00007f1665f20090 R08: 0000000000000000 R09: 0000000000000000
[  288.621985][T14390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  288.624175][T14390] R13: 0000000000000000 R14: 00007f1665335fa0 R15: 00007ffee7f455d8
[  288.626334][T14390]  </TASK>
[  288.714059][ T6061] usb 9-1: Using ep0 maxpacket: 8
[  288.716651][ T6061] usb 9-1: config 0 has no interfaces?
[  288.718266][ T6061] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  288.720620][ T6061] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.723714][ T6061] usb 9-1: config 0 descriptor??
[  288.935010][   T35] usb 9-1: USB disconnect, device number 33
[  289.012690][T14400] netfs: Couldn't get user pages (rc=-14)
[  289.060140][T14402] overlayfs: conflicting options: userxattr,metacopy=on
[  289.080389][T14399] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3239'.
[  289.164095][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  289.324119][   T58] usb 8-1: new high-speed USB device number 26 using dummy_hcd
[  289.475067][   T58] usb 8-1: Using ep0 maxpacket: 8
[  289.485283][   T58] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  289.488084][   T58] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  289.490383][   T58] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.493379][   T58] usb 8-1: config 0 descriptor??
[  289.703163][   T58] iowarrior 8-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  289.771001][T14430] wireguard: wg2: Could not create IPv4 socket
[  289.783822][T14432] FAULT_INJECTION: forcing a failure.
[  289.783822][T14432] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  289.789675][T14432] CPU: 1 UID: 0 PID: 14432 Comm: syz.0.3250 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  289.792920][T14432] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  289.796160][T14432] Call Trace:
[  289.797167][T14432]  <TASK>
[  289.798307][T14432]  dump_stack_lvl+0x16c/0x1f0
[  289.799793][T14432]  should_fail_ex+0x497/0x5b0
[  289.801109][T14432]  _copy_to_user+0x32/0xd0
[  289.802588][T14432]  simple_read_from_buffer+0xd0/0x160
[  289.804495][T14432]  proc_fail_nth_read+0x198/0x270
[  289.805974][T14432]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  289.807659][T14432]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  289.809788][T14432]  vfs_read+0x1df/0xbe0
[  289.811306][T14432]  ? __fget_files+0x1fc/0x3a0
[  289.812767][T14432]  ? __pfx___mutex_lock+0x10/0x10
[  289.814186][T14432]  ? __pfx_vfs_read+0x10/0x10
[  289.815952][T14432]  ? __fget_files+0x206/0x3a0
[  289.817453][T14432]  ksys_read+0x12b/0x250
[  289.819016][T14432]  ? __pfx_ksys_read+0x10/0x10
[  289.820940][T14432]  do_syscall_64+0xcd/0x250
[  289.822802][T14432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.824618][T14432] RIP: 0033:0x7fe950d7d25c
[  289.825782][T14432] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  289.832865][T14432] RSP: 002b:00007fe951acb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  289.835829][T14432] RAX: ffffffffffffffda RBX: 00007fe950f35fa0 RCX: 00007fe950d7d25c
[  289.838290][T14432] RDX: 000000000000000f RSI: 00007fe951acb0a0 RDI: 0000000000000005
[  289.841211][T14432] RBP: 00007fe951acb090 R08: 0000000000000000 R09: 0000000000000000
[  289.843834][T14432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  289.845895][T14432] R13: 0000000000000000 R14: 00007fe950f35fa0 R15: 00007ffc0b79f1e8
[  289.848385][T14432]  </TASK>
[  289.982214][T14440] 9pnet_fd: Insufficient options for proto=fd
[  290.162328][    T9] usb 8-1: USB disconnect, device number 26
[  290.166242][    T9] iowarrior 8-1:0.0: I/O-Warror #0 now disconnected
[  290.194041][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  290.254165][ T1336] usb 9-1: new high-speed USB device number 34 using dummy_hcd
[  290.404136][ T1336] usb 9-1: Using ep0 maxpacket: 8
[  290.407447][ T1336] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  290.410262][ T1336] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  290.413737][ T1336] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  290.417579][ T1336] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  290.421044][ T1336] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  290.426135][ T1336] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  290.429288][ T1336] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  290.639506][ T1336] usb 9-1: GET_CAPABILITIES returned 0
[  290.641196][ T1336] usbtmc 9-1:16.0: can't read capabilities
[  290.750975][   T39] kauditd_printk_skb: 1093 callbacks suppressed
[  290.750991][   T39] audit: type=1400 audit(1732173803.092:1696): avc:  denied  { bind } for  pid=14449 comm="syz.3.3257" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  290.895533][T14445] usbtmc 9-1:16.0: usb_control_msg returned -71
[  290.896283][ T1336] usb 9-1: USB disconnect, device number 34
[  291.244076][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  291.658862][   T39] audit: type=1400 audit(1732173804.002:1697): avc:  denied  { ioctl } for  pid=14508 comm="syz.3.3263" path="socket:[55538]" dev="sockfs" ino=55538 ioctlcmd=0x8b36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  291.696605][T14514] FAULT_INJECTION: forcing a failure.
[  291.696605][T14514] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  291.701180][T14514] CPU: 0 UID: 0 PID: 14514 Comm: syz.4.3265 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  291.701471][T14515] netlink: 'syz.3.3266': attribute type 4 has an invalid length.
[  291.704849][T14514] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  291.704867][T14514] Call Trace:
[  291.704874][T14514]  <TASK>
[  291.704882][T14514]  dump_stack_lvl+0x16c/0x1f0
[  291.704906][T14514]  should_fail_ex+0x497/0x5b0
[  291.704939][T14514]  _copy_from_iter+0x2a1/0x1560
[  291.704971][T14514]  ? __pfx__copy_from_iter+0x10/0x10
[  291.704996][T14514]  ? __virt_addr_valid+0x1a4/0x590
[  291.705023][T14514]  ? __virt_addr_valid+0x5e/0x590
[  291.705047][T14514]  ? __phys_addr_symbol+0x30/0x80
[  291.705069][T14514]  ? __check_object_size+0x488/0x710
[  291.705098][T14514]  netlink_sendmsg+0x813/0xd70
[  291.708592][T14515] __nla_validate_parse: 1 callbacks suppressed
[  291.708606][T14515] netlink: 17 bytes leftover after parsing attributes in process `syz.3.3266'.
[  291.711150][T14514]  ? __pfx_netlink_sendmsg+0x10/0x10
[  291.711177][T14514]  ____sys_sendmsg+0xaaf/0xc90
[  291.711192][T14514]  ? copy_msghdr_from_user+0x10b/0x160
[  291.711203][T14514]  ? __pfx_____sys_sendmsg+0x10/0x10
[  291.734940][T14514]  ___sys_sendmsg+0x135/0x1e0
[  291.736122][T14514]  ? __pfx____sys_sendmsg+0x10/0x10
[  291.737569][T14514]  ? __pfx_lock_release+0x10/0x10
[  291.739356][T14514]  ? trace_lock_acquire+0x14a/0x1d0
[  291.740935][T14514]  ? __fget_files+0x206/0x3a0
[  291.742186][T14514]  __sys_sendmsg+0x16e/0x220
[  291.743408][T14514]  ? __pfx___sys_sendmsg+0x10/0x10
[  291.744796][T14514]  do_syscall_64+0xcd/0x250
[  291.745990][T14514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.747700][T14514] RIP: 0033:0x7f434e97e819
[  291.748898][T14514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  291.753763][T14514] RSP: 002b:00007f434f7db038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  291.755832][T14514] RAX: ffffffffffffffda RBX: 00007f434eb35fa0 RCX: 00007f434e97e819
[  291.758000][T14514] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  291.760807][T14514] RBP: 00007f434f7db090 R08: 0000000000000000 R09: 0000000000000000
[  291.763316][T14514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  291.765357][T14514] R13: 0000000000000000 R14: 00007f434eb35fa0 R15: 00007fff2c78a228
[  291.767472][T14514]  </TASK>
[  291.802981][   T39] audit: type=1400 audit(1732173804.142:1698): avc:  denied  { append } for  pid=14518 comm="syz.4.3268" name="card2" dev="devtmpfs" ino=639 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[  291.940245][   T39] audit: type=1800 audit(1732173804.282:1699): pid=14400 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed comm="syz.2.3239" name="bus" dev="9p" ino=36701871 res=0 errno=0
[  292.284157][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  292.287736][T14531] netlink: 15 bytes leftover after parsing attributes in process `syz.4.3272'.
[  292.308051][T14531] fuse: Unknown parameter ''
[  292.432503][T14542] FAULT_INJECTION: forcing a failure.
[  292.432503][T14542] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  292.437182][T14542] CPU: 3 UID: 0 PID: 14542 Comm: syz.4.3276 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  292.440814][T14542] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  292.444671][T14542] Call Trace:
[  292.445881][T14542]  <TASK>
[  292.446961][T14542]  dump_stack_lvl+0x16c/0x1f0
[  292.448690][T14542]  should_fail_ex+0x497/0x5b0
[  292.450413][T14542]  _copy_from_user+0x2e/0xd0
[  292.452061][T14542]  memdup_user+0x71/0xd0
[  292.453228][T14542]  strndup_user+0x78/0xe0
[  292.454441][T14542]  __x64_sys_mount+0x181/0x320
[  292.456012][T14542]  ? __pfx___x64_sys_mount+0x10/0x10
[  292.457454][T14542]  do_syscall_64+0xcd/0x250
[  292.458704][T14542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.460271][T14542] RIP: 0033:0x7f434e97e819
[  292.461473][T14542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.466543][T14542] RSP: 002b:00007f434f7db038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  292.468914][T14542] RAX: ffffffffffffffda RBX: 00007f434eb35fa0 RCX: 00007f434e97e819
[  292.470989][T14542] RDX: 00000000200000c0 RSI: 0000000020000080 RDI: 0000000020000040
[  292.472991][T14542] RBP: 00007f434f7db090 R08: 0000000000000000 R09: 0000000000000000
[  292.475071][T14542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  292.477034][T14542] R13: 0000000000000000 R14: 00007f434eb35fa0 R15: 00007fff2c78a228
[  292.479462][T14542]  </TASK>
[  292.520201][T14549] netlink: 296 bytes leftover after parsing attributes in process `syz.4.3279'.
[  292.523632][T14549] unsupported nlmsg_type 40
[  292.526915][T14549] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3279'.
[  292.556373][   T39] audit: type=1400 audit(1732173804.902:1700): avc:  denied  { listen } for  pid=14545 comm="syz.3.3278" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  292.591551][T14555] FAULT_INJECTION: forcing a failure.
[  292.591551][T14555] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  292.595175][T14555] CPU: 1 UID: 0 PID: 14555 Comm: syz.2.3271 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  292.597833][T14555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  292.600598][T14555] Call Trace:
[  292.601451][T14555]  <TASK>
[  292.602231][T14555]  dump_stack_lvl+0x16c/0x1f0
[  292.603431][T14555]  should_fail_ex+0x497/0x5b0
[  292.604785][T14555]  _copy_from_user+0x2e/0xd0
[  292.606148][T14555]  arp_ioctl+0x187/0xce0
[  292.607449][T14555]  ? __pfx_arp_ioctl+0x10/0x10
[  292.608747][T14555]  ? avc_has_extended_perms+0x7c9/0xf70
[  292.610404][T14555]  ? __pfx_lock_release+0x10/0x10
[  292.611648][T14555]  ? trace_lock_acquire+0x14a/0x1d0
[  292.613147][T14555]  ? avc_has_extended_perms+0x1f4/0xf70
[  292.614836][T14555]  inet_ioctl+0x365/0x3f0
[  292.615923][T14555]  ? __pfx_inet_ioctl+0x10/0x10
[  292.617281][T14555]  ? __pfx_lock_release+0x10/0x10
[  292.618904][T14555]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  292.620562][T14555]  sock_do_ioctl+0x116/0x280
[  292.621949][T14555]  ? __pfx_sock_do_ioctl+0x10/0x10
[  292.623307][T14555]  ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460
[  292.625268][T14555]  ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460
[  292.627159][T14555]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  292.628934][T14555]  sock_ioctl+0x228/0x6c0
[  292.630021][T14555]  ? __pfx_sock_ioctl+0x10/0x10
[  292.631747][T14555]  ? selinux_file_ioctl+0x180/0x270
[  292.633158][T14555]  ? selinux_file_ioctl+0xb4/0x270
[  292.634485][T14555]  ? __pfx_sock_ioctl+0x10/0x10
[  292.635969][T14555]  __x64_sys_ioctl+0x190/0x200
[  292.637501][T14555]  do_syscall_64+0xcd/0x250
[  292.638969][T14555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.640462][T14555] RIP: 0033:0x7f166517e819
[  292.641985][T14555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.648479][T14555] RSP: 002b:00007f1665f20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  292.651294][T14555] RAX: ffffffffffffffda RBX: 00007f1665335fa0 RCX: 00007f166517e819
[  292.653947][T14555] RDX: 0000000020000040 RSI: 0000000000008955 RDI: 0000000000000003
[  292.656614][T14555] RBP: 00007f1665f20090 R08: 0000000000000000 R09: 0000000000000000
[  292.659306][T14555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  292.661887][T14555] R13: 0000000000000000 R14: 00007f1665335fa0 R15: 00007ffee7f455d8
[  292.664479][T14555]  </TASK>
[  292.691223][T14559] netlink: 48 bytes leftover after parsing attributes in process `syz.4.3282'.
[  292.732937][T14566] FAULT_INJECTION: forcing a failure.
[  292.732937][T14566] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  292.737473][T14566] CPU: 2 UID: 0 PID: 14566 Comm: syz.4.3285 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  292.741017][T14566] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  292.744702][T14566] Call Trace:
[  292.745868][T14566]  <TASK>
[  292.746917][T14566]  dump_stack_lvl+0x16c/0x1f0
[  292.748560][T14566]  should_fail_ex+0x497/0x5b0
[  292.750212][T14566]  _copy_to_user+0x32/0xd0
[  292.751776][T14566]  simple_read_from_buffer+0xd0/0x160
[  292.753609][T14566]  proc_fail_nth_read+0x198/0x270
[  292.755280][T14566]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  292.757088][T14566]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  292.758970][T14566]  vfs_read+0x1df/0xbe0
[  292.760404][T14566]  ? __fget_files+0x1fc/0x3a0
[  292.762071][T14566]  ? __pfx___mutex_lock+0x10/0x10
[  292.763798][T14566]  ? __pfx_vfs_read+0x10/0x10
[  292.765424][T14566]  ? __fget_files+0x206/0x3a0
[  292.767048][T14566]  ksys_read+0x12b/0x250
[  292.768516][T14566]  ? __pfx_ksys_read+0x10/0x10
[  292.770193][T14566]  do_syscall_64+0xcd/0x250
[  292.771760][T14566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.773797][T14566] RIP: 0033:0x7f434e97d25c
[  292.775341][T14566] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  292.781893][T14566] RSP: 002b:00007f434f7db030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  292.784710][T14566] RAX: ffffffffffffffda RBX: 00007f434eb35fa0 RCX: 00007f434e97d25c
[  292.787437][T14566] RDX: 000000000000000f RSI: 00007f434f7db0a0 RDI: 0000000000000004
[  292.790144][T14566] RBP: 00007f434f7db090 R08: 0000000000000000 R09: 0000000000000000
[  292.793030][T14566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  292.795827][T14566] R13: 0000000000000000 R14: 00007f434eb35fa0 R15: 00007fff2c78a228
[  292.798544][T14566]  </TASK>
[  292.941516][T14582] FAULT_INJECTION: forcing a failure.
[  292.941516][T14582] name failslab, interval 1, probability 0, space 0, times 0
[  292.945602][T14582] CPU: 3 UID: 0 PID: 14582 Comm: syz.3.3288 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  292.948504][T14582] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  292.951682][T14582] Call Trace:
[  292.952737][T14582]  <TASK>
[  292.953627][T14582]  dump_stack_lvl+0x16c/0x1f0
[  292.955007][T14582]  should_fail_ex+0x497/0x5b0
[  292.956324][T14582]  ? fs_reclaim_acquire+0xae/0x150
[  292.957788][T14582]  should_failslab+0xc2/0x120
[  292.959333][T14582]  __kmalloc_noprof+0xcb/0x400
[  292.960710][T14582]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  292.962567][T14582]  tomoyo_realpath_from_path+0xb9/0x720
[  292.963996][T14582]  ? tomoyo_path_number_perm+0x235/0x590
[  292.965432][T14582]  tomoyo_path_number_perm+0x248/0x590
[  292.966926][T14582]  ? tomoyo_path_number_perm+0x235/0x590
[  292.969011][T14582]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  292.971251][T14582]  ? __pfx_lock_release+0x10/0x10
[  292.973099][T14582]  ? trace_lock_acquire+0x14a/0x1d0
[  292.975034][T14582]  ? lock_acquire+0x2f/0xb0
[  292.976269][T14582]  ? __fget_files+0x40/0x3a0
[  292.977530][T14582]  ? __fget_files+0x206/0x3a0
[  292.978779][T14582]  security_file_ioctl+0x9b/0x240
[  292.980133][T14582]  __x64_sys_ioctl+0xb7/0x200
[  292.981414][T14582]  do_syscall_64+0xcd/0x250
[  292.982612][T14582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  292.984170][T14582] RIP: 0033:0x7fa65c77e819
[  292.985331][T14582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.990820][T14582] RSP: 002b:00007fa65d503038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  292.993233][T14582] RAX: ffffffffffffffda RBX: 00007fa65c936080 RCX: 00007fa65c77e819
[  292.995353][T14582] RDX: 0000000020001100 RSI: 00000000401c5820 RDI: 0000000000000004
[  292.997453][T14582] RBP: 00007fa65d503090 R08: 0000000000000000 R09: 0000000000000000
[  292.999520][T14582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.001593][T14582] R13: 0000000000000000 R14: 00007fa65c936080 R15: 00007fff735de038
[  293.003675][T14582]  </TASK>
[  293.006150][T14587] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3290'.
[  293.007640][T14582] ERROR: Out of memory at tomoyo_realpath_from_path.
[  293.059951][T14593] fuse: Unknown parameter 'd'
[  293.110685][T14597] FAULT_INJECTION: forcing a failure.
[  293.110685][T14597] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  293.116182][T14597] CPU: 2 UID: 0 PID: 14597 Comm: syz.4.3295 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  293.120044][T14597] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  293.123707][T14597] Call Trace:
[  293.124894][T14597]  <TASK>
[  293.125917][T14597]  dump_stack_lvl+0x16c/0x1f0
[  293.127267][T14597]  should_fail_ex+0x497/0x5b0
[  293.128424][T14597]  _copy_from_iter+0x2a1/0x1560
[  293.129780][T14597]  ? __pfx__copy_from_iter+0x10/0x10
[  293.131149][T14597]  ? __virt_addr_valid+0x1a4/0x590
[  293.132403][T14597]  ? __virt_addr_valid+0x5e/0x590
[  293.133665][T14597]  ? __phys_addr_symbol+0x30/0x80
[  293.134952][T14597]  ? __check_object_size+0x488/0x710
[  293.136416][T14597]  netlink_sendmsg+0x813/0xd70
[  293.138111][T14597]  ? __pfx_netlink_sendmsg+0x10/0x10
[  293.139966][T14597]  ____sys_sendmsg+0xaaf/0xc90
[  293.141749][T14597]  ? copy_msghdr_from_user+0x10b/0x160
[  293.143350][T14597]  ? __pfx_____sys_sendmsg+0x10/0x10
[  293.144793][T14597]  ___sys_sendmsg+0x135/0x1e0
[  293.145988][T14597]  ? __pfx____sys_sendmsg+0x10/0x10
[  293.147372][T14597]  ? __pfx_lock_release+0x10/0x10
[  293.148752][T14597]  ? trace_lock_acquire+0x14a/0x1d0
[  293.150389][T14597]  ? __fget_files+0x206/0x3a0
[  293.151719][T14597]  __sys_sendmsg+0x16e/0x220
[  293.153049][T14597]  ? __pfx___sys_sendmsg+0x10/0x10
[  293.154519][T14597]  do_syscall_64+0xcd/0x250
[  293.155838][T14597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.157532][T14597] RIP: 0033:0x7f434e97e819
[  293.158872][T14597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.164083][T14597] RSP: 002b:00007f434f7db038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  293.166336][T14597] RAX: ffffffffffffffda RBX: 00007f434eb35fa0 RCX: 00007f434e97e819
[  293.168677][T14597] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[  293.170979][T14597] RBP: 00007f434f7db090 R08: 0000000000000000 R09: 0000000000000000
[  293.173030][T14597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.175503][T14597] R13: 0000000000000000 R14: 00007f434eb35fa0 R15: 00007fff2c78a228
[  293.177602][T14597]  </TASK>
[  293.178812][T14606] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  293.214759][T14608] FAULT_INJECTION: forcing a failure.
[  293.214759][T14608] name failslab, interval 1, probability 0, space 0, times 0
[  293.216237][T14614] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  293.218475][T14608] CPU: 2 UID: 0 PID: 14608 Comm: syz.4.3300 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  293.218494][T14608] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  293.218501][T14608] Call Trace:
[  293.218505][T14608]  <TASK>
[  293.218510][T14608]  dump_stack_lvl+0x16c/0x1f0
[  293.218524][T14608]  should_fail_ex+0x497/0x5b0
[  293.218539][T14608]  ? lock_acquire.part.0+0x11b/0x380
[  293.218552][T14608]  should_failslab+0xc2/0x120
[  293.232649][T14608]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  293.234086][T14608]  ? dst_alloc+0x99/0x1a0
[  293.235228][T14608]  ? trace_lock_acquire+0x14a/0x1d0
[  293.236583][T14608]  ? __pfx_ip6_dst_gc+0x10/0x10
[  293.237859][T14608]  dst_alloc+0x99/0x1a0
[  293.238963][T14608]  ip6_dst_alloc+0x2c/0x90
[  293.240132][T14608]  ip6_pol_route+0x956/0x1120
[  293.241373][T14608]  ? __pfx_ip6_pol_route+0x10/0x10
[  293.242749][T14608]  ? ip6t_do_table+0xd50/0x1d40
[  293.244029][T14608]  ? __pfx_ip6_pol_route_input+0x10/0x10
[  293.245501][T14608]  fib6_rule_lookup+0x536/0x720
[  293.246804][T14608]  ? ip6t_do_table+0xd50/0x1d40
[  293.248081][T14608]  ? __pfx_fib6_rule_lookup+0x10/0x10
[  293.249473][T14608]  ? nf_nat_ipv6_fn+0x103/0x2e0
[  293.250758][T14608]  ? inet6_ehashfn+0x89/0x510
[  293.251996][T14608]  ? __pfx_inet6_ehashfn+0x10/0x10
[  293.253353][T14608]  ip6_route_input+0x663/0xc10
[  293.254810][T14608]  ? __pfx_ip6_route_input+0x10/0x10
[  293.256405][T14608]  ? __pfx_lock_release+0x10/0x10
[  293.257897][T14608]  ? __pfx___inet6_lookup_established+0x10/0x10
[  293.259677][T14608]  ? tcp_v6_early_demux+0x40a/0xb40
[  293.261076][T14608]  ip6_rcv_finish_core.constprop.0+0x1a0/0x5d0
[  293.262739][T14608]  ipv6_rcv+0x1e4/0x680
[  293.263847][T14608]  ? __pfx_ipv6_rcv+0x10/0x10
[  293.265085][T14608]  __netif_receive_skb_one_core+0x12e/0x1e0
[  293.266780][T14608]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  293.268440][T14608]  ? trace_lock_acquire+0x14a/0x1d0
[  293.269794][T14608]  ? ktime_get_with_offset+0x273/0x3a0
[  293.271219][T14608]  ? netif_receive_skb+0x109/0x7b0
[  293.272554][T14608]  __netif_receive_skb+0x1d/0x160
[  293.273872][T14608]  netif_receive_skb+0x13f/0x7b0
[  293.275231][T14608]  ? __pfx_netif_receive_skb+0x10/0x10
[  293.276679][T14608]  ? __pfx___lock_acquire+0x10/0x10
[  293.278059][T14608]  tun_rx_batched+0x429/0x780
[  293.279293][T14608]  ? __pfx_tun_rx_batched+0x10/0x10
[  293.280668][T14608]  ? lock_acquire+0x2f/0xb0
[  293.281862][T14608]  ? tun_get_user+0x13c9/0x3d80
[  293.283148][T14608]  tun_get_user+0x2a4d/0x3d80
[  293.284388][T14608]  ? find_held_lock+0x2d/0x110
[  293.285792][T14608]  ? __pfx_tun_get_user+0x10/0x10
[  293.287183][T14608]  ? find_held_lock+0x2d/0x110
[  293.288472][T14608]  ? __pfx_lock_release+0x10/0x10
[  293.289825][T14608]  tun_chr_write_iter+0xdc/0x210
[  293.291230][T14608]  vfs_write+0x5ae/0x1150
[  293.292368][T14608]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  293.293823][T14608]  ? trace_lock_acquire+0x14a/0x1d0
[  293.295199][T14608]  ? __pfx_vfs_write+0x10/0x10
[  293.296551][T14608]  ? __fget_files+0x40/0x3a0
[  293.297768][T14608]  ksys_write+0x12b/0x250
[  293.298912][T14608]  ? __pfx_ksys_write+0x10/0x10
[  293.300193][T14608]  do_syscall_64+0xcd/0x250
[  293.301404][T14608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.302953][T14608] RIP: 0033:0x7f434e97d2ff
[  293.304121][T14608] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  293.309262][T14608] RSP: 002b:00007f434f7db000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  293.311480][T14608] RAX: ffffffffffffffda RBX: 00007f434eb35fa0 RCX: 00007f434e97d2ff
[  293.313521][T14608] RDX: 000000000000008a RSI: 0000000020000040 RDI: 00000000000000c8
[  293.315809][T14608] RBP: 00007f434f7db090 R08: 0000000000000000 R09: 0000000000000000
[  293.317914][T14608] R10: 000000000000008a R11: 0000000000000293 R12: 0000000000000001
[  293.319905][T14608] R13: 0000000000000000 R14: 00007f434eb35fa0 R15: 00007fff2c78a228
[  293.321936][T14608]  </TASK>
[  293.324050][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  293.376242][T14629] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3310'.
[  293.407564][T14631] fuse: Bad value for 'fd'
[  293.425626][T14631] ax25_connect(): syz.4.3312 uses autobind, please contact jreuter@yaina.de
[  293.427161][   T39] audit: type=1400 audit(1732173805.772:1701): avc:  denied  { connect } for  pid=14630 comm="syz.4.3312" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  293.556532][T14641] Illegal XDP return value 4294967274 on prog  (id 237) dev syz_tun, expect packet loss!
[  293.565718][T14641] input: syz1 as /devices/virtual/input/input44
[  293.614997][T14657] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3323'.
[  293.620338][T14659] FAULT_INJECTION: forcing a failure.
[  293.620338][T14659] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  293.623776][T14659] CPU: 1 UID: 0 PID: 14659 Comm: syz.3.3324 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  293.626424][T14659] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  293.629181][T14659] Call Trace:
[  293.630073][T14659]  <TASK>
[  293.630860][T14659]  dump_stack_lvl+0x16c/0x1f0
[  293.631130][T14661] netlink: 92 bytes leftover after parsing attributes in process `syz.0.3325'.
[  293.632031][T14659]  should_fail_ex+0x497/0x5b0
[  293.635563][T14659]  _copy_from_iter+0x2a1/0x1560
[  293.636850][T14659]  ? __pfx__copy_from_iter+0x10/0x10
[  293.638242][T14659]  ? __virt_addr_valid+0x1a4/0x590
[  293.639585][T14659]  ? __virt_addr_valid+0x5e/0x590
[  293.640949][T14659]  ? __phys_addr_symbol+0x30/0x80
[  293.642285][T14659]  ? __check_object_size+0x488/0x710
[  293.643644][T14659]  netlink_sendmsg+0x813/0xd70
[  293.644888][T14659]  ? __pfx_netlink_sendmsg+0x10/0x10
[  293.646287][T14659]  ? avc_has_perm_noaudit+0x143/0x3a0
[  293.647715][T14659]  sock_write_iter+0x4fe/0x5b0
[  293.648977][T14659]  ? __pfx_sock_write_iter+0x10/0x10
[  293.650372][T14659]  ? __pfx_file_has_perm+0x10/0x10
[  293.651719][T14659]  do_iter_readv_writev+0x532/0x7f0
[  293.652957][T14659]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  293.654452][T14659]  ? bpf_lsm_file_permission+0x9/0x10
[  293.655877][T14659]  ? security_file_permission+0x71/0x210
[  293.657345][T14659]  vfs_writev+0x363/0xdd0
[  293.658518][T14659]  ? find_held_lock+0x2d/0x110
[  293.659780][T14659]  ? __pfx_vfs_writev+0x10/0x10
[  293.661066][T14659]  ? find_held_lock+0x2d/0x110
[  293.662346][T14659]  ? __pfx_lock_release+0x10/0x10
[  293.663674][T14659]  ? trace_lock_acquire+0x14a/0x1d0
[  293.665043][T14659]  ? __fget_files+0x206/0x3a0
[  293.666295][T14659]  ? do_writev+0x297/0x340
[  293.667462][T14659]  do_writev+0x297/0x340
[  293.668581][T14659]  ? __pfx_do_writev+0x10/0x10
[  293.669837][T14659]  do_syscall_64+0xcd/0x250
[  293.671061][T14659]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.672617][T14659] RIP: 0033:0x7fa65c77e819
[  293.673785][T14659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.678783][T14659] RSP: 002b:00007fa65d524038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  293.681001][T14659] RAX: ffffffffffffffda RBX: 00007fa65c935fa0 RCX: 00007fa65c77e819
[  293.683100][T14659] RDX: 0000000000000001 RSI: 0000000020000140 RDI: 0000000000000009
[  293.685176][T14659] RBP: 00007fa65d524090 R08: 0000000000000000 R09: 0000000000000000
[  293.687266][T14659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.689332][T14659] R13: 0000000000000000 R14: 00007fa65c935fa0 R15: 00007fff735de038
[  293.691408][T14659]  </TASK>
[  293.715510][T14664] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3326'.
[  293.776423][T14678] FAULT_INJECTION: forcing a failure.
[  293.776423][T14678] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  293.780793][T14678] CPU: 3 UID: 0 PID: 14678 Comm: syz.2.3331 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  293.783382][T14678] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  293.786373][T14678] Call Trace:
[  293.787430][T14678]  <TASK>
[  293.788184][T14678]  dump_stack_lvl+0x16c/0x1f0
[  293.789627][T14678]  should_fail_ex+0x497/0x5b0
[  293.790836][T14678]  _copy_to_user+0x32/0xd0
[  293.792214][T14678]  simple_read_from_buffer+0xd0/0x160
[  293.793857][T14678]  proc_fail_nth_read+0x198/0x270
[  293.795542][T14678]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  293.797087][T14678]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  293.799025][T14678]  vfs_read+0x1df/0xbe0
[  293.800335][T14678]  ? __fget_files+0x1fc/0x3a0
[  293.801602][T14678]  ? __pfx___mutex_lock+0x10/0x10
[  293.803159][T14678]  ? __pfx_vfs_read+0x10/0x10
[  293.804448][T14678]  ? __fget_files+0x206/0x3a0
[  293.805735][T14678]  ksys_read+0x12b/0x250
[  293.806909][T14678]  ? __pfx_ksys_read+0x10/0x10
[  293.808251][T14678]  do_syscall_64+0xcd/0x250
[  293.809474][T14678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.811075][T14678] RIP: 0033:0x7f166517d25c
[  293.812291][T14678] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  293.817362][T14678] RSP: 002b:00007f1665f20030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  293.819573][T14678] RAX: ffffffffffffffda RBX: 00007f1665335fa0 RCX: 00007f166517d25c
[  293.821512][T14678] RDX: 000000000000000f RSI: 00007f1665f200a0 RDI: 0000000000000006
[  293.823561][T14678] RBP: 00007f1665f20090 R08: 0000000000000000 R09: 0000000000000000
[  293.825527][T14678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.827629][T14678] R13: 0000000000000000 R14: 00007f1665335fa0 R15: 00007ffee7f455d8
[  293.829721][T14678]  </TASK>
[  293.906941][T14694] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  293.941761][T14700] overlayfs: failed to resolve './file1': -2
[  293.971900][T14705] FAULT_INJECTION: forcing a failure.
[  293.971900][T14705] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  293.979462][T14705] CPU: 2 UID: 0 PID: 14705 Comm: syz.3.3341 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  293.983252][T14705] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  293.987131][T14705] Call Trace:
[  293.988336][T14705]  <TASK>
[  293.989403][T14705]  dump_stack_lvl+0x16c/0x1f0
[  293.991133][T14705]  should_fail_ex+0x497/0x5b0
[  293.992806][T14705]  _copy_from_iter+0x2a1/0x1560
[  293.994558][T14705]  ? __pfx__copy_from_iter+0x10/0x10
[  293.996006][T14705]  ? __virt_addr_valid+0x1a4/0x590
[  293.997340][T14705]  ? __virt_addr_valid+0x5e/0x590
[  293.998640][T14705]  ? __phys_addr_symbol+0x30/0x80
[  293.999957][T14705]  ? __check_object_size+0x488/0x710
[  294.001378][T14705]  netlink_sendmsg+0x813/0xd70
[  294.003042][T14705]  ? __pfx_netlink_sendmsg+0x10/0x10
[  294.004437][T14705]  ____sys_sendmsg+0xaaf/0xc90
[  294.005920][T14705]  ? copy_msghdr_from_user+0x10b/0x160
[  294.007632][T14705]  ? __pfx_____sys_sendmsg+0x10/0x10
[  294.009568][T14705]  ___sys_sendmsg+0x135/0x1e0
[  294.011328][T14705]  ? __pfx____sys_sendmsg+0x10/0x10
[  294.013267][T14705]  ? __pfx_lock_release+0x10/0x10
[  294.015141][T14705]  ? trace_lock_acquire+0x14a/0x1d0
[  294.017108][T14705]  ? __fget_files+0x206/0x3a0
[  294.018796][T14705]  __sys_sendmsg+0x16e/0x220
[  294.020435][T14705]  ? __pfx___sys_sendmsg+0x10/0x10
[  294.022261][T14705]  do_syscall_64+0xcd/0x250
[  294.023855][T14705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.025925][T14705] RIP: 0033:0x7fa65c77e819
[  294.027494][T14705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  294.032231][T14705] RSP: 002b:00007fa65d524038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  294.034279][T14705] RAX: ffffffffffffffda RBX: 00007fa65c935fa0 RCX: 00007fa65c77e819
[  294.036322][T14705] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  294.036395][   T39] audit: type=1400 audit(1732173806.382:1702): avc:  denied  { setopt } for  pid=14706 comm="syz.4.3342" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  294.038213][T14705] RBP: 00007fa65d524090 R08: 0000000000000000 R09: 0000000000000000
[  294.038226][T14705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  294.038233][T14705] R13: 0000000000000000 R14: 00007fa65c935fa0 R15: 00007fff735de038
[  294.038246][T14705]  </TASK>
[  294.317309][    C3] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  294.354106][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  294.414115][ T6674] usb 8-1: new high-speed USB device number 27 using dummy_hcd
[  294.567292][ T6674] usb 8-1: Using ep0 maxpacket: 32
[  294.571950][ T6674] usb 8-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  294.574425][ T6674] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  294.576476][ T6674] usb 8-1: Product: syz
[  294.577645][ T6674] usb 8-1: Manufacturer: syz
[  294.578903][ T6674] usb 8-1: SerialNumber: syz
[  294.581184][ T6674] usb 8-1: config 0 descriptor??
[  294.635272][T14729] FAULT_INJECTION: forcing a failure.
[  294.635272][T14729] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  294.638920][T14729] CPU: 0 UID: 0 PID: 14729 Comm: syz.0.3350 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  294.641880][T14729] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  294.644757][T14729] Call Trace:
[  294.645627][T14729]  <TASK>
[  294.646417][T14729]  dump_stack_lvl+0x16c/0x1f0
[  294.647838][T14729]  should_fail_ex+0x497/0x5b0
[  294.649117][T14729]  _copy_to_user+0x32/0xd0
[  294.650346][T14729]  simple_read_from_buffer+0xd0/0x160
[  294.651911][T14729]  proc_fail_nth_read+0x198/0x270
[  294.653231][T14729]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  294.654734][T14729]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  294.656165][T14729]  vfs_read+0x1df/0xbe0
[  294.657480][T14729]  ? __fget_files+0x1fc/0x3a0
[  294.658736][T14729]  ? __pfx___mutex_lock+0x10/0x10
[  294.660045][T14729]  ? __pfx_vfs_read+0x10/0x10
[  294.661350][T14729]  ? __fget_files+0x206/0x3a0
[  294.662604][T14729]  ksys_read+0x12b/0x250
[  294.663739][T14729]  ? __pfx_ksys_read+0x10/0x10
[  294.665399][T14729]  do_syscall_64+0xcd/0x250
[  294.667009][T14729]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.668550][T14729] RIP: 0033:0x7fe950d7d25c
[  294.669720][T14729] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  294.674856][T14729] RSP: 002b:00007fe951acb030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  294.677012][T14729] RAX: ffffffffffffffda RBX: 00007fe950f35fa0 RCX: 00007fe950d7d25c
[  294.679072][T14729] RDX: 000000000000000f RSI: 00007fe951acb0a0 RDI: 0000000000000007
[  294.681192][T14729] RBP: 00007fe951acb090 R08: 0000000000000000 R09: 0000000000000000
[  294.683263][T14729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  294.685830][T14729] R13: 0000000000000000 R14: 00007fe950f35fa0 R15: 00007ffc0b79f1e8
[  294.688195][T14729]  </TASK>
[  294.888092][T14735] FAULT_INJECTION: forcing a failure.
[  294.888092][T14735] name failslab, interval 1, probability 0, space 0, times 0
[  294.892055][T14735] CPU: 1 UID: 0 PID: 14735 Comm: syz.4.3353 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  294.895451][T14735] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  294.899086][T14735] Call Trace:
[  294.900319][T14735]  <TASK>
[  294.901400][T14735]  dump_stack_lvl+0x16c/0x1f0
[  294.903120][T14735]  should_fail_ex+0x497/0x5b0
[  294.904490][T14735]  ? fs_reclaim_acquire+0xae/0x150
[  294.905817][T14735]  should_failslab+0xc2/0x120
[  294.907061][T14735]  kmem_cache_alloc_node_noprof+0x71/0x310
[  294.908573][T14735]  ? __alloc_skb+0x2b1/0x380
[  294.909772][T14735]  __alloc_skb+0x2b1/0x380
[  294.910970][T14735]  ? __pfx___alloc_skb+0x10/0x10
[  294.912513][T14735]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  294.914082][T14735]  netlink_alloc_large_skb+0x69/0x130
[  294.915938][T14735]  netlink_sendmsg+0x689/0xd70
[  294.917325][T14735]  ? __pfx_netlink_sendmsg+0x10/0x10
[  294.918724][T14735]  ____sys_sendmsg+0xaaf/0xc90
[  294.920158][T14735]  ? copy_msghdr_from_user+0x10b/0x160
[  294.921855][T14735]  ? __pfx_____sys_sendmsg+0x10/0x10
[  294.923885][T14735]  ___sys_sendmsg+0x135/0x1e0
[  294.925592][T14735]  ? __pfx____sys_sendmsg+0x10/0x10
[  294.926986][T14735]  ? __pfx_lock_release+0x10/0x10
[  294.928318][T14735]  ? trace_lock_acquire+0x14a/0x1d0
[  294.929681][T14735]  ? __fget_files+0x206/0x3a0
[  294.930938][T14735]  __sys_sendmsg+0x16e/0x220
[  294.932263][T14735]  ? __pfx___sys_sendmsg+0x10/0x10
[  294.933565][T14735]  do_syscall_64+0xcd/0x250
[  294.934731][T14735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  294.936220][T14735] RIP: 0033:0x7f434e97e819
[  294.937404][T14735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  294.942787][T14735] RSP: 002b:00007f434f7db038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  294.944995][T14735] RAX: ffffffffffffffda RBX: 00007f434eb35fa0 RCX: 00007f434e97e819
[  294.947069][T14735] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[  294.949158][T14735] RBP: 00007f434f7db090 R08: 0000000000000000 R09: 0000000000000000
[  294.951207][T14735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  294.953283][T14735] R13: 0000000000000000 R14: 00007f434eb35fa0 R15: 00007fff2c78a228
[  294.955403][T14735]  </TASK>
[  294.956319][ T1336] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  294.990201][ T6674] airspy 8-1:0.0: usb_control_msg() failed -71 request 0a
[  294.992051][ T6674] airspy 8-1:0.0: Could not detect board
[  294.993598][ T6674] airspy 8-1:0.0: probe with driver airspy failed with error -71
[  294.997104][ T6674] usb 8-1: USB disconnect, device number 27
[  295.112217][ T1336] usb 5-1: too many configurations: 9, using maximum allowed: 8
[  295.115128][ T1336] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.117869][ T1336] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  295.120186][ T1336] usb 5-1: config 0 interface 0 has no altsetting 0
[  295.123347][ T1336] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.126184][ T1336] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  295.128485][ T1336] usb 5-1: config 0 interface 0 has no altsetting 0
[  295.130933][ T1336] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.133758][ T1336] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  295.136183][ T1336] usb 5-1: config 0 interface 0 has no altsetting 0
[  295.138621][ T1336] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.141274][ T1336] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  295.143641][ T1336] usb 5-1: config 0 interface 0 has no altsetting 0
[  295.146185][ T1336] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.148810][ T1336] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  295.151101][ T1336] usb 5-1: config 0 interface 0 has no altsetting 0
[  295.153837][ T1336] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.156791][ T1336] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  295.159144][ T1336] usb 5-1: config 0 interface 0 has no altsetting 0
[  295.161590][ T1336] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.164824][ T1336] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  295.167318][ T1336] usb 5-1: config 0 interface 0 has no altsetting 0
[  295.170526][ T1336] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.173190][ T1336] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  295.175610][ T1336] usb 5-1: config 0 interface 0 has no altsetting 0
[  295.180566][ T1336] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  295.191447][ T1336] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  295.193845][ T1336] usb 5-1: Product: syz
[  295.195102][ T1336] usb 5-1: Manufacturer: syz
[  295.196310][ T1336] usb 5-1: SerialNumber: syz
[  295.200221][ T1336] usb 5-1: config 0 descriptor??
[  295.207411][ T1336] yurex 5-1:0.0: Could not find endpoints
[  295.227864][T14749] netlink: 'syz.2.3357': attribute type 1 has an invalid length.
[  295.230084][T14749] netlink: 'syz.2.3357': attribute type 4 has an invalid length.
[  295.376451][T14764] FAULT_INJECTION: forcing a failure.
[  295.376451][T14764] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  295.380777][T14764] CPU: 2 UID: 0 PID: 14764 Comm: syz.2.3362 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  295.384420][T14764] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  295.388709][T14764] Call Trace:
[  295.389703][T14764]  <TASK>
[  295.390857][T14764]  dump_stack_lvl+0x16c/0x1f0
[  295.392484][T14764]  should_fail_ex+0x497/0x5b0
[  295.393832][T14764]  _copy_from_iter+0x2a1/0x1560
[  295.395317][T14764]  ? __pfx__copy_from_iter+0x10/0x10
[  295.397172][T14764]  ? __virt_addr_valid+0x1a4/0x590
[  295.398655][T14764]  ? __virt_addr_valid+0x5e/0x590
[  295.400199][T14764]  ? __phys_addr_symbol+0x30/0x80
[  295.401880][T14764]  ? __check_object_size+0x488/0x710
[  295.403363][T14764]  netlink_sendmsg+0x813/0xd70
[  295.404680][T14764]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.406721][T14764]  ____sys_sendmsg+0xaaf/0xc90
[  295.408514][T14764]  ? copy_msghdr_from_user+0x10b/0x160
[  295.410041][T14764]  ? __pfx_____sys_sendmsg+0x10/0x10
[  295.410586][ T6021] usb 5-1: USB disconnect, device number 35
[  295.411934][T14764]  ? __lock_acquire+0xcc5/0x3c40
[  295.411971][T14764]  ___sys_sendmsg+0x135/0x1e0
[  295.416884][T14764]  ? __pfx____sys_sendmsg+0x10/0x10
[  295.418782][T14764]  ? trace_lock_acquire+0x14a/0x1d0
[  295.420748][T14764]  __sys_sendmmsg+0x201/0x420
[  295.422579][T14764]  ? __pfx___sys_sendmmsg+0x10/0x10
[  295.424287][T14764]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  295.425954][T14764]  ? fput+0x67/0x440
[  295.426985][T14764]  ? ksys_write+0x1ba/0x250
[  295.428229][T14764]  ? __pfx_ksys_write+0x10/0x10
[  295.429553][T14764]  __x64_sys_sendmmsg+0x9c/0x100
[  295.430894][T14764]  ? lockdep_hardirqs_on+0x7c/0x110
[  295.432399][T14764]  do_syscall_64+0xcd/0x250
[  295.434035][T14764]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.434277][    C3] IPVS: fo: UDP 224.0.0.2:0 - no destination available
[  295.435819][T14764] RIP: 0033:0x7f166517e819
[  295.435836][T14764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  295.435852][T14764] RSP: 002b:00007f1665f20038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  295.446882][T14764] RAX: ffffffffffffffda RBX: 00007f1665335fa0 RCX: 00007f166517e819
[  295.448961][T14764] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000004
[  295.451046][T14764] RBP: 00007f1665f20090 R08: 0000000000000000 R09: 0000000000000000
[  295.453076][T14764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  295.455133][T14764] R13: 0000000000000000 R14: 00007f1665335fa0 R15: 00007ffee7f455d8
[  295.457180][T14764]  </TASK>
[  295.554138][ T5303] Bluetooth: hci0: command 0x0401 tx timeout
[  295.797365][T14776] FAULT_INJECTION: forcing a failure.
[  295.797365][T14776] name failslab, interval 1, probability 0, space 0, times 0
[  295.800977][T14776] CPU: 2 UID: 0 PID: 14776 Comm: syz.3.3365 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  295.803658][T14776] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  295.806438][T14776] Call Trace:
[  295.807358][T14776]  <TASK>
[  295.808151][T14776]  dump_stack_lvl+0x16c/0x1f0
[  295.809413][T14776]  should_fail_ex+0x497/0x5b0
[  295.810659][T14776]  ? fs_reclaim_acquire+0xae/0x150
[  295.811977][T14776]  should_failslab+0xc2/0x120
[  295.813217][T14776]  __kmalloc_cache_noprof+0x6b/0x300
[  295.814613][T14776]  ? do_raw_spin_lock+0x12d/0x2c0
[  295.815930][T14776]  ? netfs_buffer_make_space+0x432/0x6b0
[  295.817394][T14776]  netfs_buffer_make_space+0x432/0x6b0
[  295.819075][T14776]  netfs_buffer_append_folio+0x298/0x360
[  295.821127][T14776]  netfs_write_folio+0x540/0x1930
[  295.822995][T14776]  netfs_writepages+0x29a/0x9d0
[  295.824464][T14776]  ? __pfx_netfs_writepages+0x10/0x10
[  295.825790][T14776]  ? __pfx___lock_acquire+0x10/0x10
[  295.827097][T14776]  ? hlock_class+0x4e/0x130
[  295.828388][T14776]  ? __pfx_netfs_writepages+0x10/0x10
[  295.829813][T14776]  do_writepages+0x1b3/0x820
[  295.831057][T14776]  ? __pfx_do_writepages+0x10/0x10
[  295.832422][T14776]  ? wbc_attach_fdatawrite_inode+0x13a/0x190
[  295.833991][T14776]  ? __pfx_lock_release+0x10/0x10
[  295.835326][T14776]  ? do_raw_spin_lock+0x12d/0x2c0
[  295.836644][T14776]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  295.838057][T14776]  ? lock_acquire+0x2f/0xb0
[  295.839230][T14776]  ? wbc_attach_fdatawrite_inode+0x24/0x190
[  295.840755][T14776]  ? do_raw_spin_unlock+0x172/0x230
[  295.842134][T14776]  filemap_fdatawrite_wbc+0x104/0x160
[  295.843695][T14776]  __filemap_fdatawrite_range+0xb3/0xf0
[  295.845070][T14776]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  295.846888][T14776]  ? v9fs_fid_lookup+0xe9/0xec0
[  295.848253][T14776]  v9fs_vfs_setattr+0x93a/0xab0
[  295.849513][T14776]  ? __pfx_v9fs_vfs_setattr+0x10/0x10
[  295.851011][T14776]  ? selinux_inode_setattr+0x246/0x400
[  295.852621][T14776]  ? evm_inode_setattr+0x65/0x680
[  295.853893][T14776]  ? __pfx_make_vfsgid+0x10/0x10
[  295.855272][T14776]  ? __pfx_v9fs_vfs_setattr+0x10/0x10
[  295.856592][T14776]  notify_change+0x6a6/0x1230
[  295.857828][T14776]  vfs_utimes+0x41d/0x850
[  295.858938][T14776]  ? __pfx_vfs_utimes+0x10/0x10
[  295.860129][T14776]  ? putname+0x13c/0x180
[  295.861180][T14776]  __x64_sys_utime+0x1e3/0x2c0
[  295.862449][T14776]  ? __pfx___x64_sys_utime+0x10/0x10
[  295.863747][T14776]  ? ksys_write+0x1ba/0x250
[  295.864849][T14776]  do_syscall_64+0xcd/0x250
[  295.865985][T14776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.867490][T14776] RIP: 0033:0x7fa65c77e819
[  295.868603][T14776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  295.873420][T14776] RSP: 002b:00007fa65d503038 EFLAGS: 00000246 ORIG_RAX: 0000000000000084
[  295.875504][T14776] RAX: ffffffffffffffda RBX: 00007fa65c936080 RCX: 00007fa65c77e819
[  295.877482][T14776] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020003000
[  295.879490][T14776] RBP: 00007fa65d503090 R08: 0000000000000000 R09: 0000000000000000
[  295.881461][T14776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  295.884156][T14776] R13: 0000000000000001 R14: 00007fa65c936080 R15: 00007fff735de038
[  295.886296][T14776]  </TASK>
[  295.890119][T14776] ------------[ cut here ]------------
[  295.891546][T14776] WARNING: CPU: 2 PID: 14776 at lib/iov_iter.c:255 _copy_from_iter+0x3a0/0x1560
[  295.894133][T14776] Modules linked in:
[  295.895585][T14776] CPU: 2 UID: 0 PID: 14776 Comm: syz.3.3365 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  295.899299][T14776] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  295.901978][T14776] RIP: 0010:_copy_from_iter+0x3a0/0x1560
[  295.903953][T14776] Code: 5f fd 0f 01 cb 48 89 d9 4c 89 f7 48 89 ee f3 a4 0f 1f 00 48 89 cd 0f 01 ca 49 89 df 49 29 cf e9 1e ff ff ff e8 01 66 fd fc 90 <0f> 0b 90 e9 ae fd ff ff e8 f3 65 fd fc 89 ee bf 01 00 00 00 e8 c7
[  295.910251][T14776] RSP: 0018:ffffc90005c0ef08 EFLAGS: 00010293
[  295.911703][T14776] RAX: 0000000000000000 RBX: 0000000000007fec RCX: ffffffff849032f8
[  295.913728][T14776] RDX: ffff888027d12440 RSI: ffffffff849035df RDI: 0000000000000001
[  295.915877][T14776] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  295.917953][T14776] R10: 0000000000000000 R11: 0000000000000003 R12: ffff8880587236e0
[  295.920029][T14776] R13: ffffc90005c0f2f8 R14: ffff8880587236e0 R15: dffffc0000000000
[  295.922148][T14776] FS:  00007fa65d5036c0(0000) GS:ffff88806a800000(0000) knlGS:0000000000000000
[  295.925334][T14776] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  295.927697][T14776] CR2: 00007fa65d502f98 CR3: 000000002f680000 CR4: 0000000000352ef0
[  295.930354][T14776] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  295.932837][T14776] DR3: 00000000e08e000e DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  295.935609][T14776] Call Trace:
[  295.936706][T14776]  <TASK>
[  295.937653][T14776]  ? __warn+0xea/0x3d0
[  295.938960][T14776]  ? _copy_from_iter+0x3a0/0x1560
[  295.940594][T14776]  ? report_bug+0x3c0/0x580
[  295.942091][T14776]  ? handle_bug+0x54/0xa0
[  295.943481][T14776]  ? exc_invalid_op+0x17/0x50
[  295.945117][T14776]  ? asm_exc_invalid_op+0x1a/0x20
[  295.946830][T14776]  ? _copy_from_iter+0xb8/0x1560
[  295.948649][T14776]  ? _copy_from_iter+0x39f/0x1560
[  295.950514][T14776]  ? _copy_from_iter+0x3a0/0x1560
[  295.952227][T14776]  ? _copy_from_iter+0x39f/0x1560
[  295.953908][T14776]  ? __pfx_lock_release+0x10/0x10
[  295.955914][T14776]  ? __pfx__copy_from_iter+0x10/0x10
[  295.957853][T14776]  ? __virt_addr_valid+0x1a4/0x590
[  295.959769][T14776]  ? __virt_addr_valid+0x5e/0x590
[  295.961401][T14776]  ? const_folio_flags.constprop.0+0x56/0x150
[  295.963375][T14776]  ? __phys_addr_symbol+0x30/0x80
[  295.965223][T14776]  ? __check_object_size+0x488/0x710
[  295.966875][T14776]  p9pdu_vwritef+0x2d0/0x1cf0
[  295.968139][T14776]  ? p9pdu_writef+0xc4/0x100
[  295.969399][T14776]  ? __pfx_p9pdu_vwritef+0x10/0x10
[  295.970805][T14776]  ? __pfx_p9_tag_alloc+0x10/0x10
[  295.972244][T14776]  ? mark_lock+0xb5/0xc60
[  295.973429][T14776]  p9_client_prepare_req+0x244/0x4d0
[  295.975003][T14776]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  295.976561][T14776]  ? __kernel_text_address+0xd/0x40
[  295.977945][T14776]  ? unwind_get_return_address+0x59/0xa0
[  295.979500][T14776]  ? arch_stack_walk+0xa7/0x100
[  295.980872][T14776]  p9_client_rpc+0x1c3/0xc10
[  295.982166][T14776]  ? __pfx_p9_client_rpc+0x10/0x10
[  295.983686][T14776]  ? hlock_class+0x4e/0x130
[  295.985059][T14776]  ? mark_lock+0xb5/0xc60
[  295.986255][T14776]  ? __pfx_mark_lock+0x10/0x10
[  295.987798][T14776]  p9_client_write+0x31f/0x680
[  295.989095][T14776]  ? __pfx_p9_client_write+0x10/0x10
[  295.990489][T14776]  ? mark_held_locks+0x9f/0xe0
[  295.991750][T14776]  v9fs_issue_write+0xe2/0x180
[  295.993017][T14776]  ? __pfx_v9fs_issue_write+0x10/0x10
[  295.994623][T14776]  ? rcu_is_watching+0x12/0xc0
[  295.995996][T14776]  ? trace_netfs_sreq+0x193/0x220
[  295.997322][T14776]  netfs_do_issue_write+0x92/0x110
[  295.998685][T14776]  netfs_advance_write+0x384/0xc80
[  296.000052][T14776]  ? netfs_buffer_append_folio+0x276/0x360
[  296.001614][T14776]  netfs_write_folio+0xc19/0x1930
[  296.002972][T14776]  netfs_writepages+0x29a/0x9d0
[  296.004359][T14776]  ? __pfx_netfs_writepages+0x10/0x10
[  296.005844][T14776]  ? __pfx___lock_acquire+0x10/0x10
[  296.007343][T14776]  ? hlock_class+0x4e/0x130
[  296.008550][T14776]  ? __pfx_netfs_writepages+0x10/0x10
[  296.009948][T14776]  do_writepages+0x1b3/0x820
[  296.011213][T14776]  ? __pfx_do_writepages+0x10/0x10
[  296.012582][T14776]  ? wbc_attach_fdatawrite_inode+0x13a/0x190
[  296.014248][T14776]  ? __pfx_lock_release+0x10/0x10
[  296.015822][T14776]  ? do_raw_spin_lock+0x12d/0x2c0
[  296.017529][T14776]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  296.019436][T14776]  ? lock_acquire+0x2f/0xb0
[  296.021046][T14776]  ? wbc_attach_fdatawrite_inode+0x24/0x190
[  296.022986][T14776]  ? do_raw_spin_unlock+0x172/0x230
[  296.024950][T14776]  filemap_fdatawrite_wbc+0x104/0x160
[  296.026755][T14776]  __filemap_fdatawrite_range+0xb3/0xf0
[  296.028689][T14776]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  296.030929][T14776]  ? v9fs_fid_lookup+0xe9/0xec0
[  296.032713][T14776]  v9fs_vfs_setattr+0x93a/0xab0
[  296.034670][T14776]  ? __pfx_v9fs_vfs_setattr+0x10/0x10
[  296.036109][T14776]  ? selinux_inode_setattr+0x246/0x400
[  296.037552][T14776]  ? evm_inode_setattr+0x65/0x680
[  296.039288][T14776]  ? __pfx_make_vfsgid+0x10/0x10
[  296.041100][T14776]  ? __pfx_v9fs_vfs_setattr+0x10/0x10
[  296.042514][T14776]  notify_change+0x6a6/0x1230
[  296.043755][T14776]  vfs_utimes+0x41d/0x850
[  296.045130][T14776]  ? __pfx_vfs_utimes+0x10/0x10
[  296.046477][T14776]  ? putname+0x13c/0x180
[  296.047590][T14776]  __x64_sys_utime+0x1e3/0x2c0
[  296.048890][T14776]  ? __pfx___x64_sys_utime+0x10/0x10
[  296.050499][T14776]  ? ksys_write+0x1ba/0x250
[  296.051812][T14776]  do_syscall_64+0xcd/0x250
[  296.053016][T14776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.054672][T14776] RIP: 0033:0x7fa65c77e819
[  296.055940][T14776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  296.061165][T14776] RSP: 002b:00007fa65d503038 EFLAGS: 00000246 ORIG_RAX: 0000000000000084
[  296.063373][T14776] RAX: ffffffffffffffda RBX: 00007fa65c936080 RCX: 00007fa65c77e819
[  296.065541][T14776] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020003000
[  296.067745][T14776] RBP: 00007fa65d503090 R08: 0000000000000000 R09: 0000000000000000
[  296.069939][T14776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  296.072002][T14776] R13: 0000000000000001 R14: 00007fa65c936080 R15: 00007fff735de038
[  296.074159][T14776]  </TASK>
[  296.074982][T14776] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  296.076888][T14776] CPU: 2 UID: 0 PID: 14776 Comm: syz.3.3365 Not tainted 6.12.0-syzkaller-01892-g8f7c8b88bda4 #0
[  296.079634][T14776] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  296.082435][T14776] Call Trace:
[  296.083330][T14776]  <TASK>
[  296.084122][T14776]  dump_stack_lvl+0x3d/0x1f0
[  296.085336][T14776]  panic+0x71d/0x800
[  296.086374][T14776]  ? __pfx_panic+0x10/0x10
[  296.087545][T14776]  ? show_trace_log_lvl+0x29d/0x3d0
[  296.088905][T14776]  ? check_panic_on_warn+0x1f/0xb0
[  296.090245][T14776]  ? _copy_from_iter+0x3a0/0x1560
[  296.091573][T14776]  check_panic_on_warn+0xab/0xb0
[  296.092873][T14776]  __warn+0xf6/0x3d0
[  296.093906][T14776]  ? _copy_from_iter+0x3a0/0x1560
[  296.095228][T14776]  report_bug+0x3c0/0x580
[  296.096361][T14776]  handle_bug+0x54/0xa0
[  296.097452][T14776]  exc_invalid_op+0x17/0x50
[  296.098645][T14776]  asm_exc_invalid_op+0x1a/0x20
[  296.099922][T14776] RIP: 0010:_copy_from_iter+0x3a0/0x1560
[  296.101390][T14776] Code: 5f fd 0f 01 cb 48 89 d9 4c 89 f7 48 89 ee f3 a4 0f 1f 00 48 89 cd 0f 01 ca 49 89 df 49 29 cf e9 1e ff ff ff e8 01 66 fd fc 90 <0f> 0b 90 e9 ae fd ff ff e8 f3 65 fd fc 89 ee bf 01 00 00 00 e8 c7
[  296.106338][T14776] RSP: 0018:ffffc90005c0ef08 EFLAGS: 00010293
[  296.107911][T14776] RAX: 0000000000000000 RBX: 0000000000007fec RCX: ffffffff849032f8
[  296.109945][T14776] RDX: ffff888027d12440 RSI: ffffffff849035df RDI: 0000000000000001
[  296.111989][T14776] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  296.114054][T14776] R10: 0000000000000000 R11: 0000000000000003 R12: ffff8880587236e0
[  296.116098][T14776] R13: ffffc90005c0f2f8 R14: ffff8880587236e0 R15: dffffc0000000000
[  296.118149][T14776]  ? _copy_from_iter+0xb8/0x1560
[  296.119440][T14776]  ? _copy_from_iter+0x39f/0x1560
[  296.120766][T14776]  ? _copy_from_iter+0x39f/0x1560
[  296.122086][T14776]  ? __pfx_lock_release+0x10/0x10
[  296.123421][T14776]  ? __pfx__copy_from_iter+0x10/0x10
[  296.124792][T14776]  ? __virt_addr_valid+0x1a4/0x590
[  296.126138][T14776]  ? __virt_addr_valid+0x5e/0x590
[  296.127476][T14776]  ? const_folio_flags.constprop.0+0x56/0x150
[  296.129055][T14776]  ? __phys_addr_symbol+0x30/0x80
[  296.130372][T14776]  ? __check_object_size+0x488/0x710
[  296.131759][T14776]  p9pdu_vwritef+0x2d0/0x1cf0
[  296.132998][T14776]  ? p9pdu_writef+0xc4/0x100
[  296.134230][T14776]  ? __pfx_p9pdu_vwritef+0x10/0x10
[  296.135565][T14776]  ? __pfx_p9_tag_alloc+0x10/0x10
[  296.136879][T14776]  ? mark_lock+0xb5/0xc60
[  296.138027][T14776]  p9_client_prepare_req+0x244/0x4d0
[  296.139413][T14776]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  296.140949][T14776]  ? __kernel_text_address+0xd/0x40
[  296.142332][T14776]  ? unwind_get_return_address+0x59/0xa0
[  296.143799][T14776]  ? arch_stack_walk+0xa7/0x100
[  296.145094][T14776]  p9_client_rpc+0x1c3/0xc10
[  296.146352][T14776]  ? __pfx_p9_client_rpc+0x10/0x10
[  296.147688][T14776]  ? hlock_class+0x4e/0x130
[  296.148890][T14776]  ? mark_lock+0xb5/0xc60
[  296.150026][T14776]  ? __pfx_mark_lock+0x10/0x10
[  296.151354][T14776]  p9_client_write+0x31f/0x680
[  296.152614][T14776]  ? __pfx_p9_client_write+0x10/0x10
[  296.153986][T14776]  ? mark_held_locks+0x9f/0xe0
[  296.155239][T14776]  v9fs_issue_write+0xe2/0x180
[  296.156483][T14776]  ? __pfx_v9fs_issue_write+0x10/0x10
[  296.157871][T14776]  ? rcu_is_watching+0x12/0xc0
[  296.159130][T14776]  ? trace_netfs_sreq+0x193/0x220
[  296.160438][T14776]  netfs_do_issue_write+0x92/0x110
[  296.161763][T14776]  netfs_advance_write+0x384/0xc80
[  296.163103][T14776]  ? netfs_buffer_append_folio+0x276/0x360
[  296.164623][T14776]  netfs_write_folio+0xc19/0x1930
[  296.165947][T14776]  netfs_writepages+0x29a/0x9d0
[  296.167235][T14776]  ? __pfx_netfs_writepages+0x10/0x10
[  296.168637][T14776]  ? __pfx___lock_acquire+0x10/0x10
[  296.169995][T14776]  ? hlock_class+0x4e/0x130
[  296.171203][T14776]  ? __pfx_netfs_writepages+0x10/0x10
[  296.172603][T14776]  do_writepages+0x1b3/0x820
[  296.173820][T14776]  ? __pfx_do_writepages+0x10/0x10
[  296.175170][T14776]  ? wbc_attach_fdatawrite_inode+0x13a/0x190
[  296.176731][T14776]  ? __pfx_lock_release+0x10/0x10
[  296.178054][T14776]  ? do_raw_spin_lock+0x12d/0x2c0
[  296.179369][T14776]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  296.180776][T14776]  ? lock_acquire+0x2f/0xb0
[  296.181968][T14776]  ? wbc_attach_fdatawrite_inode+0x24/0x190
[  296.183527][T14776]  ? do_raw_spin_unlock+0x172/0x230
[  296.184907][T14776]  filemap_fdatawrite_wbc+0x104/0x160
[  296.186316][T14776]  __filemap_fdatawrite_range+0xb3/0xf0
[  296.187752][T14776]  ? __pfx___filemap_fdatawrite_range+0x10/0x10
[  296.189410][T14776]  ? v9fs_fid_lookup+0xe9/0xec0
[  296.190696][T14776]  v9fs_vfs_setattr+0x93a/0xab0
[  296.191991][T14776]  ? __pfx_v9fs_vfs_setattr+0x10/0x10
[  296.193383][T14776]  ? selinux_inode_setattr+0x246/0x400
[  296.194886][T14776]  ? evm_inode_setattr+0x65/0x680
[  296.196212][T14776]  ? __pfx_make_vfsgid+0x10/0x10
[  296.197514][T14776]  ? __pfx_v9fs_vfs_setattr+0x10/0x10
[  296.198929][T14776]  notify_change+0x6a6/0x1230
[  296.200165][T14776]  vfs_utimes+0x41d/0x850
[  296.201308][T14776]  ? __pfx_vfs_utimes+0x10/0x10
[  296.202598][T14776]  ? putname+0x13c/0x180
[  296.203722][T14776]  __x64_sys_utime+0x1e3/0x2c0
[  296.204977][T14776]  ? __pfx___x64_sys_utime+0x10/0x10
[  296.206347][T14776]  ? ksys_write+0x1ba/0x250
[  296.207514][T14776]  do_syscall_64+0xcd/0x250
[  296.208670][T14776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.210186][T14776] RIP: 0033:0x7fa65c77e819
[  296.211309][T14776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  296.216105][T14776] RSP: 002b:00007fa65d503038 EFLAGS: 00000246 ORIG_RAX: 0000000000000084
[  296.218177][T14776] RAX: ffffffffffffffda RBX: 00007fa65c936080 RCX: 00007fa65c77e819
[  296.220125][T14776] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020003000
[  296.222129][T14776] RBP: 00007fa65d503090 R08: 0000000000000000 R09: 0000000000000000
[  296.224142][T14776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  296.226117][T14776] R13: 0000000000000001 R14: 00007fa65c936080 R15: 00007fff735de038
[  296.228069][T14776]  </TASK>
[  296.229452][T14776] Kernel Offset: disabled
[  296.230654][T14776] Rebooting in 86400 seconds..

VM DIAGNOSIS:
07:23:28  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000004824 RBX=ffff88805a5ca800 RCX=ffffc9002d52c000 RDX=0000000000080000
RSI=ffffffff81243f0b RDI=ffff88805a5ca800 RBP=0000000000000000 RSP=ffffc9000c4af7f8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000002
R12=0000000000000000 R13=ffff8880306eb6da R14=0000000000000000 R15=ffff8880306eb6b0
RIP=ffffffff81243f13 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
FS =0000 00007f434f7db6c0 ffffffff 00c09300 DPL=0 DS   [-WA]
GS =0000 ffff88806a600000 ffffffff 00c09300 DPL=0 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000ffff
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000053d28000 CR4=00352ef0
DR0=fffffffffffffffc DR1=0000000000000000 DR2=0000000000000002 DR3=0000000000000800 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffed1003b23329 RBX=ffffed1003b2332a RCX=ffffffff81fb9e93 RDX=ffffed1003b2332a
RSI=0000000000000004 RDI=ffff88801d919948 RBP=ffffed1003b23329 RSP=ffffc9000484f250
R8 =0000000000000000 R9 =ffffed1003b23329 R10=ffff88801d91994b R11=0000000000000000
R12=0000000000000000 R13=0000000000000002 R14=0000000000000004 R15=dffffc0000000000
RIP=ffffffff81ef7431 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
FS =0000 00007f0d9181b500 ffffffff 00c09300 DPL=0 DS   [-WA]
GS =0000 ffff88806a700000 ffffffff 00c09300 DPL=0 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000002fd28000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=ff MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 ffff
Opmask00=0000000005000001 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe73291600 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c5f5f0045544156 4952505f4342494c
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000042494c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6362696c5f5f0045 5441564952505f43
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65746e6f63007325 203a726f72726520 64656e7275746572 2072657672657300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 40514b4a46005600 051f574a57574005 41404b5750514057 0557405357405600
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5f47373030203034 323030302030203a 5220413637372031 3330333032343336
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 202e352030202030 3220300020302020 3020203320202020 2030202032202036
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a6c6c2a6c6c2a32 6b2a3b692a3d692a 323e2a39692a3b3a 2a393d2a6c6c2a6c
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6b6c3d3a3a3a3a30 68383a3a2a305a59 582a573c3d3d3e3b 5e51573a383e393d
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff850d50d5 RDI=ffffffff9ab02440 RBP=ffffffff9ab02400 RSP=ffffc90005c0e868
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000007
R12=0000000000000000 R13=000000000000002e R14=ffffffff850d5070 R15=0000000000000000
RIP=ffffffff850d50ff RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007fa65d5036c0 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fa65d502f98 CR3=000000002f680000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000e08e000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001030001 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa65c7f25fb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa65c7f2608
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa65c7f2602
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa65c7f2616
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa65c7f269c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa65c7f277a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa65c90c488 00007fa65c90c480 00007fa65c90c478 00007fa65c90c450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa65d46d100 00007fa65c90c440 00007fa65c90c458 00007fa65c90c4a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa65c90c498 00007fa65c90c490 00007fa65c90c488 00007fa65c90c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000071c7a3 RBX=0000000000000003 RCX=ffffffff8b2663e9 RDX=0000000000000000
RSI=ffffffff8b6cd740 RDI=ffffffff8bd1db00 RBP=ffffed1003ade488 RSP=ffffc900001a7e08
R8 =0000000000000001 R9 =ffffed100d52702d R10=ffff88806a93816b R11=0000000000000000
R12=0000000000000003 R13=ffff88801d6f2440 R14=ffffffff905ff2d0 R15=0000000000000000
RIP=ffffffff8b2677cf RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020001900 CR3=0000000047c14000 CR4=00352ef0
DR0=fffffffffffffffc DR1=0000000000000000 DR2=0000000000000002 DR3=0000000000000800 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000010000 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffee7f45970 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f16651f25fb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f16651f2608
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f16651f2602
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f16651f2616
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f16651f269c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f16651f277a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000