last executing test programs:

1m25.862470942s ago: executing program 3 (id=4):
r0 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0x6707, 0x100, 0xfffffffe, 0x1cd}, &(0x7f00000005c0)=<r1=>0x0, &(0x7f0000000640)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0x1a, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000200)='./file0\x00', 0xffffffffffffffff, 0x1000, 0x1})
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x4)
writev(r3, &(0x7f0000000080), 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8}, @NFTA_OSF_FLAGS={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
getrandom(0x0, 0x0, 0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
ioctl$sock_ifreq(0xffffffffffffffff, 0x891d, &(0x7f0000000040)={'ip6gretap0\x00', @ifru_ivalue=0x4})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f00000003c0)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={0x2, 0x6, 0x5, 0x9, 0x2}, 0x10}, 0x1, 0x7}, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
io_uring_enter(r0, 0x47f9, 0x0, 0x0, 0x0, 0x0)
inotify_init1(0x0)
syz_clone(0x100008411, 0x0, 0x0, 0x0, 0x0, 0x0)

1m24.920519186s ago: executing program 3 (id=10):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
move_mount(r0, &(0x7f0000000080)='./file0/file0\x00', r0, &(0x7f0000000040)='./file0/file0\x00', 0x145)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0\x00', 0x0, 0x12f451, 0x0)
umount2(&(0x7f00000000c0)='./file0/file0\x00', 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r1, 0x0, 0x40000}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCGICOUNT(r2, 0x545d, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
r5 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r5, &(0x7f0000000000), 0x10)
setsockopt$CAN_RAW_FILTER(r5, 0x65, 0x1, 0x0, 0x0)
setsockopt$CAN_RAW_FILTER(r5, 0x65, 0x1, &(0x7f0000000100)=[{{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1}}], 0x8)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
bind$inet(0xffffffffffffffff, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pipe(&(0x7f00000000c0))
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0xd0, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c20000008e25900ee8d386dd601646b085a2009a2f00ff020000000000000000000000000001fc010000000000000000000000000000000000000000000005020000000000000420880b00460000670c12d787bc48454ad5ab0dbcd795bf5fb1f628b38949083230"], 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a010100000100000000000200fffc0900010073797a30000000000800024000000001cc000000030a01020000000000000000020000000900010073797a3000000000aa000300"], 0x1e4}}, 0x0)

1m24.412038454s ago: executing program 3 (id=13):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_UDP_ZERO_CSUM6_RX={0x5}, @IFLA_GENEVE_UDP_ZERO_CSUM6_TX={0x5}]}}}]}, 0x44}}, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000440)={0x53, 0x0, 0x10, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="851666ce20db", 0x0, 0x10, 0x39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io$hid(r5, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x22, 0xf, {[@main=@item_4={0x3, 0x0, 0xb, "08405af3"}, @local=@item_4, @local=@item_4={0x3, 0x2, 0x0, "6fe695cd"}]}}, 0x0}, 0x0)
r6 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGREPORT(r6, 0x400c4807, 0x0)
timer_delete(r4)
bind$alg(r1, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sm3\x00'}, 0x58)
recvmmsg(0xffffffffffffffff, &(0x7f00000014c0)=[{{&(0x7f0000000140)=@alg, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000340)=""/4096, 0x1000}], 0x1, &(0x7f0000000200)=""/255, 0xff}, 0x2}, {{&(0x7f0000001340)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000001440)=[{&(0x7f00000013c0)=""/108, 0x6c}], 0x1, &(0x7f0000001480)=""/6, 0x6}, 0x3}], 0x2, 0x10000, 0x0)

1m22.599199471s ago: executing program 3 (id=18):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
sendmsg$IEEE802154_START_REQ(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000140)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_PAN_ID={0x6}]}, 0x1c}}, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x1, @none, 0x1, 0x1}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0xf, &(0x7f00000002c0), 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="64796e2c00c8bf61e4d949650ccecd4fa06680e27e1cbe2e08c640d746830f89223b6c972ef1c38fe2ece9b3f57d884fe70d7b03f8f37bcddbd332aa0fda96107cf921307c4732e2499aafcbe68e95354f328b94a09ffbe3e17c55"])
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x3c, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x3c}}, 0x4000000)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}}, 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
chdir(0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r9, &(0x7f00000003c0)={0x0, 0x4, &(0x7f0000000640)={&(0x7f0000000180)={0x14, 0x30, 0x319, 0x0, 0x0, {0x6}}, 0x14}}, 0x0)
prctl$PR_GET_PDEATHSIG(0x59616d61, &(0x7f0000000140))
r10 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ptype\x00')
preadv(r10, &(0x7f0000000000)=[{&(0x7f0000000480)=""/187, 0xbb}], 0x1, 0x4c, 0x0)
recvmmsg(r9, &(0x7f0000002d40)=[{{&(0x7f00000000c0)=@nfc_llcp, 0x80, &(0x7f0000000240)=[{&(0x7f0000000300)=""/163, 0xa3}], 0x1, &(0x7f0000000540)=""/150, 0x96}, 0x9}, {{&(0x7f0000000400)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000680)=""/96, 0x60}], 0x1, &(0x7f0000000600)=""/56, 0x38}, 0xaf}, {{&(0x7f0000000700)=@in={0x2, 0x0, @remote}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000780)=""/106, 0x6a}, {&(0x7f0000000880)=""/228, 0xe4}, {&(0x7f0000000980)=""/197, 0xc5}], 0x3, &(0x7f0000000a80)=""/132, 0x84}, 0x6}, {{&(0x7f0000000b40)=@llc, 0x80, &(0x7f0000002c80)=[{&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/4096, 0x1000}, {&(0x7f0000002bc0)=""/151, 0x97}], 0x3, &(0x7f0000002cc0)=""/91, 0x5b}}], 0x4, 0x2002, &(0x7f0000002dc0))
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078005001500120000000800084000000090050005000a000000050001000600000012000300686173683a6e65742c706f7274"], 0x60}}, 0x0)

1m22.580672095s ago: executing program 32 (id=18):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
sendmsg$IEEE802154_START_REQ(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000140)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_COORD_PAN_ID={0x6}]}, 0x1c}}, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x1, @none, 0x1, 0x1}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0xf, &(0x7f00000002c0), 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="64796e2c00c8bf61e4d949650ccecd4fa06680e27e1cbe2e08c640d746830f89223b6c972ef1c38fe2ece9b3f57d884fe70d7b03f8f37bcddbd332aa0fda96107cf921307c4732e2499aafcbe68e95354f328b94a09ffbe3e17c55"])
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x3c, r6, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x3c}}, 0x4000000)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}}, 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
chdir(0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r9, &(0x7f00000003c0)={0x0, 0x4, &(0x7f0000000640)={&(0x7f0000000180)={0x14, 0x30, 0x319, 0x0, 0x0, {0x6}}, 0x14}}, 0x0)
prctl$PR_GET_PDEATHSIG(0x59616d61, &(0x7f0000000140))
r10 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ptype\x00')
preadv(r10, &(0x7f0000000000)=[{&(0x7f0000000480)=""/187, 0xbb}], 0x1, 0x4c, 0x0)
recvmmsg(r9, &(0x7f0000002d40)=[{{&(0x7f00000000c0)=@nfc_llcp, 0x80, &(0x7f0000000240)=[{&(0x7f0000000300)=""/163, 0xa3}], 0x1, &(0x7f0000000540)=""/150, 0x96}, 0x9}, {{&(0x7f0000000400)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000680)=""/96, 0x60}], 0x1, &(0x7f0000000600)=""/56, 0x38}, 0xaf}, {{&(0x7f0000000700)=@in={0x2, 0x0, @remote}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000780)=""/106, 0x6a}, {&(0x7f0000000880)=""/228, 0xe4}, {&(0x7f0000000980)=""/197, 0xc5}], 0x3, &(0x7f0000000a80)=""/132, 0x84}, 0x6}, {{&(0x7f0000000b40)=@llc, 0x80, &(0x7f0000002c80)=[{&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/4096, 0x1000}, {&(0x7f0000002bc0)=""/151, 0x97}], 0x3, &(0x7f0000002cc0)=""/91, 0x5b}}], 0x4, 0x2002, &(0x7f0000002dc0))
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078005001500120000000800084000000090050005000a000000050001000600000012000300686173683a6e65742c706f7274"], 0x60}}, 0x0)

34.175120832s ago: executing program 4 (id=426):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001040), 0x4000000000882, 0x0)
ioctl$BLKBSZSET(r0, 0x40041271, 0x0) (fail_nth: 2)

34.105166045s ago: executing program 4 (id=431):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0xffffffff, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x5)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(0xffffffffffffffff, 0x28, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x12, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x5763)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_emit_ethernet(0x0, 0x0, 0x0)
capget(&(0x7f0000000180)={0x20071026, r1}, &(0x7f00000001c0)={0x0, 0xfffffffa, 0xd, 0x1, 0xe, 0x3})
r4 = socket$nl_generic(0x11, 0x3, 0x10)
syz_open_dev$sg(0x0, 0x0, 0x2c002)
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000080)=0x3)
r7 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
close_range(r7, 0xffffffffffffffff, 0x2)
ioctl$TIOCSSOFTCAR(r6, 0x541a, 0x0)
dup(r4)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

34.010429419s ago: executing program 4 (id=432):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@ipv6_newroute={0x38, 0x18, 0x1, 0x70bd2b, 0x0, {}, [@RTA_ENCAP={0xc, 0x16, 0x0, 0x0, @LWTUNNEL_IP6_TC={0x5, 0x5, 0x2}}, @RTA_OIF={0x8, 0x4, r1}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x7}]}, 0x38}}, 0x0)

34.009991809s ago: executing program 4 (id=433):
r0 = getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={r0, r2, 0x0, 0x10, &(0x7f0000000280)='kmem_cache_free\x00'}, 0x30)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='ns\x00')
readlinkat(r3, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000002780)=""/4112, 0x1010)

33.930195565s ago: executing program 4 (id=435):
r0 = socket(0x2, 0x3, 0xff)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
mkdir(&(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc018937e, &(0x7f0000000240)={{0x1, 0x1, 0x5f, <r4=>0xffffffffffffffff, {0x29}}, './file0\x00'})
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'bridge0\x00', <r6=>0x0})
setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r5, &(0x7f00000000c0)="3f031c000302140006001e0089e9aaa911d7c2290f0088a8132788a87c643c4a1b7880610cc9", 0x26, 0x0, &(0x7f0000000300)={0xc9, 0x1a, r6, 0x1, 0x0, 0x6, @multicast}, 0x14)
syz_open_dev$video(0x0, 0x7ff, 0x0)
r7 = syz_io_uring_setup(0x239, &(0x7f0000000440)={0x0, 0xadaf, 0x400, 0x0, 0x4, 0x0, r4}, &(0x7f0000000140)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r7, 0x2ded, 0x4008, 0x0, 0x0, 0x22)
msgget$private(0x0, 0x0)
r10 = msgget$private(0x0, 0x600)
msgrcv(r10, 0x0, 0x0, 0x1, 0x1000)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000010c0)=ANY=[@ANYBLOB="b702000001000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000080000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d0f65acc0d06d1a1434e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c690220b87b20581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697a8ad004eea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc518afc9ffc2cc788bee1b47683db01a2f9398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2edfae4f390a83116752ddb11cfafffa3837841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db00002e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc40700a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d50200a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e30df414b315f651c8412392191fa83ee830548f11e1036a8debd64c490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cd17b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0544c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afd80e1700000000000000000000000000000832b99df00000000000000005205000000dc1c56d19f35d367632952a93466ae595c6a8cb5ee3a7c9ef89edbdf42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf80300cd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db08407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4092140faed0c329be610c3082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9874620e322d9348900000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9bc7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2bca0f4557869ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8bc410d9f48bf7eac90529cd6af061c9e53addddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85e9bb70a35df8574eb49e972f7976eafee43a6c17009a5d30f479e293a3302e11350ea857b37e76ca2f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f981179186e4000000000000646174b55d251f7f8ca5ccc22a5efb33b237eff5597a3c3a5f3a9bb54aba40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be206af7ff9b253106326fde795e530b93626cc68e06e602198724249b4445eef08401cd1a3e266db41474e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24c5efd5c8495c1ccd580033c55725f2d60354f8ad5914a0155eaa743350ddb388f486b6de0549ef3b1b3c3b7d4d3a830ff39885776119408029be3788dd8422b1ab7b4c9d5b7d8682fd759c713108e1bdfc64b9121bbf07099def5c0ce3c861ae4b5cad8bba5a0b6059b9ef90c2f96a59320309e25df89484522bb1d6eaa92164f9e4042cb689a45a898354c17b08705205a9189772bcbcb6414e44b33a2470d3bc16f761c33f565b9da5e7991ad8482579cc1b16c1fcec815a5482ae8b1779c5e339971a6ec1217bcfd1ef24284de8a0a9f068f297037d6478c2434a9a18dcc6c7c708e444a79d7ce37f9cf2a434b9048ca6a2fa254aa02cd098026798a6d336348af0fc11fa2809a5ebbe17ca4d6356e4450d043ed20d313cd56a56d2e4cdf26f19af9a41695a58a9b6b45af1ca939b18d7b57791b99cfc6ec2a0848c29fea4eb8b82395a38e8aca5ab4bfc2ad8acf2e51b766f8ecd16194ad41ec097082f7fa32179ef99dafa6c2aa206a25ddc33e6f0a09169eeff428c71f54e1dfcfcd7cfc8f6e169f11c47d5040000000000000000000000000000074f21ec2b57bb2daf8fab7cd564d1e84c93af254ab029e6cd168007b9a10a6664d9d264aceede0183b2306c440b2c81c9e120ece36a61b0b015ea6716decf8783e0845fa975b6e5f7f4dd4abe2a95e764ae13288d4439ec29066d9bc9f26212615423c3d8d58901a6b51a93c8aacb19c416d5260662031a295f2b33295a60db77b5f082bdc48cd06c6cd01e7a40e456d829d277c77c2ca9159c82a391a24d5f6193228d93e2fd99cd0cdeefa9b7c5ea02c5454ef4c6631e6766ffcba3cce4ab13c69622675683ab1f05edbb09641c9dba535b319a21a00287645449a61eefc00a2a8f6955d6573023325bc00ca0facb69d67c8b95e29b36c4a5f84a959262c382de9a411be7b9b500ca329e5eefcd323490eed4bcbcba4764618bf51a08498a64b0e19c00e33480b27c2b12c326e6bf10234f883be00900009ad2fbdf6bae"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r11, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000002c0)="b9fef0076805268c98bd14f06558", 0x0, 0x2000, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

33.040739308s ago: executing program 4 (id=440):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
r3 = syz_io_uring_setup(0x4bfa, &(0x7f0000000000)={0x0, 0x0, 0x3c11, 0x20}, &(0x7f0000000080), &(0x7f00000000c0))
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
recvmmsg(r4, &(0x7f0000000180)=[{{0x0, 0x38, 0x0}}], 0x1, 0x0, 0x0)
io_uring_enter(r3, 0x0, 0x0, 0x7, 0x0, 0x0)
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001040)={&(0x7f00000000c0)={0x40, r1, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x185}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_FLAGS={0x4}]}, 0x40}}, 0x4010)
syz_emit_ethernet(0x32, &(0x7f0000000000)={@local, @empty, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "0bc0f7", 0x0, "de9560"}}}}}}, 0x0)

17.978785536s ago: executing program 33 (id=440):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
r3 = syz_io_uring_setup(0x4bfa, &(0x7f0000000000)={0x0, 0x0, 0x3c11, 0x20}, &(0x7f0000000080), &(0x7f00000000c0))
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
recvmmsg(r4, &(0x7f0000000180)=[{{0x0, 0x38, 0x0}}], 0x1, 0x0, 0x0)
io_uring_enter(r3, 0x0, 0x0, 0x7, 0x0, 0x0)
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001040)={&(0x7f00000000c0)={0x40, r1, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x185}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_FLAGS={0x4}]}, 0x40}}, 0x4010)
syz_emit_ethernet(0x32, &(0x7f0000000000)={@local, @empty, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "0bc0f7", 0x0, "de9560"}}}}}}, 0x0)

7.140185876s ago: executing program 0 (id=611):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000001280), 0x8)
r3 = dup(r0)
ioctl$KDSKBLED(0xffffffffffffffff, 0x4b65, 0x7)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = fsopen(&(0x7f0000000280)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000040)='source', &(0x7f0000005fc0)='//\xf2/\x06\b\xba\xdf//\xdc/\x95\x9a\x82\x10\x97W\x8f7\x98\x9b\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
fcntl$getownex(r1, 0x10, &(0x7f00000001c0))
syz_io_uring_setup(0x23c, &(0x7f0000000080)={0x0, 0x7f36, 0x10100, 0x0, 0x1}, &(0x7f0000000180)=<r5=>0x0, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000480)={0x10, 0x0, &(0x7f00000007c0)=[@request_death], 0x0, 0x0, 0x0})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0xb}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_LEVEL={0x8, 0x3, 0x89}]}}}, {0x18, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0xc}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)
syz_io_uring_submit(r5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r8 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000040)=0x7)
ioctl$TCSETA(r8, 0x8924, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "4feda26323b172e0"})
r9 = syz_io_uring_setup(0x16d2, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000040), &(0x7f0000000140))
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001c000100257a9987e92c755ae4bc3b16", @ANYRES32=0x0, @ANYBLOB="08000108080001"], 0x24}, 0x1, 0x0, 0x0, 0x81}, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(r9, 0xf, &(0x7f00000003c0)={0x1, 0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)=""/2, 0x2}], &(0x7f0000000380)=[0x6]}, 0x20)
shmget$private(0x0, 0x1000, 0x2, &(0x7f0000e63000/0x1000)=nil)

6.759101071s ago: executing program 0 (id=617):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'lo\x00', <r1=>0x0})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x58, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0x3}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x98, 0x3, 0x5, 0x1, 0x6, 0xfffffff6, 0x3}}}}]}, 0x58}}, 0x44080)
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x4000080)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x2, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = syz_io_uring_setup(0x236, &(0x7f0000000500)={0x0, 0xb479, 0x10100, 0x200, 0x8}, &(0x7f0000000200)=<r7=>0x0, &(0x7f0000000280)=<r8=>0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001000000", @ANYRES32, @ANYBLOB="000000000e000000008100"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180004c87a9897f4ab3800000000000018110800", @ANYRES32=r9, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000009000000020000f8ffff11b803000008000040b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r10}, 0x10)
r11 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(r11, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r6, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r12=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r13=>0xffffffffffffffff})
setsockopt$MRT_ADD_MFC_PROXY(0xffffffffffffffff, 0x0, 0xd2, &(0x7f00000002c0)={@local, @multicast2, 0x1, "f2ded1175e4fb5b228b8f8dc1cf068ffd361eec78ba459265e3eb132cd00e178", 0x5, 0x1, 0x8, 0xf}, 0x83)
splice(r12, 0x0, r13, 0x0, 0x3, 0x0)
r14 = socket$inet6_dccp(0xa, 0x6, 0x0)
ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000000000)={'lo\x00'})

3.720623492s ago: executing program 0 (id=642):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000001280), 0x8)
r2 = dup(r0)
ioctl$KDSKBLED(0xffffffffffffffff, 0x4b65, 0x7)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x23c, &(0x7f0000000080)={0x0, 0x7f36, 0x10100, 0x0, 0x1}, &(0x7f0000000180)=<r3=>0x0, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000480)={0x10, 0x0, &(0x7f00000007c0)=[@request_death], 0x0, 0x0, 0x0})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0xb}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_LEVEL={0x8, 0x3, 0x89}]}}}, {0x18, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0xc}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0xff00}}, 0x9c}}, 0x0)
syz_io_uring_submit(r3, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r6 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0x7)
ioctl$TCSETA(r6, 0x8924, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "4feda26323b172e0"})
shmget$private(0x0, 0x1000, 0x2, &(0x7f0000e63000/0x1000)=nil)

3.359957206s ago: executing program 0 (id=644):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0xfffffffd, 'lblcr\x00'}, 0x2c)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000002c0)={@private0, <r1=>0x0}, &(0x7f0000000300)=0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x0, 0x10, &(0x7f0000000380)=ANY=[@ANYRES64=<r2=>0xffffffffffffffff], &(0x7f0000000000)='GPL\x00', 0x8, 0xa8, &(0x7f0000000140)=""/168, 0x41000, 0x3, '\x00', r1, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, @void, @value}, 0x94)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(0xffffffffffffffff, 0x8004e500, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000440)=0x816)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x12, 0xffffffffffffffff, 0xd2389000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x7e)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r3, &(0x7f0000000580)={&(0x7f0000000340), 0xc, &(0x7f0000000540)={&(0x7f00000003c0)=ANY=[@ANYRESDEC=r1, @ANYRES16=0x0, @ANYRES16=r0, @ANYRES32=r2, @ANYBLOB="080003000100000016000180140002006970366772657461703000000000000008000300010000100800030001000000"], 0xb0}, 0x1, 0x0, 0x0, 0x20000840}, 0x840)
fsconfig$FSCONFIG_SET_PATH(r3, 0x3, 0x0, &(0x7f00000000c0)='./file0\x00', 0xffffffffffffff9c)
r6 = syz_open_dev$video4linux(&(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_QUERYMENU(r6, 0xc040564a, &(0x7f0000000140)={0x0, 0x1, @value=0x8})
connect$unix(r4, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r7 = shmget$private(0x0, 0x3000, 0x78000000, &(0x7f0000a43000/0x3000)=nil)
shmat(r7, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
shmat(r7, &(0x7f0000ff9000/0x1000)=nil, 0x5000)
mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f0000665000/0x3000)=nil)
r8 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
r9 = add_key$fscrypt_v1(&(0x7f0000000140), &(0x7f0000000180)={'fscrypt:', @desc1}, &(0x7f0000000240)={0x0, "e639e9015f385329605aa360517fbc396325f0f685016f664aaf4ca40ff8a5c7c454a80f0fc2c668c866d533208bada3df07a97c78d1e877a7b4a34cad92e6a9"}, 0x48, 0xfffffffffffffffb)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f00000000c0)='asymmetric\x00', &(0x7f0000000200)=@keyring={'key_or_keyring:', r9})
add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0, r8)
connect$pppoe(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0x0, {0x21, @broadcast, 'vlan1\x00'}}, 0x1e)
sendmmsg(0xffffffffffffffff, &(0x7f0000002340), 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'none\x00'}, 0x2c)

3.089660145s ago: executing program 2 (id=648):
ioctl$VHOST_SET_FEATURES(0xffffffffffffffff, 0x4008af00, 0x0)
write$vhost_msg_v2(0xffffffffffffffff, 0x0, 0x0)
write$vhost_msg_v2(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002a00)=ANY=[@ANYBLOB="02060803030000002cbd7080fcdbdf25010021f600000000"], 0x18}}, 0x20008084)
r1 = io_uring_setup(0x6284, &(0x7f0000000080)={0x0, 0x400000, 0x8, 0x3})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000140), 0x2, 0x141381)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
pipe(&(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x18)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$IPVS_CMD_FLUSH(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYRES8=r1, @ANYRES16=r6, @ANYBLOB="010028bd70002511000000000000"], 0x14}, 0x1, 0x0, 0x0, 0x2004c090}, 0x240080d1)
r7 = socket$inet(0x2, 0x2, 0x0)
getsockopt$IPT_SO_GET_REVISION_TARGET(r7, 0x0, 0x43, 0x0, &(0x7f0000000100))
ioctl$TIOCGDEV(r4, 0x540e, 0x0)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
r9 = openat$nullb(0xffffff9c, &(0x7f0000000100), 0x200, 0x0)
ioctl$BLKRRPART(r9, 0x125f, 0x0)
r10 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="0201000008000000000000000000000003000500ff00000002dec3be4ffb24608db4e926b09f0460002000ac141400000000000000000003000600000000000200942d000000000000000000000000a9ae"], 0x40}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

2.830333144s ago: executing program 2 (id=649):
syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(0xffffffffffffffff, 0xc01c7c02, 0x0)
ioctl$MEDIA_IOC_G_TOPOLOGY(0xffffffffffffffff, 0xc0487c04, &(0x7f0000000a00)={0x0, 0x6, 0x0, &(0x7f0000000600)=[{}, {}, {}, {}, {}, {}], 0x1, 0x0, &(0x7f0000000840)=[{}], 0x3, 0x0, &(0x7f0000000940)=[{}, {0x0, <r0=>0x80000000}, {}], 0x1, 0x0, &(0x7f00000009c0)=[{}]})
ioctl$MEDIA_IOC_ENUM_ENTITIES(0xffffffffffffffff, 0xc1007c01, &(0x7f0000000b00)={r0})
r1 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
ioctl$CEC_S_MODE(r1, 0x40046109, &(0x7f0000000080)=0xf0)
sendmsg$TIPC_NL_KEY_FLUSH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000c00)=ANY=[@ANYBLOB="e0000000", @ANYRES16, @ANYBLOB="000327bd7000ffdbdf2518000000c000058008000100756470000000010075647000cec1bebd43198115440002800800010006000000080001000000000008000200000400000800020002000000080001000400000008000300d73300000800040000000000080004003cfb000008000100657468001c00028008000200af040000080003000700000008000100190000000c0002800800010000000000"], 0xe0}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
syz_open_dev$dri(&(0x7f0000000000), 0xf6c2, 0x0)
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x8)

2.82991803s ago: executing program 2 (id=650):
syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="bbbbbbbbbbbb8a0a63cdec5908060001080006040001000000ff0300ac1414bbaaaaaaaaaa36ac1414bb"], 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(0xffffffffffffffff, 0xc01c7c02, 0x0)
ioctl$MEDIA_IOC_G_TOPOLOGY(0xffffffffffffffff, 0xc0487c04, &(0x7f0000000a00)={0x0, 0x6, 0x0, &(0x7f0000000600)=[{}, {}, {}, {}, {}, {}], 0x1, 0x0, &(0x7f0000000840)=[{}], 0x3, 0x0, &(0x7f0000000940)=[{}, {0x0, <r0=>0x80000000}, {}], 0x1, 0x0, &(0x7f00000009c0)=[{}]})
ioctl$MEDIA_IOC_ENUM_ENTITIES(0xffffffffffffffff, 0xc1007c01, &(0x7f0000000b00)={r0})
r1 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
ioctl$CEC_S_MODE(r1, 0x40046109, &(0x7f0000000080)=0xf0)
sendmsg$TIPC_NL_KEY_FLUSH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000c00)=ANY=[@ANYBLOB="e0000000", @ANYRES16, @ANYBLOB="000327bd7000ffdbdf2518000000c000058008000100756470000000010075647000cec1bebd43198115440002800800010006000000080001000000000008000200000400000800020002000000080001000400000008000300d73300000800040000000000080004003cfb000008000100657468001c00028008000200af040000080003000700000008000100190000000c0002800800010000000000"], 0xe0}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
syz_open_dev$dri(&(0x7f0000000000), 0xf6c2, 0x0)
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x8)

2.747750515s ago: executing program 2 (id=651):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000002700)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r1 = creat(&(0x7f0000000400)='./bus\x00', 0x40)
r2 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f00000002c0)=ANY=[], 0x76)
lsetxattr$security_ima(&(0x7f00000002c0)='./bus\x00', &(0x7f0000000000), &(0x7f0000000140)=ANY=[@ANYBLOB="0407"], 0x2, 0x0)
dup3(r2, r1, 0x0)
finit_module(r2, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000480)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

2.693347433s ago: executing program 2 (id=652):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x12)
r2 = syz_open_dev$vcsu(0x0, 0x9, 0x2000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0x5}, {0x9, 0x5, 0xd, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000800)=ANY=[@ANYRESDEC=r2], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0x1f2f, 0xd, 0x0, &(0x7f00000007c0)="9f44948721919580684010a49e", 0x0, 0x241, 0x0, 0xaf, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb4206757531"}, 0x4c)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x9fd, 0x84, 0x105, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r7}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, &(0x7f0000000840)=""/121, &(0x7f0000000680), &(0x7f0000000540), 0x6c, r7}, 0x38)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0xa00, 0x0, 0x101, 0x100}})
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000040)={[0x80000001, 0x7, 0x3, 0x8, 0x6, 0x2, 0x1, 0x2, 0xdf, 0x7, 0x4, 0x10001, 0xf, 0x40, 0x351a, 0x3], 0xeeee0000, 0x3010})
dup(r1)

2.489874958s ago: executing program 0 (id=654):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000002, 0x59032, 0xffffffffffffffff, 0x0) (async)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)) (async)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4}) (async)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000582000/0x2000)=nil, 0x800000}) (async)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)

2.489532529s ago: executing program 5 (id=655):
socket$inet_udplite(0x2, 0x2, 0x88)
socket$inet6_sctp(0xa, 0x1, 0x84)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
futex_waitv(0x0, 0x50, 0x0, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
sched_setscheduler(0x0, 0x2, 0x0)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r3 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
readv(r2, &(0x7f0000000240)=[{&(0x7f0000000300)=""/160, 0xfffffeee}, {&(0x7f0000000180)=""/27, 0x1c}], 0x2)
tkill(r3, 0xb)
mkdirat(0xffffffffffffffff, 0x0, 0x100)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102392, 0x18ff8)
setsockopt$packet_int(r0, 0x107, 0x9, 0x0, 0x0)
sendto$packet(r0, &(0x7f0000000200)="3f0336082608123a160097ca0000f09210d7c2290f0086fd1378c9167c643c6198872bbfe465ebc0e9ad89b8ac5dcaaeaf21dca98d", 0x16, 0x0, 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(0xffffffffffffffff, 0xc008551b, &(0x7f00000003c0)=ANY=[@ANYRESDEC=r1])
socket$inet_sctp(0x2, 0x5, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

2.190869113s ago: executing program 0 (id=664):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_UDP_ZERO_CSUM6_RX={0x5}, @IFLA_GENEVE_UDP_ZERO_CSUM6_TX={0x5}]}}}]}, 0x44}}, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000440)={0x53, 0x0, 0x10, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="851666ce20db", 0x0, 0x10, 0x39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io$hid(r5, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x22, 0xf, {[@main=@item_4={0x3, 0x0, 0xb, "08405af3"}, @local=@item_4, @local=@item_4={0x3, 0x2, 0x0, "6fe695cd"}]}}, 0x0}, 0x0)
r6 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGREPORT(r6, 0x400c4807, &(0x7f00000000c0)={0x1, 0x200, 0x5})
timer_delete(r4)
bind$alg(r1, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sm3\x00'}, 0x58)
recvmmsg(0xffffffffffffffff, &(0x7f00000014c0)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000340)=""/4096, 0x1000}], 0x1, &(0x7f0000000200)=""/255, 0xff}, 0x2}, {{&(0x7f0000001340)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000001440), 0x0, &(0x7f0000001480)=""/6, 0x6}, 0x3}], 0x2, 0x10000, 0x0)

1.659781234s ago: executing program 1 (id=657):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0xb, &(0x7f0000000600)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002040000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000a000000850000000600000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={r2, r1, 0x25, 0x0, @val=@kprobe_multi=@syms={0x1, 0x0, 0x0, 0x0, 0x8}}, 0x30)
syz_emit_ethernet(0x66, &(0x7f0000000340)={@multicast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x30, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "fd9063", 0x0, 0x2b, 0x0, @loopback={0x400000000000000}, @loopback}}}}}}}, 0x0)

1.549401102s ago: executing program 1 (id=658):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_open_dev$sndpcmc(&(0x7f0000000a00), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r1, 0xc25c4110, &(0x7f0000000c00)={0x400, [[0x1], [0x4, 0x9], [0x3]], '\x00', [{0x0, 0x8001}, {0x0, 0x3ff, 0x0, 0x1}, {0x0, 0x200000e}, {}, {}, {0x0, 0x9bf8}, {}, {0x0, 0x20}, {}, {}, {0x3}], '\x00', 0x400})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff})
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
mount$fuse(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300), 0x757afa44c41a4ef5, &(0x7f0000000340)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r5, &(0x7f00000021c0)={0x2020, 0x0, <r6=>0x0}, 0x2020)
write$FUSE_INIT(r5, &(0x7f00000004c0)={0x50, 0x0, r6, {0x7, 0x1f, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200}}, 0x50)
readlink(&(0x7f0000000040)='./file0/file0/file0/file0/file0\x00', &(0x7f0000000080)=""/167, 0xa7)
read$FUSE(r5, &(0x7f0000008bc0)={0x2020, 0x0, <r7=>0x0}, 0x2020)
write$FUSE_INIT(r5, &(0x7f0000000280)={0x50, 0x0, r7, {0x7, 0x24}}, 0x50)
close_range(r4, 0xffffffffffffffff, 0x0)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(0xffffffffffffffff, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r8 = inotify_init()
r9 = syz_io_uring_setup(0x24f9, &(0x7f0000000200)={0x0, 0x0, 0x10100, 0x0, 0x2f8, 0x0, r3}, &(0x7f0000000100), &(0x7f0000000180))
io_uring_enter(r9, 0x20007113, 0x0, 0x0, 0x0, 0x0)
inotify_add_watch(r8, &(0x7f0000000000)='.\x00', 0x400017e)
creat(0x0, 0x0)
r10 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r11 = ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0)

1.358704s ago: executing program 1 (id=659):
syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(0xffffffffffffffff, 0xc01c7c02, 0x0)
ioctl$MEDIA_IOC_G_TOPOLOGY(0xffffffffffffffff, 0xc0487c04, &(0x7f0000000a00)={0x0, 0x6, 0x0, &(0x7f0000000600)=[{}, {}, {}, {}, {}, {}], 0x1, 0x0, &(0x7f0000000840)=[{}], 0x3, 0x0, &(0x7f0000000940)=[{}, {0x0, <r0=>0x80000000}, {}], 0x1, 0x0, &(0x7f00000009c0)=[{}]})
ioctl$MEDIA_IOC_ENUM_ENTITIES(0xffffffffffffffff, 0xc1007c01, &(0x7f0000000b00)={r0})
r1 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
ioctl$CEC_S_MODE(r1, 0x40046109, &(0x7f0000000080)=0xf0)
sendmsg$TIPC_NL_KEY_FLUSH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000c00)=ANY=[@ANYBLOB="e0000000", @ANYRES16, @ANYBLOB="000327bd7000ffdbdf2518000000c000058008000100756470000000010075647000cec1bebd43198115440002800800010006000000080001000000000008000200000400000800020002000000080001000400000008000300d73300000800040000000000080004003cfb000008000100657468001c00028008000200af040000080003000700000008000100190000000c0002800800010000000000"], 0xe0}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
syz_open_dev$dri(&(0x7f0000000000), 0xf6c2, 0x0)
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x8)

1.35837728s ago: executing program 1 (id=660):
syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="bbbbbbbbbbbb8a0a63cdec5908060001080006040001000000ff0300ac1414bbaaaaaaaaaa36ac1414bb"], 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(0xffffffffffffffff, 0xc01c7c02, 0x0)
ioctl$MEDIA_IOC_G_TOPOLOGY(0xffffffffffffffff, 0xc0487c04, &(0x7f0000000a00)={0x0, 0x6, 0x0, &(0x7f0000000600)=[{}, {}, {}, {}, {}, {}], 0x1, 0x0, &(0x7f0000000840)=[{}], 0x3, 0x0, &(0x7f0000000940)=[{}, {0x0, <r0=>0x80000000}, {}], 0x1, 0x0, &(0x7f00000009c0)=[{}]})
ioctl$MEDIA_IOC_ENUM_ENTITIES(0xffffffffffffffff, 0xc1007c01, &(0x7f0000000b00)={r0})
r1 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
ioctl$CEC_S_MODE(r1, 0x40046109, &(0x7f0000000080)=0xf0)
sendmsg$TIPC_NL_KEY_FLUSH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000c00)=ANY=[@ANYBLOB="e0000000", @ANYRES16, @ANYBLOB="000327bd7000ffdbdf2518000000c000058008000100756470000000010075647000cec1bebd43198115440002800800010006000000080001000000000008000200000400000800020002000000080001000400000008000300d73300000800040000000000080004003cfb000008000100657468001c00028008000200af040000080003000700000008000100190000000c0002800800010000000000"], 0xe0}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
syz_open_dev$dri(&(0x7f0000000000), 0xf6c2, 0x0)
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x8)

1.289317946s ago: executing program 2 (id=661):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_UDP_ZERO_CSUM6_RX={0x5}, @IFLA_GENEVE_UDP_ZERO_CSUM6_TX={0x5}]}}}]}, 0x44}}, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000440)={0x53, 0x0, 0x10, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="851666ce20db", 0x0, 0x10, 0x39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io$hid(r5, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x22, 0xf, {[@main=@item_4={0x3, 0x0, 0xb, "08405af3"}, @local=@item_4, @local=@item_4={0x3, 0x2, 0x0, "6fe695cd"}]}}, 0x0}, 0x0)
r6 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGREPORT(r6, 0x400c4807, &(0x7f00000000c0)={0x1, 0x200, 0x5})
timer_delete(r4)
bind$alg(r1, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sm3\x00'}, 0x58)
recvmmsg(0xffffffffffffffff, &(0x7f00000014c0)=[{{&(0x7f0000001340)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000001440), 0x0, &(0x7f0000001480)=""/6, 0x6}, 0x3}], 0x1, 0x10000, 0x0)

1.282521665s ago: executing program 1 (id=670):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x12)
r2 = syz_open_dev$vcsu(0x0, 0x9, 0x2000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0x5}, {0x9, 0x5, 0xd, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000800)=ANY=[@ANYRESDEC=r2], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0x1f2f, 0xd, 0x0, &(0x7f00000007c0)="9f44948721919580684010a49e", 0x0, 0x241, 0x0, 0xaf, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb4206757531"}, 0x4c)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x9fd, 0x84, 0x105, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r7}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, &(0x7f0000000840)=""/121, &(0x7f0000000680), &(0x7f0000000540), 0x6c, r7}, 0x38)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0xa00, 0x0, 0x101, 0x100}})
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000040)={[0x80000001, 0x7, 0x3, 0x8, 0x6, 0x2, 0x1, 0x2, 0xdf, 0x7, 0x4, 0x10001, 0xf, 0x40, 0x351a, 0x3], 0xeeee0000, 0x3010})
dup(r1)

1.271502267s ago: executing program 5 (id=662):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000002700)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r1 = creat(&(0x7f0000000400)='./bus\x00', 0x40)
r2 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f00000002c0)=ANY=[], 0x76)
lsetxattr$security_ima(&(0x7f00000002c0)='./bus\x00', &(0x7f0000000000), &(0x7f0000000140)=ANY=[@ANYBLOB="0407"], 0x2, 0x0)
dup3(r2, r1, 0x0)
finit_module(r2, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000480)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

1.224057822s ago: executing program 5 (id=663):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18) (async, rerun: 32)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async, rerun: 32)
read$FUSE(0xffffffffffffffff, 0x0, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) (async)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000700), &(0x7f00000000c0), 0xff, r0}, 0x38) (async)
syz_open_dev$usbfs(&(0x7f0000000500), 0x77, 0x141341) (async, rerun: 32)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000cc0)=ANY=[@ANYBLOB="09000000070000000300000048"], 0x48) (rerun: 32)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r4}, &(0x7f0000000500), &(0x7f00000006c0)}, 0x20) (async)
add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
userfaultfd(0x80001)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder0\x00', 0x0, 0x0) (async, rerun: 32)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff, {0x4bdb, 0x103f}}, './cgroup.cpu/cgroup.procs\x00'}) (rerun: 32)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f0000000300)={&(0x7f0000000180), 0xc, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="a40000000906010300000000000000000100000905000100070000004c00078008001c4000000fff18000280140002402001000000000000000000000000000208001a002a3a2d0008000640000000051800028014000240ff02000000000000000000000000000105000100070000000800094000007634080009400900000000000000060004404e23000008000a400000000106001d40000d00000500010007000000"], 0xa4}}, 0x2400c850) (async)
r6 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) (async)
r7 = syz_open_dev$sndctrl(&(0x7f00000012c0), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r7, 0xc2c45512, &(0x7f0000000a00)={{0xa}, 0x0, [0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x5, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x429a3bbf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}) (async, rerun: 32)
r8 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32)
r9 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ADD(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="0100000000000000000015000000540001800d0001"], 0x68}}, 0x0)
dup(r6) (async, rerun: 32)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000001000000000000000000000000000000000000053e3f24a42f0db627947b695867e69b32b018d33ae5c0621d9ddd45a5e51164aaf3ee844e46b9ad8ea8fbb2382d7f0425306407f3e596ab8ccc47d121034cc6e4b584db44032e19d2b6038c85fbfd9f17d59b66bd43fee010924e381"], 0x48) (rerun: 32)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x17, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b70200000000e4ff850000008600000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7020000000000008500000086000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1.139510779s ago: executing program 5 (id=665):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x12)
r2 = syz_open_dev$vcsu(0x0, 0x9, 0x2000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0x5}, {0x9, 0x5, 0xd, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000800)=ANY=[@ANYRESDEC=r2], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0x1f2f, 0x0, 0x0, 0x0, 0x0, 0x241, 0x0, 0xaf, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb4206757531"}, 0x4c)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x9fd, 0x84, 0x105, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r7}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, &(0x7f0000000840)=""/121, &(0x7f0000000680), &(0x7f0000000540), 0x6c, r7}, 0x38)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0xa00, 0x0, 0x101, 0x100}})
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000040)={[0x80000001, 0x7, 0x3, 0x8, 0x6, 0x2, 0x1, 0x2, 0xdf, 0x7, 0x4, 0x10001, 0xf, 0x40, 0x351a, 0x3], 0xeeee0000, 0x3010})
dup(r1)

279.112016ms ago: executing program 5 (id=666):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000000))
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
sendto(r2, 0x0, 0x0, 0x1, 0x0, 0x0)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
poll(&(0x7f0000000100)=[{r3, 0xd0}, {r1}, {r2, 0x80}, {0xffffffffffffffff, 0xf400}, {r0, 0x20}, {r0, 0x8}, {r1, 0x30}, {r2, 0xc044}], 0x8, 0x10)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f0000000040), 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f00000000c0)=@ccm_128={{0x304}, "8cc3fe1c5366a470", "f83f3a6174d369e535da11b89ecb8f8a", "743f9cbe", "76978b7759e2f5bb"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_256={{0x304}, "76f7bc3e4ae1c84c", "af193c9c87ad31aab9773005eb08b40748095b4285514ca312c52e3a08756735", "5d362ced", "bc3a20b10f4ad11e"}, 0x38)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000019400)="2e0417ba1071c69e4017a7ff6a5c67481893017007463b8609091ba8f23295c6269b88196491db127901b653fb784067", 0x30)

277.547723ms ago: executing program 1 (id=675):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x12)
r2 = syz_open_dev$vcsu(0x0, 0x9, 0x2000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0x5}, {0x9, 0x5, 0xd, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000800)=ANY=[@ANYRESDEC=r2], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r6, 0x1f2f, 0xd, 0x0, &(0x7f00000007c0)="9f44948721919580684010a49e", 0x0, 0x241, 0x0, 0xaf, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb4206757531"}, 0x4c)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x9fd, 0x84, 0x105, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f00000000c0), &(0x7f0000000240), 0x800, r7}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, &(0x7f0000000840)=""/121, &(0x7f0000000680), &(0x7f0000000540), 0x6c, r7}, 0x38)
ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0xa00, 0x0, 0x101, 0x100}})
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000040)={[0x80000001, 0x7, 0x3, 0x8, 0x6, 0x2, 0x1, 0x2, 0xdf, 0x7, 0x4, 0x10001, 0xf, 0x40, 0x351a, 0x3], 0xeeee0000, 0x3010})
dup(r1)

0s ago: executing program 5 (id=667):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_UDP_ZERO_CSUM6_RX={0x5}, @IFLA_GENEVE_UDP_ZERO_CSUM6_TX={0x5}]}}}]}, 0x44}}, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)=<r4=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000440)={0x53, 0x0, 0x10, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="851666ce20db", 0x0, 0x10, 0x39, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x900})
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_control_io$hid(r5, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x22, 0xf, {[@main=@item_4={0x3, 0x0, 0xb, "08405af3"}, @local=@item_4, @local=@item_4={0x3, 0x2, 0x0, "6fe695cd"}]}}, 0x0}, 0x0)
r6 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGREPORT(r6, 0x400c4807, &(0x7f00000000c0)={0x1, 0x200, 0x5})
timer_delete(r4)
bind$alg(r1, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sm3\x00'}, 0x58)
recvmmsg(0xffffffffffffffff, &(0x7f00000014c0)=[{{&(0x7f0000000140)=@alg, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000340)=""/4096, 0x1000}], 0x1, &(0x7f0000000200)=""/255, 0xff}, 0x2}, {{&(0x7f0000001340)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000001440)}, 0x3}], 0x2, 0x10000, 0x0)

kernel console output (not intermixed with test programs):

601][ T6871]  ? __pfx_ksys_write+0x10/0x10
[   65.578330][ T6871]  __ia32_sys_madvise+0xa7/0x110
[   65.579971][ T6871]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   65.581655][ T6871]  __do_fast_syscall_32+0x73/0x120
[   65.582924][ T6871]  do_fast_syscall_32+0x32/0x80
[   65.584164][ T6871]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   65.585767][ T6871] RIP: 0023:0xf714e579
[   65.586821][ T6871] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   65.591563][ T6871] RSP: 002b:00000000f514055c EFLAGS: 00000296 ORIG_RAX: 00000000000000db
[   65.593631][ T6871] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000400000
[   65.595581][ T6871] RDX: 0000000000000019 RSI: 0000000000000000 RDI: 0000000000000000
[   65.597751][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   65.599759][ T6871] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   65.601774][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   65.603707][ T6871]  </TASK>
[   65.606235][ T6110] usb 9-1: device not accepting address 3, error -71
[   65.608202][ T1326] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[   65.612848][ T1326] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[   65.649965][ T6876] overlayfs: failed to resolve './file1': -2
[   65.826938][ T6885] vlan2: entered promiscuous mode
[   65.828415][ T6885] vlan2: entered allmulticast mode
[   65.829780][ T6885] hsr_slave_1: entered allmulticast mode
[   65.832436][ T6885] netlink: 4 bytes leftover after parsing attributes in process `syz.1.232'.
[   65.880344][ T6014] usb 7-1: USB disconnect, device number 3
[   65.915314][ T6885] hsr_slave_1 (unregistering): left allmulticast mode
[   65.923333][ T6885] hsr_slave_1 (unregistering): left promiscuous mode
[   66.551456][ T6905] syz.0.238: vmalloc error: size 4096, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[   66.556204][ T6905] CPU: 2 UID: 0 PID: 6905 Comm: syz.0.238 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[   66.559046][ T6905] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.561889][ T6905] Call Trace:
[   66.562781][ T6905]  <TASK>
[   66.563549][ T6905]  dump_stack_lvl+0x16c/0x1f0
[   66.564762][ T6905]  warn_alloc+0x24d/0x3a0
[   66.565931][ T6905]  ? __pfx_warn_alloc+0x10/0x10
[   66.567384][ T6905]  ? policy_nodemask+0xea/0x4e0
[   66.568635][ T6905]  ? alloc_pages_mpol_noprof+0x315/0x610
[   66.570070][ T6905]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   66.571777][ T6905]  ? trace_kmalloc+0x2d/0xd0
[   66.573250][ T6905]  ? __pfx___might_resched+0x10/0x10
[   66.574653][ T6905]  __vmalloc_node_range_noprof+0x12c0/0x1530
[   66.576195][ T6905]  ? __snd_dma_alloc_pages+0x50/0x90
[   66.577581][ T6905]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   66.579274][ T6905]  ? __mutex_unlock_slowpath+0x164/0x690
[   66.580753][ T6905]  ? __snd_dma_alloc_pages+0x50/0x90
[   66.582186][ T6905]  vmalloc_noprof+0x6b/0x90
[   66.583407][ T6905]  ? __snd_dma_alloc_pages+0x50/0x90
[   66.584803][ T6905]  ? __pfx_snd_dma_vmalloc_alloc+0x10/0x10
[   66.586432][ T6905]  __snd_dma_alloc_pages+0x50/0x90
[   66.588262][ T6905]  snd_dma_alloc_dir_pages+0x151/0x240
[   66.589957][ T6905]  do_alloc_pages+0x115/0x270
[   66.591204][ T6905]  snd_pcm_lib_malloc_pages+0x3df/0x980
[   66.592657][ T6905]  snd_pcm_hw_params+0x15e6/0x1b20
[   66.594011][ T6905]  ? snd_pcm_hw_param_near.constprop.0+0x73e/0x8f0
[   66.595706][ T6905]  ? __pfx_snd_pcm_hw_params+0x10/0x10
[   66.597171][ T6905]  ? snd_pcm_hw_param_near.constprop.0+0x743/0x8f0
[   66.598870][ T6905]  ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10
[   66.600666][ T6905]  snd_pcm_kernel_ioctl+0x147/0x2e0
[   66.602047][ T6905]  snd_pcm_oss_change_params_locked+0x1410/0x3a50
[   66.603735][ T6905]  ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10
[   66.605609][ T6905]  ? __mutex_lock+0x1cc/0xa60
[   66.606935][ T6905]  snd_pcm_oss_get_active_substream+0x168/0x1d0
[   66.608576][ T6905]  snd_pcm_oss_ioctl+0x21d5/0x3780
[   66.609937][ T6905]  ? __pfx_snd_pcm_oss_ioctl+0x10/0x10
[   66.611372][ T6905]  ? __fget_files+0x206/0x3a0
[   66.612628][ T6905]  ? __pfx_snd_pcm_oss_ioctl_compat+0x10/0x10
[   66.614208][ T6905]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   66.615555][ T6905]  __do_fast_syscall_32+0x73/0x120
[   66.617096][ T6905]  do_fast_syscall_32+0x32/0x80
[   66.618386][ T6905]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   66.620061][ T6905] RIP: 0023:0xf714e579
[   66.621151][ T6905] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   66.626188][ T6905] RSP: 002b:00000000f514055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   66.629211][ T6905] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0045002
[   66.631364][ T6905] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[   66.633428][ T6905] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   66.635481][ T6905] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   66.637678][ T6905] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   66.639755][ T6905]  </TASK>
[   66.642444][ T6905] Mem-Info:
[   66.643407][ T6905] active_anon:5810 inactive_anon:152 isolated_anon:0
[   66.643407][ T6905]  active_file:15882 inactive_file:35962 isolated_file:0
[   66.643407][ T6905]  unevictable:1768 dirty:91 writeback:0
[   66.643407][ T6905]  slab_reclaimable:8055 slab_unreclaimable:55375
[   66.643407][ T6905]  mapped:23956 shmem:2451 pagetables:746
[   66.643407][ T6905]  sec_pagetables:300 bounce:0
[   66.643407][ T6905]  kernel_misc_reclaimable:0
[   66.643407][ T6905]  free:54894 free_pcp:1141 free_cma:0
[   66.644894][ T6110] usb 9-1: reset high-speed USB device number 3 using dummy_hcd
[   66.655945][ T6905] Node 0 active_anon:5752kB inactive_anon:608kB active_file:668kB inactive_file:8096kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:4808kB dirty:4kB writeback:0kB shmem:5044kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9808kB pagetables:984kB sec_pagetables:1144kB all_unreclaimable? yes
[   66.665689][ T6905] Node 1 active_anon:17488kB inactive_anon:0kB active_file:62860kB inactive_file:135752kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:91016kB dirty:360kB writeback:0kB shmem:4760kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2628kB pagetables:2000kB sec_pagetables:56kB all_unreclaimable? no
[   66.673589][ T6905] Node 0 DMA free:2940kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:80kB inactive_anon:0kB active_file:8kB inactive_file:4kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:468kB local_pcp:200kB free_cma:0kB
[   66.676096][ T6110] usb 9-1: device reset changed ep0 maxpacket size!
[   66.680590][ T6905] lowmem_reserve[]: 0 273 0 0 0
[   66.683902][ T6905] Node 0 DMA32 free:18004kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:5672kB inactive_anon:608kB active_file:660kB inactive_file:8092kB unevictable:3536kB writepending:4kB present:1032196kB managed:306316kB mlocked:0kB bounce:0kB free_pcp:1644kB local_pcp:1132kB free_cma:0kB
[   66.686336][ T1335] usb 9-1: USB disconnect, device number 3
[   66.691321][ T6905] lowmem_reserve[]: 0 0 0 0 0
[   66.694022][ T6905] Node 1 DMA32 free:199408kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:17488kB inactive_anon:0kB active_file:62860kB inactive_file:135752kB unevictable:3536kB writepending:360kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:6532kB local_pcp:1064kB free_cma:0kB
[   66.702421][ T6905] lowmem_reserve[]: 0 0 0 0 0
[   66.703690][ T6905] Node 0 DMA: 9*4kB (U) 95*8kB (U) 74*16kB (U) 30*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2940kB
[   66.707327][ T6905] Node 0 DMA32: 221*4kB (UMEH) 33*8kB (MH) 12*16kB (MH) 91*32kB (UMEH) 78*64kB (UMEH) 36*128kB (UE) 6*256kB (UME) 1*512kB (U) 2*1024kB (M) 0*2048kB 0*4096kB = 17948kB
[   66.711545][ T6905] Node 1 DMA32: 358*4kB (UME) 695*8kB (UM) 566*16kB (UME) 214*32kB (UME) 234*64kB (UME) 36*128kB (UME) 19*256kB (UME) 21*512kB (UME) 14*1024kB (UME) 10*2048kB (UM) 26*4096kB (UM) = 199408kB
[   66.716471][ T6905] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   66.718933][ T6905] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   66.721380][ T6905] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   66.724206][ T6905] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   66.727986][ T6905] 54295 total pagecache pages
[   66.729183][ T6905] 0 pages in swap cache
[   66.730228][ T6905] Free swap  = 124736kB
[   66.731265][ T6905] Total swap = 124996kB
[   66.732357][ T6905] 524155 pages RAM
[   66.733314][ T6905] 0 pages HighMem/MovableOnly
[   66.734509][ T6905] 206673 pages reserved
[   66.735648][ T6905] 0 pages cma reserved
[   66.845967][ T1335] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[   67.004337][ T6919] netlink: 32 bytes leftover after parsing attributes in process `syz.1.240'.
[   67.054851][ T1335] usb 9-1: Using ep0 maxpacket: 8
[   67.060526][ T1335] usb 9-1: config 0 has no interfaces?
[   67.062109][ T1335] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   67.064509][ T1335] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   67.071896][ T1335] usb 9-1: config 0 descriptor??
[   67.384671][ T6920] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   67.387578][ T6920] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   67.423122][    T9] cfg80211: failed to load regulatory.db
[   67.692338][ T6925] overlayfs: overlapping lowerdir path
[   67.698096][ T6925] netlink: 8 bytes leftover after parsing attributes in process `syz.0.244'.
[   67.700473][ T6925] netlink: 20 bytes leftover after parsing attributes in process `syz.0.244'.
[   67.715874][    T9] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[   67.932987][    T9] usb 7-1: device descriptor read/64, error -71
[   68.132754][ T6065] usb 9-1: USB disconnect, device number 4
[   68.194957][    T9] usb 7-1: new full-speed USB device number 5 using dummy_hcd
[   68.261055][ T6931] netlink: 4 bytes leftover after parsing attributes in process `syz.0.246'.
[   68.335287][    T9] usb 7-1: device descriptor read/64, error -71
[   68.394634][ T5309] Bluetooth: hci2: unexpected event 0x09 length: 4 > 3
[   68.445901][    T9] usb usb7-port1: attempt power cycle
[   68.599769][ T6939] netlink: 20 bytes leftover after parsing attributes in process `syz.1.249'.
[   68.665250][ T6946] vlan1: entered promiscuous mode
[   68.668817][ T6945] vlan1: left promiscuous mode
[   68.776937][ T6949] netlink: 12 bytes leftover after parsing attributes in process `syz.1.250'.
[   68.794964][    T9] usb 7-1: new full-speed USB device number 6 using dummy_hcd
[   68.815315][    T9] usb 7-1: device descriptor read/8, error -71
[   69.055135][    T9] usb 7-1: new full-speed USB device number 7 using dummy_hcd
[   69.076002][    T9] usb 7-1: device descriptor read/8, error -71
[   69.187793][    T9] usb usb7-port1: unable to enumerate USB device
[   69.328115][ T6960] netlink: 28 bytes leftover after parsing attributes in process `syz.0.256'.
[   69.559884][ T6966] netlink: 4 bytes leftover after parsing attributes in process `syz.1.258'.
[   70.058080][   T73] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   70.207721][   T73] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   70.210613][   T73] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   70.213106][   T73] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   70.216540][   T73] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   70.219031][   T73] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   70.222765][   T73] usb 5-1: config 0 descriptor??
[   70.633230][   T73] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving
[   70.638711][   T73] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   70.657255][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[   70.659418][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[   70.670648][ T6989] netlink: 'syz.4.263': attribute type 39 has an invalid length.
[   70.860789][ T6994] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method
[   70.870935][ T6995] 9pnet_virtio: no channels available for device syz
[   70.896986][ T6110] usb 5-1: USB disconnect, device number 7
[   70.969089][ T7000] binder: 6999:7000 ioctl c0306201 200002c0 returned -22
[   71.178944][ T7004] netlink: 8 bytes leftover after parsing attributes in process `syz.4.268'.
[   71.181867][ T7004] netlink: 4 bytes leftover after parsing attributes in process `syz.4.268'.
[   71.243396][ T7004] bond0: (slave bond_slave_0): Releasing backup interface
[   71.256728][ T1326] usb 7-1: new full-speed USB device number 8 using dummy_hcd
[   71.422827][ T1326] usb 7-1: config index 0 descriptor too short (expected 26395, got 27)
[   71.425656][ T1326] usb 7-1: config 130 has 1 interface, different from the descriptor's value: 20
[   71.428038][ T1326] usb 7-1: config 130 interface 0 has no altsetting 0
[   71.438307][ T1326] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   71.440654][ T1326] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   71.442710][ T1326] usb 7-1: Product: syz
[   71.443792][ T1326] usb 7-1: Manufacturer: syz
[   71.445349][ T1326] usb 7-1: SerialNumber: syz
[   71.825056][ T7016] FAULT_INJECTION: forcing a failure.
[   71.825056][ T7016] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.828554][ T7016] CPU: 1 UID: 0 PID: 7016 Comm: syz.0.271 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[   71.831266][ T7016] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   71.834008][ T7016] Call Trace:
[   71.834872][ T7016]  <TASK>
[   71.835643][ T7016]  dump_stack_lvl+0x16c/0x1f0
[   71.836878][ T7016]  should_fail_ex+0x497/0x5b0
[   71.838125][ T7016]  _copy_from_user+0x2e/0xd0
[   71.839345][ T7016]  v4l2_compat_get_array_args+0x510/0x700
[   71.840779][ T7016]  ? __pfx_v4l2_compat_get_array_args+0x10/0x10
[   71.842397][ T7016]  ? trace_kmalloc+0x2d/0xd0
[   71.843732][ T7016]  ? __kmalloc_node_noprof.cold+0x5a/0x5f
[   71.845170][ T7016]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   71.846732][ T7016]  ? __kvmalloc_node_noprof+0x6f/0x1a0
[   71.848139][ T7016]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   71.849654][ T7016]  video_usercopy+0xe19/0x1520
[   71.850820][ T7016]  ? __pfx___video_do_ioctl+0x10/0x10
[   71.852164][ T7016]  ? __pfx_video_usercopy+0x10/0x10
[   71.853509][ T7016]  v4l2_ioctl+0x1ba/0x250
[   71.854639][ T7016]  v4l2_compat_ioctl32+0x214/0x2c0
[   71.856002][ T7016]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[   71.857467][ T7016]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   71.858836][ T7016]  __do_fast_syscall_32+0x73/0x120
[   71.860175][ T7016]  do_fast_syscall_32+0x32/0x80
[   71.861454][ T7016]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   71.863086][ T7016] RIP: 0023:0xf714e579
[   71.864147][ T7016] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   71.869122][ T7016] RSP: 002b:00000000f50fe55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   71.871257][ T7016] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000c0185649
[   71.873298][ T7016] RDX: 0000000020000140 RSI: 0000000000000000 RDI: 0000000000000000
[   71.875649][ T7016] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   71.877669][ T7016] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   71.879692][ T7016] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   71.881749][ T7016]  </TASK>
[   71.882626][    C1] vkms_vblank_simulate: vblank timer overrun
[   72.094705][ T7018] team0 (unregistering): Port device team_slave_0 removed
[   72.099183][ T7018] team0 (unregistering): Port device team_slave_1 removed
[   72.745319][   T56] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[   72.896056][   T56] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   72.898922][   T56] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   72.901511][   T56] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   72.904934][   T56] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   72.907284][   T56] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   72.910534][   T56] usb 5-1: config 0 descriptor??
[   73.318028][   T56] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving
[   73.322296][   T56] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   73.848131][ T6065] usb 5-1: USB disconnect, device number 8
[   74.016680][ T1326] usblp 7-1:130.0: usblp0: USB Unidirectional printer dev 8 if 0 alt 245 proto 1 vid 0x0525 pid 0xA4A8
[   74.021069][ T1326] usb 7-1: USB disconnect, device number 8
[   74.024020][ T1326] usblp0: removed
[   74.031264][ T7061] devpts: called with bogus options
[   74.215863][ T6014] libceph: connect (1)[c::]:6789 error -13
[   74.218320][ T6014] libceph: mon0 (1)[c::]:6789 connect error
[   74.223246][ T6014] libceph: connect (1)[c::]:6789 error -13
[   74.225016][ T6014] libceph: mon0 (1)[c::]:6789 connect error
[   74.255037][ T7064] ceph: No mds server is up or the cluster is laggy
[   74.520560][ T7079] __nla_validate_parse: 1 callbacks suppressed
[   74.520570][ T7079] netlink: 56 bytes leftover after parsing attributes in process `syz.0.290'.
[   74.719051][ T7084] netlink: 4 bytes leftover after parsing attributes in process `syz.0.291'.
[   74.773084][ T7086] syz.0.292 uses obsolete (PF_INET,SOCK_PACKET)
[   74.775929][ T7086] netlink: 'syz.0.292': attribute type 4 has an invalid length.
[   75.371441][ T7096] wg1: entered promiscuous mode
[   75.634990][ T6110] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[   75.718491][ T7125] netlink: 4 bytes leftover after parsing attributes in process `syz.4.304'.
[   75.747864][ T7125] netlink: 4 bytes leftover after parsing attributes in process `syz.4.304'.
[   75.800334][ T6110] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   75.806688][ T6110] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   75.811557][ T6110] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   75.817211][ T6110] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   75.820232][ T6110] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.835607][ T6110] usb 5-1: config 0 descriptor??
[   76.005524][   T39] audit: type=1326 audit(1734197590.607:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7131 comm="syz.4.305" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45579 code=0x7fc00000
[   76.173482][ T7154] unsupported nla_type 256
[   76.178074][ T7154] ipvlan2: entered promiscuous mode
[   76.179488][ T7154] ipvlan2: entered allmulticast mode
[   76.180872][ T7154] vlan0: entered allmulticast mode
[   76.182198][ T7154] veth0_vlan: entered allmulticast mode
[   76.247960][ T6110] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving
[   76.251940][ T6110] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   76.903486][    T9] usb 5-1: USB disconnect, device number 9
[   77.038701][ T7182] FAULT_INJECTION: forcing a failure.
[   77.038701][ T7182] name failslab, interval 1, probability 0, space 0, times 0
[   77.042002][ T7182] CPU: 2 UID: 0 PID: 7182 Comm: syz.2.320 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[   77.044795][ T7182] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.047830][ T7182] Call Trace:
[   77.048708][ T7182]  <TASK>
[   77.049507][ T7182]  dump_stack_lvl+0x16c/0x1f0
[   77.050759][ T7182]  should_fail_ex+0x497/0x5b0
[   77.051991][ T7182]  should_failslab+0xc2/0x120
[   77.053244][ T7182]  __kmalloc_cache_noprof+0x68/0x420
[   77.054668][ T7182]  sctp_add_bind_addr+0x9d/0x3e0
[   77.056224][ T7182]  sctp_copy_local_addr_list+0x39e/0x5a0
[   77.057790][ T7182]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[   77.059393][ T7182]  ? sctp_auth_asoc_copy_shkeys+0x2a7/0x360
[   77.060942][ T7182]  ? sctp_bind_addr_copy+0xe0/0x530
[   77.062295][ T7182]  sctp_bind_addr_copy+0xe0/0x530
[   77.063606][ T7182]  sctp_connect_new_asoc+0x1d8/0x790
[   77.065033][ T7182]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[   77.066581][ T7182]  ? mark_held_locks+0x9f/0xe0
[   77.067834][ T7182]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[   77.069292][ T7182]  sctp_sendmsg+0x162a/0x1f10
[   77.070527][ T7182]  ? __pfx___lock_acquire+0x10/0x10
[   77.071890][ T7182]  ? __pfx_sctp_sendmsg+0x10/0x10
[   77.073215][ T7182]  ? __pfx___might_resched+0x10/0x10
[   77.074629][ T7182]  ? __pfx_aa_sk_perm+0x10/0x10
[   77.076144][ T7182]  ? __import_iovec+0x1f2/0x6d0
[   77.077877][ T7182]  ? __pfx_sctp_sendmsg+0x10/0x10
[   77.079199][ T7182]  inet_sendmsg+0x119/0x140
[   77.080390][ T7182]  ____sys_sendmsg+0x907/0xb40
[   77.081642][ T7182]  ? __pfx_____sys_sendmsg+0x10/0x10
[   77.083042][ T7182]  ? get_compat_msghdr+0x11b/0x170
[   77.084887][ T7182]  ___sys_sendmsg+0x135/0x1e0
[   77.086453][ T7182]  ? __pfx____sys_sendmsg+0x10/0x10
[   77.087809][ T7182]  ? trace_lock_acquire+0x14e/0x1f0
[   77.089173][ T7182]  __sys_sendmmsg+0x2fa/0x420
[   77.090404][ T7182]  ? __pfx___sys_sendmmsg+0x10/0x10
[   77.091767][ T7182]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   77.093327][ T7182]  ? fput+0x67/0x440
[   77.094382][ T7182]  ? ksys_write+0x1ba/0x250
[   77.095683][ T7182]  ? __pfx_ksys_write+0x10/0x10
[   77.097469][ T7182]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[   77.098993][ T7182]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   77.100720][ T7182]  __do_fast_syscall_32+0x73/0x120
[   77.102068][ T7182]  do_fast_syscall_32+0x32/0x80
[   77.103343][ T7182]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   77.105004][ T7182] RIP: 0023:0xf7fb8579
[   77.106313][ T7182] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   77.111261][ T7182] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[   77.113419][ T7182] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020001680
[   77.115506][ T7182] RDX: 0000000000000001 RSI: 00000000000000fc RDI: 0000000000000000
[   77.118103][ T7182] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   77.120158][ T7182] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   77.122206][ T7182] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   77.124249][ T7182]  </TASK>
[   77.223617][ T5309] Bluetooth: hci3: Unknown advertising packet type: 0x73
[   77.223661][ T5309] Bluetooth: hci3: Malformed LE Event: 0x0d
[   77.260981][ T7191] netlink: 8 bytes leftover after parsing attributes in process `syz.4.324'.
[   77.263315][ T7191] netlink: 12 bytes leftover after parsing attributes in process `syz.4.324'.
[   77.324712][ T7197] netlink: 68 bytes leftover after parsing attributes in process `syz.2.327'.
[   77.554282][ T7212] netlink: 'syz.2.332': attribute type 2 has an invalid length.
[   78.623794][ T7244] FAULT_INJECTION: forcing a failure.
[   78.623794][ T7244] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   78.628140][ T7244] CPU: 2 UID: 0 PID: 7244 Comm: syz.0.339 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[   78.630883][ T7244] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   78.633669][ T7244] Call Trace:
[   78.634549][ T7244]  <TASK>
[   78.635332][ T7244]  dump_stack_lvl+0x16c/0x1f0
[   78.636586][ T7244]  should_fail_ex+0x497/0x5b0
[   78.637833][ T7244]  ? fs_reclaim_acquire+0xae/0x150
[   78.639224][ T7244]  should_fail_alloc_page+0xe7/0x130
[   78.640605][ T7244]  prepare_alloc_pages.constprop.0+0x16f/0x560
[   78.642217][ T7244]  __alloc_pages_noprof+0x190/0x25b0
[   78.643613][ T7244]  ? hlock_class+0x4e/0x130
[   78.644819][ T7244]  ? hlock_class+0x4e/0x130
[   78.646034][ T7244]  ? mark_lock+0xb5/0xc60
[   78.647169][ T7244]  ? mark_lock+0xb5/0xc60
[   78.648317][ T7244]  ? __pfx_mark_lock+0x10/0x10
[   78.649587][ T7244]  ? mark_lock+0xb5/0xc60
[   78.650732][ T7244]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   78.652224][ T7244]  ? hlock_class+0x4e/0x130
[   78.653431][ T7244]  ? mark_lock+0xb5/0xc60
[   78.654574][ T7244]  ? hlock_class+0x4e/0x130
[   78.655785][ T7244]  ? mark_lock+0xb5/0xc60
[   78.656934][ T7244]  ? __pfx_mark_lock+0x10/0x10
[   78.658187][ T7244]  ? mark_lock+0xb5/0xc60
[   78.659340][ T7244]  ? hlock_class+0x4e/0x130
[   78.660542][ T7244]  ? hlock_class+0x4e/0x130
[   78.661749][ T7244]  ? __lock_acquire+0xcc5/0x3c40
[   78.663035][ T7244]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   78.664555][ T7244]  ? policy_nodemask+0xea/0x4e0
[   78.665861][ T7244]  alloc_pages_mpol_noprof+0x2c9/0x610
[   78.667288][ T7244]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   78.668869][ T7244]  ? __lock_acquire+0xcc5/0x3c40
[   78.670178][ T7244]  folio_alloc_mpol_noprof+0x36/0xd0
[   78.671563][ T7244]  vma_alloc_folio_noprof+0xee/0x1b0
[   78.672963][ T7244]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   78.674513][ T7244]  ? find_held_lock+0x2d/0x110
[   78.675837][ T7244]  do_pte_missing+0x2017/0x3e00
[   78.677191][ T7244]  __handle_mm_fault+0x103c/0x2a40
[   78.678525][ T7244]  ? __pfx___handle_mm_fault+0x10/0x10
[   78.679950][ T7244]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   78.681416][ T7244]  ? find_vma+0xc0/0x140
[   78.682528][ T7244]  ? __pfx_find_vma+0x10/0x10
[   78.683763][ T7244]  handle_mm_fault+0x3fa/0xaa0
[   78.685019][ T7244]  do_user_addr_fault+0x7a3/0x13f0
[   78.686571][ T7244]  exc_page_fault+0x5c/0xc0
[   78.687765][ T7244]  asm_exc_page_fault+0x26/0x30
[   78.689055][ T7244] RIP: 0010:__put_user_4+0x11/0x20
[   78.690393][ T7244] Code: 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[   78.695408][ T7244] RSP: 0018:ffffc900030f7ee0 EFLAGS: 00050202
[   78.697697][ T7244] RAX: 000000000000097b RBX: 0000000000000000 RCX: 0000000020005580
[   78.699884][ T7244] RDX: ffff888021474880 RSI: ffffffff8160fa9a RDI: ffffffff8bb15800
[   78.701945][ T7244] RBP: 0000000020005580 R08: 0000000000000000 R09: fffffbfff20398ea
[   78.703991][ T7244] R10: ffffffff901cc757 R11: 0000000000000000 R12: 000000000000097b
[   78.706082][ T7244] R13: ffff888021474880 R14: ffff88802196d7c0 R15: 0000000000000000
[   78.708125][ T7244]  ? __ia32_compat_sys_old_getrlimit+0x1ba/0x2a0
[   78.709785][ T7244]  __ia32_compat_sys_old_getrlimit+0x1ce/0x2a0
[   78.711390][ T7244]  __do_fast_syscall_32+0x73/0x120
[   78.712730][ T7244]  do_fast_syscall_32+0x32/0x80
[   78.712925][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804b30b400: rx timeout, send abort
[   78.714004][ T7244]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   78.714072][ T7244] RIP: 0023:0xf714e579
[   78.714082][ T7244] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   78.717655][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804b30a000: rx timeout, send abort
[   78.718605][ T7244] RSP: 002b:00000000f514055c EFLAGS: 00000296
[   78.719827][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88804b30b400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   78.724621][ T7244]  ORIG_RAX: 000000000000004c
[   78.724628][ T7244] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 0000000020005580
[   78.727558][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88804b30a000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   78.728508][ T7244] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   78.741314][ T7244] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   78.743363][ T7244] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   78.745396][ T7244] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   78.747854][ T7244]  </TASK>
[   78.748963][    C2] vkms_vblank_simulate: vblank timer overrun
[   79.307518][   T73] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[   79.488058][   T73] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   79.491208][   T73] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   79.493763][   T73] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   79.497590][   T73] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   79.500443][   T73] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   79.507658][   T73] usb 9-1: config 0 descriptor??
[   79.916305][   T73] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving
[   79.920249][   T73] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[   79.938251][ T7269] syz.2.345 (7269): drop_caches: 2
[   80.012181][   T39] audit: type=1326 audit(1734197594.607:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.0.346" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x7ffc0000
[   80.018928][   T39] audit: type=1326 audit(1734197594.607:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.0.346" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x7ffc0000
[   80.024352][   T39] audit: type=1326 audit(1734197594.617:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.0.346" exe="/syz-executor" sig=0 arch=40000003 syscall=47 compat=1 ip=0xf714e579 code=0x7ffc0000
[   80.031726][   T39] audit: type=1326 audit(1734197594.617:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.0.346" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x7ffc0000
[   80.038584][   T39] audit: type=1326 audit(1734197594.617:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.0.346" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x7ffc0000
[   80.044000][   T39] audit: type=1326 audit(1734197594.617:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.0.346" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf714e579 code=0x7ffc0000
[   80.051246][   T39] audit: type=1326 audit(1734197594.617:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.0.346" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x7ffc0000
[   80.057574][   T39] audit: type=1326 audit(1734197594.617:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.0.346" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf714e579 code=0x7ffc0000
[   80.064049][   T39] audit: type=1326 audit(1734197594.617:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.0.346" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x7ffc0000
[   80.337269][ T7292] netlink: 9 bytes leftover after parsing attributes in process `syz.2.352'.
[   80.369052][ T7292] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   80.442261][ T7284] IPVS: set_ctl: invalid protocol: 58 10.1.1.2:20000
[   80.601251][ T1488] usb 9-1: USB disconnect, device number 5
[   80.679699][ T7300] overlayfs: missing 'lowerdir'
[   80.933691][ T7309] FAULT_INJECTION: forcing a failure.
[   80.933691][ T7309] name failslab, interval 1, probability 0, space 0, times 0
[   80.936982][ T7309] CPU: 1 UID: 0 PID: 7309 Comm: syz.0.356 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[   80.939701][ T7309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.942455][ T7309] Call Trace:
[   80.943322][ T7309]  <TASK>
[   80.944091][ T7309]  dump_stack_lvl+0x16c/0x1f0
[   80.945327][ T7309]  should_fail_ex+0x497/0x5b0
[   80.946578][ T7309]  ? fs_reclaim_acquire+0xae/0x150
[   80.947904][ T7309]  should_failslab+0xc2/0x120
[   80.949148][ T7309]  __kmalloc_noprof+0xce/0x4f0
[   80.950422][ T7309]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   80.951896][ T7309]  ? tomoyo_realpath_from_path+0xbf/0x710
[   80.953376][ T7309]  tomoyo_realpath_from_path+0xbf/0x710
[   80.954807][ T7309]  ? tomoyo_path_number_perm+0x235/0x5b0
[   80.956276][ T7309]  tomoyo_path_number_perm+0x248/0x5b0
[   80.957684][ T7309]  ? tomoyo_path_number_perm+0x235/0x5b0
[   80.959136][ T7309]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   80.960700][ T7309]  ? __pfx_lock_release+0x10/0x10
[   80.962005][ T7309]  ? trace_lock_acquire+0x14e/0x1f0
[   80.963353][ T7309]  ? lock_acquire+0x2f/0xb0
[   80.964529][ T7309]  ? __fget_files+0x40/0x3a0
[   80.965757][ T7309]  ? __fget_files+0x206/0x3a0
[   80.966971][ T7309]  security_file_ioctl_compat+0x9b/0x240
[   80.968403][ T7309]  __do_compat_sys_ioctl+0x4e/0x2c0
[   80.969757][ T7309]  __do_fast_syscall_32+0x73/0x120
[   80.971080][ T7309]  do_fast_syscall_32+0x32/0x80
[   80.972342][ T7309]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   80.973983][ T7309] RIP: 0023:0xf714e579
[   80.975047][ T7309] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   80.980017][ T7309] RSP: 002b:00000000f514055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   80.982164][ T7309] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000541c
[   80.984197][ T7309] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000000000000
[   80.986261][ T7309] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   80.988290][ T7309] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   80.990429][ T7309] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   80.992478][ T7309]  </TASK>
[   80.993791][ T7309] ERROR: Out of memory at tomoyo_realpath_from_path.
[   81.129504][ T7314] netlink: 8 bytes leftover after parsing attributes in process `syz.2.358'.
[   81.142070][ T7314] qrtr: Invalid version 71
[   81.143911][ T7316] qrtr: Invalid version 71
[   81.734855][ T1488] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[   81.823621][ T7339] wg1: entered promiscuous mode
[   81.886173][ T1488] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   81.888481][ T1488] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[   81.891256][ T1488] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[   81.893720][ T1488] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[   81.896678][ T1488] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[   81.900992][ T1488] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   81.903445][ T1488] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   81.905636][ T1488] usb 6-1: Product: syz
[   81.906850][ T1488] usb 6-1: Manufacturer: syz
[   81.916335][ T1488] cdc_wdm 6-1:1.0: skipping garbage
[   81.917776][ T1488] cdc_wdm 6-1:1.0: skipping garbage
[   81.922910][ T1488] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[   81.924563][ T1488] cdc_wdm 6-1:1.0: Unknown control protocol
[   82.001645][ T7345] netlink: 12 bytes leftover after parsing attributes in process `syz.4.368'.
[   82.177830][ T7353] FAULT_INJECTION: forcing a failure.
[   82.177830][ T7353] name failslab, interval 1, probability 0, space 0, times 0
[   82.181647][ T7353] CPU: 3 UID: 0 PID: 7353 Comm: syz.4.370 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[   82.184363][ T7353] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.186807][ T7355] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   82.187136][ T7353] Call Trace:
[   82.187144][ T7353]  <TASK>
[   82.190126][ T7355] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   82.190210][ T7353]  dump_stack_lvl+0x16c/0x1f0
[   82.194233][ T7353]  should_fail_ex+0x497/0x5b0
[   82.195474][ T7353]  should_failslab+0xc2/0x120
[   82.196712][ T7353]  kmem_cache_alloc_noprof+0x6e/0x3b0
[   82.198168][ T7353]  ? trace_lock_acquire+0x14e/0x1f0
[   82.199540][ T7353]  ? skb_clone+0x190/0x3f0
[   82.200713][ T7353]  skb_clone+0x190/0x3f0
[   82.201838][ T7353]  dev_queue_xmit_nit+0x38f/0xbc0
[   82.203151][ T7353]  dev_hard_start_xmit+0x283/0x7b0
[   82.204488][ T7353]  __dev_queue_xmit+0x7f0/0x43e0
[   82.205796][ T7353]  ? __pfx___dev_queue_xmit+0x10/0x10
[   82.207200][ T7353]  ? rcu_is_watching+0x12/0xc0
[   82.208473][ T7353]  ? trace_kmem_cache_alloc+0x2d/0xd0
[   82.209879][ T7353]  ? __copy_skb_header+0x2e8/0x5b0
[   82.211214][ T7353]  ? __skb_clone+0x570/0x760
[   82.212428][ T7353]  netlink_deliver_tap+0xa61/0xca0
[   82.213771][ T7353]  netlink_unicast+0x5e1/0x7f0
[   82.215022][ T7353]  ? __pfx_netlink_unicast+0x10/0x10
[   82.216380][ T7353]  ? __phys_addr_symbol+0x30/0x80
[   82.217693][ T7353]  ? __check_object_size+0x488/0x710
[   82.219140][ T7353]  netlink_sendmsg+0x8b8/0xd70
[   82.220390][ T7353]  ? __pfx_netlink_sendmsg+0x10/0x10
[   82.221768][ T7353]  ____sys_sendmsg+0x9ae/0xb40
[   82.223011][ T7353]  ? __pfx_____sys_sendmsg+0x10/0x10
[   82.224382][ T7353]  ? get_compat_msghdr+0x11b/0x170
[   82.225738][ T7353]  ___sys_sendmsg+0x135/0x1e0
[   82.226963][ T7353]  ? __pfx____sys_sendmsg+0x10/0x10
[   82.228380][ T7353]  ? __pfx_lock_release+0x10/0x10
[   82.229706][ T7353]  ? trace_lock_acquire+0x14e/0x1f0
[   82.231059][ T7353]  ? __fget_files+0x206/0x3a0
[   82.232287][ T7353]  __sys_sendmsg+0x16e/0x220
[   82.233508][ T7353]  ? __pfx___sys_sendmsg+0x10/0x10
[   82.234848][ T7353]  __do_fast_syscall_32+0x73/0x120
[   82.236183][ T7353]  do_fast_syscall_32+0x32/0x80
[   82.237455][ T7353]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.239286][ T7353] RIP: 0023:0xf7f45579
[   82.240286][ T7353] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   82.245404][ T7353] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   82.247613][ T7353] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000380
[   82.249785][ T7353] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   82.251888][ T7353] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   82.254001][ T7353] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   82.256103][ T7353] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   82.258345][ T7353]  </TASK>
[   82.260782][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[   82.262581][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[   82.264333][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[   82.266086][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[   82.267822][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[   82.269617][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[   82.271492][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[   82.273206][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[   82.274988][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[   82.276713][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[   82.278530][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[   82.280267][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[   82.281939][ T6065] usb 6-1: USB disconnect, device number 5
[   82.283494][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[   82.283503][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[   82.283510][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[   82.626772][ T7369] loop6: detected capacity change from 0 to 524287999
[   82.631973][    C0] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   82.636122][    C0] I/O error, dev loop6, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   82.641041][   T99] loop: Write error at byte offset 1, length 4096.
[   82.643068][    C2] I/O error, dev loop6, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0
[   82.645777][    C2] Buffer I/O error on dev loop6, logical block 0, lost async page write
[   83.055048][ T5984] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[   83.217127][ T5984] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   83.220187][ T5984] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   83.222715][ T5984] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   83.226117][ T5984] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   83.228595][ T5984] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.232271][ T5984] usb 9-1: config 0 descriptor??
[   83.435378][ T7385] netlink: 8 bytes leftover after parsing attributes in process `syz.0.378'.
[   83.435451][ T7383] netlink: zone id is out of range
[   83.440264][ T7383] netlink: zone id is out of range
[   83.441670][ T7383] netlink: zone id is out of range
[   83.443350][ T7383] netlink: zone id is out of range
[   83.522369][ T7393] netlink: 12 bytes leftover after parsing attributes in process `syz.0.382'.
[   83.640963][ T5984] plantronics 0003:047F:FFFF.000B: No inputs registered, leaving
[   83.646621][ T5984] plantronics 0003:047F:FFFF.000B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[   83.718711][ T7400] FAULT_INJECTION: forcing a failure.
[   83.718711][ T7400] name failslab, interval 1, probability 0, space 0, times 0
[   83.722203][ T7400] CPU: 2 UID: 0 PID: 7400 Comm: syz.0.385 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[   83.725282][ T7400] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.728241][ T7400] Call Trace:
[   83.729242][ T7400]  <TASK>
[   83.730031][ T7400]  dump_stack_lvl+0x16c/0x1f0
[   83.731343][ T7400]  should_fail_ex+0x497/0x5b0
[   83.732708][ T7400]  ? fs_reclaim_acquire+0xae/0x150
[   83.734091][ T7400]  should_failslab+0xc2/0x120
[   83.735367][ T7400]  __kmalloc_cache_noprof+0x68/0x420
[   83.736897][ T7400]  dev_ethtool+0xce/0x330
[   83.738041][ T7400]  ? __pfx_dev_ethtool+0x10/0x10
[   83.739480][ T7400]  ? netdev_name_node_lookup_rcu+0xf0/0x140
[   83.741144][ T7400]  dev_ioctl+0x2a2/0x10c0
[   83.742409][ T7400]  compat_sock_ioctl+0x44c/0x7e0
[   83.743866][ T7400]  ? __pfx_compat_sock_ioctl+0x10/0x10
[   83.745472][ T7400]  ? __fget_files+0x206/0x3a0
[   83.746853][ T7400]  ? __pfx_compat_sock_ioctl+0x10/0x10
[   83.748325][ T7400]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   83.749972][ T7400]  __do_fast_syscall_32+0x73/0x120
[   83.751417][ T7400]  do_fast_syscall_32+0x32/0x80
[   83.752693][ T7400]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   83.754565][ T7400] RIP: 0023:0xf714e579
[   83.755743][ T7400] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   83.761062][ T7400] RSP: 002b:00000000f514055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   83.763247][ T7400] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000008946
[   83.765278][ T7400] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000000
[   83.767486][ T7400] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   83.769690][ T7400] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   83.771890][ T7400] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   83.773934][ T7400]  </TASK>
[   83.774997][    C2] vkms_vblank_simulate: vblank timer overrun
[   83.886246][ T7406] binder: BINDER_SET_CONTEXT_MGR already set
[   83.886274][ T7406] binder: 7403:7406 ioctl 4018620d 20000200 returned -16
[   84.319294][    T9] usb 9-1: USB disconnect, device number 6
[   84.867819][ T7426] netlink: 12 bytes leftover after parsing attributes in process `syz.4.393'.
[   85.016751][ T7426] usb usb4: usbfs: process 7426 (syz.4.393) did not claim interface 0 before use
[   85.276421][ T7445] capability: warning: `syz.4.399' uses 32-bit capabilities (legacy support in use)
[   85.815026][    T9] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[   85.834955][ T5984] usb 7-1: new full-speed USB device number 9 using dummy_hcd
[   85.847613][ T7462] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   85.849855][ T7462] overlayfs: failed to set xattr on upper
[   85.851483][ T7462] overlayfs: ...falling back to redirect_dir=nofollow.
[   85.853728][ T7462] overlayfs: ...falling back to index=off.
[   85.855466][ T7462] overlayfs: ...falling back to uuid=null.
[   85.969257][    T9] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   85.976446][    T9] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   85.979810][    T9] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   85.984255][    T9] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   85.988421][    T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.998954][    T9] usb 9-1: config 0 descriptor??
[   86.007860][ T5984] usb 7-1: config 0 has an invalid interface number: 58 but max is 1
[   86.009849][ T5984] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   86.012214][ T5984] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2
[   86.014362][ T5984] usb 7-1: config 0 has no interface number 0
[   86.016406][ T5984] usb 7-1: too many endpoints for config 0 interface 58 altsetting 160: 69, using maximum allowed: 30
[   86.019090][ T5984] usb 7-1: config 0 interface 58 altsetting 160 has 0 endpoint descriptors, different from the interface descriptor's value: 69
[   86.022237][ T5984] usb 7-1: config 0 interface 58 has no altsetting 0
[   86.023840][ T5984] usb 7-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[   86.028450][ T5984] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.031551][ T5984] usb 7-1: config 0 descriptor??
[   86.244025][ T5984] usb 7-1: string descriptor 0 read error: -71
[   86.246770][ T5984] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[   86.248535][ T5984] dvb-usb: bulk message failed: -22 (3/0)
[   86.252492][ T5984] dvb-usb: will use the device's hardware PID filter (table count: 16).
[   86.255164][ T5984] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[   86.257772][ T5984] usb 7-1: media controller created
[   86.260327][ T5984] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   86.265239][ T5984] dvb-usb: bulk message failed: -22 (6/0)
[   86.266903][ T5984] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[   86.269797][ T5984] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb7/7-1/input/input9
[   86.275206][ T5984] dvb-usb: schedule remote query interval to 150 msecs.
[   86.276905][ T5984] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[   86.279631][ T5984] usb 7-1: USB disconnect, device number 9
[   86.290307][ T5984] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[   86.407551][    T9] plantronics 0003:047F:FFFF.000C: No inputs registered, leaving
[   86.414472][    T9] plantronics 0003:047F:FFFF.000C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[   86.905918][ T7481] netlink: 8 bytes leftover after parsing attributes in process `syz.2.407'.
[   87.007957][ T5944] usb 9-1: USB disconnect, device number 7
[   87.214849][ T5984] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[   87.375912][ T5984] usb 7-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[   87.378589][ T5984] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[   87.380947][ T5984] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[   87.385835][ T5984] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   87.388250][ T5984] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.390478][ T5984] usb 7-1: Product: 瘟孟냸୓获]⮗廓跔掾隡�䣌얧徙謶ۊ잺斗ຓ䇄㺈⻯䴴愨篕༠䈹㳳�웕㵜
[   87.393726][ T5984] usb 7-1: Manufacturer: ࠌ
[   87.395027][ T5984] usb 7-1: SerialNumber: 꺣㠭ⲡ甈﹌괾ዡ눳둿⮕鼡脿㗥沽㜒ꊂꗪ﷟愮뮛躶ﲰ엲��﷌켢�⇪胣歿깮�筭�彟㼽ꠢ鴚㺈�濮娖烈豄䩘�毆ׇ䅧�᩵屌ꛜ��쒀䔵箥Ƣ쩤황鬥殧匮ⱦ핹녈춨�煮�랂⯒跾
[   87.541650][ T7490] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[   87.619024][ T5984] usb 7-1: 0:2 : does not exist
[   87.640998][ T5984] usb 7-1: USB disconnect, device number 10
[   87.664281][ T5940] udevd[5940]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   87.780648][ T7508] warning: `syz.2.418' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   88.624906][ T6014] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[   88.787364][ T6014] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   88.790638][ T6014] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   88.793142][ T6014] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   88.796557][ T6014] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   88.798929][ T6014] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   88.803985][ T6014] usb 6-1: config 0 descriptor??
[   89.187217][ T7532] bridge0: port 3(hsr_slave_1) entered blocking state
[   89.189735][ T7532] bridge0: port 3(hsr_slave_1) entered disabled state
[   89.191523][ T7532] hsr_slave_1: entered allmulticast mode
[   89.193760][ T7532] hsr_slave_1: left allmulticast mode
[   89.219080][ T6014] plantronics 0003:047F:FFFF.000D: No inputs registered, leaving
[   89.222295][ T6014] plantronics 0003:047F:FFFF.000D: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   89.687054][ T7544] FAULT_INJECTION: forcing a failure.
[   89.687054][ T7544] name failslab, interval 1, probability 0, space 0, times 0
[   89.690632][ T7544] CPU: 2 UID: 0 PID: 7544 Comm: syz.4.426 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[   89.693538][ T7544] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.696299][ T7544] Call Trace:
[   89.697169][ T7544]  <TASK>
[   89.698039][ T7544]  dump_stack_lvl+0x16c/0x1f0
[   89.699254][ T7544]  should_fail_ex+0x497/0x5b0
[   89.700689][ T7544]  ? fs_reclaim_acquire+0xae/0x150
[   89.702392][ T7544]  should_failslab+0xc2/0x120
[   89.703785][ T7544]  __kmalloc_noprof+0xce/0x4f0
[   89.705238][ T7544]  ? d_absolute_path+0x137/0x1b0
[   89.706519][ T7544]  ? tomoyo_encode2+0x100/0x3e0
[   89.707737][ T7544]  tomoyo_encode2+0x100/0x3e0
[   89.708947][ T7544]  tomoyo_realpath_from_path+0x1a7/0x710
[   89.710341][ T7544]  tomoyo_path_number_perm+0x248/0x5b0
[   89.711690][ T7544]  ? tomoyo_path_number_perm+0x235/0x5b0
[   89.713843][ T7544]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   89.713874][ T7544]  ? __pfx_lock_release+0x10/0x10
[   89.713890][ T7544]  ? trace_lock_acquire+0x14e/0x1f0
[   89.713904][ T7544]  ? lock_acquire+0x2f/0xb0
[   89.713912][ T7544]  ? __fget_files+0x40/0x3a0
[   89.713925][ T7544]  ? __fget_files+0x206/0x3a0
[   89.713938][ T7544]  security_file_ioctl_compat+0x9b/0x240
[   89.713949][ T7544]  __do_compat_sys_ioctl+0x4e/0x2c0
[   89.713966][ T7544]  __do_fast_syscall_32+0x73/0x120
[   89.713979][ T7544]  do_fast_syscall_32+0x32/0x80
[   89.713991][ T7544]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   89.714006][ T7544] RIP: 0023:0xf7f45579
[   89.714014][ T7544] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   89.714024][ T7544] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   89.714035][ T7544] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000040041271
[   89.714042][ T7544] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   89.714048][ T7544] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   89.714054][ T7544] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   89.714060][ T7544] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   89.714072][ T7544]  </TASK>
[   89.726842][ T7544] ERROR: Out of memory at tomoyo_realpath_from_path.
[   89.763549][ T7555] FAULT_INJECTION: forcing a failure.
[   89.763549][ T7555] name failslab, interval 1, probability 0, space 0, times 0
[   89.778491][ T7555] CPU: 0 UID: 0 PID: 7555 Comm: syz.2.429 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[   89.781244][ T7555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.781965][ T7550] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=60000 (120000 ns) > initial count (12 ns). Using initial count to start timer.
[   89.784077][ T7555] Call Trace:
[   89.784084][ T7555]  <TASK>
[   89.784089][ T7555]  dump_stack_lvl+0x16c/0x1f0
[   89.784105][ T7555]  should_fail_ex+0x497/0x5b0
[   89.784117][ T7555]  ? fs_reclaim_acquire+0xae/0x150
[   89.784130][ T7555]  should_failslab+0xc2/0x120
[   89.784144][ T7555]  __kmalloc_noprof+0xce/0x4f0
[   89.784157][ T7555]  ? sock_kmalloc+0x111/0x170
[   89.784166][ T7555]  ? mark_held_locks+0x9f/0xe0
[   89.784183][ T7555]  sock_kmalloc+0x111/0x170
[   89.784193][ T7555]  hash_recvmsg+0x501/0xa50
[   89.784207][ T7555]  ____sys_recvmsg+0x5f8/0x6b0
[   89.784219][ T7555]  ? __pfx_____sys_recvmsg+0x10/0x10
[   89.784237][ T7555]  ___sys_recvmsg+0x115/0x1a0
[   89.784250][ T7555]  ? __pfx____sys_recvmsg+0x10/0x10
[   89.784263][ T7555]  ? __fget_files+0x1fc/0x3a0
[   89.784275][ T7555]  ? trace_lock_acquire+0x14e/0x1f0
[   89.784292][ T7555]  ? __fget_files+0x206/0x3a0
[   89.784302][ T7555]  ? __pfx___might_resched+0x10/0x10
[   89.784316][ T7555]  do_recvmmsg+0x55d/0x740
[   89.784330][ T7555]  ? __pfx_do_recvmmsg+0x10/0x10
[   89.784344][ T7555]  ? vfs_write+0x306/0x1150
[   89.817061][ T7555]  ? __fget_files+0x206/0x3a0
[   89.818348][ T7555]  __sys_recvmmsg+0x21e/0x280
[   89.819580][ T7555]  ? __pfx___sys_recvmmsg+0x10/0x10
[   89.820905][ T7555]  ? __pfx_ksys_write+0x10/0x10
[   89.822096][ T7555]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[   89.823648][ T7555]  ? lockdep_hardirqs_on+0x7c/0x110
[   89.824952][ T7555]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   89.826629][ T7555]  __do_fast_syscall_32+0x73/0x120
[   89.827945][ T7555]  do_fast_syscall_32+0x32/0x80
[   89.829684][ T7555]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   89.831687][ T7555] RIP: 0023:0xf7fb8579
[   89.832695][ T7555] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   89.837678][ T7555] RSP: 002b:00000000f50e555c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[   89.839731][ T7555] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020003700
[   89.841734][ T7555] RDX: 0000000000000600 RSI: 0000000000000000 RDI: 0000000000000000
[   89.843780][ T7555] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   89.845754][ T7555] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   89.847709][ T7555] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   89.849678][ T7555]  </TASK>
[   89.877613][ T5984] usb 6-1: USB disconnect, device number 6
[   90.405600][ T7577] binder: 7576:7577 ioctl c0306201 20000600 returned -22
[   90.633648][ T7581] netlink: 28 bytes leftover after parsing attributes in process `syz.1.439'.
[   91.334879][ T7587] input: syz1 as /devices/virtual/input/input11
[   92.694887][ T6014] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[   92.847548][ T6014] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   92.850188][ T6014] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   92.852779][ T6014] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   92.856382][ T6014] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   92.858607][ T6014] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.861865][ T6014] usb 6-1: config 0 descriptor??
[   93.055230][    C1] Illegal XDP return value 16128 on prog  (id 71) dev bond_slave_1, expect packet loss!
[   93.270111][ T6014] plantronics 0003:047F:FFFF.000E: No inputs registered, leaving
[   93.274485][ T6014] plantronics 0003:047F:FFFF.000E: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   93.669574][ T6110] usb 6-1: USB disconnect, device number 7
[   93.789872][ T7620] futex_wake_op: syz.2.451 tries to shift op by -1; fix this program
[   94.202535][ T7630] could not allocate digest TFM handle sha256-asm
[   95.205956][ T7653] netdevsim netdevsim2 : renamed from netdevsim0 (while UP)
[   96.404897][ T6014] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[   96.556686][ T6014] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   96.559500][ T6014] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   96.561905][ T6014] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   96.565409][ T6014] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   96.568041][ T6014] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.571270][ T6014] usb 6-1: config 0 descriptor??
[   96.986617][ T6014] plantronics 0003:047F:FFFF.000F: No inputs registered, leaving
[   96.994197][ T6014] plantronics 0003:047F:FFFF.000F: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   97.639177][    T9] usb 6-1: USB disconnect, device number 8
[   98.282987][ T7677] wg1: entered promiscuous mode
[   99.413801][ T7700] jfs: Unknown parameter 'grpquotan is not an exit or jmp
[   99.413801][ T7700] processed 0 insns (limit 1000000./file0'
[   99.600821][ T7703] fuse: Unknown parameter 'ÿÿ0x00000000000000040x000000000000000400000000000000000004'
[  100.556359][ T7726] netlink: 24 bytes leftover after parsing attributes in process `syz.1.480'.
[  100.836579][ T7735] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  101.032124][ T7739] syz.0.482: attempt to access beyond end of device
[  101.032124][ T7739] nbd0: rw=0, sector=64, nr_sectors = 2 limit=0
[  101.037128][ T7739] syz.0.482: attempt to access beyond end of device
[  101.037128][ T7739] nbd0: rw=0, sector=512, nr_sectors = 2 limit=0
[  101.041402][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  101.051280][ T7739] syz.0.482: attempt to access beyond end of device
[  101.051280][ T7739] nbd0: rw=0, sector=1024, nr_sectors = 2 limit=0
[  101.056075][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  101.064897][ T7739] syz.0.482: attempt to access beyond end of device
[  101.064897][ T7739] nbd0: rw=0, sector=64, nr_sectors = 4 limit=0
[  101.071211][ T7739] syz.0.482: attempt to access beyond end of device
[  101.071211][ T7739] nbd0: rw=0, sector=1024, nr_sectors = 4 limit=0
[  101.075433][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  101.077490][ T7736] nbd0: detected capacity change from 0 to 67108884
[  101.099308][ T7739] block nbd0: Send control failed (result -89)
[  101.101416][ T7739] block nbd0: Request send failed, requeueing
[  101.104282][ T5309] block nbd0: Receive control failed (result -32)
[  101.105458][ T1158] block nbd0: Dead connection, failed to find a fallback
[  101.110509][ T1158] block nbd0: shutting down sockets
[  101.113173][ T1158] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  101.117928][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=0, location=0
[  101.120887][ T7739] I/O error, dev nbd0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  101.123834][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=1, location=1
[  101.127037][ T7739] I/O error, dev nbd0, sector 2048 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  101.130322][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  101.134876][ T7739] I/O error, dev nbd0, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  101.140223][ T7739] I/O error, dev nbd0, sector 2048 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  101.142790][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  101.145889][ T7739] I/O error, dev nbd0, sector 67108872 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  101.148624][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=8388609, location=8388609
[  101.152401][ T7739] I/O error, dev nbd0, sector 67106824 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  101.158034][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=8388353, location=8388353
[  101.159143][ T5940] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  101.161374][ T7739] I/O error, dev nbd0, sector 67108864 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  101.164154][ T5940] Buffer I/O error on dev nbd0, logical block 0, async page read
[  101.168459][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=8388608, location=8388608
[  101.168678][ T7739] I/O error, dev nbd0, sector 67106816 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  101.172039][ T5984] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  101.173850][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=8388352, location=8388352
[  101.175034][ T5940] Buffer I/O error on dev nbd0, logical block 0, async page read
[  101.175084][ T5940] Buffer I/O error on dev nbd0, logical block 0, async page read
[  101.175128][ T5940] Buffer I/O error on dev nbd0, logical block 0, async page read
[  101.175172][ T5940] Buffer I/O error on dev nbd0, logical block 0, async page read
[  101.175670][ T5940] Buffer I/O error on dev nbd0, logical block 0, async page read
[  101.175724][ T5940] Buffer I/O error on dev nbd0, logical block 0, async page read
[  101.175769][ T5940] Buffer I/O error on dev nbd0, logical block 0, async page read
[  101.181825][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=8388607, location=8388607
[  101.183006][ T5940] ldm_validate_partition_table(): Disk read failed.
[  101.189017][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=8388351, location=8388351
[  101.189605][ T5940] Buffer I/O error on dev nbd0, logical block 0, async page read
[  101.189658][ T5940] Buffer I/O error on dev nbd0, logical block 0, async page read
[  101.189752][ T5940] Dev nbd0: unable to read RDB block 0
[  101.192003][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=8388459, location=8388459
[  101.193893][ T5940]  nbd0: unable to read partition table
[  101.196536][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=8388203, location=8388203
[  101.215324][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=8388457, location=8388457
[  101.218999][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=8388201, location=8388201
[  101.222124][ T7739] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  101.224619][ T7739] UDF-fs: warning (device nbd0): udf_fill_super: No partition found (1)
[  101.228250][ T5940] ldm_validate_partition_table(): Disk read failed.
[  101.230788][ T5940] Dev nbd0: unable to read RDB block 0
[  101.233034][ T5940]  nbd0: unable to read partition table
[  101.336465][ T5984] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  101.339644][ T5984] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  101.342201][ T5984] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  101.345637][ T5984] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  101.348036][ T5984] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.350927][ T5984] usb 7-1: config 0 descriptor??
[  101.567338][ T7741] sp0: Synchronizing with TNC
[  101.621897][ T7744] sp0: Found TNC
[  101.687066][ T7740] [U] è`
[  101.758064][ T5984] plantronics 0003:047F:FFFF.0010: No inputs registered, leaving
[  101.761790][ T5984] plantronics 0003:047F:FFFF.0010: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  102.003285][ T7756] fuse: Bad value for 'user_id'
[  102.004637][ T7756] fuse: Bad value for 'user_id'
[  102.052585][ T7760] FAULT_INJECTION: forcing a failure.
[  102.052585][ T7760] name failslab, interval 1, probability 0, space 0, times 0
[  102.055997][ T7760] CPU: 3 UID: 0 PID: 7760 Comm: syz.1.490 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[  102.058664][ T7760] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  102.061281][ T7760] Call Trace:
[  102.062152][ T7760]  <TASK>
[  102.062923][ T7760]  dump_stack_lvl+0x16c/0x1f0
[  102.064135][ T7760]  should_fail_ex+0x497/0x5b0
[  102.065335][ T7760]  ? fs_reclaim_acquire+0xae/0x150
[  102.066569][ T7760]  should_failslab+0xc2/0x120
[  102.067765][ T7760]  __kmalloc_noprof+0xce/0x4f0
[  102.069020][ T7760]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  102.070421][ T7760]  ? tomoyo_realpath_from_path+0xbf/0x710
[  102.071773][ T7760]  tomoyo_realpath_from_path+0xbf/0x710
[  102.073163][ T7760]  ? tomoyo_path_number_perm+0x235/0x5b0
[  102.074647][ T7760]  tomoyo_path_number_perm+0x248/0x5b0
[  102.076064][ T7760]  ? tomoyo_path_number_perm+0x235/0x5b0
[  102.077533][ T7760]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  102.079114][ T7760]  ? __pfx_lock_release+0x10/0x10
[  102.080400][ T7760]  ? trace_lock_acquire+0x14e/0x1f0
[  102.081715][ T7760]  ? lock_acquire+0x2f/0xb0
[  102.082878][ T7760]  ? __fget_files+0x40/0x3a0
[  102.084077][ T7760]  ? __fget_files+0x206/0x3a0
[  102.085304][ T7760]  security_file_ioctl_compat+0x9b/0x240
[  102.086733][ T7760]  __do_compat_sys_ioctl+0x4e/0x2c0
[  102.088050][ T7760]  __do_fast_syscall_32+0x73/0x120
[  102.089387][ T7760]  do_fast_syscall_32+0x32/0x80
[  102.090651][ T7760]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  102.092199][ T7760] RIP: 0023:0xf7fb1579
[  102.093184][ T7760] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  102.098007][ T7760] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  102.099980][ T7760] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000000089e0
[  102.102001][ T7760] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000000
[  102.104031][ T7760] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  102.106077][ T7760] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  102.108009][ T7760] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  102.110048][ T7760]  </TASK>
[  102.113060][ T7760] ERROR: Out of memory at tomoyo_realpath_from_path.
[  102.227822][ T1488] usb 7-1: USB disconnect, device number 11
[  102.763650][ T7778] FAULT_INJECTION: forcing a failure.
[  102.763650][ T7778] name failslab, interval 1, probability 0, space 0, times 0
[  102.766942][ T7778] CPU: 1 UID: 0 PID: 7778 Comm: syz.0.497 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[  102.770007][ T7778] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  102.773733][ T7778] Call Trace:
[  102.774604][ T7778]  <TASK>
[  102.775354][ T7778]  dump_stack_lvl+0x16c/0x1f0
[  102.776720][ T7778]  should_fail_ex+0x497/0x5b0
[  102.777901][ T7778]  ? fs_reclaim_acquire+0xae/0x150
[  102.779388][ T7778]  should_failslab+0xc2/0x120
[  102.781093][ T7778]  __kmalloc_node_track_caller_noprof+0xcf/0x520
[  102.782989][ T7778]  ? kstrdup_const+0x63/0x80
[  102.784120][ T7778]  kstrdup+0x42/0xb0
[  102.785095][ T7778]  kstrdup_const+0x63/0x80
[  102.786199][ T7778]  __kernfs_new_node+0x9c/0x890
[  102.787387][ T7778]  ? kobject_put+0xab/0x5a0
[  102.788497][ T7778]  ? __pfx___kernfs_new_node+0x10/0x10
[  102.790358][ T7778]  ? lock_acquire.part.0+0x11b/0x380
[  102.792218][ T7778]  ? find_held_lock+0x2d/0x110
[  102.793819][ T7778]  kernfs_new_node+0x186/0x240
[  102.795000][ T7778]  kernfs_create_link+0xcc/0x240
[  102.796215][ T7778]  sysfs_do_create_link_sd+0x90/0x140
[  102.797522][ T7778]  sysfs_create_link+0x61/0xc0
[  102.798805][ T7778]  driver_sysfs_add+0x91/0x2d0
[  102.800572][ T7778]  device_bind_driver+0x16/0x70
[  102.802307][ T7778]  mac80211_hwsim_new_radio+0x45d/0x56c0
[  102.803755][ T7778]  ? do_fast_syscall_32+0x32/0x80
[  102.805062][ T7778]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  102.806695][ T7778]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  102.808169][ T7778]  hwsim_new_radio_nl+0xb42/0x12b0
[  102.809845][ T7778]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  102.811847][ T7778]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  102.814229][ T7778]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  102.816116][ T7778]  genl_family_rcv_msg_doit+0x202/0x2f0
[  102.817608][ T7778]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  102.819471][ T7778]  ? genl_get_cmd+0x195/0x580
[  102.820746][ T7778]  ? bpf_lsm_capable+0x9/0x10
[  102.821966][ T7778]  ? security_capable+0x7e/0x260
[  102.823248][ T7778]  ? ns_capable+0xd7/0x110
[  102.824397][ T7778]  genl_rcv_msg+0x565/0x800
[  102.825607][ T7778]  ? __pfx_genl_rcv_msg+0x10/0x10
[  102.826902][ T7778]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  102.828322][ T7778]  netlink_rcv_skb+0x165/0x410
[  102.829639][ T7778]  ? __pfx_genl_rcv_msg+0x10/0x10
[  102.830964][ T7778]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  102.832322][ T7778]  ? down_read+0xc9/0x330
[  102.833457][ T7778]  ? __pfx_down_read+0x10/0x10
[  102.834696][ T7778]  ? netlink_deliver_tap+0x1ae/0xca0
[  102.836069][ T7778]  genl_rcv+0x28/0x40
[  102.837108][ T7778]  netlink_unicast+0x53c/0x7f0
[  102.838340][ T7778]  ? __pfx_netlink_unicast+0x10/0x10
[  102.839713][ T7778]  ? __phys_addr_symbol+0x30/0x80
[  102.840965][ T7778]  ? __check_object_size+0x488/0x710
[  102.842281][ T7778]  netlink_sendmsg+0x8b8/0xd70
[  102.843530][ T7778]  ? __pfx_netlink_sendmsg+0x10/0x10
[  102.844903][ T7778]  ____sys_sendmsg+0x9ae/0xb40
[  102.846156][ T7778]  ? __pfx_____sys_sendmsg+0x10/0x10
[  102.847521][ T7778]  ? get_compat_msghdr+0x11b/0x170
[  102.848862][ T7778]  ___sys_sendmsg+0x135/0x1e0
[  102.850044][ T7778]  ? __pfx____sys_sendmsg+0x10/0x10
[  102.851281][ T7778]  ? __pfx_lock_release+0x10/0x10
[  102.852572][ T7778]  ? trace_lock_acquire+0x14e/0x1f0
[  102.853914][ T7778]  ? __fget_files+0x206/0x3a0
[  102.855137][ T7778]  __sys_sendmsg+0x16e/0x220
[  102.856362][ T7778]  ? __pfx___sys_sendmsg+0x10/0x10
[  102.857705][ T7778]  __do_fast_syscall_32+0x73/0x120
[  102.859096][ T7778]  do_fast_syscall_32+0x32/0x80
[  102.860349][ T7778]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  102.861903][ T7778] RIP: 0023:0xf714e579
[  102.862898][ T7778] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  102.867730][ T7778] RSP: 002b:00000000f514055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  102.870049][ T7778] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000020000140
[  102.872053][ T7778] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  102.874009][ T7778] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  102.876041][ T7778] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  102.878074][ T7778] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  102.880215][ T7778]  </TASK>
[  103.753773][ T7801] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0
[  103.758450][ T7800] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  103.827721][ T7805] FAULT_INJECTION: forcing a failure.
[  103.827721][ T7805] name failslab, interval 1, probability 0, space 0, times 0
[  103.831006][ T7805] CPU: 0 UID: 0 PID: 7805 Comm: syz.2.506 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[  103.833711][ T7805] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  103.836493][ T7805] Call Trace:
[  103.837388][ T7805]  <TASK>
[  103.838166][ T7805]  dump_stack_lvl+0x16c/0x1f0
[  103.839684][ T7805]  should_fail_ex+0x497/0x5b0
[  103.841403][ T7805]  ? fs_reclaim_acquire+0xae/0x150
[  103.843026][ T7805]  should_failslab+0xc2/0x120
[  103.844250][ T7805]  __kmalloc_noprof+0xce/0x4f0
[  103.845513][ T7805]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  103.846974][ T7805]  ? tomoyo_realpath_from_path+0xbf/0x710
[  103.848450][ T7805]  tomoyo_realpath_from_path+0xbf/0x710
[  103.850080][ T7805]  ? tomoyo_path_number_perm+0x235/0x5b0
[  103.851539][ T7805]  tomoyo_path_number_perm+0x248/0x5b0
[  103.852956][ T7805]  ? tomoyo_path_number_perm+0x235/0x5b0
[  103.854411][ T7805]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  103.855987][ T7805]  ? __pfx_lock_release+0x10/0x10
[  103.857319][ T7805]  ? trace_lock_acquire+0x14e/0x1f0
[  103.858682][ T7805]  ? lock_acquire+0x2f/0xb0
[  103.860346][ T7805]  ? __fget_files+0x40/0x3a0
[  103.862067][ T7805]  ? __fget_files+0x206/0x3a0
[  103.863781][ T7805]  security_file_ioctl_compat+0x9b/0x240
[  103.865844][ T7805]  __do_compat_sys_ioctl+0x4e/0x2c0
[  103.867531][ T7805]  __do_fast_syscall_32+0x73/0x120
[  103.868904][ T7805]  do_fast_syscall_32+0x32/0x80
[  103.870213][ T7805]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  103.871854][ T7805] RIP: 0023:0xf7fb8579
[  103.872927][ T7805] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  103.877868][ T7805] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  103.880256][ T7805] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000c018aec0
[  103.882292][ T7805] RDX: 0000000020000140 RSI: 0000000000000000 RDI: 0000000000000000
[  103.884315][ T7805] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  103.886345][ T7805] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  103.888365][ T7805] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  103.890438][ T7805]  </TASK>
[  103.891681][ T7805] ERROR: Out of memory at tomoyo_realpath_from_path.
[  104.064919][ T6014] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  104.216074][ T6014] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  104.219008][ T6014] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  104.221518][ T6014] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  104.224898][ T6014] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  104.227384][ T6014] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.230357][ T6014] usb 5-1: config 0 descriptor??
[  104.708469][ T6014] plantronics 0003:047F:FFFF.0011: No inputs registered, leaving
[  104.711631][ T6014] plantronics 0003:047F:FFFF.0011: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  104.907972][ T6014] usb 5-1: USB disconnect, device number 10
[  105.318162][ T7822] netlink: 8 bytes leftover after parsing attributes in process `syz.1.509'.
[  105.485271][ T7829] mkiss: ax0: crc mode is auto.
[  105.542829][ T7829] block nbd1: shutting down sockets
[  105.553259][ T7836] FAULT_INJECTION: forcing a failure.
[  105.553259][ T7836] name failslab, interval 1, probability 0, space 0, times 0
[  105.556988][ T7836] CPU: 2 UID: 0 PID: 7836 Comm: syz.2.514 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[  105.557226][ T7829] block nbd1: NBD_DISCONNECT
[  105.559730][ T7836] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.559740][ T7836] Call Trace:
[  105.559744][ T7836]  <TASK>
[  105.559748][ T7836]  dump_stack_lvl+0x16c/0x1f0
[  105.561066][ T7829] block nbd1: Send disconnect failed -32
[  105.563755][ T7836]  should_fail_ex+0x497/0x5b0
[  105.563771][ T7836]  ? fs_reclaim_acquire+0xae/0x150
[  105.571405][ T7836]  should_failslab+0xc2/0x120
[  105.572644][ T7836]  __kmalloc_noprof+0xce/0x4f0
[  105.573897][ T7836]  ? __pfx_d_absolute_path+0x10/0x10
[  105.575276][ T7836]  ? tomoyo_encode2+0x100/0x3e0
[  105.576573][ T7836]  tomoyo_encode2+0x100/0x3e0
[  105.577803][ T7836]  tomoyo_realpath_from_path+0x1a7/0x710
[  105.579275][ T7836]  tomoyo_mount_acl+0x1af/0x880
[  105.580573][ T7836]  ? hlock_class+0x4e/0x130
[  105.581762][ T7836]  ? __lock_acquire+0x15a9/0x3c40
[  105.583110][ T7836]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  105.584571][ T7836]  ? __pfx___lock_acquire+0x10/0x10
[  105.585938][ T7836]  ? stack_trace_save+0x95/0xd0
[  105.587221][ T7836]  ? __pfx_lock_release+0x10/0x10
[  105.588559][ T7836]  ? trace_lock_acquire+0x14e/0x1f0
[  105.589904][ T7836]  ? tomoyo_mount_permission+0x149/0x420
[  105.591386][ T7836]  ? lock_acquire+0x2f/0xb0
[  105.592588][ T7836]  ? tomoyo_mount_permission+0x149/0x420
[  105.594064][ T7836]  tomoyo_mount_permission+0x16e/0x420
[  105.595485][ T7836]  ? tomoyo_mount_permission+0x149/0x420
[  105.596958][ T7836]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  105.598515][ T7836]  ? get_current_fs_domain+0x184/0x1f0
[  105.599947][ T7836]  security_sb_mount+0x9b/0x260
[  105.601247][ T7836]  path_mount+0x129/0x1f10
[  105.602421][ T7836]  ? kmem_cache_free+0x152/0x4c0
[  105.603719][ T7836]  ? __pfx_path_mount+0x10/0x10
[  105.605004][ T7836]  ? putname+0x13c/0x180
[  105.606132][ T7836]  __ia32_sys_mount+0x292/0x310
[  105.607417][ T7836]  ? __pfx___ia32_sys_mount+0x10/0x10
[  105.608827][ T7836]  __do_fast_syscall_32+0x73/0x120
[  105.610186][ T7836]  do_fast_syscall_32+0x32/0x80
[  105.611462][ T7836]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  105.613111][ T7836] RIP: 0023:0xf7fb8579
[  105.614183][ T7836] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  105.619175][ T7836] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  105.621359][ T7836] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 0000000020000140
[  105.623406][ T7836] RDX: 0000000020000180 RSI: 0000000000008200 RDI: 0000000000000000
[  105.625458][ T7836] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  105.627509][ T7836] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  105.629540][ T7836] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  105.631616][ T7836]  </TASK>
[  105.637342][ T7836] ERROR: Out of memory at tomoyo_realpath_from_path.
[  105.640392][ T7828] wg1: entered promiscuous mode
[  105.641963][ T7828] FAULT_INJECTION: forcing a failure.
[  105.641963][ T7828] name failslab, interval 1, probability 0, space 0, times 0
[  105.645880][ T7828] CPU: 3 UID: 0 PID: 7828 Comm: syz.0.511 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[  105.648807][ T7828] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.651576][ T7828] Call Trace:
[  105.652453][ T7828]  <TASK>
[  105.653248][ T7828]  dump_stack_lvl+0x16c/0x1f0
[  105.654493][ T7828]  should_fail_ex+0x497/0x5b0
[  105.655731][ T7828]  should_failslab+0xc2/0x120
[  105.656975][ T7828]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  105.658511][ T7828]  ? __alloc_skb+0x2b3/0x380
[  105.659741][ T7828]  __alloc_skb+0x2b3/0x380
[  105.660915][ T7828]  ? __pfx___alloc_skb+0x10/0x10
[  105.662251][ T7828]  ? ipv6_get_lladdr+0x2c9/0x4f0
[  105.663550][ T7828]  ndisc_alloc_skb+0x135/0x360
[  105.664814][ T7828]  ndisc_send_rs+0x73/0x670
[  105.666085][ T7828]  inet6_set_link_af+0x93b/0xe40
[  105.667380][ T7828]  ? __pfx_inet6_set_link_af+0x10/0x10
[  105.668868][ T7828]  ? rtnl_af_lookup+0x19c/0x330
[  105.670137][ T7828]  ? lock_acquire+0x2f/0xb0
[  105.671330][ T7828]  ? rtnl_af_lookup+0x130/0x330
[  105.672604][ T7828]  ? do_setlink.constprop.0+0x298d/0x3f20
[  105.674077][ T7828]  do_setlink.constprop.0+0x298d/0x3f20
[  105.675520][ T7828]  ? stack_depot_save_flags+0x28/0x9e0
[  105.676937][ T7828]  ? find_held_lock+0x2d/0x110
[  105.678198][ T7828]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  105.679738][ T7828]  ? lock_acquire.part.0+0x11b/0x380
[  105.681112][ T7828]  ? __mutex_trylock_common+0xea/0x250
[  105.682521][ T7828]  ? __pfx___mutex_trylock_common+0x10/0x10
[  105.684042][ T7828]  ? rtnl_newlink+0x5e4/0x1d70
[  105.685295][ T7828]  ? rcu_is_watching+0x12/0xc0
[  105.686550][ T7828]  ? trace_contention_end+0xee/0x140
[  105.687923][ T7828]  ? __mutex_lock+0x1cc/0xa60
[  105.689164][ T7828]  ? rtnl_newlink+0x5e4/0x1d70
[  105.690411][ T7828]  ? __pfx___mutex_lock+0x10/0x10
[  105.691712][ T7828]  ? apparmor_capable+0x114/0x1d0
[  105.693029][ T7828]  ? netlink_ns_capable+0xfa/0x130
[  105.694358][ T7828]  rtnl_newlink+0x1319/0x1d70
[  105.695567][ T7828]  ? __pfx_rtnl_newlink+0x10/0x10
[  105.696876][ T7828]  ? __pfx___lock_acquire+0x10/0x10
[  105.698242][ T7828]  ? kmem_cache_free+0x152/0x4c0
[  105.699537][ T7828]  ? aa_get_newest_label+0x376/0x680
[  105.700937][ T7828]  ? find_held_lock+0x2d/0x110
[  105.702190][ T7828]  ? find_held_lock+0x2d/0x110
[  105.703439][ T7828]  ? rtnetlink_rcv_msg+0x93a/0xea0
[  105.704772][ T7828]  ? __pfx_lock_release+0x10/0x10
[  105.706146][ T7828]  ? trace_lock_acquire+0x14e/0x1f0
[  105.707508][ T7828]  ? __pfx_rtnl_newlink+0x10/0x10
[  105.708849][ T7828]  rtnetlink_rcv_msg+0x95b/0xea0
[  105.710217][ T7828]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  105.711632][ T7828]  ? __pfx___dev_queue_xmit+0x10/0x10
[  105.713040][ T7828]  netlink_rcv_skb+0x165/0x410
[  105.714293][ T7828]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  105.715708][ T7828]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  105.717086][ T7828]  ? netlink_deliver_tap+0x1ae/0xca0
[  105.718478][ T7828]  netlink_unicast+0x53c/0x7f0
[  105.719740][ T7828]  ? __pfx_netlink_unicast+0x10/0x10
[  105.721126][ T7828]  ? __phys_addr_symbol+0x30/0x80
[  105.722437][ T7828]  ? __check_object_size+0x488/0x710
[  105.723817][ T7828]  netlink_sendmsg+0x8b8/0xd70
[  105.725073][ T7828]  ? __pfx_netlink_sendmsg+0x10/0x10
[  105.726463][ T7828]  ____sys_sendmsg+0x9ae/0xb40
[  105.727712][ T7828]  ? __pfx_____sys_sendmsg+0x10/0x10
[  105.729108][ T7828]  ? get_compat_msghdr+0x11b/0x170
[  105.730452][ T7828]  ___sys_sendmsg+0x135/0x1e0
[  105.731694][ T7828]  ? __pfx____sys_sendmsg+0x10/0x10
[  105.733082][ T7828]  ? __pfx_lock_release+0x10/0x10
[  105.734408][ T7828]  ? trace_lock_acquire+0x14e/0x1f0
[  105.735764][ T7828]  ? __fget_files+0x206/0x3a0
[  105.737002][ T7828]  __sys_sendmsg+0x16e/0x220
[  105.738269][ T7828]  ? __pfx___sys_sendmsg+0x10/0x10
[  105.739625][ T7828]  __do_fast_syscall_32+0x73/0x120
[  105.740970][ T7828]  do_fast_syscall_32+0x32/0x80
[  105.742242][ T7828]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  105.743884][ T7828] RIP: 0023:0xf714e579
[  105.744957][ T7828] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  105.749948][ T7828] RSP: 002b:00000000f514055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  105.752101][ T7828] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000380
[  105.754158][ T7828] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  105.756218][ T7828] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  105.758288][ T7828] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  105.760346][ T7828] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  105.762406][ T7828]  </TASK>
[  105.765667][ T7828] ICMPv6: ndisc: ndisc_alloc_skb failed to allocate an skb
[  106.154889][ T5984] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  106.197545][   T45] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.256354][   T45] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.306957][ T5984] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  106.310037][ T5984] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  106.312635][ T5984] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  106.316032][ T5984] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  106.318448][ T5984] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.319095][   T45] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.322229][ T5984] usb 5-1: config 0 descriptor??
[  106.377046][   T45] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.491876][   T45] bridge_slave_1: left allmulticast mode
[  106.493350][   T45] bridge_slave_1: left promiscuous mode
[  106.495191][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.498609][   T45] bridge_slave_0: left allmulticast mode
[  106.500226][   T45] bridge_slave_0: left promiscuous mode
[  106.500306][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.632019][ T5945] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  106.644121][ T5945] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  106.649928][ T5945] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  106.664674][ T5945] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  106.667417][ T5945] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  106.669642][ T5945] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  106.742071][ T5984] plantronics 0003:047F:FFFF.0012: No inputs registered, leaving
[  106.745106][ T5984] plantronics 0003:047F:FFFF.0012: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  106.795516][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  106.798889][   T45] bond0 (unregistering): Released all slaves
[  106.892388][ T7861] chnl_net:caif_netlink_parms(): no params data found
[  106.921600][ T7879] netlink: 4 bytes leftover after parsing attributes in process `syz.2.527'.
[  106.996757][ T1488] usb 5-1: USB disconnect, device number 11
[  107.015860][ T7891] netlink: 24 bytes leftover after parsing attributes in process `syz.2.531'.
[  107.022617][ T7861] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.024395][ T7861] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.027050][ T7861] bridge_slave_0: entered allmulticast mode
[  107.028946][ T7861] bridge_slave_0: entered promiscuous mode
[  107.034902][ T7861] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.036808][ T7861] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.038661][ T7861] bridge_slave_1: entered allmulticast mode
[  107.040612][ T7861] bridge_slave_1: entered promiscuous mode
[  107.071114][ T7861] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  107.081902][ T7861] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  107.101275][ T7861] team0: Port device team_slave_0 added
[  107.110609][ T7861] team0: Port device team_slave_1 added
[  107.134770][ T7861] batman_adv: batadv0: Adding interface: batadv_slave_0
[  107.136818][ T7861] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.143779][ T7861] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.148436][ T7861] batman_adv: batadv0: Adding interface: batadv_slave_1
[  107.150243][ T7861] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.157512][ T7861] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.170423][   T45] hsr_slave_0: left promiscuous mode
[  107.172275][   T45] hsr_slave_1: left promiscuous mode
[  107.174668][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  107.180309][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[  107.183138][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  107.189654][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[  107.287679][   T45] veth1_macvtap: left promiscuous mode
[  107.289185][   T45] veth0_macvtap: left promiscuous mode
[  107.290653][   T45] veth1_vlan: left promiscuous mode
[  107.293035][   T45] veth0_vlan: left allmulticast mode
[  107.294458][   T45] veth0_vlan: left promiscuous mode
[  107.409604][ T7901] FAULT_INJECTION: forcing a failure.
[  107.409604][ T7901] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  107.413015][ T7901] CPU: 1 UID: 0 PID: 7901 Comm: syz.2.534 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[  107.415747][ T7901] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.418661][ T7901] Call Trace:
[  107.419853][ T7901]  <TASK>
[  107.420927][ T7901]  dump_stack_lvl+0x16c/0x1f0
[  107.422377][ T7901]  should_fail_ex+0x497/0x5b0
[  107.423600][ T7901]  _copy_from_user+0x2e/0xd0
[  107.424834][ T7901]  snd_rawmidi_kernel_write1+0x35e/0x860
[  107.426340][ T7901]  ? _raw_spin_unlock_irq+0x23/0x50
[  107.427716][ T7901]  snd_rawmidi_write+0x267/0xbe0
[  107.429065][ T7901]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  107.430460][ T7901]  ? __pfx_default_wake_function+0x10/0x10
[  107.432005][ T7901]  ? bpf_lsm_file_permission+0x9/0x10
[  107.433476][ T7901]  ? security_file_permission+0x71/0x210
[  107.434959][ T7901]  ? __pfx_snd_rawmidi_write+0x10/0x10
[  107.436408][ T7901]  vfs_write+0x24c/0x1150
[  107.437583][ T7901]  ? __fget_files+0x1fc/0x3a0
[  107.439004][ T7901]  ? __pfx_lock_release+0x10/0x10
[  107.440378][ T7901]  ? __pfx_vfs_write+0x10/0x10
[  107.441672][ T7901]  ? lock_acquire+0x2f/0xb0
[  107.442878][ T7901]  ? __fget_files+0x40/0x3a0
[  107.444153][ T7901]  ? __fget_files+0x206/0x3a0
[  107.445478][ T7901]  ksys_write+0x207/0x250
[  107.446627][ T7901]  ? __pfx_ksys_write+0x10/0x10
[  107.447918][ T7901]  __do_fast_syscall_32+0x73/0x120
[  107.449338][ T7901]  do_fast_syscall_32+0x32/0x80
[  107.450638][ T7901]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  107.452337][ T7901] RIP: 0023:0xf7fb8579
[  107.453459][ T7901] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  107.458701][ T7901] RSP: 002b:00000000f50e555c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  107.461676][ T7901] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000000
[  107.463783][ T7901] RDX: 00000000fffffd2c RSI: 0000000000000000 RDI: 0000000000000000
[  107.465877][ T7901] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  107.467907][ T7901] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  107.470041][ T7901] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  107.472034][ T7901]  </TASK>
[  108.492060][ T7861] hsr_slave_0: entered promiscuous mode
[  108.493999][ T7861] hsr_slave_1: entered promiscuous mode
[  108.496958][ T7861] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  108.498958][ T7861] Cannot create hsr debugfs directory
[  108.551674][ T7940] bridge0: port 3(syz_tun) entered blocking state
[  108.553602][ T7940] bridge0: port 3(syz_tun) entered disabled state
[  108.557053][ T7940] syz_tun: entered allmulticast mode
[  108.569720][ T7940] syz_tun: entered promiscuous mode
[  108.571444][ T7940] bridge0: port 3(syz_tun) entered blocking state
[  108.573557][ T7940] bridge0: port 3(syz_tun) entered forwarding state
[  108.660621][ T7861] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  108.668620][ T7861] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  108.671810][ T7861] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  108.677447][ T7861] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  108.722155][ T7861] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.734906][ T5945] Bluetooth: hci3: command tx timeout
[  108.735993][ T7861] 8021q: adding VLAN 0 to HW filter on device team0
[  108.740436][   T99] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.742274][   T99] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.748170][   T68] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.749991][   T68] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.048978][ T7861] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.155008][ T6014] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  109.195788][ T7861] veth0_vlan: entered promiscuous mode
[  109.201298][ T7861] veth1_vlan: entered promiscuous mode
[  109.210538][ T7861] veth0_macvtap: entered promiscuous mode
[  109.213151][ T7861] veth1_macvtap: entered promiscuous mode
[  109.218561][ T7861] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  109.221070][ T7861] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  109.223399][ T7861] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  109.229146][ T7861] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  109.232796][ T7861] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.237872][ T7861] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  109.240413][ T7861] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  109.242786][ T7861] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  109.248826][ T7861] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  109.251181][ T7861] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  109.253676][ T7861] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  109.257486][ T7861] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.261098][ T7861] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.263401][ T7861] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.266613][ T7861] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.268765][ T7861] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.306350][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.308272][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.316177][ T6014] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  109.318853][ T6014] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  109.321342][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.323230][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.325411][ T6014] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  109.329874][ T6014] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  109.332113][ T6014] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.335524][ T6014] usb 6-1: config 0 descriptor??
[  109.504184][ T8015] netlink: 'syz.0.547': attribute type 10 has an invalid length.
[  109.581102][ T8015] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  109.743732][ T6014] plantronics 0003:047F:FFFF.0013: No inputs registered, leaving
[  109.749504][ T6014] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  109.932084][ T8058] FAULT_INJECTION: forcing a failure.
[  109.932084][ T8058] name failslab, interval 1, probability 0, space 0, times 0
[  109.936332][ T8058] CPU: 1 UID: 0 PID: 8058 Comm: syz.5.554 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[  109.939014][ T8058] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.941635][ T8058] Call Trace:
[  109.942477][ T8058]  <TASK>
[  109.943228][ T8058]  dump_stack_lvl+0x16c/0x1f0
[  109.944416][ T8058]  should_fail_ex+0x497/0x5b0
[  109.945633][ T8058]  ? fs_reclaim_acquire+0xae/0x150
[  109.946926][ T8058]  should_failslab+0xc2/0x120
[  109.948109][ T8058]  __kmalloc_noprof+0xce/0x4f0
[  109.949302][ T8058]  ? __pfx_genl_release+0x10/0x10
[  109.950564][ T8058]  ? __pfx_netlink_tap_init_net+0x10/0x10
[  109.952001][ T8058]  ? ops_init+0x77/0x5f0
[  109.953080][ T8058]  ops_init+0x77/0x5f0
[  109.954132][ T8058]  setup_net+0x21f/0x860
[  109.955230][ T8058]  ? __pfx_setup_net+0x10/0x10
[  109.956445][ T8058]  ? down_read_killable+0xcc/0x380
[  109.957733][ T8058]  ? __pfx_down_read_killable+0x10/0x10
[  109.959103][ T8058]  ? debug_mutex_init+0x37/0x70
[  109.960383][ T8058]  copy_net_ns+0x2b4/0x6c0
[  109.961562][ T8058]  create_new_namespaces+0x3ea/0xad0
[  109.962913][ T8058]  unshare_nsproxy_namespaces+0xc0/0x1f0
[  109.964310][ T8058]  ksys_unshare+0x45d/0xa40
[  109.965513][ T8058]  ? __pfx_ksys_unshare+0x10/0x10
[  109.966795][ T8058]  ? ksys_write+0x1ba/0x250
[  109.967935][ T8058]  __ia32_sys_unshare+0x30/0x40
[  109.969160][ T8058]  __do_fast_syscall_32+0x73/0x120
[  109.970447][ T8058]  do_fast_syscall_32+0x32/0x80
[  109.971669][ T8058]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  109.973233][ T8058] RIP: 0023:0xf711e579
[  109.974277][ T8058] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  109.979016][ T8058] RSP: 002b:00000000f50ce55c EFLAGS: 00000296 ORIG_RAX: 0000000000000136
[  109.981071][ T8058] RAX: ffffffffffffffda RBX: 0000000062040200 RCX: 0000000000000000
[  109.983037][ T8058] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  109.985030][ T8058] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  109.987012][ T8058] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  109.988981][ T8058] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  109.990974][ T8058]  </TASK>
[  110.304700][ T1335] usb 6-1: USB disconnect, device number 9
[  110.703830][ T1335] hid-generic 0005:7FFF:0008.0014: hidraw0: BLUETOOTH HID v0.02 Device [syz1] on aa:aa:aa:aa:aa:aa
[  110.815052][ T5945] Bluetooth: hci3: command tx timeout
[  110.919340][ T8111] netlink: 16 bytes leftover after parsing attributes in process `syz.5.564'.
[  110.921766][ T8111] netlink: 92 bytes leftover after parsing attributes in process `syz.5.564'.
[  111.984935][ T5944] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  112.146141][ T5944] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  112.149238][ T5944] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  112.151633][ T5944] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  112.155000][ T5944] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  112.158581][ T5944] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.161874][ T5944] usb 10-1: config 0 descriptor??
[  112.316435][ T8162] netlink: 4 bytes leftover after parsing attributes in process `syz.2.578'.
[  112.568072][ T5944] plantronics 0003:047F:FFFF.0015: No inputs registered, leaving
[  112.572116][ T5944] plantronics 0003:047F:FFFF.0015: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  112.744873][   T73] usb 7-1: new full-speed USB device number 12 using dummy_hcd
[  112.874865][   T73] usb 7-1: device descriptor read/64, error -71
[  112.895946][ T5945] Bluetooth: hci3: command tx timeout
[  112.958011][ T8159] ceph: No mds server is up or the cluster is laggy
[  113.124933][   T73] usb 7-1: new full-speed USB device number 13 using dummy_hcd
[  113.264937][   T73] usb 7-1: device descriptor read/64, error -71
[  113.297994][    T9] usb 10-1: USB disconnect, device number 2
[  113.376050][   T73] usb usb7-port1: attempt power cycle
[  113.696639][ T8190] trusted_key: encrypted_key: insufficient parameters specified
[  113.716419][   T73] usb 7-1: new full-speed USB device number 14 using dummy_hcd
[  113.735344][   T73] usb 7-1: device descriptor read/8, error -71
[  113.954874][ T5984] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  114.004870][   T73] usb 7-1: new full-speed USB device number 15 using dummy_hcd
[  114.035217][   T73] usb 7-1: device descriptor read/8, error -71
[  114.104854][ T5984] usb 5-1: Using ep0 maxpacket: 8
[  114.109440][ T5984] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  114.111674][ T5984] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  114.114689][ T5984] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  114.118310][ T5984] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 31264, setting to 1024
[  114.121279][ T5984] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  114.124049][ T5984] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  114.126305][ T8202] netlink: 'syz.1.589': attribute type 21 has an invalid length.
[  114.130905][ T5984] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  114.133440][ T5984] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.137291][ T8202] A link change request failed with some changes committed already. Interface veth0_to_hsr may have been left with an inconsistent configuration, please check.
[  114.156215][   T73] usb usb7-port1: unable to enumerate USB device
[  114.338852][ T5984] usb 5-1: usb_control_msg returned -32
[  114.340691][ T5984] usbtmc 5-1:16.0: can't read capabilities
[  114.348788][ T5310] usb 5-1: USB disconnect, device number 12
[  114.387950][   T39] kauditd_printk_skb: 2 callbacks suppressed
[  114.387964][   T39] audit: type=1326 audit(1734197628.987:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8211 comm="syz.0.593" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf714e579 code=0x0
[  114.694953][ T1326] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  114.845983][ T1326] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  114.848838][ T1326] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  114.851373][ T1326] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  114.854675][ T1326] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  114.857244][ T1326] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.860626][ T1326] usb 6-1: config 0 descriptor??
[  114.974963][ T5945] Bluetooth: hci3: command tx timeout
[  114.995132][ T5310] IPVS: starting estimator thread 0...
[  115.106470][ T8228] IPVS: using max 39 ests per chain, 93600 per kthread
[  115.265880][ T1326] plantronics 0003:047F:FFFF.0016: No inputs registered, leaving
[  115.270308][ T1326] plantronics 0003:047F:FFFF.0016: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  116.319093][ T5944] usb 6-1: USB disconnect, device number 10
[  116.620796][ T8273] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  116.732460][ T8278] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  116.739853][ T8278] CIFS: Unable to determine destination address
[  116.776811][ T8278] sp0: Synchronizing with TNC
[  116.808735][ T8277] block device autoloading is deprecated and will be removed.
[  116.874472][ T8275] [U] è
[  116.902058][ T8281] overlayfs: failed to create directory ./bus/work (errno: 22); mounting read-only
[  116.947996][ T8289] FAULT_INJECTION: forcing a failure.
[  116.947996][ T8289] name failslab, interval 1, probability 0, space 0, times 0
[  116.951247][ T8289] CPU: 2 UID: 0 PID: 8289 Comm: syz.5.616 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[  116.954070][ T8289] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  116.957867][ T8289] Call Trace:
[  116.959075][ T8289]  <TASK>
[  116.960134][ T8289]  dump_stack_lvl+0x16c/0x1f0
[  116.961725][ T8289]  should_fail_ex+0x497/0x5b0
[  116.963269][ T8289]  ? fs_reclaim_acquire+0xae/0x150
[  116.964944][ T8289]  should_failslab+0xc2/0x120
[  116.966495][ T8289]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  116.968432][ T8289]  ? __alloc_skb+0x2b3/0x380
[  116.969985][ T8289]  __alloc_skb+0x2b3/0x380
[  116.971235][ T8289]  ? __pfx___alloc_skb+0x10/0x10
[  116.972485][ T8289]  ? lock_acquire+0x2f/0xb0
[  116.973855][ T8289]  netlink_alloc_large_skb+0x69/0x130
[  116.975775][ T8289]  netlink_sendmsg+0x689/0xd70
[  116.977496][ T8289]  ? __pfx_netlink_sendmsg+0x10/0x10
[  116.979404][ T8289]  ____sys_sendmsg+0x9ae/0xb40
[  116.981133][ T8289]  ? __pfx_____sys_sendmsg+0x10/0x10
[  116.982828][ T8289]  ? get_compat_msghdr+0x11b/0x170
[  116.984169][ T8289]  ___sys_sendmsg+0x135/0x1e0
[  116.985416][ T8289]  ? __pfx____sys_sendmsg+0x10/0x10
[  116.986711][ T8289]  ? __pfx_lock_release+0x10/0x10
[  116.987964][ T8289]  ? trace_lock_acquire+0x14e/0x1f0
[  116.989275][ T8289]  ? __fget_files+0x206/0x3a0
[  116.990787][ T8289]  __sys_sendmsg+0x16e/0x220
[  116.992394][ T8289]  ? __pfx___sys_sendmsg+0x10/0x10
[  116.994272][ T8289]  __do_fast_syscall_32+0x73/0x120
[  116.996148][ T8289]  do_fast_syscall_32+0x32/0x80
[  116.997895][ T8289]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  117.000118][ T8289] RIP: 0023:0xf711e579
[  117.001573][ T8289] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  117.008400][ T8289] RSP: 002b:00000000f511055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  117.011349][ T8289] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040
[  117.014150][ T8289] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000000
[  117.016968][ T8289] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  117.019757][ T8289] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  117.022500][ T8289] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  117.025312][ T8289]  </TASK>
[  117.109807][ T8297] netlink: 12 bytes leftover after parsing attributes in process `syz.5.619'.
[  117.347940][ T8307] netlink: 4 bytes leftover after parsing attributes in process `syz.5.621'.
[  117.351180][ T8307] unsupported nlmsg_type 40
[  117.414882][ T1326] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  117.636055][ T1326] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  117.638723][ T1326] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  117.641097][ T1326] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  117.644191][ T1326] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  117.646637][ T1326] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.652098][ T1326] usb 6-1: config 0 descriptor??
[  118.057979][ T1326] plantronics 0003:047F:FFFF.0017: No inputs registered, leaving
[  118.060980][ T1326] plantronics 0003:047F:FFFF.0017: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  118.496117][   T39] audit: type=1326 audit(1734197633.097:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.2.625" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000
[  118.501513][   T39] audit: type=1326 audit(1734197633.097:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.2.625" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fb8579 code=0x7ffc0000
[  118.507762][   T39] audit: type=1326 audit(1734197633.097:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.2.625" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000
[  118.513006][   T39] audit: type=1326 audit(1734197633.097:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.2.625" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fb8579 code=0x7ffc0000
[  118.520098][   T39] audit: type=1326 audit(1734197633.097:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.2.625" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000
[  118.526654][   T39] audit: type=1326 audit(1734197633.097:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.2.625" exe="/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf7fb8579 code=0x7ffc0000
[  118.533184][   T39] audit: type=1326 audit(1734197633.097:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.2.625" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000
[  118.539634][   T39] audit: type=1326 audit(1734197633.097:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.2.625" exe="/syz-executor" sig=0 arch=40000003 syscall=156 compat=1 ip=0xf7fb8579 code=0x7ffc0000
[  118.545146][   T39] audit: type=1326 audit(1734197633.097:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.2.625" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb8579 code=0x7ffc0000
[  118.653968][ T1326] usb 6-1: USB disconnect, device number 11
[  118.799407][ T8325] binder: 8319:8325 ioctl c0306201 0 returned -14
[  119.102906][ T8336] FAULT_INJECTION: forcing a failure.
[  119.102906][ T8336] name failslab, interval 1, probability 0, space 0, times 0
[  119.106888][ T8336] CPU: 2 UID: 0 PID: 8336 Comm: syz.5.630 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[  119.109567][ T8336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.112270][ T8336] Call Trace:
[  119.113364][ T8336]  <TASK>
[  119.114208][ T8336]  dump_stack_lvl+0x16c/0x1f0
[  119.115440][ T8336]  should_fail_ex+0x497/0x5b0
[  119.117136][ T8336]  ? fs_reclaim_acquire+0xae/0x150
[  119.118465][ T8336]  should_failslab+0xc2/0x120
[  119.119670][ T8336]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[  119.121150][ T8336]  ? __alloc_skb+0x2b3/0x380
[  119.122302][ T8336]  __alloc_skb+0x2b3/0x380
[  119.123433][ T8336]  ? __pfx___alloc_skb+0x10/0x10
[  119.124668][ T8336]  ? lock_acquire+0x2f/0xb0
[  119.125839][ T8336]  netlink_alloc_large_skb+0x69/0x130
[  119.127166][ T8336]  netlink_sendmsg+0x689/0xd70
[  119.128380][ T8336]  ? __pfx_netlink_sendmsg+0x10/0x10
[  119.129736][ T8336]  ____sys_sendmsg+0x9ae/0xb40
[  119.130965][ T8336]  ? __pfx_____sys_sendmsg+0x10/0x10
[  119.132468][ T8336]  ? get_compat_msghdr+0x11b/0x170
[  119.133812][ T8336]  ___sys_sendmsg+0x135/0x1e0
[  119.135012][ T8336]  ? __pfx____sys_sendmsg+0x10/0x10
[  119.136362][ T8336]  ? __pfx_lock_release+0x10/0x10
[  119.137636][ T8336]  ? trace_lock_acquire+0x14e/0x1f0
[  119.138999][ T8336]  ? __fget_files+0x206/0x3a0
[  119.140231][ T8336]  __sys_sendmsg+0x16e/0x220
[  119.141443][ T8336]  ? __pfx___sys_sendmsg+0x10/0x10
[  119.142769][ T8336]  __do_fast_syscall_32+0x73/0x120
[  119.144063][ T8336]  do_fast_syscall_32+0x32/0x80
[  119.145327][ T8336]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  119.146941][ T8336] RIP: 0023:0xf711e579
[  119.147988][ T8336] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  119.152828][ T8336] RSP: 002b:00000000f511055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  119.154964][ T8336] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000180
[  119.157030][ T8336] RDX: 0000000004000000 RSI: 0000000000000000 RDI: 0000000000000000
[  119.159006][ T8336] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  119.161051][ T8336] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  119.163120][ T8336] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  119.165131][ T8336]  </TASK>
[  119.355941][ T8352] netlink: 'syz.5.635': attribute type 10 has an invalid length.
[  119.362933][ T8352] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.364958][ T8352] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.368946][ T8352] bridge0: port 2(bridge_slave_1) entered blocking state
[  119.371298][ T8352] bridge0: port 2(bridge_slave_1) entered forwarding state
[  119.374664][ T8352] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.377283][ T8352] bridge0: port 1(bridge_slave_0) entered forwarding state
[  119.381636][ T8352] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  119.425776][ T8354] overlay: ./file0 is not a directory
[  119.844976][ T1488] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  119.941267][ T8375] syz.2.641: attempt to access beyond end of device
[  119.941267][ T8375] nbd2: rw=0, sector=64, nr_sectors = 2 limit=0
[  119.945074][ T8377] nbd2: detected capacity change from 0 to 67108884
[  119.951668][ T8375] block nbd2: Send control failed (result -89)
[  119.953376][ T8375] block nbd2: Request send failed, requeueing
[  119.959567][ T5940] block nbd2: Dead connection, failed to find a fallback
[  119.959605][ T5945] block nbd2: Receive control failed (result -32)
[  119.961890][ T5940] block nbd2: shutting down sockets
[  119.966060][ T5940] blk_print_req_error: 40 callbacks suppressed
[  119.966072][ T5940] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.966094][ T1158] I/O error, dev nbd2, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.967770][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  119.969945][ T5940] buffer_io_error: 23 callbacks suppressed
[  119.969952][ T5940] Buffer I/O error on dev nbd2, logical block 0, async page read
[  119.973033][ T8375] I/O error, dev nbd2, sector 67108882 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.980535][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=33554441, location=33554441
[  119.980775][ T5940] I/O error, dev nbd2, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.983256][ T8375] I/O error, dev nbd2, sector 67108370 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.985565][ T5940] Buffer I/O error on dev nbd2, logical block 1, async page read
[  119.991493][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=33554185, location=33554185
[  119.993954][ T5940] I/O error, dev nbd2, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.997769][ T5940] Buffer I/O error on dev nbd2, logical block 2, async page read
[  119.999702][ T8375] I/O error, dev nbd2, sector 67108880 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  120.000487][ T5940] I/O error, dev nbd2, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  120.003678][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=33554440, location=33554440
[  120.005022][ T5940] Buffer I/O error on dev nbd2, logical block 3, async page read
[  120.008426][ T8375] I/O error, dev nbd2, sector 67108368 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  120.009476][ T5940] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  120.012096][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=33554184, location=33554184
[  120.014089][ T5940] Buffer I/O error on dev nbd2, logical block 0, async page read
[  120.014136][ T5940] Buffer I/O error on dev nbd2, logical block 1, async page read
[  120.014174][ T5940] Buffer I/O error on dev nbd2, logical block 2, async page read
[  120.016136][ T1488] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  120.016152][ T1488] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  120.016163][ T1488] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  120.016179][ T1488] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  120.016190][ T1488] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.017779][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=33554439, location=33554439
[  120.018168][ T1488] usb 10-1: config 0 descriptor??
[  120.019057][ T5940] Buffer I/O error on dev nbd2, logical block 3, async page read
[  120.021141][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=33554183, location=33554183
[  120.022987][ T5940] Buffer I/O error on dev nbd2, logical block 0, async page read
[  120.023030][ T5940] Buffer I/O error on dev nbd2, logical block 1, async page read
[  120.026133][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=33554291, location=33554291
[  120.030435][ T5940] ldm_validate_partition_table(): Disk read failed.
[  120.032075][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=33554035, location=33554035
[  120.034667][ T5940] Dev nbd2: unable to read RDB block 0
[  120.036584][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=33554289, location=33554289
[  120.039431][ T5940]  nbd2: unable to read partition table
[  120.040305][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=33554033, location=33554033
[  120.068407][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  120.073904][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  120.077061][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=16777220, location=16777220
[  120.079989][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=16776964, location=16776964
[  120.083166][ T5940] ldm_validate_partition_table(): Disk read failed.
[  120.083492][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=16777219, location=16777219
[  120.085306][ T5940] Dev nbd2: unable to read RDB block 0
[  120.087704][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=16776963, location=16776963
[  120.089716][ T5940]  nbd2: unable to read partition table
[  120.091420][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=16777218, location=16777218
[  120.095710][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=16776962, location=16776962
[  120.098533][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=16777070, location=16777070
[  120.101324][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=16776814, location=16776814
[  120.104240][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=16777068, location=16777068
[  120.107255][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=16776812, location=16776812
[  120.110162][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  120.114286][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  120.117373][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=8388609, location=8388609
[  120.120202][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=8388353, location=8388353
[  120.123111][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=8388608, location=8388608
[  120.126400][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=8388352, location=8388352
[  120.129264][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=8388607, location=8388607
[  120.132270][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=8388351, location=8388351
[  120.135164][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=8388459, location=8388459
[  120.138029][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=8388203, location=8388203
[  120.140883][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=8388457, location=8388457
[  120.143725][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=8388201, location=8388201
[  120.146821][ T8375] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  120.149329][ T8375] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[  120.172655][ T8380] sp0: Synchronizing with TNC
[  120.296114][ T8378] [U] è
[  120.467319][ T1488] plantronics 0003:047F:FFFF.0018: No inputs registered, leaving
[  120.472768][ T1488] plantronics 0003:047F:FFFF.0018: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  120.818479][  T831] usb 10-1: USB disconnect, device number 3
[  121.112497][ T8413] overlayfs: failed to create directory ./bus/work (errno: 22); mounting read-only
[  121.718397][   T73] libceph: connect (1)[c::]:6789 error -101
[  121.720448][ T8455] netlink: 'syz.1.656': attribute type 10 has an invalid length.
[  121.720649][   T73] libceph: mon0 (1)[c::]:6789 connect error
[  121.726786][ T8455] bond0: (slave wlan1): Opening slave failed
[  121.764148][ T8442] ceph: No mds server is up or the cluster is laggy
[  121.965081][ T1488] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  122.299436][ T1488] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  122.310478][ T1488] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  122.313070][ T1488] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  122.317622][ T1488] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  122.320073][ T1488] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.326974][ T1488] usb 5-1: config 0 descriptor??
[  122.599920][ T8486] overlayfs: failed to create directory ./bus/work (errno: 22); mounting read-only
[  122.768814][ T1488] plantronics 0003:047F:FFFF.0019: No inputs registered, leaving
[  122.780766][ T1488] plantronics 0003:047F:FFFF.0019: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  123.068934][   T73] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  123.216199][   T73] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  123.218996][   T73] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  123.221398][   T73] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  123.224644][   T73] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  123.227140][   T73] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.230474][   T73] usb 7-1: config 0 descriptor??
[  123.639451][   T73] plantronics 0003:047F:FFFF.001A: No inputs registered, leaving
[  123.646088][   T73] plantronics 0003:047F:FFFF.001A: hiddev1,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  124.224937][   T73] usb 5-1: reset high-speed USB device number 13 using dummy_hcd
[  124.297654][  T112] 
[  124.298500][  T112] ======================================================
[  124.300315][  T112] WARNING: possible circular locking dependency detected
[  124.302637][  T112] 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0 Not tainted
[  124.305407][  T112] ------------------------------------------------------
[  124.307837][  T112] kswapd0/112 is trying to acquire lock:
[  124.309304][  T112] ffff888021ba80a8 (&q->q_usage_counter(io)#68){++++}-{0:0}, at: blk_mq_submit_bio+0x7ca/0x24c0
[  124.311981][  T112] 
[  124.311981][  T112] but task is already holding lock:
[  124.313884][  T112] ffffffff8df4d660 (fs_reclaim){+.+.}-{0:0}, at: balance_pgdat+0x16e/0x18f0
[  124.316175][  T112] 
[  124.316175][  T112] which lock already depends on the new lock.
[  124.316175][  T112] 
[  124.318848][  T112] 
[  124.318848][  T112] the existing dependency chain (in reverse order) is:
[  124.321109][  T112] 
[  124.321109][  T112] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  124.322816][  T112]        fs_reclaim_acquire+0x102/0x150
[  124.324248][  T112]        __kmalloc_node_noprof+0xb7/0x520
[  124.325767][  T112]        __kvmalloc_node_noprof+0xad/0x1a0
[  124.327347][  T112]        sbitmap_init_node+0x1ca/0x770
[  124.328791][  T112]        scsi_realloc_sdev_budget_map+0x2c7/0x610
[  124.330465][  T112]        scsi_add_lun+0x11b4/0x1fd0
[  124.331825][  T112]        scsi_probe_and_add_lun+0x4fa/0xda0
[  124.333383][  T112]        __scsi_add_device+0x24b/0x290
[  124.334797][  T112]        ata_scsi_scan_host+0x215/0x780
[  124.336239][  T112]        async_run_entry_fn+0x9c/0x530
[  124.337702][  T112]        process_one_work+0x958/0x1b30
[  124.339142][  T112]        worker_thread+0x6c8/0xf00
[  124.340491][  T112]        kthread+0x2c1/0x3a0
[  124.341707][  T112]        ret_from_fork+0x45/0x80
[  124.342998][  T112]        ret_from_fork_asm+0x1a/0x30
[  124.344385][  T112] 
[  124.344385][  T112] -> #0 (&q->q_usage_counter(io)#68){++++}-{0:0}:
[  124.346635][  T112]        __lock_acquire+0x249e/0x3c40
[  124.348036][  T112]        lock_acquire.part.0+0x11b/0x380
[  124.349517][  T112]        __bio_queue_enter+0x4c6/0x740
[  124.350928][  T112]        blk_mq_submit_bio+0x7ca/0x24c0
[  124.352375][  T112]        __submit_bio+0x384/0x540
[  124.353689][  T112]        submit_bio_noacct_nocheck+0x698/0xd70
[  124.355319][  T112]        submit_bio_noacct+0x93a/0x1e20
[  124.356775][  T112]        __swap_writepage+0x3a3/0xf50
[  124.358177][  T112]        swap_writepage+0x403/0x1120
[  124.359563][  T112]        pageout+0x3b2/0xaa0
[  124.360787][  T112]        shrink_folio_list+0x3025/0x42d0
[  124.362248][  T112]        evict_folios+0x6e3/0x19c0
[  124.363588][  T112]        try_to_shrink_lruvec+0x61e/0xa80
[  124.365077][  T112]        shrink_one+0x3e3/0x7b0
[  124.366197][  T112]        shrink_node+0xbf0/0x3f20
[  124.367396][  T112]        balance_pgdat+0xc1f/0x18f0
[  124.368764][  T112]        kswapd+0x605/0xc00
[  124.369957][  T112]        kthread+0x2c1/0x3a0
[  124.371172][  T112]        ret_from_fork+0x45/0x80
[  124.372480][  T112]        ret_from_fork_asm+0x1a/0x30
[  124.373863][  T112] 
[  124.373863][  T112] other info that might help us debug this:
[  124.373863][  T112] 
[  124.376658][  T112]  Possible unsafe locking scenario:
[  124.376658][  T112] 
[  124.379119][  T112]        CPU0                    CPU1
[  124.380901][  T112]        ----                    ----
[  124.382676][  T112]   lock(fs_reclaim);
[  124.384021][  T112]                                lock(&q->q_usage_counter(io)#68);
[  124.386645][  T112]                                lock(fs_reclaim);
[  124.388812][  T112]   rlock(&q->q_usage_counter(io)#68);
[  124.390626][  T112] 
[  124.390626][  T112]  *** DEADLOCK ***
[  124.390626][  T112] 
[  124.393296][  T112] 1 lock held by kswapd0/112:
[  124.394865][  T112]  #0: ffffffff8df4d660 (fs_reclaim){+.+.}-{0:0}, at: balance_pgdat+0x16e/0x18f0
[  124.397886][  T112] 
[  124.397886][  T112] stack backtrace:
[  124.399854][  T112] CPU: 0 UID: 0 PID: 112 Comm: kswapd0 Not tainted 6.13.0-rc2-syzkaller-00292-ga446e965a188 #0
[  124.403255][  T112] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  124.406729][  T112] Call Trace:
[  124.407833][  T112]  <TASK>
[  124.408830][  T112]  dump_stack_lvl+0x116/0x1f0
[  124.410412][  T112]  print_circular_bug+0x41c/0x610
[  124.412075][  T112]  check_noncircular+0x31a/0x400
[  124.413694][  T112]  ? __pfx_check_noncircular+0x10/0x10
[  124.415017][  T112]  ? lockdep_lock+0xc6/0x200
[  124.416230][  T112]  ? __pfx_lockdep_lock+0x10/0x10
[  124.417555][  T112]  __lock_acquire+0x249e/0x3c40
[  124.418840][  T112]  ? __pfx___lock_acquire+0x10/0x10
[  124.420191][  T112]  lock_acquire.part.0+0x11b/0x380
[  124.421518][  T112]  ? blk_mq_submit_bio+0x7ca/0x24c0
[  124.422865][  T112]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  124.424309][  T112]  ? rcu_is_watching+0x12/0xc0
[  124.425572][  T112]  ? trace_lock_acquire+0x14e/0x1f0
[  124.426920][  T112]  ? blk_mq_submit_bio+0x7ca/0x24c0
[  124.428272][  T112]  ? lock_acquire+0x2f/0xb0
[  124.429453][  T112]  ? blk_mq_submit_bio+0x7ca/0x24c0
[  124.430801][  T112]  __bio_queue_enter+0x4c6/0x740
[  124.432092][  T112]  ? blk_mq_submit_bio+0x7ca/0x24c0
[  124.433449][  T112]  ? __pfx___bio_queue_enter+0x10/0x10
[  124.434856][  T112]  ? blk_mq_submit_bio+0x7b5/0x24c0
[  124.436209][  T112]  ? __pfx_autoremove_wake_function+0x10/0x10
[  124.437792][  T112]  blk_mq_submit_bio+0x7ca/0x24c0
[  124.439109][  T112]  ? __pfx_blk_mq_submit_bio+0x10/0x10
[  124.440525][  T112]  ? __pfx_mark_lock+0x10/0x10
[  124.441771][  T112]  __submit_bio+0x384/0x540
[  124.442956][  T112]  ? __pfx___submit_bio+0x10/0x10
[  124.444272][  T112]  ? ktime_get+0x206/0x300
[  124.445453][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[  124.446799][  T112]  ? submit_bio_noacct_nocheck+0x698/0xd70
[  124.448310][  T112]  submit_bio_noacct_nocheck+0x698/0xd70
[  124.449770][  T112]  ? __pfx_submit_bio_noacct_nocheck+0x10/0x10
[  124.451359][  T112]  ? __pfx___might_resched+0x10/0x10
[  124.452729][  T112]  ? __pfx___folio_start_writeback+0x10/0x10
[  124.454276][  T112]  submit_bio_noacct+0x93a/0x1e20
[  124.455585][  T112]  __swap_writepage+0x3a3/0xf50
[  124.456853][  T112]  swap_writepage+0x403/0x1120
[  124.458137][  T112]  ? folio_clear_dirty_for_io+0x112/0x800
[  124.459621][  T112]  pageout+0x3b2/0xaa0
[  124.460693][  T112]  ? __pfx_pageout+0x10/0x10
[  124.461903][  T112]  ? __pfx_try_to_unmap_one+0x10/0x10
[  124.463290][  T112]  ? __pfx_folio_not_mapped+0x10/0x10
[  124.464678][  T112]  ? __pfx_folio_lock_anon_vma_read+0x10/0x10
[  124.466260][  T112]  ? folio_mark_dirty+0xd8/0x150
[  124.467551][  T112]  shrink_folio_list+0x3025/0x42d0
[  124.468880][  T112]  ? __pfx_shrink_folio_list+0x10/0x10
[  124.470285][  T112]  ? isolate_folios+0x1c57/0x3830
[  124.471593][  T112]  ? hlock_class+0x4e/0x130
[  124.472783][  T112]  ? mark_lock+0xb5/0xc60
[  124.473911][  T112]  ? mark_held_locks+0x9f/0xe0
[  124.475157][  T112]  evict_folios+0x6e3/0x19c0
[  124.476386][  T112]  ? __pfx_evict_folios+0x10/0x10
[  124.477683][  T112]  ? hlock_class+0x4e/0x130
[  124.478884][  T112]  ? __lock_acquire+0x15a9/0x3c40
[  124.480196][  T112]  ? mem_cgroup_get_nr_swap_pages+0x20/0x120
[  124.481755][  T112]  ? sc_swappiness+0xd4/0x190
[  124.482982][  T112]  try_to_shrink_lruvec+0x61e/0xa80
[  124.484326][  T112]  ? find_held_lock+0x2d/0x110
[  124.485540][  T112]  ? __pfx_try_to_shrink_lruvec+0x10/0x10
[  124.486935][  T112]  ? shrink_node+0xbd0/0x3f20
[  124.488159][  T112]  shrink_one+0x3e3/0x7b0
[  124.489286][  T112]  ? shrink_node+0xbd0/0x3f20
[  124.490503][  T112]  shrink_node+0xbf0/0x3f20
[  124.491682][  T112]  ? shrink_node+0x93e/0x3f20
[  124.492909][  T112]  ? __pfx_shrink_node+0x10/0x10
[  124.494191][  T112]  ? __pfx_lock_release+0x10/0x10
[  124.495522][  T112]  ? percpu_ref_put_many.constprop.0+0x1b/0x150
[  124.497133][  T112]  ? balance_pgdat+0xc1f/0x18f0
[  124.498393][  T112]  balance_pgdat+0xc1f/0x18f0
[  124.499627][  T112]  ? __pfx_balance_pgdat+0x10/0x10
[  124.500956][  T112]  ? __switch_to+0x749/0x1190
[  124.502181][  T112]  ? __schedule+0xe60/0x5ad0
[  124.503382][  T112]  ? __pfx___lock_acquire+0x10/0x10
[  124.504643][  T112]  ? __pfx___might_resched+0x10/0x10
[  124.505936][  T112]  ? set_pgdat_percpu_threshold+0xc3/0x330
[  124.507437][  T112]  kswapd+0x605/0xc00
[  124.508479][  T112]  ? __pfx_kswapd+0x10/0x10
[  124.509654][  T112]  ? __pfx_autoremove_wake_function+0x10/0x10
[  124.511228][  T112]  ? lockdep_hardirqs_on+0x7c/0x110
[  124.512572][  T112]  ? __kthread_parkme+0x148/0x220
[  124.513871][  T112]  ? __pfx_kswapd+0x10/0x10
[  124.515050][  T112]  kthread+0x2c1/0x3a0
[  124.516123][  T112]  ? _raw_spin_unlock_irq+0x23/0x50
[  124.517469][  T112]  ? __pfx_kthread+0x10/0x10
[  124.518668][  T112]  ret_from_fork+0x45/0x80
[  124.519839][  T112]  ? __pfx_kthread+0x10/0x10
[  124.521043][  T112]  ret_from_fork_asm+0x1a/0x30
[  124.522290][  T112]  </TASK>
[  124.720090][ T5983] usb 7-1: USB disconnect, device number 16
[  125.435694][ T5984] usb 5-1: USB disconnect, device number 13
[  132.095888][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[  132.098183][ T1412] ieee802154 phy1 wpan1: encryption failed: -22

VM DIAGNOSIS:
17:33:59  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85142c35 RDI=ffffffff9a665300 RBP=ffffffff9a6652c0 RSP=ffffc9000106e200
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e33312e36
R12=0000000000000000 R13=0000000000000020 R14=ffffffff85142bd0 R15=0000000000000000
RIP=ffffffff85142c5f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000021000000 CR3=0000000045bb6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000061a2dd RBX=0000000000000001 RCX=ffffffff8b1a17a9 RDX=0000000000000000
RSI=ffffffff8b4cd180 RDI=ffffffff8bb15800 RBP=ffffed1003a50910 RSP=ffffc9000047fe08
R8 =0000000000000001 R9 =ffffed10056a6fed R10=ffff88802b537f6b R11=0000000000000001
R12=0000000000000001 R13=ffff88801d284880 R14=ffffffff901cc750 R15=0000000000000000
RIP=ffffffff8b1a2b8f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020e5b000 CR3=000000000db7e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000159054 RBX=0000000000000002 RCX=ffffffff8b1a17a9 RDX=ffffed10056c6fee
RSI=ffffffff8bb15780 RDI=ffffffff81701db9 RBP=ffffed1003a53000 RSP=ffffc9000048fe08
R8 =0000000000000000 R9 =ffffed10056c6fed R10=ffff88802b637f6b R11=0000000000000000
R12=0000000000000002 R13=ffff88801d298000 R14=ffffffff901cc750 R15=0000000000000000
RIP=ffffffff8b1a2b8f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f51582a5 CR3=000000001f0b2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000016487c RBX=0000000000000003 RCX=ffffffff8b1a17a9 RDX=ffffed10056e6fee
RSI=ffffffff8bb15780 RDI=ffffffff81701db9 RBP=ffffed1003a53488 RSP=ffffc9000049fe08
R8 =0000000000000000 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000000
R12=0000000000000003 R13=ffff88801d29a440 R14=ffffffff901cc750 R15=0000000000000000
RIP=ffffffff8b1a2b8f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002e60cffc CR3=0000000045bb6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000