last executing test programs:

50.219215016s ago: executing program 0 (id=1504):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x30, r6, 0x1, 0x0, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x10}]}]}, 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cffb93b201}, 0x10) (async)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x30, r6, 0x1, 0x0, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x10}]}]}, 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cffb93b201}, 0x10)
socket$unix(0x1, 0x2, 0x0) (async)
r7 = socket$unix(0x1, 0x2, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xfffffffd, 0x6}, [@TCA_NETEM_LATENCY64={0xc, 0xa, 0x6}]}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20004191}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r9, {}, {0x2, 0xb}, {0xd, 0xb}}, [@qdisc_kind_options=@q_pie={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
sendmsg$MPTCP_PM_CMD_ANNOUNCE(r4, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x6000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x38, r6, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r9}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x20004001)
ioctl$KVM_GET_IRQCHIP(r3, 0xc208ae62, &(0x7f0000000600)={0x2, 0x0, @pic={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}})
write(0xffffffffffffffff, &(0x7f0000000040), 0x0) (async)
write(0xffffffffffffffff, &(0x7f0000000040), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x15, 0xf, &(0x7f0000000100)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x8}, {0x4, 0x1, 0xb, 0x9, 0x0, 0x8}}, {{0x6, 0x0, 0xb, 0xa}, {0xf}}, [], {{0x7, 0x1, 0x3, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000080)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x15, 0xf, &(0x7f0000000100)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x8}, {0x4, 0x1, 0xb, 0x9, 0x0, 0x8}}, {{0x6, 0x0, 0xb, 0xa}, {0xf}}, [], {{0x7, 0x1, 0x3, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000000080)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_xfrm(r0, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000003680)=@migrate={0xac, 0x21, 0x101, 0x0, 0x0, {{@in=@private=0x4, @in=@local}}, [@migrate={0x50, 0x11, [{@in, @in=@broadcast, @in, @in=@remote}]}, @policy_type={0xa, 0x10, {0x2}}]}, 0xac}}, 0x0) (async)
sendmsg$nl_xfrm(r0, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000003680)=@migrate={0xac, 0x21, 0x101, 0x0, 0x0, {{@in=@private=0x4, @in=@local}}, [@migrate={0x50, 0x11, [{@in, @in=@broadcast, @in, @in=@remote}]}, @policy_type={0xa, 0x10, {0x2}}]}, 0xac}}, 0x0)

50.141738469s ago: executing program 0 (id=1505):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0xc00)
sendmsg$NFT_MSG_GETSET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000c80)={0x20, 0xa, 0xa, 0x5, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x24048014}, 0x4000)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=@ipv6_newrule={0x1c, 0x1e, 0x1, 0x0, 0x0, {0x2}}, 0x1c}}, 0x0)

50.141320622s ago: executing program 0 (id=1506):
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x31, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[], 0x44}, 0x1, 0x0, 0x0, 0x100400c6}, 0x4000850)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000700), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_NODES(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000300)={0x1c, r2, 0x1, 0x70bd2c, 0x25dfdbfd}, 0x1c}, 0x1, 0x0, 0x0, 0x4000850}, 0x800c0d0)
r3 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f00000001c0)={r5, 0x0, <r6=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GETPLANE(r3, 0xc02064b6, &(0x7f0000000480)={r5, <r7=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = dup(r8)
write$UHID_INPUT(r9, &(0x7f0000000000)={0xc, {"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", 0x1000}}, 0x1006)
ioctl$DRM_IOCTL_MODE_SETCRTC(r3, 0xc06864a2, &(0x7f0000000400)={0x0, 0x0, r7, r6, 0x0, 0x0, 0x6, 0xffc, {0x4, 0x1, 0x3, 0x69, 0x200, 0x0, 0xf, 0x5, 0xe156, 0xe156, 0x400, 0x0, 0x60ff, 0x0, "fe1d000034130009000000004c000004b427ff001000000000000100"}})
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYRES32=r3, @ANYRES16=0x0, @ANYRES16=r6, @ANYRES64=r0, @ANYBLOB="e1039c72a3a0f72a4f7d35888e6e436d1ccd9bc864e9892067dd4224955f72f5943075de3f538a16caea32c991b85d170ef6eb71dcfeed8f338879b4ca305a1f92802ab4caca2680319cb95bf4c58d59a3c1b1e4ee1b7c98857cf76733ef51f33cd981a47848b9e53c308bd6f0e4a7af1e3e7ca34720e3ad8c14be070866fb9def67a159cbfb0bf38f7665893fca1393a38b07cdc5e30c820a13082ccd2b485df27fce90ac2de5f57c9bac8fe0b161c19a5833315f7ad66ec97d239980"], 0x44}, 0x1, 0x0, 0x0, 0x400c0e0}, 0x4c000)

50.061032754s ago: executing program 0 (id=1507):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040e06000d08"], 0x9)
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000102c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[], 0x40}}, 0x0)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbff, 0x80000000}, 0xc)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f00000001c0)={0x1, 0x3, {<r1=>0x0}, {0xee01}, 0x3, 0x2})
syz_pidfd_open(r1, 0x0)

49.537931174s ago: executing program 0 (id=1518):
r0 = socket$inet_udp(0x2, 0x2, 0x0) (async, rerun: 32)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\x00\x00\x00\x00\xd4\xa2\x88\x00\xd1l,'}, 0x30) (rerun: 32)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r1) (async)
r2 = syz_io_uring_setup(0x749e, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0x2e7}, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_setup(0x1005c20, &(0x7f0000000240)={0x0, 0xe454, 0x13290, 0x2}, &(0x7f0000000100), &(0x7f00000003c0)) (async)
io_uring_enter(r2, 0x2d3e, 0x0, 0x0, 0x0, 0x0) (async)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r3, &(0x7f00000000c0)=""/4096, 0x1000) (async)
setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f00000010c0)="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", 0x4f7fa98c72bcb56e)

49.469920011s ago: executing program 0 (id=1521):
r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x18, 0xe, &(0x7f0000000a00)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000140)={0x0, 0x10, 0x0, 0xa}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94) (async)
r1 = socket$inet6_udp(0xa, 0x2, 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f00000026c0)={0x0, 0x0, &(0x7f0000002680)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000380001002cbd70cab0cc723bf8af6d0051ed69bfd6f100"/38], 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0xc804) (async)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000f40)=@raw={'raw\x00', 0x3c1, 0x3, 0x438, 0x0, 0x4c, 0x1a, 0x0, 0x73, 0x368, 0x258, 0x258, 0x368, 0x258, 0x3, 0x0, {[{{@ipv6={@remote, @local, [0x0, 0x0, 0xff], [0x0, 0xffffff00], 'wg2\x00', 'macvlan1\x00', {}, {}, 0x11}, 0x0, 0x138, 0x1a0, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x2}}, @common=@unspec=@rateest={{0x68}, {'veth1_vlan\x00', 'veth0\x00', 0x24, 0x3, 0x8, 0x2, 0x39, 0x80000001, {0x8001}}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0xe, 0xb, 0xc, 0xc07, 'syz1\x00', 'syz0\x00', {0x2}}}}, {{@uncond, 0x0, 0x160, 0x1c8, 0x0, {}, [@common=@srh1={{0x90}, {0xff, 0x6, 0x4, 0xf6, 0x8, @mcast1, @remote, @private1={0xfc, 0x1, '\x00', 0x1}, [0xffffffff, 0xff000000, 0xff000000, 0x80800000], [0xff, 0xffffff00, 0x0, 0xffffff00], [0xffffffff, 0x0, 0xffffff00, 0xffffff00], 0x450, 0x18}}, @common=@icmp6={{0x28}, {0x0, "e1f6", 0x1}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x14, 0x8000, 0x7, 0x18d, 'pptp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x498) (async)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async)
listen(r3, 0x0)
mount$9p_unix(&(0x7f0000000200)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f00000000c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000100), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=unix']) (async)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async)
mmap$usbmon(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0) (async)
ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x47cdc)

34.121582671s ago: executing program 32 (id=1521):
r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x18, 0xe, &(0x7f0000000a00)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000140)={0x0, 0x10, 0x0, 0xa}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94) (async)
r1 = socket$inet6_udp(0xa, 0x2, 0x0) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f00000026c0)={0x0, 0x0, &(0x7f0000002680)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000380001002cbd70cab0cc723bf8af6d0051ed69bfd6f100"/38], 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0xc804) (async)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000f40)=@raw={'raw\x00', 0x3c1, 0x3, 0x438, 0x0, 0x4c, 0x1a, 0x0, 0x73, 0x368, 0x258, 0x258, 0x368, 0x258, 0x3, 0x0, {[{{@ipv6={@remote, @local, [0x0, 0x0, 0xff], [0x0, 0xffffff00], 'wg2\x00', 'macvlan1\x00', {}, {}, 0x11}, 0x0, 0x138, 0x1a0, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x2}}, @common=@unspec=@rateest={{0x68}, {'veth1_vlan\x00', 'veth0\x00', 0x24, 0x3, 0x8, 0x2, 0x39, 0x80000001, {0x8001}}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0xe, 0xb, 0xc, 0xc07, 'syz1\x00', 'syz0\x00', {0x2}}}}, {{@uncond, 0x0, 0x160, 0x1c8, 0x0, {}, [@common=@srh1={{0x90}, {0xff, 0x6, 0x4, 0xf6, 0x8, @mcast1, @remote, @private1={0xfc, 0x1, '\x00', 0x1}, [0xffffffff, 0xff000000, 0xff000000, 0x80800000], [0xff, 0xffffff00, 0x0, 0xffffff00], [0xffffffff, 0x0, 0xffffff00, 0xffffff00], 0x450, 0x18}}, @common=@icmp6={{0x28}, {0x0, "e1f6", 0x1}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x14, 0x8000, 0x7, 0x18d, 'pptp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x498) (async)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async)
listen(r3, 0x0)
mount$9p_unix(&(0x7f0000000200)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f00000000c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000100), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=unix']) (async)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a) (async)
mmap$usbmon(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0) (async)
ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x47cdc)

27.582431289s ago: executing program 4 (id=1768):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x100480, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
fsetxattr$security_ima(r0, &(0x7f0000000000), &(0x7f0000000080)=@sha1={0x1, "839c79bfb30153c13e7b749fc2772dd1ff30969e"}, 0x15, 0x3)
r1 = syz_init_net_socket$nfc_raw(0x27, 0x6, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, &(0x7f0000000040)={'wlan1\x00', 0x5}) (async)
r2 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl(r2, 0x7, &(0x7f0000000140)="ff5e0e8990d686474c42577257c516dbc43b15dc835820ba6adfea4a9700a45751b5d62982da18237e91a777d29a4525196b2240ee91a9d6150e27428c458fb9d553b3e7b6e17fad809a1c25afa968a943b06c42350010f905eb85d9d229d6d5b0e7a933cf0dcfc789e37f315ce09d341be6cb195a9b24dcedd0115f678d42fdd99535e1dd37565e38f7b0dd6bdd8fa8863f9251eac63d180765851683d56a986cb628")

27.440293922s ago: executing program 4 (id=1800):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x7, 0x40)
ioctl$USBDEVFS_CLEAR_HALT(r0, 0x80045515, &(0x7f0000000040)={0x2, 0x1}) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0xffffffff, 0x4d}}}}, [@NL80211_ATTR_SCAN_FREQUENCIES={0x1c, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0x9}, {0x8}, {0x8, 0x0, 0x8}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x4008801}, 0x40010) (async)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000280)={'ip6gre0\x00', &(0x7f0000000200)={'ip6gre0\x00', <r2=>0x0, 0x4, 0x6, 0x4, 0x1, 0x60, @empty, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x700, 0x700, 0x739, 0xffffffff}})
sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000540)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000500)={&(0x7f00000002c0)={0x204, 0x0, 0x300, 0x70bd27, 0x25dfdbfc, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x94, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}]}, @ETHTOOL_A_STRSET_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pim6reg0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_STRSET_STRINGSETS={0xf0, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x822703d6b06fa118}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}]}]}, 0x204}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000004)
ioctl$SCSI_IOCTL_STOP_UNIT(0xffffffffffffffff, 0x6) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000005c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_LEAVE_OCB(r1, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x1c, 0x0, 0x2, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, ["", "", "", "", "", ""]}, 0x1c}}, 0x0) (async)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000700), r1)
sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x3c, r4, 0x100, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x81}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x9b}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x5}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0xf1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x810}, 0x20008094) (async)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000008c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)=@ipv4_newnexthop={0x1c, 0x68, 0x400, 0x70bd2d, 0x25dfdbfb, {0x2, 0x0, 0x5, 0x0, 0x10}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x420fc63a2ad909f1}, 0x40040) (async)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000940), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x30, r6, 0x400, 0x70bd2c, 0x25dfdbfe, {}, [@NL802154_ATTR_PAGE={0x5, 0x7, 0x1d}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x11}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x40) (async)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r7, &(0x7f0000000c40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000a80)={0x164, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSCATLST={0x78, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3c29b39c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbfa9}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7a9589fb}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1447}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc56c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x353dd44e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4aa8e46}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb9df}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x11ecd90d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x39659a3e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x286}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x70995044}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xae4f}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x58, 0xc, 0x0, 0x1, [{0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcc2a}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4e63d068}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x906f071}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3238d414}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4a4992b}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf232}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1a6a}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x28553d39}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x643b96da}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_TAGLST={0x44, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5, 0x3, 0x9}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x1}, {0x5}, {0x5}, {0x5}, {0x5, 0x3, 0x6}]}, @NLBL_CIPSOV4_A_TAGLST={0x2c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x2}]}]}, 0x164}}, 0x4008101)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000cc0)={0x5, 0x31, 0x5bd3, 0x4, 0x21, 0x7, &(0x7f0000000c80)="50f4a3ef05658d19c169e5df79aafc3d546f255c03a9ae2b8739ba7b9823073f50"}) (async)
recvfrom(r5, &(0x7f0000000d00)=""/33, 0x21, 0x2020, &(0x7f0000000d40)=@pppol2tpv3in6={0x18, 0x1, {0x0, r1, 0x0, 0x2, 0x4, 0x4, {0xa, 0x4e20, 0x1ff, @empty, 0x87ea}}}, 0x80) (async)
r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000e00), r7)
sendmsg$IEEE802154_LLSEC_ADD_KEY(r7, &(0x7f0000000ec0)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x2c, r8, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x20000}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x44000804}, 0x20000040) (async)
r9 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000f40), r7)
sendmsg$NLBL_MGMT_C_VERSION(r7, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x18}, 0xc, &(0x7f0000001000)={&(0x7f0000000f80)={0x58, r9, 0x200, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @loopback}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private1}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @loopback}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @multicast1}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000000}, 0x2000c001) (async)
r10 = syz_open_dev$sg(&(0x7f0000001080), 0x95, 0x109000)
ioctl$SCSI_IOCTL_GET_PCI(r10, 0x5387, &(0x7f00000010c0)) (async)
r11 = syz_clone(0x83890000, &(0x7f0000001100)="d5489a4600546cac52cafe38b9919d7e5b6fa342fa4f5b4def3e1a83b6bec75b4064a205e90e298b3d6a675177325ea876c3aa9858ccf2d4ac60", 0x3a, &(0x7f0000001140), &(0x7f0000001180), &(0x7f00000011c0)="f7a245c213e67390c4a5ce79530faf4a19756058b9d834e2919aa9bd0674f33b6c3d67132d5259c3c77cd1df57d0344522b21607dd5c2abd6d555037187534d1")
fcntl$getownex(r10, 0x10, &(0x7f0000001200)={0x0, <r12=>0x0})
kcmp(r11, r12, 0x6, r10, r1) (async)
sendmsg$nl_route(r5, &(0x7f00000013c0)={&(0x7f0000001240)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001380)={&(0x7f0000001280)=@mpls_newroute={0xd0, 0x18, 0x2, 0x70bd27, 0x25dfdbff, {0x1c, 0x80, 0x0, 0x95, 0xfe, 0x1, 0xc8, 0x8, 0x3100}, [@RTA_VIA={0x14, 0x12, {0x1f, "5b49cd94adef573ca7cf97d60323"}}, @RTA_VIA={0x14, 0x12, {0xa, "25aae826b4e1bf3905baa0b75f65"}}, @RTA_DST={0x8, 0x1, {0xffffc}}, @RTA_NEWDST={0x84, 0x13, [{0x1, 0x0, 0x1}, {0xffffd}, {0x6, 0x0, 0x1}, {0x8}, {0x8, 0x0, 0x1}, {0x7f6}, {0x7}, {0x3}, {0x400}, {}, {0x4}, {0x9, 0x0, 0x1}, {0x5}, {0x8, 0x0, 0x1}, {0x1}, {0x0, 0x0, 0x1}, {0x1}, {0x6, 0x0, 0x1}, {0xf2, 0x0, 0x1}, {0xb4, 0x0, 0x1}, {0xc0, 0x0, 0x1}, {0x7fff}, {0x2, 0x0, 0x1}, {0x0, 0x0, 0x1}, {0x7}, {0x3bec0, 0x0, 0x1}, {0x3}, {0xf}, {0x5, 0x0, 0x1}, {0x1d7f, 0x0, 0x1}, {0x5}, {0x6c5, 0x0, 0x1}]}]}, 0xd0}, 0x1, 0x0, 0x0, 0x441}, 0x0) (async)
getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x12, &(0x7f0000001400), &(0x7f0000001440)=0x4)

27.282519776s ago: executing program 4 (id=1801):
syz_io_uring_setup(0x6266, &(0x7f0000000000)={0x0, 0x44ef, 0x80, 0x3, 0x3b5}, &(0x7f0000000080), &(0x7f0000000180))
syz_io_uring_setup(0x7345, &(0x7f00000001c0)={0x0, 0xd545, 0x8000, 0x3, 0x32f}, &(0x7f0000000240), &(0x7f0000000380))
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
r2 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r3=>0x0})
bind$can_j1939(r2, &(0x7f00000000c0)={0x1d, r3, 0x8000000000000003, {}, 0xfd}, 0x18)
sendmsg$nl_route_sched(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000004740)=@newtaction={0x14, 0x30, 0x1, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4c804}, 0x4091)
r4 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
ioctl$USBDEVFS_CONTROL(r4, 0xc0185500, &(0x7f0000000080)={0x20, 0x1, 0x1, 0x1, 0x0, 0x2, 0x0})
close(r2)
syz_usb_connect(0x2, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="440d39127e64b09d00030400"/23, @ANYRES32=0x0, @ANYBLOB="adffa88800000000140012800b0001006d616373656300002a00028008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5, @ANYBLOB], 0x44}}, 0x8000)

25.692122487s ago: executing program 4 (id=1813):
mkdir(&(0x7f0000000400)='./file0\x00', 0x1f9)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000001b40)=ANY=[@ANYBLOB='huge=always'])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
truncate(&(0x7f0000000000)='./bus\x00', 0x8001)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000240)={0x1fff}, 0x18, 0x0)
landlock_restrict_self(r1, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)
preadv(r0, &(0x7f0000000300)=[{&(0x7f00000001c0)=""/218, 0xda}], 0x1, 0x1000, 0x4)
lsetxattr$security_selinux(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100), &(0x7f00000002c0)='system_u:object_r:systemd_logind_exec_t:s0\x00', 0x2b, 0x3)

25.631479676s ago: executing program 4 (id=1814):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910000000000000c3041818000100009500740000000000"], &(0x7f0000000140)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0xe4}, 0x94)
r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0x0, 0x2c38, 0x10}, 0xc) (async, rerun: 32)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) (async, rerun: 32)
r1 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNDEL(r1, 0x400442c9, &(0x7f0000002fc0)={0x8, @multicast}) (async)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x183341, 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000003}) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1f, 0x61ac, 0x1, 0x100, 0xba16, r0, 0x400, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0, @value=r2}, 0x50)

23.780682836s ago: executing program 4 (id=1834):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'bond0\x00'})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000200))
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@msize={'msize', 0x3d, 0x20590e85}}]}})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x5d, &(0x7f0000000100)={&(0x7f0000000080)=@newlink={0x2c, 0x10, 0x20, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21, 0x730b}, [@IFLA_NET_NS_FD={0x0, 0x1c, r2}, @IFLA_PROTO_DOWN={0x0, 0x27, 0x2}, @IFLA_TXQLEN]}, 0x2c}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000009500000000000000000000000000001013e691a96e234956567ba7e450c7ad5643f3acb018444fa34390d5d937e9ced592f4e9e9c425912675c290d427ec8b1cb9c8b863f230baacb431c55356b145bbe70d617760e18c763a52f78acb4f4aa3d04bb647451dcbe4282fb4c6057461677a11e3db6f2bf5eded1aed45da069a327383f776d0d84a9bfdcbfd28eea9400de68755789f9a4a4333605f2bbe947d3b65a0c251fe5b47eeb3a5fc54aebe702fc7990f2b0dd280d714bd132a78d859d032f4deafd71318e4e7e6"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
r4 = dup3(r3, r3, 0x0)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r4, 0x80184132, &(0x7f0000000000))

23.708108392s ago: executing program 33 (id=1834):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'bond0\x00'})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000200))
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@msize={'msize', 0x3d, 0x20590e85}}]}})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x5d, &(0x7f0000000100)={&(0x7f0000000080)=@newlink={0x2c, 0x10, 0x20, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21, 0x730b}, [@IFLA_NET_NS_FD={0x0, 0x1c, r2}, @IFLA_PROTO_DOWN={0x0, 0x27, 0x2}, @IFLA_TXQLEN]}, 0x2c}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000009500000000000000000000000000001013e691a96e234956567ba7e450c7ad5643f3acb018444fa34390d5d937e9ced592f4e9e9c425912675c290d427ec8b1cb9c8b863f230baacb431c55356b145bbe70d617760e18c763a52f78acb4f4aa3d04bb647451dcbe4282fb4c6057461677a11e3db6f2bf5eded1aed45da069a327383f776d0d84a9bfdcbfd28eea9400de68755789f9a4a4333605f2bbe947d3b65a0c251fe5b47eeb3a5fc54aebe702fc7990f2b0dd280d714bd132a78d859d032f4deafd71318e4e7e6"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
r4 = dup3(r3, r3, 0x0)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r4, 0x80184132, &(0x7f0000000000))

1.700652713s ago: executing program 1 (id=2144):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000001100)=[{{0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f0000000280)=""/24, 0x18}], 0x1}, 0x9}], 0x1, 0x400000a0, 0x0)
sendmsg$alg(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000480)="c049d285d9bbff3bb6d5f6ee2b38a01b4935d97818e5382a54", 0x19}], 0x1, 0x0, 0x0, 0x4000004}, 0xc0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
r2 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$FBIOGET_CON2FBMAP(r2, 0x460f, &(0x7f0000000000)={0x10018, 0x3})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r3=>0x0})
sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)={0x2c, 0x0, 0x7be9ca225e964e2d, 0x70bd29, 0x25dfdbff, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x81}, @IEEE802154_ATTR_LLSEC_SECLEVEL={0x5, 0x2a, 0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x44004}, 0x4000004)
vmsplice(r2, &(0x7f00000002c0), 0x0, 0x0)
r4 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
ioctl$sock_ax25_SIOCDELRT(r4, 0x890c, &(0x7f0000000100)={@default, @bcast, 0x4, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x48, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x8800}, 0x4004000)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="44000000090601020000000000000000000000000900020073797a310000000005000100070000001c0007801800018014000240"], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x8, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000280)='./file1\x00')
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r6, 0xffffffff80000800, 0xee01, &(0x7f00000000c0)={0x0, 0x8001, 0x2000200000a95c, 0x5, 0x4000000201, 0x80000001, 0x48cd, 0xfffffffffffffffc, 0x800000d7})
capset(&(0x7f0000002040)={0x20071026}, &(0x7f0000002080)={0x1, 0xffff, 0x0, 0x3, 0xb, 0x6})
r7 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000680)='.log\x00', 0x1812c1, 0x0)
fchown(r7, 0xee01, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='hugetlbfs\x00', 0x0, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, 0x43, 0x9, 0x0, 0x0, {0x3}, [@typed={0x8, 0x2, 0x0, 0x0, @pid}]}, 0x1c}}, 0x24000044)
mount$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x820061, &(0x7f00000001c0)={[{@nr_inodes={'nr_inodes', 0x3d, [0x3f]}}]})

1.495329835s ago: executing program 1 (id=2147):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001340)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x28)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x60, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 7)

1.291484472s ago: executing program 1 (id=2151):
socket$key(0xf, 0x3, 0x2)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x4e24, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x80000000}, {0xfffffffffffffffc, 0x0, 0x0, 0x100000000}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x4d2, 0x33}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0xb7, 0xffffffff}}, 0xe8)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
select(0x40, &(0x7f0000000000)={0x2, 0xc4, 0x7, 0x9, 0x6ab4000000000000, 0x5, 0xfffffffffffff091, 0x3ff}, &(0x7f0000000040)={0x8, 0xa, 0x0, 0x4c7, 0x3, 0x8, 0x0, 0x6}, &(0x7f0000000080)={0x20a, 0xb, 0x0, 0x3, 0x2, 0x3ff, 0x4, 0x3ff}, &(0x7f00000000c0)={0x0, 0xea60})

1.1888521s ago: executing program 1 (id=2154):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000041c0)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000380)={0x50, 0x0, r1, {0x7, 0x27, 0x0, 0x801001a, 0x66d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}}, 0x50)
r5 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r5, 0x4008af30, &(0x7f0000000000)={0x2})
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='memory.stat\x00', 0x0, 0x0)
r6 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VIDIOC_SUBDEV_S_EDID(r6, 0xc0285628, &(0x7f00000001c0)={0x3, 0x1, 0x0, '\x00', 0x0})
quotactl$Q_QUOTAON(0xffffffff80000202, &(0x7f0000000240)=@filename='./file0/../file0/file0\x00', r2, 0x0)
syz_fuse_handle_req(r0, &(0x7f000000a280)="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", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)={0x90, 0x0, 0x40000008, {0x3, 0x3, 0x100000003, 0x800000000000, 0x2, 0x3881fffc, {0x6, 0x10, 0x1, 0x800000000000, 0x3, 0x2, 0xa, 0x0, 0x0, 0x6000, 0x9011, r2, r3, 0x2, 0x8009}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0100000000000000000039000000080001007063690011000200303030303a30303a31302e300000000008007300000000000e0001006e657464bfb473696d0000000f0002006e657464657673696d30000008000300000000009f870ce43a09ea96ac1bec7e17928591321cdd12040b8f41402ca605115724cf8d32f4f1499d4b"], 0x60}}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
clock_gettime(0x0, &(0x7f00000001c0)={<r8=>0x0, <r9=>0x0})
utimensat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', &(0x7f0000000200)={{}, {r8, r9/1000+60000}}, 0x100)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
fcntl$lock(r0, 0x7, &(0x7f0000000140)={0x0, 0x3, 0x6, 0x9, r4})
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
remap_file_pages(&(0x7f0000aaf000/0x3000)=nil, 0x3000, 0x0, 0x3, 0x100000)
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000900"], 0x48}}, 0x0)

1.131511352s ago: executing program 5 (id=2156):
rt_sigaction(0xd, &(0x7f00000000c0)={&(0x7f0000000100)="c4e189f4adfeefffffc441f96ec80fc4c60066400fe2def3ad46c7045300101000f00fc01ec422e10399c5c1202066410f6f15040000000000e1f563df", 0xdc000006, 0x0}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x8}, 0x94)
sendmsg$nl_route(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000005600010000000000000000000700c6c9", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0)
bind$alg(r1, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-generic\x00'}, 0x58)
r3 = accept4(r1, 0x0, 0x0, 0x80000)
mkdirat(0xffffffffffffff9c, &(0x7f00000021c0)='./file0\x00', 0x3a)
mount$tmpfs(0x0, &(0x7f0000002040)='./file0\x00', &(0x7f0000002200), 0x1000000, 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2a00a9, &(0x7f0000000080)={[{@noswap}, {@mpol={'mpol', 0x3d, {'interleave', '', @void}}}]})
writev(r3, &(0x7f0000000040)=[{&(0x7f00000012c0)="a4eac90f8e3ae7580e2e693731ef6b447fc2057d9a84e61f40c79e10218d131f865d68b23cd7c3f2b681e2205f67f140252abcc3b8015e176881d81a9e61b6a2c92a9d8e1f51861b64e7b61bf9a131e197f5a6c6d4d887d86c79836e81c69e211d2bf4c595b01c94de464ff9aa72b6058fe774c81142bbce9bd0d83f6239362c", 0x80}], 0x1)

1.1312722s ago: executing program 5 (id=2157):
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x1, 0x0, @private, @broadcast}, @echo_reply={0xe0}}}}}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f00000026c0)={0x0, 0x0, &(0x7f0000002680)={&(0x7f0000002640)=ANY=[@ANYBLOB="140000003800014b99bd7004ffdbdf250d"], 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0xc804)

1.125431604s ago: executing program 2 (id=2158):
r0 = fsopen(&(0x7f0000000180)='proc\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) (async)
r1 = fsmount(r0, 0x0, 0x1)
fchdir(r1) (async, rerun: 32)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f00000001c0)={[{@workdir={'workdir', 0x3d, './bus'}}]}) (async, rerun: 32)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@newtaction={0x68, 0x30, 0xffff, 0x0, 0x0, {}, [{0x54, 0x1, [@m_ife={0x50, 0x1, 0x0, 0x0, {{0x8}, {0x71, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x1}}, @TCA_IFE_METALST={0x8, 0x6, [@IFE_META_TCINDEX={0x4, 0x5, @void}]}]}, {0x4, 0x6, "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"}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0) (async)
fcntl$setsig(r2, 0xa, 0x2b)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000400000000c02000000000000000000000d0000000000005f00ad4ea6731b042af05147e697cfdb47ef0277e54a891185fed2159c8635861b7da68db7444d9a20f239906799c87948a2bf39a1154950d715fecb7f8ad04c0886f571801df48ab9604b539e9a63ea8c287e218ac2bc4f0aa5601c9db2fbf3471d6db27d38fe796a508f0cd77cafe973d097db180000000000"], 0x0, 0x34}, 0x20)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r3, 0x89f1, &(0x7f0000000380)={'ip6gre0\x00', &(0x7f00000002c0)=@ethtool_cmd={0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="183000000100000000000000030000007400000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41000}, 0x94)

1.051319589s ago: executing program 5 (id=2159):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001340)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb0100000200"/26], 0x0, 0x1a}, 0x28)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
socket$inet6(0xa, 0x2, 0x0)
openat$sw_sync(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x10, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8f, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [@alu={0x7, 0x0, 0x1, 0x9, 0x0, 0xffffffffffffffc0, 0xfffffffffffffffc}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x7, 0x0, 0x0, 0x41100, 0x5}, 0x94)
sendfile(0xffffffffffffffff, r2, &(0x7f0000000000)=0x8000000000000000, 0x7fff)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000003e000701feffffff00000000017c0000040042801400018006000600800a000006001700980a0000040002"], 0x30}, 0x1, 0x0, 0x0, 0x4048011}, 0xc800)
ioctl$SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
close(0x3)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000040)=0x7ff, 0x4)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = dup(r6)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REQ_SET_REG(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14006194100000", @ANYRES16=r9, @ANYBLOB="010000000000000000001b000000"], 0x14}, 0x1, 0x0, 0x0, 0x48001}, 0x20004805)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r10 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r10, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r7, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x60, 0x0, 0x0)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_SIOCETHTOOL(r11, 0x8946, &(0x7f0000000040)={'ipvlan0\x00', &(0x7f0000000140)=@ethtool_pauseparam={0x8}})
ioctl$SOUND_MIXER_WRITE_VOLUME(r10, 0xc0044d10, &(0x7f0000000080)=0x4d)

921.573174ms ago: executing program 2 (id=2160):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001340)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x28)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x60, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 8)

921.24359ms ago: executing program 5 (id=2161):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x17, 0x7, 0x8c, 0x401, 0x1bcd9, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x1}, 0x50)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd7000fedbdf250200000008000100", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004)
write$nci(r0, &(0x7f0000000140)=ANY=[@ANYBLOB], 0x6)

741.297243ms ago: executing program 1 (id=2164):
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000006c0)={0x57, 0xf7fe, 0xa9, {0x6, 0x1}, {0x60, 0x40}, @cond=[{0x7, 0x208, 0x7, 0xffff, 0x2, 0x3}, {0x8, 0x5, 0x1, 0x72, 0x9, 0xd}]}) (async)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8c2b01) (async)
syz_usb_disconnect(0xffffffffffffffff) (async)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r1, &(0x7f0000001580)=[{{&(0x7f0000000040)={0xa, 0x4e27, 0xed, @remote, 0x2}, 0x1c, 0x0}}], 0x1, 0x20000010) (async)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121701, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xd)
ioctl$TCFLSH(r2, 0x540b, 0x2) (async)
write$char_usb(r0, &(0x7f0000000040)="e2", 0x12d8)

739.82834ms ago: executing program 2 (id=2165):
r0 = socket$inet_sctp(0x2, 0x5, 0x84) (async, rerun: 64)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000000)={<r1=>0x0, 0xb4, "9d7991deec666adcd99714c16474a175cb528f2dd688ebb1894974a4ac8e6bd5dd5613539ee91cc0c9275fe6e03ba6f59f4bbac5751dc850f71b1f359d03ec210ba4c17ed7a9666be22988a804b3e31602132a3984e019ea6577032ca57f9c44f43d0c6fe51188aca1ab4369b5968d593cc56ad811f86a830611d3336e3f7b712f8fdb168b985ea1607a816a0ff7aaa84f1a9aff273d3b646cf5c2525485ab12b8eded65ecfff01f10def82af1bc0f081c9213db"}, &(0x7f00000000c0)=0xbc) (rerun: 64)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000100)={r1, 0x8c, "5402c8e4351ab81dea06c2cd37583c771962047b8249920d1a2717d59eb99ccefca4f2ebc8e57684695eaa7911324e59785710498a8167b43229d81c7aeaea5c453d6432e56372780f8164d5552d64bf84277fdccb85062c341176eaf5263f4e5abd6732d23b95cee0a8e55d889c28e56498506a728af35d072119b27548665b3eabf3779eb0ed17f71222df"}, &(0x7f00000001c0)=0x94)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_LIST(r2, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x74, 0x0, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x58, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5b88628e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x26b2b571}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5be18cab}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x122a1dd8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x38706277}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xf812822}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc283}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6844fbe1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2615baf4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2558}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000) (async, rerun: 32)
r3 = socket$inet_sctp(0x2, 0x0, 0x84) (rerun: 32)
setsockopt$inet_sctp_SCTP_MAXSEG(r3, 0x84, 0xd, &(0x7f0000000340)=@assoc_id=r1, 0x4)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_lsm={0x1d, 0xc, &(0x7f0000000380)=@raw=[@jmp={0x5, 0x1, 0x8, 0x8, 0x2, 0xc}, @initr0={0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x432}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, 0x1}}, @map_idx_val={0x18, 0x1, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, @btf_id={0x18, 0x6, 0x3, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0xe}], &(0x7f0000000400)='syzkaller\x00', 0x1, 0x11, &(0x7f0000000440)=""/17, 0x40f00, 0x50, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x2, 0x1}, 0x8, 0x10, &(0x7f00000004c0)={0x0, 0x8, 0x401, 0x3ff}, 0x10, 0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000500)=[0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x1, r3], &(0x7f0000000540)=[{0x3, 0x1, 0x4, 0xa}], 0x10, 0x7}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000900)={r4, 0xe0, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000640)=[0x0, 0x0, 0x0, 0x0], ""/16, <r5=>0x0, 0x0, 0x0, 0x0, 0x1, 0x6, &(0x7f0000000680)=[0x0], &(0x7f00000006c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x71, &(0x7f0000000700)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000740), &(0x7f0000000780), 0x8, 0x64, 0x8, 0x8, &(0x7f00000007c0)}}, 0x10) (async)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000980), r2) (async, rerun: 32)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f00000009c0)={'wpan0\x00', <r7=>0x0}) (rerun: 32)
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r2, &(0x7f0000000a80)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x24, r6, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0x6}]}, 0x24}}, 0x84)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000ac0), 0x1, 0x0) (async)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r3, 0x84, 0xf, &(0x7f0000000b00)={<r10=>r1, @in={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x23}}}, 0x2, 0xfffffffc, 0x3, 0x9, 0x3}, &(0x7f0000000bc0)=0x98)
setsockopt$inet_sctp6_SCTP_RTOINFO(r9, 0x84, 0x0, &(0x7f0000000c00)={r10, 0x5, 0xf, 0xd883}, 0x10)
sendmsg$NL80211_CMD_NEW_MPATH(r9, &(0x7f0000000d00)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)={0x38, 0x0, 0x100, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x800000, 0x35}}}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa}]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x4040080) (async)
shutdown(r9, 0x0) (async, rerun: 64)
pread64(r9, &(0x7f0000000d40)=""/178, 0xb2, 0x0) (async, rerun: 64)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r9, 0x89f8, &(0x7f0000000f00)={'gre0\x00', &(0x7f0000000e40)={'syztnl1\x00', <r11=>r5, 0x700, 0x8, 0x0, 0x2, {{0x1b, 0x4, 0x3, 0x1, 0x6c, 0x66, 0x0, 0x6, 0x4, 0x0, @multicast2, @local, {[@cipso={0x86, 0x46, 0x2, [{0x6, 0x11, "5669f45940a2d5966178753f53f0e9"}, {0x0, 0x11, "265308bcea75fe490e0082d1209249"}, {0x6, 0x2}, {0x5, 0x3, "f1"}, {0x5, 0x12, "61b44599aa360f69c4a6d3a67613f2f8"}, {0xa, 0x7, "9532881266"}]}, @timestamp_addr={0x44, 0xc, 0xaa, 0x1, 0x7, [{@local, 0xc}]}, @ra={0x94, 0x4}]}}}}})
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000020c0)={0x11, 0x5, &(0x7f0000000f40)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x628}, [@generic={0xaa, 0x2, 0x0, 0xd, 0xe}, @jmp={0x5, 0x0, 0x0, 0x2, 0x1, 0xfffffffffffffffc}]}, &(0x7f0000000f80)='GPL\x00', 0x3722017f, 0x1000, &(0x7f0000000fc0)=""/4096, 0x40f00, 0xc, '\x00', r5, 0x0, r9, 0x8, &(0x7f0000001fc0)={0x4, 0x5}, 0x8, 0x10, &(0x7f0000002000)={0x4, 0x8, 0xf, 0x1}, 0x10, 0x0, 0x0, 0x6, 0x0, &(0x7f0000002040)=[{0x4, 0x4, 0x0, 0x4}, {0x1, 0x2, 0x7, 0xa}, {0x2, 0x1, 0x4, 0x2}, {0x2, 0x3, 0xd, 0x2}, {0x1, 0x2, 0xe, 0x8}, {0x5, 0x4, 0x5, 0x4}], 0x10, 0x7f}, 0x94)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000e00)={@ifindex=r11, r9, 0x35, 0x10, 0x0, @void, @value=r12}, 0x20) (async)
setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r9, 0x84, 0x7, &(0x7f0000002180)={0xd81}, 0x4) (async)
r13 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000021c0), 0x428000, 0x0)
r14 = syz_open_dev$ttys(0xc, 0x2, 0x1) (async, rerun: 64)
r15 = syz_open_dev$amidi(&(0x7f0000002580), 0x6c476734, 0x201) (async, rerun: 64)
r16 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000037c0)={0x6, 0x20, &(0x7f00000025c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x8}, {{0x18, 0x1, 0x1, 0x0, r9}}, {}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r9}}, @func, @jmp={0x5, 0x1, 0x6, 0x3, 0x8, 0x8, 0x4}, @btf_id={0x18, 0x4, 0x3, 0x0, 0x1}, @map_idx_val={0x18, 0x9, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0x35033ee4}, @initr0={0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4}, @alu={0x4, 0x1, 0xc, 0x6, 0x5, 0xfffffffffffffff4, 0x8}, @map_fd={0x18, 0x4, 0x1, 0x0, r9}, @cb_func={0x18, 0x9, 0x4, 0x0, 0x7}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000026c0)='GPL\x00', 0x7, 0x1000, &(0x7f0000002700)=""/4096, 0x41100, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000003700)={0x0, 0xf, 0xffff0001, 0x36d}, 0x10, 0x0, 0x0, 0x2, &(0x7f0000003740)=[r9, r9, 0x1, r9, r4, r9, r12, r9], &(0x7f0000003780)=[{0x5, 0x3, 0xa, 0xc}, {0x3, 0x2, 0xf, 0xb}], 0x10, 0xeb}, 0x94) (async)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000003880)={<r17=>0xffffffffffffffff}) (async)
ioctl$sock_kcm_SIOCKCMCLONE(r9, 0x89e2, &(0x7f00000038c0)={<r18=>r8})
sendmmsg$unix(r9, &(0x7f000000c240)=[{{0x0, 0x0, &(0x7f0000002540)=[{&(0x7f0000002200)="8f487a0c10a739de3e5ff9be20c8ad5f59e22e6be27cc6936d10eb0083c9447ef1ea4f73a391148373f2e05e952bb710ea9064f63d05df32970560774aa2b4c04239120385ff39b0f1eb476ad94fc5a66acfe35e0dc35ed1cecfca2e0a0bb8df715986ad422ae25f4e0498f0fa5acc165c0107eddd65eabcab9a921fed0342be400e691cb6c581074568399c8e8e32706cb2352c5e8f5b38117ba68e27d6d21b54f2b3ee0f10f303f077de607306080358497a0a169cce8f7b48e9662807f6650e", 0xc1}, {&(0x7f0000002300)="a8184293b3a406b3f2c9da8cb01c0315e8de1dfec28f5ec63ce9ef4602fb72b2f3760b16c262d2766d379162345bdae85176cc2a92dd31664a656bac49f8f9b4f570b62947d417b89e1262c2199af35d2367cc4daef398de54c7ce1ac92423e9e8dc5bfa6bb05789b0350a2a9e2e87f61e868b21eb843a9f6283a754e15121e50b680120742f664806c5000e2574e781dc3e", 0x92}, {&(0x7f00000023c0)="d6166cdb8deec8c5e85be780480a5dbdb5353ecdea182e933a8862dde0aa05a5371ce751a150033ab069766b9887b0c932fb6c57852bdb5e056e154daacbf850663388de64d96e0a307a455f4ad1972dbd0ba74668113a657f34c5aa5d5296e79bd88ef67afa4564728169e1e04f2cfb519b669b100d8fa1dc4df1e3f5012f361caa827fe104777c24599e80985db021b6a28a92161c964517fcf64c359d29343191a38f91b119e610c5", 0xaa}, {&(0x7f0000002480)="1b796fb22fed448e8125fa4cb58185323e1a0bfa6938176dd377954027a221750b08e03c62670443dd708c61b8a9226fed22e27b12594ab929dae25ed489ef17839eb9dc923070c0140af5b1413f5ffd99643dc39990720f878f569f81f828151c4423a395373589ed47aaf4543d6447db776da9b6b80811690918e2ad2cf4f1641ef78696b11309b23a949ea6", 0x8d}], 0x4, &(0x7f0000003cc0)=[@rights={{0x2c, 0x1, 0x1, [r0, r3, r0, r0, r14, r15, r13]}}, @rights={{0x2c, 0x1, 0x1, [r3, r8, r4, r16, r17, r4, r4]}}, @rights={{0x34, 0x1, 0x1, [r18, r4, r3, r3, r3, r3, r12, r4, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [r4, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, r9, r3, r3, r3, r8, 0xffffffffffffffff, r9]}}], 0x108, 0x4}}, {{&(0x7f0000003e00)=@file={0x1, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e, &(0x7f0000003ec0)=[{&(0x7f0000003e80)="c5820c333598e8be5c3a4b641e1ac602fc6f959defe0", 0x16}], 0x1, &(0x7f00000053c0)=[@rights={{0x28, 0x1, 0x1, [r13, r13, 0xffffffffffffffff, r4, r4, r9]}}, @rights={{0x20, 0x1, 0x1, [r13, r9, 0xffffffffffffffff, r0]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [r9, r0, r8, r12, r8, r3, r3, r9]}}, @rights={{0x18, 0x1, 0x1, [r3, r8]}}, @rights={{0x1c, 0x1, 0x1, [r8, r4, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [r4, r0, r13, r8, r4, r13, r0, r4]}}], 0x120, 0x9800}}, {{&(0x7f0000005500)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000005680)=[{&(0x7f0000005580)="ff712e83619e3694f5ab35d1530a403f37b2a16b207ebc5d9b53abeb4c8bb45dcaef2bd9361564365324d51883026a422833026814b09cca7edf279e5a1b45fe5e5d90ee826f9cb16eaadbed4018a691129a0837ea37ae3d68d02d01c3faee308476deeb1daacafa20876f8a6c39d727e81e28e054d79a9755bbb54808e90e036a3ec67721e33e589fdc", 0x8a}, {&(0x7f0000005640)="fd39f3b2bac3fd34cac47b0cac8074d92dc0c1fbcc94ff9065bc6676e21423e7f64fc4780e5af1de5912a76a", 0x2c}], 0x2, &(0x7f00000056c0)=[@rights={{0x24, 0x1, 0x1, [r13, r12, r0, r3, r4]}}], 0x28, 0x20000084}}, {{&(0x7f0000005700)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000005980)=[{&(0x7f0000005780)="318c7a0d2559a5420aef9e4919548456b5ecc71feaa0d45cf7bde812c7c0882fef3689af8f9ae46edae8c0c2086ef6f5700b6d10f80affb77bf3e21607d3534aeba3094471c69a12c0584a13f8d585b60e1bb70ca2f9749a6c99060d0fdaeec3b7433f999f3b21bbe75d60f86e3bcf18eb5c6e594ec1a29452a71bc72f7e16dfa9314ba90e6e9d0e30b5fb1f2984b4d3d9b3894616", 0x95}, {&(0x7f0000005840)="61c7480fc9fd96fbba13137813d5e74cbcc50c4293ad8c8e9bd5e22041569cee6e8be55e31317f84b9521bfe1e3a3ebb6045e9eca87d2bc8ed7a238be0d29cf1ff08943730197835ce7863ab992149e11f493e7fd4f7bbaefdda10a9f3c32533cb720fdc7f3a888125adf2e9b4d51a2fb26bc2a82c3425a41194e26a16703cc86162c06ba7b8268dce5896cd89117aed064724be382c288273d02f85", 0x9c}, {&(0x7f0000005900)="5b2cdb2bc035a8a836105e716f5ef0a85c5bb6c8c9d5c099bc95ccf87110768c25113187ce75960b1aabb950885fad3ab3d11f3a712d8e974c5f0aef2be52bf07f86d7893a2f83a0066c103186dd502be5", 0x51}], 0x3, &(0x7f0000008100)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xee01}}}, @rights={{0x2c, 0x1, 0x1, [r3, r3, r0, r12, r12, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @cred={{0x1c}}], 0xf0, 0x80}}, {{&(0x7f0000008200)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f000000b7c0)=[{&(0x7f0000008280)="5b22496b2e197284e5d275e28db0642377733d758dacb9f3b00d2859e906ff52367b8b6cb92b6e256520b23d4e0101e130006bd60b7f8fdc361e640c7cc903c5148554477705981d2c485634d47779d69180c6f0092c2d15760cf651fef41b1605c7ad25ed68204313c57534a9f278de223021db2990f29764f297e273be962d9301bf3009d08ad2d854e4647127d257e300a50a755341d0672d43276466284ca3e99eae1270d975e332249c5badc7ba34d0ac9ba393f9d3d8fd221da810c28d476dc30caa24e8de1f535ca058ec2d78b70b268596d4a6", 0xd7}, {&(0x7f0000008380)="1d8f14800fe5479c953f3435ed02ed6da3c7cd60ef642eaecc6bbdc17dfb363aa97bca881e37a898aaf8da9236171adf7309c9ad599eefff4729bb8ce21ef917fe8715bd07c80595f0d1a4bdbc3a5fa3620b9db2ef759b5a9aa23f5e42e81c86dfe8220f6096192310aa42fafafc3423e8f99b80c09acd6a785ff4e31837ee1576c920713fc9ce9981f77a3805ae890944f484395122", 0x96}, {&(0x7f0000008440)="d14bd0a8a2e9f006eb7a07baaf208784c25e75235530df026508438fa28903f3fde51b1fe64ace1822292593732ea078e825a11d73fab9705ff54a7f3bf5de3282aef591491d50a918cc728f2f1a604b9d29ab1112cdae184576f2967da7e4ae26594d46f858b5ccc6cfb2245ecf6979e460aefa6db3d99dec", 0x79}, {&(0x7f00000084c0)="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", 0x1000}, {&(0x7f00000094c0)="5f4b589e417bb1bf7ab41a0d344af8107266f52d2177b751ce035c5523bd4ecbfc24e473113119fe720f7b565eb043443fcf05013c46a020bbc55f0dcd263507d47eaaf4a1ad2a696b129e7d4f63bad9dce6354ea5db70c4c742bf517a6a5825a2f48d8ad3ec06fbaa7456fc256162c059c4af52f7df0f4169ca0803b87693dedfd417bd75bb1aafbf5deb2a846cb8c2f1285acd23db8c33537d78ff451ec02316e4cc9550833a464b067d1bfbbe", 0xae}, {&(0x7f0000009580)="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", 0x1000}, {&(0x7f000000a580)="99e96d92232a7c7e15f94d3d3912eb32bb97cab3b6bb6a12258f15efb5f8ad5f6b1aebec2a7f62fc3d8b67b5e75c3e928e3c5b89067ee5b82cff92843ecf838396d4e27c3f6a547d2bc47a094971d77f4dd2501322a5b1cabd386ed15d69eb754823e8280297aa4848212bd290d3384533f1d42b41988fe297366b95ff2926273e619da1a248963308da6b262d4c5096da5e95923f", 0x95}, {&(0x7f000000a640)="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", 0x1000}, {&(0x7f000000b640)="4b7d47ced83a1001d7854f400903f138c03652cb203912ee536e099d4cbdbdaf2d5c0d061139872a3ea8dfe8bb5147a387431efcf27bf4f1ed36fde54d08384f521a4db3cd14c218ff7582d5ed9f7bc10a71c0cc1076295a469f3baf6f651f374f4a58c513e660d1b50b152f5796918445afbd4b3dc30cb8b80430455ee2bddde4", 0x81}, {&(0x7f000000b700)="5c1c76e918fa30396b799741e7c4b4200c20fdad9b77dae2b4c21690dfe2fc4f6006399fa4de151fa3bff92874c94d5e1b0c7f0016748a9530f650be718eeef476fac679e74a9dc5075568eb90c55f27070682c7ed72a00dda01efb6aa96aaaef705728053aecb374987cc13951f39e80a2c22d900791ece7f12aa97c598ac7a8d39e2977f8e156107e26e0f667a3e", 0x8f}], 0xa, &(0x7f000000b8c0)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [r8, r13, r3, r13, r12, 0xffffffffffffffff, r3, r3]}}, @rights={{0x18, 0x1, 0x1, [r3, r9]}}], 0x68, 0x24000084}}, {{&(0x7f000000b940)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f000000bd40)=[{&(0x7f000000b9c0)="2706260b0ac95ea301d6669d7a8cc9a7d43c27940b353d1085056e0582ed5bb1e53f6a589a5365b6ae1382701e6c872def966c5e9d18ec", 0x37}, {&(0x7f000000ba00)="29944a3069d7638d09013938b9f20ac7d950be06e84fc0e54c744114a7f4c060323e6f0a62cd3661f2a8c6f9f0d179ec718a184df9c7183151810a730270e4f17c833be9e0f234da0361c9ebde40a7a5ffe785263a33e97e80e59b802c6933caa43711fe818c67ef14b68d619937d4827ab80aa1645f4dc86d2498a94fda9321f23835a01a281c74a69e2c1f17b488a0db5236421a2c4e43bd1291970891d2f085cf3ca32ed2ce99ac7a8d8d8796e917e3074e30708c375213428604bfd26a1f51f2b86042baf117d5a99646f464af14b326f6790b8d681e57e57c98b753", 0xde}, {&(0x7f000000bb00)="e085c5298fae2aa41324d09464178b8736f2f58d688be72e200330fd14adb38602c4cd37be7777627ff3bd51d5036d010295c44f37577538a1c7d1e5338044a970cf4c1c4956a2535cdabc52c65afb9cabf2e140cc0b21e61069f6f7a0e9e7644fc471a527e6f788d3578608170ea2a980a3d34d9e5e76a340ba92a59820d8c898c8b71e4138dc731744c068528b70622a4a9e2bdf8dd7f5d75494ba", 0x9c}, {&(0x7f000000bbc0)="4759a8336dd7f320a48419017c07d0eb1e333a3f1aa2e4dbb64e5d6fd441bf7f39ca8f85dd9074e48b23f247fdbe74f1020ecef21d7e6bc21c9c53f85193e748dbe530fe0ed3da249a73399b84fa64d29ee7f7b12520ce0bfd4503fe91d1324892f010dd6a6c8c9dccfa747f0e8b62", 0x6f}, {&(0x7f000000bc40)="de1d2849a4e8d06ee599ad8b49703e41cc9c781d653d8d50e4863a162dffc7082f5e1b8f9af898de27f950590a294d06838cfb773e7d81426a2675e60ae7e124fc99f3f085", 0x45}, {&(0x7f000000bcc0)="9118ccd7cbc9011e994d92260b767a8163cfaca5b46b5883bb4b9e95be535625eb447f48f53837f4b10caab12c6878dd797384b060f928869eb006df278451b52bebb428b2beaed135ac6b61417f7fbcd04566343909f960a7a1fa850844a1", 0x5f}], 0x6, &(0x7f000000c1c0)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [r8, r3]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r0, r3, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60, 0x200000c0}}], 0x6, 0x1)

491.21961ms ago: executing program 3 (id=2166):
r0 = syz_open_dev$rtc(&(0x7f0000000080), 0x0, 0x400)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x810)
ioctl$RTC_WKALM_RD(r0, 0x40187013, &(0x7f0000000440))
syz_open_dev$rtc(&(0x7f0000000080), 0x0, 0x400) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x810) (async)
ioctl$RTC_WKALM_RD(r0, 0x40187013, &(0x7f0000000440)) (async)

490.678296ms ago: executing program 3 (id=2167):
clock_gettime(0x6, &(0x7f0000000000)={<r0=>0x0, <r1=>0x0})
clock_settime(0x0, &(0x7f0000000040)={r0, r1+60000000})
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'generic-gcm-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r3 = accept4(r2, 0x0, 0x0, 0x0)
sendmsg$alg(r3, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=[@assoc={0x18, 0x117, 0x4, 0x202}], 0x18}, 0x0)
sendmsg$nl_route_sched_retired(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000012100), 0xe078}}, 0x0)
recvmmsg(r3, &(0x7f0000002180)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000500)=""/254, 0xfe}, {&(0x7f00000000c0)=""/50, 0x32}, {&(0x7f0000000600)=""/97, 0x61}, {&(0x7f0000000680)=""/114, 0x72}], 0x4}, 0x3f}], 0x2, 0x60, 0x0)
clock_gettime(0x0, &(0x7f0000000500)={<r4=>0x0, <r5=>0x0})
recvmmsg$unix(r3, &(0x7f0000000480)=[{{&(0x7f0000000080), 0x6e, &(0x7f0000000200)=[{&(0x7f0000000100)=""/129, 0x81}, {&(0x7f00000001c0)=""/13, 0xd}], 0x2}}, {{&(0x7f0000000240), 0x6e, &(0x7f0000000400)=[{&(0x7f00000002c0)=""/78, 0x4e}, {&(0x7f0000000340)=""/143, 0x8f}], 0x2, &(0x7f0000000440)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}], 0x2, 0x4141, &(0x7f0000000540)={r4, r5+60000000})

431.447129ms ago: executing program 3 (id=2168):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000005c0)=ANY=[@ANYBLOB="7000000018000500000000000000000002000000000200090000000006001500040000004c0016804800088044000180"], 0x70}}, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000002c80), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000140)={0x7, 0x1, 0x2})
ioctl$vim2m_VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f0000002dc0)=@multiplanar_userptr={0x0, 0x1, 0x4, 0x100, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x47, 0x2, 0x0, "488dc807"}, 0x80000, 0x2, {0x0}, 0xfffffffc, 0x0, <r2=>0xffffffffffffffff})
ioctl$vim2m_VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f0000000080)=@mmap={0x2, 0x1, 0x4, 0x1000, 0xa, {0x77359400}, {0x4, 0x0, 0x6, 0x8, 0x8, 0xa, "fc4cd207"}, 0x3, 0x1, {}, 0x0, 0x0, r2})
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000000)={0x200, 0x3, 0x4, 0x0, 0x3})
socket$nl_route(0x10, 0x3, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000005c0)=ANY=[@ANYBLOB="7000000018000500000000000000000002000000000200090000000006001500040000004c0016804800088044000180"], 0x70}}, 0x0) (async)
syz_open_dev$vim2m(&(0x7f0000002c80), 0x0, 0x2) (async)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000140)={0x7, 0x1, 0x2}) (async)
ioctl$vim2m_VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f0000002dc0)=@multiplanar_userptr={0x0, 0x1, 0x4, 0x100, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x47, 0x2, 0x0, "488dc807"}, 0x80000, 0x2, {0x0}, 0xfffffffc}) (async)
ioctl$vim2m_VIDIOC_PREPARE_BUF(r1, 0xc058565d, &(0x7f0000000080)=@mmap={0x2, 0x1, 0x4, 0x1000, 0xa, {0x77359400}, {0x4, 0x0, 0x6, 0x8, 0x8, 0xa, "fc4cd207"}, 0x3, 0x1, {}, 0x0, 0x0, r2}) (async)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000000)={0x200, 0x3, 0x4, 0x0, 0x3}) (async)

151.428001ms ago: executing program 3 (id=2169):
syslog(0x4, &(0x7f0000002f80)=""/54, 0x36)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = io_uring_setup(0xf08, &(0x7f0000000780)={0x0, 0xfb6e, 0x38c1, 0x3, 0xf0})
io_uring_register$IORING_REGISTER_FILES(r1, 0x20, &(0x7f0000000000)=[r1], 0x1)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_opts(r2, 0x29, 0x3a, 0x0, &(0x7f0000000340))
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000260009002bbd670000ddffff01"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x844)

71.392657ms ago: executing program 3 (id=2170):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x1, 0x4800003e, r0, 0x0)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r1, 0x71, 0x40000009, r2, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8919, &(0x7f00000000c0)={'batadv_slave_0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x50, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x585d}, [@IFLA_IFNAME={0x14, 0x3, 'ipvlan1\x00'}, @IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPVLAN_FLAGS={0x6, 0x2, 0x2}]}}}]}, 0x50}, 0x1, 0x0, 0x0, 0x400c1}, 0x0)
sendmsg$nl_route(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newlink={0x7c, 0x10, 0x40d, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x20, 0x40}, [@IFLA_LINKINFO={0x48, 0x12, 0x0, 0x1, @gre={{0x8}, {0x3c, 0x2, 0x0, 0x1, [@IFLA_GRE_IFLAGS={0x6, 0x2, 0x5}, @IFLA_GRE_PMTUDISC={0x5}, @IFLA_GRE_ERSPAN_HWID={0x6, 0x18, 0x2}, @IFLA_GRE_FWMARK={0x8, 0x14, 0x10}, @IFLA_GRE_ENCAP_FLAGS={0x6, 0xf, 0x7}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x2}, @IFLA_GRE_LINK={0x8, 0x1, r4}]}}}, @IFLA_ALT_IFNAME={0x14, 0x35, 'macvlan0\x00'}]}, 0x7c}, 0x1, 0x0, 0x0, 0x20040880}, 0x2004c840)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0100000006000000080000000800000040000000", @ANYRES32=0x1, @ANYBLOB="31ffffff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000ccb0000000004000000000000002eca9c700000000000020000"], 0x59)

70.673746ms ago: executing program 2 (id=2171):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x80, 0x5, 0x9, 0x0, {0x9, 0xd6, 0x1c, 0xd, 0x5, 0x401, 0xfff5, 0xa, 0x0, 0x52, 0x8000, 0x7e9, 0x401, 0x9aa1, "cb630dab3a0338057401a192419598961f50dc45c87d55a52a28b8f01c0e0e7a"}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={0x28, 0x3e, 0x107, 0xfffffffe, 0x0, {0x4, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x4, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x5e1a1d7e9ee501a7}, 0xc000)

70.467857ms ago: executing program 5 (id=2172):
r0 = socket$nl_route(0x10, 0x3, 0x0) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000070000000300000048"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x18) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
r3 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x28400, 0x0)
ioctl$IOMMU_TEST_OP_SET_TEMP_MEMORY_LIMIT(r3, 0x3ba0, &(0x7f0000000040)={0x48, 0x9, 0x0, 0x0, 0xca12})
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_type(r4, &(0x7f0000000040), 0x2, 0x0)
sendfile(r0, r5, 0x0, 0x9) (async)
r6 = syz_io_uring_setup(0x24fe, &(0x7f0000000300)={0x0, 0xf36e, 0x10100}, &(0x7f0000000100)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, &(0x7f00000001c0)=[{&(0x7f00000004c0)=""/120, 0x78}], 0x1) (async)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x5, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0xffffffff}, 0x50)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000180)={@map=r9, 0x4, 0x0, 0x62, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r10=>0x0}, 0x40) (async)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TYPE(r11, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='}'], 0x38}}, 0x24000080) (async)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000540)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r12, 0x0, 0x48c, &(0x7f0000000280)={0x3, 'lo\x00'}, 0x18)
write$UHID_CREATE2(r12, &(0x7f0000000080)=ANY=[@ANYBLOB="6d06cd92949fec46919873175a", @ANYRES8=r10, @ANYRESDEC=r8, @ANYRES16=r10], 0x118) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r12, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x10, 0x0, @fd_index=0x8, 0xfff, 0x0, 0x6, 0x0, 0x1}) (async)
io_uring_enter(r6, 0x2d3e, 0x2936, 0x0, 0x0, 0x0)

1.424622ms ago: executing program 1 (id=2173):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001340)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x28)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x60, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 9)

1.230558ms ago: executing program 3 (id=2174):
r0 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (async)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r1, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100}) (async)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs2/custom1\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0xc, 0x0, &(0x7f0000000200)=[@acquire, @enter_looper], 0x53, 0x0, 0x0}) (async)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000480)={0x20, 0x0, &(0x7f0000000000)=[@request_death, @clear_death], 0x0, 0x0, 0x0}) (async)
r3 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000140), 0x800, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r3, 0x4610, &(0x7f0000000180)={0x1}) (async)
ioctl$FBIOPUT_CON2FBMAP(r3, 0x4610, &(0x7f0000000000)={0x1, 0x1}) (async)
ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/devices.allow\x00', 0x2, 0x48) (async)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
creat(&(0x7f0000000080)='./cgroup.net/devices.allow\x00', 0x10) (async)
r6 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00')
ioctl$BTRFS_IOC_ADD_DEV(r6, 0xb701, 0x0) (async)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f00000002c0)={0x61, 0x18, 0xfa00, {0xfffffffffffffffe, 0x0, 0x13f, 0x4}}, 0x20) (async)
ioctl$VIDIOC_SUBDEV_S_FMT(r4, 0xc0585605, &(0x7f0000000240)={0x1, 0x0, {0x4, 0xb0ca, 0x2020, 0x8, 0x6, 0x8, 0x1}})
finit_module(r0, 0x0, 0x3)

887.669µs ago: executing program 2 (id=2175):
pipe2$watch_queue(&(0x7f0000000280)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80)
r1 = fsopen(&(0x7f0000000280)='smb3\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000240)='uid', &(0x7f00000008c0)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80=\x8a\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\x1f\x03\x00\x00\x00\x00\x00\x00\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9ak\x00\x00\x00\x00\x00\x00\x00\n\xa72\xa3\xef^\xe7\x8f', 0x0)
r2 = syz_open_dev$cec(&(0x7f0000000080), 0x0, 0x0)
ioctl$CEC_S_MODE(r2, 0x40046109, &(0x7f00000000c0)=0x32)
ioctl$CEC_S_MODE(r2, 0x40046109, &(0x7f0000000000)=0x31)
ioctl$IOC_WATCH_QUEUE_SET_FILTER(r0, 0x5761, &(0x7f0000000f40)={0x5, 0x0, [{0x8000, 0x7, 0xfffff714, [0x9, 0x9, 0x1af, 0xb9a2, 0x1, 0x10, 0x8, 0x2]}, {0xfffff78a, 0x6, 0x9, [0x9f7, 0x3, 0x1, 0x0, 0x4, 0xf, 0x8, 0x200]}, {0x1ff, 0x9, 0x1ff, [0x94f, 0x1, 0x73e5d9cb, 0x9, 0x0, 0x9, 0xfffffff7, 0x400]}, {0x5, 0x7fffffff, 0xf, [0xbf, 0x100, 0x0, 0x10000, 0x8001, 0xca, 0x100, 0xf08b9bb]}, {0x2e, 0x3, 0x8, [0x8, 0x6, 0xb1, 0x7, 0x7, 0x0, 0x100, 0x4]}]})

682.458µs ago: executing program 5 (id=2176):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380)='devtmpfs\x00', 0x4000, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000180)='tmpfs\x00', 0x3200890, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, 0x0, 0x262)
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000400), 0x402, 0x0)
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x3, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r2, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_QBUF(r2, 0xc058560f, &(0x7f0000000180)=@multiplanar_mmap={0x0, 0x2, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'y)\x00'}, 0x0, 0x1, {0x0}, 0xea})
ioctl$vim2m_VIDIOC_STREAMOFF(r2, 0x40045612, &(0x7f0000000080)=0x2)
close_range(r1, 0xffffffffffffffff, 0x0)

0s ago: executing program 2 (id=2177):
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x7, 0x40)
ioctl$VIDIOC_ENUM_DV_TIMINGS(r0, 0xc0945662, &(0x7f00000002c0)={0x7, 0x0, '\x00', {0x0, @reserved}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$netlink_NETLINK_PKTINFO(r3, 0x10e, 0x3, &(0x7f0000000080)=0x1000, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r3)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x30, r5, 0x1, 0x70bd25, 0x25dfdbff, {{}, {}, {0x14, 0x18, {0x0, @bearer=@udp='udp:syz2\x00'}}}}, 0x30}, 0x1, 0x0, 0x0, 0x4880}, 0x40090)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0xc6, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[], 0x1c}}, 0x0)
r6 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000540), r2)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x28, r6, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x28}}, 0x0)

kernel console output (not intermixed with test programs):

 invalid maxpacket 8241, setting to 1024
[  148.721305][T12100] bridge0: port 3(dummy0) entered blocking state
[  148.722732][ T6708] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  148.723479][T12100] bridge0: port 3(dummy0) entered disabled state
[  148.726512][ T6708] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  148.726524][ T6708] usb 8-1: Product: syz
[  148.726532][ T6708] usb 8-1: Manufacturer: syz
[  148.728516][T12100] dummy0: entered allmulticast mode
[  148.738033][ T6708] cdc_wdm 8-1:1.0: skipping garbage
[  148.739871][ T6708] cdc_wdm 8-1:1.0: skipping garbage
[  148.745747][ T6708] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  148.747854][ T6708] cdc_wdm 8-1:1.0: Unknown control protocol
[  148.763890][T11823] net_ratelimit: 30 callbacks suppressed
[  148.763900][T11823] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  148.769645][T11823] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  148.773870][T11823] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  148.778094][T11823] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  148.943851][   T40] audit: type=1400 audit(1753581783.799:92378): avc:  denied  { read write } for  pid=12092 comm="syz.3.1820" name="cdc-wdm0" dev="devtmpfs" ino=3165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:modem_device_t tclass=chr_file permissive=1
[  148.947593][T12093] netlink: 'syz.3.1820': attribute type 10 has an invalid length.
[  148.953664][   T40] audit: type=1400 audit(1753581783.799:92379): avc:  denied  { open } for  pid=12092 comm="syz.3.1820" path="/dev/cdc-wdm0" dev="devtmpfs" ino=3165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:modem_device_t tclass=chr_file permissive=1
[  148.971268][ T5957] usb 8-1: USB disconnect, device number 16
[  149.239486][T12116] binder: 12113:12116 ioctl c0306201 200000000240 returned -11
[  149.283726][T11823] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  149.287933][T11823] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  149.292107][T11823] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  149.296327][T11823] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  149.364808][T11866] syz.2.1764 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  149.368111][T11866] CPU: 2 UID: 0 PID: 11866 Comm: syz.2.1764 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  149.368125][T11866] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.368132][T11866] Call Trace:
[  149.368136][T11866]  <TASK>
[  149.368140][T11866]  dump_stack_lvl+0x16c/0x1f0
[  149.368161][T11866]  dump_header+0x101/0x930
[  149.368180][T11866]  oom_kill_process+0x270/0xa60
[  149.368199][T11866]  out_of_memory+0x350/0x1700
[  149.368220][T11866]  ? __pfx_out_of_memory+0x10/0x10
[  149.368241][T11866]  mem_cgroup_out_of_memory+0x118/0x130
[  149.368256][T11866]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  149.368273][T11866]  ? do_raw_spin_unlock+0x172/0x230
[  149.368289][T11866]  try_charge_memcg+0x72b/0xd50
[  149.368303][T11866]  ? __pfx_try_charge_memcg+0x10/0x10
[  149.368314][T11866]  ? __print_lock_name+0x81/0xe0
[  149.368328][T11866]  ? rcu_read_unlock+0x17/0x60
[  149.368343][T11866]  charge_memcg+0x8a/0x230
[  149.368354][T11866]  __mem_cgroup_charge+0x2b/0x1e0
[  149.368367][T11866]  filemap_add_folio+0x88/0x220
[  149.368377][T11866]  ? __pfx_filemap_add_folio+0x10/0x10
[  149.368392][T11866]  __filemap_get_folio+0x510/0xc30
[  149.368406][T11866]  filemap_fault+0x661/0x26c0
[  149.368420][T11866]  ? __pfx_filemap_fault+0x10/0x10
[  149.368439][T11866]  __do_fault+0x10d/0x490
[  149.368457][T11866]  __handle_mm_fault+0x3c2a/0x5490
[  149.368476][T11866]  ? __pfx___handle_mm_fault+0x10/0x10
[  149.368491][T11866]  ? __pte_offset_map_lock+0x174/0x310
[  149.368503][T11866]  ? find_held_lock+0x2b/0x80
[  149.368516][T11866]  ? find_held_lock+0x2b/0x80
[  149.368533][T11866]  ? follow_page_pte+0x3af/0x14c0
[  149.368550][T11866]  handle_mm_fault+0x589/0xd10
[  149.368567][T11866]  __get_user_pages+0x589/0x3b80
[  149.368586][T11866]  ? __pfx___get_user_pages+0x10/0x10
[  149.368600][T11866]  ? __kernel_write_iter+0x5a5/0xa90
[  149.368620][T11866]  get_dump_page+0x257/0x3d0
[  149.368633][T11866]  ? __pfx_get_dump_page+0x10/0x10
[  149.368646][T11866]  ? dump_user_range+0x745/0xb60
[  149.368665][T11866]  dump_user_range+0x195/0xb60
[  149.368683][T11866]  ? __pfx_dump_user_range+0x10/0x10
[  149.368700][T11866]  ? elf_coredump_extra_notes_write+0xbd/0x4f0
[  149.368720][T11866]  ? __pfx_writenote+0x10/0x10
[  149.368741][T11866]  elf_core_dump+0x288a/0x3a90
[  149.368765][T11866]  ? __pfx_elf_core_dump+0x10/0x10
[  149.368781][T11866]  ? kasan_save_stack+0x42/0x60
[  149.368797][T11866]  ? kasan_save_stack+0x33/0x60
[  149.368811][T11866]  ? kasan_save_track+0x14/0x30
[  149.368826][T11866]  ? __kasan_kmalloc+0xaa/0xb0
[  149.368841][T11866]  ? do_coredump+0x1c9a/0x4f10
[  149.368855][T11866]  ? get_signal+0x22e3/0x26d0
[  149.368868][T11866]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  149.368884][T11866]  ? 0xffffffffff600000
[  149.368918][T11866]  ? do_coredump+0x399c/0x4f10
[  149.368932][T11866]  do_coredump+0x399c/0x4f10
[  149.368953][T11866]  ? __pfx_do_coredump+0x10/0x10
[  149.368968][T11866]  ? find_held_lock+0x2b/0x80
[  149.368982][T11866]  ? is_bpf_text_address+0x8a/0x1a0
[  149.368997][T11866]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  149.369013][T11866]  ? is_bpf_text_address+0x94/0x1a0
[  149.369026][T11866]  ? kernel_text_address+0x8d/0x100
[  149.369038][T11866]  ? __kernel_text_address+0xd/0x40
[  149.369050][T11866]  ? unwind_get_return_address+0x59/0xa0
[  149.369075][T11866]  ? stack_depot_save_flags+0x28/0xa40
[  149.369095][T11866]  ? __lock_acquire+0xb8a/0x1c90
[  149.369110][T11866]  ? kasan_save_stack+0x42/0x60
[  149.369125][T11866]  ? kasan_save_stack+0x33/0x60
[  149.369140][T11866]  ? kasan_save_track+0x14/0x30
[  149.369155][T11866]  ? kasan_save_free_info+0x3b/0x60
[  149.369167][T11866]  ? __kasan_slab_free+0x51/0x70
[  149.369183][T11866]  ? kmem_cache_free+0x2d1/0x4d0
[  149.369197][T11866]  ? __sigqueue_free+0xba/0x2a0
[  149.369212][T11866]  ? get_signal+0xcba/0x26d0
[  149.369224][T11866]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  149.369257][T11866]  ? proc_coredump_connector+0x2d1/0x4f0
[  149.369272][T11866]  ? __pfx_proc_coredump_connector+0x10/0x10
[  149.369290][T11866]  ? rcu_is_watching+0x12/0xc0
[  149.369306][T11866]  get_signal+0x22e3/0x26d0
[  149.369324][T11866]  ? force_sig_fault+0xc4/0x100
[  149.369338][T11866]  ? __pfx_get_signal+0x10/0x10
[  149.369356][T11866]  arch_do_signal_or_restart+0x8f/0x7d0
[  149.369368][T11866]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  149.369382][T11866]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  149.369404][T11866]  irqentry_exit_to_user_mode+0x12a/0x270
[  149.369416][T11866]  asm_exc_page_fault+0x26/0x30
[  149.369426][T11866] RIP: 0033:0x0
[  149.369433][T11866] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  149.369438][T11866] RSP: 002b:00002000000002c8 EFLAGS: 00010217
[  149.369447][T11866] RAX: 0000000000000000 RBX: 00007f1c461b5fa0 RCX: 00007f1c45f8e9a9
[  149.369454][T11866] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000001000000
[  149.369460][T11866] RBP: 00007f1c46010d69 R08: 0000000000000000 R09: 0000000000000000
[  149.369466][T11866] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  149.369472][T11866] R13: 0000000000000000 R14: 00007f1c461b5fa0 R15: 00007ffcf6367338
[  149.369487][T11866]  </TASK>
[  149.369491][T11866] memory: usage 307200kB, limit 307200kB, failcnt 61952
[  149.525013][T11866] memory+swap: usage 415912kB, limit 9007199254740988kB, failcnt 0
[  149.527662][T11866] kmem: usage 8188kB, limit 9007199254740988kB, failcnt 0
[  149.530553][T11866] Memory cgroup stats for /syz2:
[  149.530674][T11866] cache 305848320
[  149.543923][T11866] rss 98304
[  149.544978][T11866] rss_huge 0
[  149.546040][T11866] shmem 305786880
[  149.547192][T11866] mapped_file 7782400
[  149.548556][T11866] dirty 0
[  149.549523][T11866] writeback 0
[  149.550998][T11866] workingset_refault_anon 1117
[  149.552512][T11866] workingset_refault_file 64958
[  149.566347][T11866] swap 111321088
[  149.567519][T11866] swapcached 278528
[  149.568680][T11866] pgpgin 361646
[  149.569787][T11866] pgpgout 288937
[  149.570921][T11866] pgfault 95526
[  149.571383][T12121] binder: 12120:12121 ioctl ae80 0 returned -22
[  149.572008][T11866] pgmajfault 1821
[  149.576163][T11866] inactive_anon 200073216
[  149.577689][T11866] active_anon 106053632
[  149.578009][T12121] binder: 12120:12121 unknown command 2
[  149.579197][T11866] inactive_file 4096
[  149.579204][T11866] active_file 57344
[  149.580967][T12121] binder: 12120:12121 ioctl c0306201 2000000001c0 returned -22
[  149.582209][T11866] unevictable 0
[  149.582215][T11866] hierarchical_memory_limit 314572800
[  149.589280][T11866] hierarchical_memsw_limit 9223372036854771712
[  149.591189][T11866] total_cache 305848320
[  149.592486][T11866] total_rss 98304
[  149.593634][T11866] total_rss_huge 0
[  149.595090][T11866] total_shmem 305786880
[  149.596391][T11866] total_mapped_file 7782400
[  149.597783][T11866] total_dirty 0
[  149.609461][T11866] total_writeback 0
[  149.610703][T11866] total_workingset_refault_anon 1117
[  149.612351][T11866] total_workingset_refault_file 64958
[  149.614438][T11866] total_swap 111321088
[  149.615756][T11866] total_swapcached 278528
[  149.617102][T11866] total_pgpgin 361646
[  149.618349][T11866] total_pgpgout 288937
[  149.619873][T11866] total_pgfault 95526
[  149.621176][T11866] total_pgmajfault 1821
[  149.622557][T11866] total_inactive_anon 200073216
[  149.624942][T11866] total_active_anon 106053632
[  149.626453][T11866] total_inactive_file 4096
[  149.627886][T11866] total_active_file 57344
[  149.629292][T11866] total_unevictable 0
[  149.630592][T11866] anon_cost 0
[  149.631679][T11866] file_cost 0
[  149.632743][T11866] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1764,pid=11868,uid=0
[  149.643910][T11866] Memory cgroup out of memory: Killed process 11868 (syz.2.1764) total-vm:98248kB, anon-rss:964kB, file-rss:23444kB, shmem-rss:7552kB, UID:0 pgtables:208kB oom_score_adj:1000
[  149.791953][T11860] syz.2.1764 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  149.798374][T11860] CPU: 0 UID: 0 PID: 11860 Comm: syz.2.1764 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  149.798390][T11860] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.798397][T11860] Call Trace:
[  149.798401][T11860]  <TASK>
[  149.798405][T11860]  dump_stack_lvl+0x16c/0x1f0
[  149.798426][T11860]  dump_header+0x101/0x930
[  149.798446][T11860]  oom_kill_process+0x270/0xa60
[  149.798465][T11860]  out_of_memory+0x350/0x1700
[  149.798486][T11860]  ? __pfx_out_of_memory+0x10/0x10
[  149.798507][T11860]  mem_cgroup_out_of_memory+0x118/0x130
[  149.798521][T11860]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  149.798539][T11860]  ? do_raw_spin_unlock+0x172/0x230
[  149.798555][T11860]  try_charge_memcg+0x72b/0xd50
[  149.798568][T11860]  ? __pfx_try_charge_memcg+0x10/0x10
[  149.798579][T11860]  ? __print_lock_name+0x81/0xe0
[  149.798593][T11860]  ? rcu_read_unlock+0x17/0x60
[  149.798608][T11860]  charge_memcg+0x8a/0x230
[  149.798619][T11860]  __mem_cgroup_charge+0x2b/0x1e0
[  149.798632][T11860]  filemap_add_folio+0x88/0x220
[  149.798642][T11860]  ? __pfx_filemap_add_folio+0x10/0x10
[  149.798657][T11860]  __filemap_get_folio+0x510/0xc30
[  149.798671][T11860]  filemap_fault+0x661/0x26c0
[  149.798685][T11860]  ? __pfx_filemap_fault+0x10/0x10
[  149.798704][T11860]  __do_fault+0x10d/0x490
[  149.798722][T11860]  __handle_mm_fault+0x3c2a/0x5490
[  149.798742][T11860]  ? __pfx___handle_mm_fault+0x10/0x10
[  149.798757][T11860]  ? __pte_offset_map_lock+0x174/0x310
[  149.798769][T11860]  ? find_held_lock+0x2b/0x80
[  149.798781][T11860]  ? find_held_lock+0x2b/0x80
[  149.798799][T11860]  ? follow_page_pte+0x3af/0x14c0
[  149.798815][T11860]  handle_mm_fault+0x589/0xd10
[  149.798832][T11860]  __get_user_pages+0x589/0x3b80
[  149.798851][T11860]  ? __pfx___get_user_pages+0x10/0x10
[  149.798865][T11860]  ? __kernel_write_iter+0x5a5/0xa90
[  149.798885][T11860]  get_dump_page+0x257/0x3d0
[  149.798913][T11860]  ? __pfx_get_dump_page+0x10/0x10
[  149.798926][T11860]  ? dump_user_range+0x745/0xb60
[  149.798946][T11860]  dump_user_range+0x195/0xb60
[  149.798964][T11860]  ? __pfx_dump_user_range+0x10/0x10
[  149.798981][T11860]  ? elf_coredump_extra_notes_write+0xbd/0x4f0
[  149.799001][T11860]  ? __pfx_writenote+0x10/0x10
[  149.799021][T11860]  elf_core_dump+0x288a/0x3a90
[  149.799058][T11860]  ? __pfx_elf_core_dump+0x10/0x10
[  149.799076][T11860]  ? kasan_save_stack+0x42/0x60
[  149.799095][T11860]  ? kasan_save_stack+0x33/0x60
[  149.799110][T11860]  ? kasan_save_track+0x14/0x30
[  149.799125][T11860]  ? __kasan_kmalloc+0xaa/0xb0
[  149.799140][T11860]  ? do_coredump+0x1c9a/0x4f10
[  149.799153][T11860]  ? get_signal+0x22e3/0x26d0
[  149.799166][T11860]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  149.799182][T11860]  ? 0xffffffffff600000
[  149.799217][T11860]  ? do_coredump+0x399c/0x4f10
[  149.799231][T11860]  do_coredump+0x399c/0x4f10
[  149.799251][T11860]  ? __pfx_do_coredump+0x10/0x10
[  149.799267][T11860]  ? find_held_lock+0x2b/0x80
[  149.799281][T11860]  ? is_bpf_text_address+0x8a/0x1a0
[  149.799296][T11860]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  149.799312][T11860]  ? is_bpf_text_address+0x94/0x1a0
[  149.799324][T11860]  ? kernel_text_address+0x8d/0x100
[  149.799337][T11860]  ? __kernel_text_address+0xd/0x40
[  149.799348][T11860]  ? unwind_get_return_address+0x59/0xa0
[  149.799369][T11860]  ? stack_depot_save_flags+0x28/0xa40
[  149.799387][T11860]  ? __lock_acquire+0xb8a/0x1c90
[  149.799399][T11860]  ? kasan_save_stack+0x42/0x60
[  149.799414][T11860]  ? kasan_save_stack+0x33/0x60
[  149.799428][T11860]  ? kasan_save_track+0x14/0x30
[  149.799443][T11860]  ? kasan_save_free_info+0x3b/0x60
[  149.799456][T11860]  ? __kasan_slab_free+0x51/0x70
[  149.799471][T11860]  ? kmem_cache_free+0x2d1/0x4d0
[  149.799486][T11860]  ? __sigqueue_free+0xba/0x2a0
[  149.799501][T11860]  ? get_signal+0xcba/0x26d0
[  149.799513][T11860]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  149.799546][T11860]  ? proc_coredump_connector+0x2d1/0x4f0
[  149.799561][T11860]  ? __pfx_proc_coredump_connector+0x10/0x10
[  149.799580][T11860]  ? rcu_is_watching+0x12/0xc0
[  149.799596][T11860]  get_signal+0x22e3/0x26d0
[  149.799613][T11860]  ? force_sig_fault+0xc4/0x100
[  149.799627][T11860]  ? __pfx_get_signal+0x10/0x10
[  149.799645][T11860]  arch_do_signal_or_restart+0x8f/0x7d0
[  149.799657][T11860]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  149.799671][T11860]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  149.799693][T11860]  irqentry_exit_to_user_mode+0x12a/0x270
[  149.799705][T11860]  asm_exc_page_fault+0x26/0x30
[  149.799715][T11860] RIP: 0033:0x0
[  149.799723][T11860] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  149.799728][T11860] RSP: 002b:00002000000002c8 EFLAGS: 00010217
[  149.799737][T11860] RAX: 0000000000000000 RBX: 00007f1c461b5fa0 RCX: 00007f1c45f8e9a9
[  149.799743][T11860] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000001000000
[  149.799750][T11860] RBP: 00007f1c46010d69 R08: 0000000000000000 R09: 0000000000000000
[  149.799755][T11860] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  149.799761][T11860] R13: 0000000000000000 R14: 00007f1c461b5fa0 R15: 00007ffcf6367338
[  149.799776][T11860]  </TASK>
[  149.799835][T11860] memory: usage 307200kB, limit 307200kB, failcnt 63776
[  149.816350][T11827] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  149.831201][T11860] memory+swap: usage 415784kB, limit 9007199254740988kB, failcnt 0
[  149.832304][T11827] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  149.975205][T11860] kmem: usage 7696kB, limit 9007199254740988kB, failcnt 0
[  149.977387][T11860] Memory cgroup stats for /syz2:
[  149.977474][T11860] cache 303636480
[  149.980876][T11860] rss 94208
[  149.982223][T11860] rss_huge 0
[  149.983578][T11860] shmem 301432832
[  149.985231][T11860] mapped_file 9547776
[  149.986907][T11860] dirty 0
[  149.988195][T11860] writeback 0
[  149.989613][T11860] workingset_refault_anon 1117
[  149.991616][T11860] workingset_refault_file 66583
[  149.993634][T11860] swap 111337472
[  149.995942][T11860] swapcached 258048
[  149.997550][T11860] pgpgin 364359
[  149.999015][T11860] pgpgout 292169
[  150.000509][T11860] pgfault 95682
[  150.002009][T11860] pgmajfault 1868
[  150.003554][T11860] inactive_anon 260108288
[  150.006175][T11860] active_anon 40824832
[  150.007868][T11860] inactive_file 0
[  150.009345][T11860] active_file 2035712
[  150.010942][T11860] unevictable 0
[  150.012399][T11860] hierarchical_memory_limit 314572800
[  150.014762][T11860] hierarchical_memsw_limit 9223372036854771712
[  150.016737][T11860] total_cache 303636480
[  150.022972][T11860] total_rss 94208
[  150.024864][T11860] total_rss_huge 0
[  150.026473][T11860] total_shmem 301432832
[  150.028216][T11860] total_mapped_file 9547776
[  150.030100][T11860] total_dirty 0
[  150.031545][T11860] total_writeback 0
[  150.033157][T11860] total_workingset_refault_anon 1117
[  150.036674][T11860] total_workingset_refault_file 66583
[  150.041379][T11827] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.042778][T11860] total_swap 111337472
[  150.047292][T11860] total_swapcached 258048
[  150.052447][T11860] total_pgpgin 364359
[  150.074123][T11860] total_pgpgout 292169
[  150.075610][T11860] total_pgfault 95682
[  150.077034][T11860] total_pgmajfault 1868
[  150.078506][T11860] total_inactive_anon 260108288
[  150.080016][T11860] total_active_anon 40824832
[  150.081548][T11860] total_inactive_file 0
[  150.082935][T11860] total_active_file 2035712
[  150.116986][T11860] total_unevictable 0
[  150.118619][T11860] anon_cost 0
[  150.119702][T11860] file_cost 0
[  150.120786][T11860] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1764,pid=11848,uid=0
[  150.131765][T11860] Memory cgroup out of memory: Killed process 11848 (syz.2.1764) total-vm:98248kB, anon-rss:964kB, file-rss:23464kB, shmem-rss:7060kB, UID:0 pgtables:208kB oom_score_adj:1000
[  150.185027][T11827] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.191109][ T5949] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  150.195117][ T5949] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  150.197918][ T5949] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  150.202059][ T5949] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  150.204746][ T5949] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  150.238711][T12137] lo speed is unknown, defaulting to 1000
[  150.339662][T11827] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.385485][T12137] chnl_net:caif_netlink_parms(): no params data found
[  150.443532][T11827] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.654648][   T60] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  150.696750][T12137] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.699119][T12137] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.701483][T12137] bridge_slave_0: entered allmulticast mode
[  150.705076][T12137] bridge_slave_0: entered promiscuous mode
[  150.712280][T12137] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.715011][T12137] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.717335][T12137] bridge_slave_1: entered allmulticast mode
[  150.720052][T12137] bridge_slave_1: entered promiscuous mode
[  150.809833][   T60] usb 8-1: config index 0 descriptor too short (expected 45, got 36)
[  150.812360][   T60] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  150.816092][   T60] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  150.819526][   T60] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  150.820174][T11860] syz.2.1764 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  150.822939][   T60] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  150.822964][   T60] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  150.847888][   T60] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.851774][T11860] CPU: 3 UID: 0 PID: 11860 Comm: syz.2.1764 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  150.851796][T11860] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.851806][T11860] Call Trace:
[  150.851811][T11860]  <TASK>
[  150.851817][T11860]  dump_stack_lvl+0x16c/0x1f0
[  150.851865][T11860]  dump_header+0x101/0x930
[  150.851885][T11860]  oom_kill_process+0x270/0xa60
[  150.851903][T11860]  out_of_memory+0x350/0x1700
[  150.851924][T11860]  ? __pfx_out_of_memory+0x10/0x10
[  150.851945][T11860]  mem_cgroup_out_of_memory+0x118/0x130
[  150.851960][T11860]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  150.851978][T11860]  ? do_raw_spin_unlock+0x172/0x230
[  150.851994][T11860]  try_charge_memcg+0x72b/0xd50
[  150.852008][T11860]  ? __pfx_try_charge_memcg+0x10/0x10
[  150.852019][T11860]  ? __print_lock_name+0x81/0xe0
[  150.852033][T11860]  ? rcu_read_unlock+0x17/0x60
[  150.852048][T11860]  charge_memcg+0x8a/0x230
[  150.852059][T11860]  __mem_cgroup_charge+0x2b/0x1e0
[  150.852072][T11860]  shmem_alloc_and_add_folio+0x514/0xc20
[  150.852092][T11860]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  150.852122][T11860]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  150.852144][T11860]  shmem_get_folio_gfp+0x67f/0x1600
[  150.852163][T11860]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  150.852180][T11860]  ? __pte_offset_map_lock+0x174/0x310
[  150.852195][T11860]  shmem_write_begin+0x160/0x300
[  150.852211][T11860]  ? find_held_lock+0x2b/0x80
[  150.852224][T11860]  ? __pfx_shmem_write_begin+0x10/0x10
[  150.852241][T11860]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  150.852255][T11860]  ? __pfx_timestamp_truncate+0x10/0x10
[  150.852269][T11860]  generic_perform_write+0x3d0/0x930
[  150.852290][T11860]  ? __pfx_generic_perform_write+0x10/0x10
[  150.852306][T11860]  ? inode_needs_update_time.part.0+0x191/0x270
[  150.852322][T11860]  shmem_file_write_iter+0x10e/0x140
[  150.852335][T11860]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  150.852345][T11860]  __kernel_write_iter+0x31a/0xa90
[  150.852363][T11860]  ? __pfx___kernel_write_iter+0x10/0x10
[  150.852379][T11860]  ? __up_read+0x1f8/0x750
[  150.852392][T11860]  ? dump_user_range+0x745/0xb60
[  150.852411][T11860]  dump_user_range+0x41f/0xb60
[  150.852430][T11860]  ? __pfx_dump_user_range+0x10/0x10
[  150.852447][T11860]  ? elf_coredump_extra_notes_write+0xbd/0x4f0
[  150.852468][T11860]  ? __pfx_writenote+0x10/0x10
[  150.852488][T11860]  elf_core_dump+0x288a/0x3a90
[  150.852512][T11860]  ? __pfx_elf_core_dump+0x10/0x10
[  150.852528][T11860]  ? kasan_save_stack+0x42/0x60
[  150.852543][T11860]  ? kasan_save_stack+0x33/0x60
[  150.852558][T11860]  ? kasan_save_track+0x14/0x30
[  150.852573][T11860]  ? __kasan_kmalloc+0xaa/0xb0
[  150.852588][T11860]  ? do_coredump+0x1c9a/0x4f10
[  150.852602][T11860]  ? get_signal+0x22e3/0x26d0
[  150.852614][T11860]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  150.852631][T11860]  ? 0xffffffffff600000
[  150.852665][T11860]  ? do_coredump+0x399c/0x4f10
[  150.852679][T11860]  do_coredump+0x399c/0x4f10
[  150.852699][T11860]  ? __pfx_do_coredump+0x10/0x10
[  150.852715][T11860]  ? find_held_lock+0x2b/0x80
[  150.852729][T11860]  ? is_bpf_text_address+0x8a/0x1a0
[  150.852744][T11860]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  150.852760][T11860]  ? is_bpf_text_address+0x94/0x1a0
[  150.852773][T11860]  ? kernel_text_address+0x8d/0x100
[  150.852785][T11860]  ? __kernel_text_address+0xd/0x40
[  150.852796][T11860]  ? unwind_get_return_address+0x59/0xa0
[  150.852817][T11860]  ? stack_depot_save_flags+0x28/0xa40
[  150.852836][T11860]  ? __lock_acquire+0xb8a/0x1c90
[  150.852847][T11860]  ? kasan_save_stack+0x42/0x60
[  150.852862][T11860]  ? kasan_save_stack+0x33/0x60
[  150.852877][T11860]  ? kasan_save_track+0x14/0x30
[  150.852892][T11860]  ? kasan_save_free_info+0x3b/0x60
[  150.852904][T11860]  ? __kasan_slab_free+0x51/0x70
[  150.852919][T11860]  ? kmem_cache_free+0x2d1/0x4d0
[  150.852934][T11860]  ? __sigqueue_free+0xba/0x2a0
[  150.852950][T11860]  ? get_signal+0xcba/0x26d0
[  150.852962][T11860]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  150.852994][T11860]  ? proc_coredump_connector+0x2d1/0x4f0
[  150.853009][T11860]  ? __pfx_proc_coredump_connector+0x10/0x10
[  150.853028][T11860]  ? rcu_is_watching+0x12/0xc0
[  150.853044][T11860]  get_signal+0x22e3/0x26d0
[  150.853062][T11860]  ? force_sig_fault+0xc4/0x100
[  150.853076][T11860]  ? __pfx_get_signal+0x10/0x10
[  150.853094][T11860]  arch_do_signal_or_restart+0x8f/0x7d0
[  150.853106][T11860]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  150.853123][T11860]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  150.853145][T11860]  irqentry_exit_to_user_mode+0x12a/0x270
[  150.853158][T11860]  asm_exc_page_fault+0x26/0x30
[  150.853168][T11860] RIP: 0033:0x0
[  150.853176][T11860] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  150.853180][T11860] RSP: 002b:00002000000002c8 EFLAGS: 00010217
[  150.853189][T11860] RAX: 0000000000000000 RBX: 00007f1c461b5fa0 RCX: 00007f1c45f8e9a9
[  150.853196][T11860] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000001000000
[  150.853202][T11860] RBP: 00007f1c46010d69 R08: 0000000000000000 R09: 0000000000000000
[  150.853209][T11860] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  150.853215][T11860] R13: 0000000000000000 R14: 00007f1c461b5fa0 R15: 00007ffcf6367338
[  150.853229][T11860]  </TASK>
[  150.853297][T11860] memory: usage 307200kB, limit 307200kB, failcnt 67156
[  150.857539][   T60] usb 8-1: config 0 descriptor??
[  150.889800][T11860] memory+swap: usage 415960kB, limit 9007199254740988kB, failcnt 0
[  150.903379][T12148] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  150.913447][T12161] random: crng reseeded on system resumption
[  150.915167][T11860] kmem: usage 7560kB, limit 9007199254740988kB, failcnt 0
[  150.920709][T11860] Memory cgroup stats for 
[  150.927011][T12137] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  150.927745][T12161] netlink: 'syz.1.1843': attribute type 10 has an invalid length.
[  150.931755][T11860] /syz2
[  151.031412][    C1] vkms_vblank_simulate: vblank timer overrun
[  151.036896][T12161] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.040469][T11860] :
[  151.040532][T11860] cache 306495488
[  151.042534][T11860] rss 57344
[  151.043547][T11860] rss_huge 0
[  151.044623][T11860] shmem 306495488
[  151.045900][T12161] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.050018][T12161] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.052753][T12161] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  151.055668][T11860] mapped_file 10493952
[  151.056952][T11860] dirty 0
[  151.057895][T11860] writeback 0
[  151.058961][T11860] workingset_refault_anon 1166
[  151.060475][T11860] workingset_refault_file 70610
[  151.062088][T11860] swap 111398912
[  151.063223][T11860] swapcached 200704
[  151.064433][T11860] pgpgin 392341
[  151.065861][T11860] pgpgout 319494
[  151.066997][T11860] pgfault 97708
[  151.068098][T11860] pgmajfault 1927
[  151.069246][T11860] inactive_anon 182009856
[  151.070594][T11860] active_anon 124219392
[  151.071887][T11860] inactive_file 0
[  151.073021][T11860] active_file 0
[  151.073028][T11860] unevictable 0
[  151.073036][T11860] hierarchical_memory_limit 314572800
[  151.073041][T11860] hierarchical_memsw_limit 9223372036854771712
[  151.073046][T11860] total_cache 306495488
[  151.073051][T11860] total_rss 57344
[  151.073055][T11860] total_rss_huge 0
[  151.073060][T11860] total_shmem 306495488
[  151.073064][T11860] total_mapped_file 10493952
[  151.074542][T12137] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  151.075437][T11860] total_dirty 0
[  151.075444][T11860] total_writeback 0
[  151.075448][T11860] total_workingset_refault_anon 1166
[  151.075453][T11860] total_workingset_refault_file 70610
[  151.075458][T11860] total_swap 111398912
[  151.075462][T11860] total_swapcached 200704
[  151.075466][T11860] total_pgpgin 392341
[  151.075471][T11860] total_pgpgout 319494
[  151.075475][T11860] total_pgfault 97708
[  151.075479][T11860] total_pgmajfault 1927
[  151.075484][T11860] total_inactive_anon 182009856
[  151.075488][T11860] total_active_anon 124219392
[  151.075493][T11860] total_inactive_file 0
[  151.075497][T11860] total_active_file 0
[  151.075501][T11860] total_unevictable 0
[  151.075505][T11860] anon_cost 0
[  151.075509][T11860] file_cost 0
[  151.075514][T11860] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1764,pid=11866,uid=0
[  151.117661][T11860] Memory cgroup out of memory: Killed process 11866 (syz.2.1764) total-vm:98248kB, anon-rss:964kB, file-rss:23712kB, shmem-rss:8780kB, UID:0 pgtables:208kB oom_score_adj:1000
[  151.154847][T11865] syz.2.1764 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  151.159197][T11865] CPU: 0 UID: 0 PID: 11865 Comm: syz.2.1764 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  151.159219][T11865] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.159230][T11865] Call Trace:
[  151.159235][T11865]  <TASK>
[  151.159242][T11865]  dump_stack_lvl+0x16c/0x1f0
[  151.159274][T11865]  dump_header+0x101/0x930
[  151.159304][T11865]  oom_kill_process+0x270/0xa60
[  151.159334][T11865]  out_of_memory+0x350/0x1700
[  151.159371][T11865]  ? __pfx_out_of_memory+0x10/0x10
[  151.159406][T11865]  mem_cgroup_out_of_memory+0x118/0x130
[  151.159429][T11865]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  151.159457][T11865]  ? do_raw_spin_unlock+0x172/0x230
[  151.159483][T11865]  try_charge_memcg+0x72b/0xd50
[  151.159506][T11865]  ? __pfx_try_charge_memcg+0x10/0x10
[  151.159522][T11865]  ? __print_lock_name+0x80/0xe0
[  151.159545][T11865]  ? rcu_read_unlock+0x17/0x60
[  151.159570][T11865]  charge_memcg+0x8a/0x230
[  151.159587][T11865]  __mem_cgroup_charge+0x2b/0x1e0
[  151.159608][T11865]  filemap_add_folio+0x88/0x220
[  151.159623][T11865]  ? __pfx_filemap_add_folio+0x10/0x10
[  151.159648][T11865]  __filemap_get_folio+0x510/0xc30
[  151.159672][T11865]  filemap_fault+0x661/0x26c0
[  151.159695][T11865]  ? __pfx_filemap_fault+0x10/0x10
[  151.159726][T11865]  __do_fault+0x10d/0x490
[  151.159755][T11865]  __handle_mm_fault+0x3c2a/0x5490
[  151.159786][T11865]  ? __pfx___handle_mm_fault+0x10/0x10
[  151.159810][T11865]  ? __pte_offset_map_lock+0x174/0x310
[  151.159829][T11865]  ? find_held_lock+0x2b/0x80
[  151.159849][T11865]  ? find_held_lock+0x2b/0x80
[  151.159878][T11865]  ? follow_page_pte+0x3af/0x14c0
[  151.159904][T11865]  handle_mm_fault+0x589/0xd10
[  151.159933][T11865]  __get_user_pages+0x589/0x3b80
[  151.159965][T11865]  ? __pfx___get_user_pages+0x10/0x10
[  151.159988][T11865]  ? __kernel_write_iter+0x5a5/0xa90
[  151.160020][T11865]  get_dump_page+0x257/0x3d0
[  151.160042][T11865]  ? __pfx_get_dump_page+0x10/0x10
[  151.160064][T11865]  ? dump_user_range+0x745/0xb60
[  151.160096][T11865]  dump_user_range+0x195/0xb60
[  151.160125][T11865]  ? __pfx_dump_user_range+0x10/0x10
[  151.160151][T11865]  ? elf_coredump_extra_notes_write+0xbd/0x4f0
[  151.160183][T11865]  ? __pfx_writenote+0x10/0x10
[  151.160217][T11865]  elf_core_dump+0x288a/0x3a90
[  151.160271][T11865]  ? __pfx_elf_core_dump+0x10/0x10
[  151.160295][T11865]  ? kasan_save_stack+0x42/0x60
[  151.160318][T11865]  ? kasan_save_stack+0x33/0x60
[  151.160345][T11865]  ? kasan_save_track+0x14/0x30
[  151.160368][T11865]  ? __kasan_kmalloc+0xaa/0xb0
[  151.160393][T11865]  ? do_coredump+0x1c9a/0x4f10
[  151.160413][T11865]  ? get_signal+0x22e3/0x26d0
[  151.160430][T11865]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  151.160455][T11865]  ? 0xffffffffff600000
[  151.160515][T11865]  ? do_coredump+0x399c/0x4f10
[  151.160536][T11865]  do_coredump+0x399c/0x4f10
[  151.160571][T11865]  ? __pfx_do_coredump+0x10/0x10
[  151.160599][T11865]  ? find_held_lock+0x2b/0x80
[  151.160621][T11865]  ? is_bpf_text_address+0x8a/0x1a0
[  151.160645][T11865]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  151.160670][T11865]  ? is_bpf_text_address+0x94/0x1a0
[  151.160690][T11865]  ? kernel_text_address+0x8d/0x100
[  151.160710][T11865]  ? __kernel_text_address+0xd/0x40
[  151.160728][T11865]  ? unwind_get_return_address+0x59/0xa0
[  151.160762][T11865]  ? stack_depot_save_flags+0x28/0xa40
[  151.160791][T11865]  ? __lock_acquire+0xb8a/0x1c90
[  151.160810][T11865]  ? kasan_save_stack+0x42/0x60
[  151.160834][T11865]  ? kasan_save_stack+0x33/0x60
[  151.160857][T11865]  ? kasan_save_track+0x14/0x30
[  151.160880][T11865]  ? kasan_save_free_info+0x3b/0x60
[  151.160901][T11865]  ? __kasan_slab_free+0x51/0x70
[  151.160926][T11865]  ? kmem_cache_free+0x2d1/0x4d0
[  151.160949][T11865]  ? __sigqueue_free+0xba/0x2a0
[  151.160972][T11865]  ? get_signal+0xcba/0x26d0
[  151.160992][T11865]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  151.161050][T11865]  ? proc_coredump_connector+0x2d1/0x4f0
[  151.161073][T11865]  ? __pfx_proc_coredump_connector+0x10/0x10
[  151.161102][T11865]  ? rcu_is_watching+0x12/0xc0
[  151.161127][T11865]  get_signal+0x22e3/0x26d0
[  151.161155][T11865]  ? force_sig_fault+0xc4/0x100
[  151.161178][T11865]  ? __pfx_get_signal+0x10/0x10
[  151.161207][T11865]  arch_do_signal_or_restart+0x8f/0x7d0
[  151.161226][T11865]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  151.161247][T11865]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  151.161284][T11865]  irqentry_exit_to_user_mode+0x12a/0x270
[  151.161303][T11865]  asm_exc_page_fault+0x26/0x30
[  151.161319][T11865] RIP: 0033:0x0
[  151.161330][T11865] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  151.161344][T11865] RSP: 002b:00002000000002c8 EFLAGS: 00010217
[  151.161357][T11865] RAX: 0000000000000000 RBX: 00007f1c461b5fa0 RCX: 00007f1c45f8e9a9
[  151.161368][T11865] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000001000000
[  151.161378][T11865] RBP: 00007f1c46010d69 R08: 0000000000000000 R09: 0000000000000000
[  151.161388][T11865] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  151.161398][T11865] R13: 0000000000000000 R14: 00007f1c461b5fa0 R15: 00007ffcf6367338
[  151.161423][T11865]  </TASK>
[  151.321731][T11865] memory: usage 306560kB, limit 307200kB, failcnt 67682
[  151.323854][T11865] memory+swap: usage 414380kB, limit 9007199254740988kB, failcnt 0
[  151.326307][T11865] kmem: usage 7620kB, limit 9007199254740988kB, failcnt 0
[  151.328457][T11865] Memory cgroup stats for /syz2:
[  151.328543][T11865] cache 304824320
[  151.331468][T11865] rss 53248
[  151.332484][T11865] rss_huge 0
[  151.332889][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.333495][T11865] shmem 304783360
[  151.335854][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.335868][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.335880][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.335891][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.337036][T11865] mapped_file 8118272
[  151.339372][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.341566][T11865] dirty 0
[  151.343866][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.346160][T11865] writeback 0
[  151.346167][T11865] workingset_refault_anon 1166
[  151.346172][T11865] workingset_refault_file 70654
[  151.346177][T11865] swap 111321088
[  151.346181][T11865] swapcached 192512
[  151.346185][T11865] pgpgin 393130
[  151.347436][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.349593][T11865] pgpgout 320672
[  151.349599][T11865] pgfault 97957
[  151.349604][T11865] pgmajfault 1931
[  151.349608][T11865] inactive_anon 98713600
[  151.349612][T11865] active_anon 206172160
[  151.349617][T11865] inactive_file 0
[  151.349621][T11865] active_file 40960
[  151.349625][T11865] unevictable 0
[  151.350602][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.352789][T11865] hierarchical_memory_limit 314572800
[  151.353844][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.355466][T11865] hierarchical_memsw_limit 9223372036854771712
[  151.356885][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.357994][T11865] total_cache 304824320
[  151.358003][T11865] total_rss 53248
[  151.359239][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.360290][T11865] total_rss_huge 0
[  151.362570][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.363613][T11865] total_shmem 304783360
[  151.364703][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.366027][T11865] total_mapped_file 8118272
[  151.367248][   T60] plantronics 0003:047F:FFFF.0004: unknown main item tag 0x0
[  151.368553][T11865] total_dirty 0
[  151.381257][   T60] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  151.382465][T11865] total_writeback 0
[  151.404775][T11865] total_workingset_refault_anon 1166
[  151.406602][T11865] total_workingset_refault_file 70654
[  151.408283][T11865] total_swap 111321088
[  151.409625][T11865] total_swapcached 192512
[  151.411016][T11865] total_pgpgin 393130
[  151.412304][T11865] total_pgpgout 320672
[  151.413673][T11865] total_pgfault 97957
[  151.415135][T11865] total_pgmajfault 1931
[  151.416483][T11865] total_inactive_anon 98713600
[  151.418012][T11865] total_active_anon 206172160
[  151.419511][T11865] total_inactive_file 0
[  151.420808][T11865] total_active_file 40960
[  151.422166][T11865] total_unevictable 0
[  151.423415][T11865] anon_cost 0
[  151.424474][T11865] file_cost 0
[  151.425715][T11865] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1764,pid=11864,uid=0
[  151.431549][T11865] Memory cgroup out of memory: Killed process 11864 (syz.2.1764) total-vm:98248kB, anon-rss:964kB, file-rss:23604kB, shmem-rss:6744kB, UID:0 pgtables:208kB oom_score_adj:1000
[  151.544858][T12137] team0: Port device team_slave_0 added
[  151.573730][T12137] team0: Port device team_slave_1 added
[  151.585451][T12148] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=12148 comm=syz.3.1840
[  151.589330][T12148] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=12148 comm=syz.3.1840
[  151.631037][ T1460] usb 8-1: USB disconnect, device number 17
[  151.693221][T12137] batman_adv: batadv0: Adding interface: batadv_slave_0
[  151.696055][T12137] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.704147][T12137] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  151.723261][T12137] batman_adv: batadv0: Adding interface: batadv_slave_1
[  151.726387][T12137] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.744686][T12137] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  151.753061][T11827] bridge_slave_1: left allmulticast mode
[  151.755460][T11827] bridge_slave_1: left promiscuous mode
[  151.759385][T11827] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.850165][T11827] bridge_slave_0: left allmulticast mode
[  151.851956][T11827] bridge_slave_0: left promiscuous mode
[  151.853772][T11827] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.935873][T11860] syz.2.1764 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  151.938894][T11860] CPU: 1 UID: 0 PID: 11860 Comm: syz.2.1764 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  151.938908][T11860] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.938915][T11860] Call Trace:
[  151.938919][T11860]  <TASK>
[  151.938924][T11860]  dump_stack_lvl+0x16c/0x1f0
[  151.938945][T11860]  dump_header+0x101/0x930
[  151.938965][T11860]  oom_kill_process+0x270/0xa60
[  151.938984][T11860]  out_of_memory+0x350/0x1700
[  151.939005][T11860]  ? __pfx_out_of_memory+0x10/0x10
[  151.939026][T11860]  mem_cgroup_out_of_memory+0x118/0x130
[  151.939044][T11860]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  151.939061][T11860]  ? do_raw_spin_unlock+0x172/0x230
[  151.939078][T11860]  try_charge_memcg+0x72b/0xd50
[  151.939091][T11860]  ? __pfx_try_charge_memcg+0x10/0x10
[  151.939102][T11860]  ? __print_lock_name+0x81/0xe0
[  151.939117][T11860]  ? rcu_read_unlock+0x17/0x60
[  151.939132][T11860]  charge_memcg+0x8a/0x230
[  151.939143][T11860]  __mem_cgroup_charge+0x2b/0x1e0
[  151.939156][T11860]  shmem_alloc_and_add_folio+0x514/0xc20
[  151.939176][T11860]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  151.939194][T11860]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  151.939213][T11860]  shmem_get_folio_gfp+0x67f/0x1600
[  151.939232][T11860]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  151.939249][T11860]  ? __pte_offset_map_lock+0x174/0x310
[  151.939263][T11860]  shmem_write_begin+0x160/0x300
[  151.939279][T11860]  ? find_held_lock+0x2b/0x80
[  151.939292][T11860]  ? __pfx_shmem_write_begin+0x10/0x10
[  151.939309][T11860]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  151.939322][T11860]  ? __pfx_timestamp_truncate+0x10/0x10
[  151.939337][T11860]  generic_perform_write+0x3d0/0x930
[  151.939357][T11860]  ? __pfx_generic_perform_write+0x10/0x10
[  151.939374][T11860]  ? inode_needs_update_time.part.0+0x191/0x270
[  151.939390][T11860]  shmem_file_write_iter+0x10e/0x140
[  151.939402][T11860]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  151.939413][T11860]  __kernel_write_iter+0x31a/0xa90
[  151.939430][T11860]  ? __pfx___kernel_write_iter+0x10/0x10
[  151.939446][T11860]  ? __up_read+0x1f8/0x750
[  151.939460][T11860]  ? dump_user_range+0x745/0xb60
[  151.939478][T11860]  dump_user_range+0x41f/0xb60
[  151.939497][T11860]  ? __pfx_dump_user_range+0x10/0x10
[  151.939513][T11860]  ? elf_coredump_extra_notes_write+0xbd/0x4f0
[  151.939534][T11860]  ? __pfx_writenote+0x10/0x10
[  151.939554][T11860]  elf_core_dump+0x288a/0x3a90
[  151.939578][T11860]  ? __pfx_elf_core_dump+0x10/0x10
[  151.939594][T11860]  ? kasan_save_stack+0x42/0x60
[  151.939610][T11860]  ? kasan_save_stack+0x33/0x60
[  151.939624][T11860]  ? kasan_save_track+0x14/0x30
[  151.939639][T11860]  ? __kasan_kmalloc+0xaa/0xb0
[  151.939654][T11860]  ? do_coredump+0x1c9a/0x4f10
[  151.939668][T11860]  ? get_signal+0x22e3/0x26d0
[  151.939681][T11860]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  151.939697][T11860]  ? 0xffffffffff600000
[  151.939731][T11860]  ? do_coredump+0x399c/0x4f10
[  151.939744][T11860]  do_coredump+0x399c/0x4f10
[  151.939777][T11860]  ? __pfx_do_coredump+0x10/0x10
[  151.939793][T11860]  ? find_held_lock+0x2b/0x80
[  151.939807][T11860]  ? is_bpf_text_address+0x8a/0x1a0
[  151.939822][T11860]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  151.939838][T11860]  ? is_bpf_text_address+0x94/0x1a0
[  151.939850][T11860]  ? kernel_text_address+0x8d/0x100
[  151.939862][T11860]  ? __kernel_text_address+0xd/0x40
[  151.939874][T11860]  ? unwind_get_return_address+0x59/0xa0
[  151.939895][T11860]  ? stack_depot_save_flags+0x28/0xa40
[  151.939914][T11860]  ? __lock_acquire+0xb8a/0x1c90
[  151.939925][T11860]  ? kasan_save_stack+0x42/0x60
[  151.939940][T11860]  ? kasan_save_stack+0x33/0x60
[  151.939954][T11860]  ? kasan_save_track+0x14/0x30
[  151.939969][T11860]  ? kasan_save_free_info+0x3b/0x60
[  151.939981][T11860]  ? __kasan_slab_free+0x51/0x70
[  151.939997][T11860]  ? kmem_cache_free+0x2d1/0x4d0
[  151.940012][T11860]  ? __sigqueue_free+0xba/0x2a0
[  151.940032][T11860]  ? get_signal+0xcba/0x26d0
[  151.940044][T11860]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  151.940077][T11860]  ? proc_coredump_connector+0x2d1/0x4f0
[  151.940092][T11860]  ? __pfx_proc_coredump_connector+0x10/0x10
[  151.940110][T11860]  ? rcu_is_watching+0x12/0xc0
[  151.940127][T11860]  get_signal+0x22e3/0x26d0
[  151.940144][T11860]  ? force_sig_fault+0xc4/0x100
[  151.940158][T11860]  ? __pfx_get_signal+0x10/0x10
[  151.940176][T11860]  arch_do_signal_or_restart+0x8f/0x7d0
[  151.940189][T11860]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  151.940202][T11860]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  151.940225][T11860]  irqentry_exit_to_user_mode+0x12a/0x270
[  151.940237][T11860]  asm_exc_page_fault+0x26/0x30
[  151.940247][T11860] RIP: 0033:0x0
[  151.940255][T11860] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  151.940260][T11860] RSP: 002b:00002000000002c8 EFLAGS: 00010217
[  151.940269][T11860] RAX: 0000000000000000 RBX: 00007f1c461b5fa0 RCX: 00007f1c45f8e9a9
[  151.940276][T11860] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000001000000
[  151.940282][T11860] RBP: 00007f1c46010d69 R08: 0000000000000000 R09: 0000000000000000
[  151.940288][T11860] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  151.940294][T11860] R13: 0000000000000000 R14: 00007f1c461b5fa0 R15: 00007ffcf6367338
[  151.940309][T11860]  </TASK>
[  151.940364][T11860] memory: usage 307200kB, limit 307200kB, failcnt 69072
[  152.104778][T11860] memory+swap: usage 415988kB, limit 9007199254740988kB, failcnt 0
[  152.107796][T11860] kmem: usage 7384kB, limit 9007199254740988kB, failcnt 0
[  152.110021][T11860] Memory cgroup stats for /syz2:
[  152.110130][T11860] cache 306655232
[  152.112834][T11860] rss 192512
[  152.113875][T11860] rss_huge 0
[  152.114928][T11860] shmem 306651136
[  152.116148][T11860] mapped_file 11337728
[  152.117441][T11860] dirty 0
[  152.118538][T11860] writeback 0
[  152.119685][T11860] workingset_refault_anon 1243
[  152.121201][T11860] workingset_refault_file 72639
[  152.122725][T11860] swap 111398912
[  152.123858][T11860] swapcached 200704
[  152.125172][T11860] pgpgin 418357
[  152.126452][T11860] pgpgout 345447
[  152.127639][T11860] pgfault 99047
[  152.128824][T11860] pgmajfault 2029
[  152.130015][T11860] inactive_anon 194174976
[  152.131367][T11860] active_anon 112832512
[  152.132667][T11860] inactive_file 4096
[  152.133939][T11860] active_file 0
[  152.135052][T11860] unevictable 0
[  152.136211][T11860] hierarchical_memory_limit 314572800
[  152.137887][T11860] hierarchical_memsw_limit 9223372036854771712
[  152.139973][T11860] total_cache 306655232
[  152.141292][T11860] total_rss 192512
[  152.142478][T11860] total_rss_huge 0
[  152.143654][T11860] total_shmem 306651136
[  152.144949][T11860] total_mapped_file 11337728
[  152.146486][T11860] total_dirty 0
[  152.147586][T11860] total_writeback 0
[  152.148782][T11860] total_workingset_refault_anon 1243
[  152.150563][T11860] total_workingset_refault_file 72639
[  152.152223][T11860] total_swap 111398912
[  152.153483][T11860] total_swapcached 200704
[  152.154871][T11860] total_pgpgin 418357
[  152.156311][T11860] total_pgpgout 345447
[  152.157600][T11860] total_pgfault 99047
[  152.158867][T11860] total_pgmajfault 2029
[  152.160253][T11860] total_inactive_anon 194174976
[  152.161894][T11860] total_active_anon 112832512
[  152.163384][T11860] total_inactive_file 4096
[  152.164782][T11860] total_active_file 0
[  152.167759][T11860] total_unevictable 0
[  152.169417][T11860] anon_cost 0
[  152.170521][T11860] file_cost 0
[  152.171610][T11860] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1764,pid=11865,uid=0
[  152.176480][T11860] Memory cgroup out of memory: Killed process 11865 (syz.2.1764) total-vm:98248kB, anon-rss:964kB, file-rss:23444kB, shmem-rss:11172kB, UID:0 pgtables:208kB oom_score_adj:1000
[  152.207769][T11850] syz.2.1764 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[  152.211006][T11850] CPU: 3 UID: 0 PID: 11850 Comm: syz.2.1764 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  152.211021][T11850] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  152.211027][T11850] Call Trace:
[  152.211031][T11850]  <TASK>
[  152.211036][T11850]  dump_stack_lvl+0x16c/0x1f0
[  152.211057][T11850]  dump_header+0x101/0x930
[  152.211077][T11850]  oom_kill_process+0x270/0xa60
[  152.211096][T11850]  out_of_memory+0x350/0x1700
[  152.211116][T11850]  ? __pfx_out_of_memory+0x10/0x10
[  152.211137][T11850]  mem_cgroup_out_of_memory+0x118/0x130
[  152.211152][T11850]  ? __pfx_mem_cgroup_out_of_memory+0x10/0x10
[  152.211169][T11850]  ? do_raw_spin_unlock+0x172/0x230
[  152.211185][T11850]  try_charge_memcg+0x72b/0xd50
[  152.211199][T11850]  ? __pfx_try_charge_memcg+0x10/0x10
[  152.211210][T11850]  ? __print_lock_name+0x81/0xe0
[  152.211224][T11850]  ? rcu_read_unlock+0x17/0x60
[  152.211239][T11850]  charge_memcg+0x8a/0x230
[  152.211254][T11850]  __mem_cgroup_charge+0x2b/0x1e0
[  152.211267][T11850]  shmem_alloc_and_add_folio+0x514/0xc20
[  152.211286][T11850]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  152.211304][T11850]  ? shmem_allowable_huge_orders+0xcb/0x2f0
[  152.211323][T11850]  shmem_get_folio_gfp+0x67f/0x1600
[  152.211342][T11850]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  152.211359][T11850]  ? __pte_offset_map_lock+0x174/0x310
[  152.211373][T11850]  shmem_write_begin+0x160/0x300
[  152.211389][T11850]  ? find_held_lock+0x2b/0x80
[  152.211402][T11850]  ? __pfx_shmem_write_begin+0x10/0x10
[  152.211419][T11850]  ? balance_dirty_pages_ratelimited_flags+0x92/0x1260
[  152.211432][T11850]  ? __pfx_timestamp_truncate+0x10/0x10
[  152.211446][T11850]  generic_perform_write+0x3d0/0x930
[  152.211467][T11850]  ? __pfx_generic_perform_write+0x10/0x10
[  152.211484][T11850]  ? inode_needs_update_time.part.0+0x191/0x270
[  152.211500][T11850]  shmem_file_write_iter+0x10e/0x140
[  152.211513][T11850]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  152.211523][T11850]  __kernel_write_iter+0x31a/0xa90
[  152.211541][T11850]  ? __pfx___kernel_write_iter+0x10/0x10
[  152.211557][T11850]  ? __up_read+0x1f8/0x750
[  152.211571][T11850]  ? dump_user_range+0x745/0xb60
[  152.211590][T11850]  dump_user_range+0x41f/0xb60
[  152.211609][T11850]  ? __pfx_dump_user_range+0x10/0x10
[  152.211626][T11850]  ? elf_coredump_extra_notes_write+0xbd/0x4f0
[  152.211646][T11850]  ? __pfx_writenote+0x10/0x10
[  152.211667][T11850]  elf_core_dump+0x288a/0x3a90
[  152.211692][T11850]  ? __pfx_elf_core_dump+0x10/0x10
[  152.211708][T11850]  ? kasan_save_stack+0x42/0x60
[  152.211724][T11850]  ? kasan_save_stack+0x33/0x60
[  152.211738][T11850]  ? kasan_save_track+0x14/0x30
[  152.211753][T11850]  ? __kasan_kmalloc+0xaa/0xb0
[  152.211768][T11850]  ? do_coredump+0x1c9a/0x4f10
[  152.211782][T11850]  ? get_signal+0x22e3/0x26d0
[  152.211795][T11850]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  152.211812][T11850]  ? 0xffffffffff600000
[  152.211845][T11850]  ? do_coredump+0x399c/0x4f10
[  152.211859][T11850]  do_coredump+0x399c/0x4f10
[  152.211888][T11850]  ? __pfx_do_coredump+0x10/0x10
[  152.211913][T11850]  ? find_held_lock+0x2b/0x80
[  152.211936][T11850]  ? is_bpf_text_address+0x8a/0x1a0
[  152.211965][T11850]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  152.211988][T11850]  ? is_bpf_text_address+0x94/0x1a0
[  152.212003][T11850]  ? kernel_text_address+0x8d/0x100
[  152.212016][T11850]  ? __kernel_text_address+0xd/0x40
[  152.212027][T11850]  ? unwind_get_return_address+0x59/0xa0
[  152.212048][T11850]  ? stack_depot_save_flags+0x28/0xa40
[  152.212067][T11850]  ? __lock_acquire+0xb8a/0x1c90
[  152.212079][T11850]  ? kasan_save_stack+0x42/0x60
[  152.212094][T11850]  ? kasan_save_stack+0x33/0x60
[  152.212109][T11850]  ? kasan_save_track+0x14/0x30
[  152.212124][T11850]  ? kasan_save_free_info+0x3b/0x60
[  152.212137][T11850]  ? __kasan_slab_free+0x51/0x70
[  152.212152][T11850]  ? kmem_cache_free+0x2d1/0x4d0
[  152.212167][T11850]  ? __sigqueue_free+0xba/0x2a0
[  152.212183][T11850]  ? get_signal+0xcba/0x26d0
[  152.212195][T11850]  ? arch_do_signal_or_restart+0x8f/0x7d0
[  152.212228][T11850]  ? proc_coredump_connector+0x2d1/0x4f0
[  152.212248][T11850]  ? __pfx_proc_coredump_connector+0x10/0x10
[  152.212267][T11850]  ? rcu_is_watching+0x12/0xc0
[  152.212283][T11850]  get_signal+0x22e3/0x26d0
[  152.212301][T11850]  ? force_sig_fault+0xc4/0x100
[  152.212315][T11850]  ? __pfx_get_signal+0x10/0x10
[  152.212333][T11850]  arch_do_signal_or_restart+0x8f/0x7d0
[  152.212346][T11850]  ? trace_irq_disable.constprop.0+0xd4/0x120
[  152.212360][T11850]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  152.212382][T11850]  irqentry_exit_to_user_mode+0x12a/0x270
[  152.212394][T11850]  asm_exc_page_fault+0x26/0x30
[  152.212405][T11850] RIP: 0033:0x0
[  152.212413][T11850] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  152.212418][T11850] RSP: 002b:00002000000002c8 EFLAGS: 00010217
[  152.212427][T11850] RAX: 0000000000000000 RBX: 00007f1c461b5fa0 RCX: 00007f1c45f8e9a9
[  152.212434][T11850] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000001000000
[  152.212441][T11850] RBP: 00007f1c46010d69 R08: 0000000000000000 R09: 0000000000000000
[  152.212448][T11850] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  152.212454][T11850] R13: 0000000000000000 R14: 00007f1c461b5fa0 R15: 00007ffcf6367338
[  152.212468][T11850]  </TASK>
[  152.212473][T11850] memory: usage 307024kB, limit 307200kB, failcnt 69740
[  152.245506][ T5963] Bluetooth: hci4: command tx timeout
[  152.246276][T11850] memory+swap: usage 408860kB, limit 9007199254740988kB, failcnt 0
[  152.393242][T12195] tty tty1: ldisc open failed (-12), clearing slot 0
[  152.405862][T11850] kmem: usage 7176kB, limit 9007199254740988kB, failcnt 0
[  152.415839][T11850] Memory cgroup stats for /syz2:
[  152.415984][T11850] cache 297881600
[  152.418676][T11850] rss 188416
[  152.419699][T11850] rss_huge 0
[  152.420702][T11850] shmem 290226176
[  152.421835][T11850] mapped_file 13864960
[  152.423098][T11850] dirty 0
[  152.424030][T11850] writeback 0
[  152.425063][T11850] workingset_refault_anon 1243
[  152.452865][T11850] workingset_refault_file 74340
[  152.454417][T11850] swap 111419392
[  152.462975][T11850] swapcached 180224
[  152.464225][T11850] pgpgin 428651
[  152.465340][T11850] pgpgout 357887
[  152.473075][T11850] pgfault 99252
[  152.474226][T11850] pgmajfault 2031
[  152.475398][T11850] inactive_anon 71610368
[  152.481515][T11850] active_anon 218320896
[  152.483086][T11850] inactive_file 0
[  152.494419][T11850] active_file 7602176
[  152.495751][T11850] unevictable 0
[  152.496874][T11850] hierarchical_memory_limit 314572800
[  152.498548][T11850] hierarchical_memsw_limit 9223372036854771712
[  152.500460][T11850] total_cache 297881600
[  152.501733][T11850] total_rss 188416
[  152.502891][T11850] total_rss_huge 0
[  152.504171][T11850] total_shmem 290226176
[  152.517021][T11850] total_mapped_file 13864960
[  152.518526][T11850] total_dirty 0
[  152.519684][T11850] total_writeback 0
[  152.520887][T11850] total_workingset_refault_anon 1243
[  152.522584][T11850] total_workingset_refault_file 74340
[  152.524351][T11850] total_swap 111419392
[  152.546052][T11850] total_swapcached 180224
[  152.547488][T11850] total_pgpgin 428651
[  152.548744][T11850] total_pgpgout 357887
[  152.550039][T11850] total_pgfault 99252
[  152.551294][T11850] total_pgmajfault 2031
[  152.552596][T11850] total_inactive_anon 71610368
[  152.554092][T11850] total_active_anon 218320896
[  152.575754][T11850] total_inactive_file 0
[  152.577088][T11850] total_active_file 7602176
[  152.578515][T11850] total_unevictable 0
[  152.585627][T11850] anon_cost 0
[  152.586798][T11850] file_cost 0
[  152.587859][T11850] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1764,pid=11857,uid=0
[  152.605617][T11850] Memory cgroup out of memory: OOM victim 11857 (syz.2.1764) is already exiting. Skip killing the task
[  152.726272][T11827] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  152.730772][T11827] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  152.735511][T11827] bond0 (unregistering): Released all slaves
[  152.952023][T12137] hsr_slave_0: entered promiscuous mode
[  152.954255][T12137] hsr_slave_1: entered promiscuous mode
[  152.959481][T12137] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  152.961838][T12137] Cannot create hsr debugfs directory
[  153.041724][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  153.041735][   T40] audit: type=1400 audit(1753581787.887:92381): avc:  denied  { setattr } for  pid=12202 comm="syz.3.1852" name="ROSE" dev="sockfs" ino=38578 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  153.056036][   T40] audit: type=1400 audit(1753581787.887:92382): avc:  denied  { getopt } for  pid=12202 comm="syz.3.1852" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  153.452943][T11827] hsr_slave_0: left promiscuous mode
[  153.458020][T11827] hsr_slave_1: left promiscuous mode
[  153.460191][T11827] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  153.462500][T11827] batman_adv: batadv0: Removing interface: batadv_slave_0
[  153.478044][T11827] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  153.480355][T11827] batman_adv: batadv0: Removing interface: batadv_slave_1
[  153.514033][T11827] veth1_macvtap: left promiscuous mode
[  153.516295][T11827] veth0_macvtap: left promiscuous mode
[  153.518120][T11827] veth1_vlan: left promiscuous mode
[  153.519897][T11827] veth0_vlan: left promiscuous mode
[  153.948041][T11826] net_ratelimit: 31 callbacks suppressed
[  153.948074][T11826] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  153.954120][T11826] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  153.958471][T11826] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  153.962761][T11826] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  154.209184][T11827] team0 (unregistering): Port device team_slave_1 removed
[  154.281600][T11827] team0 (unregistering): Port device team_slave_0 removed
[  154.327111][ T5963] Bluetooth: hci4: command tx timeout
[  154.479508][T11825] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  154.483786][T11825] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  154.488180][T11825] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  154.492471][T11825] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  154.818469][T12191] tipc: Started in network mode
[  154.820122][T12191] tipc: Node identity 4, cluster identity 4711
[  154.822088][T12191] tipc: Node number set to 4
[  154.838238][T12137] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  154.846370][T12137] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  154.878492][T12137] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  154.882970][T12137] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  154.915855][   T40] audit: type=1326 audit(1753581789.756:92383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12251 comm="syz.2.1861" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1c45f8e9a9 code=0x0
[  154.939878][ T1460] libceph: connect (1)[c::]:6789 error -1
[  154.941831][ T1460] libceph: mon0 (1)[c::]:6789 connect error
[  154.962523][T12137] 8021q: adding VLAN 0 to HW filter on device bond0
[  154.973638][T12137] 8021q: adding VLAN 0 to HW filter on device team0
[  154.979963][T11825] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.982219][T11825] bridge0: port 1(bridge_slave_0) entered forwarding state
[  154.988317][T11823] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.990557][T11823] bridge0: port 2(bridge_slave_1) entered forwarding state
[  155.009104][T11825] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  155.013399][T11825] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  155.015082][T12137] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  155.021858][T12137] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  155.116152][T12137] 8021q: adding VLAN 0 to HW filter on device batadv0
[  155.177237][   T40] audit: type=1326 audit(1753581790.016:92384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12251 comm="syz.2.1861" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c45f8e9a9 code=0x7fc00000
[  155.186589][   T40] audit: type=1326 audit(1753581790.016:92385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12251 comm="syz.2.1861" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1c45f8e9a9 code=0x7fc00000
[  155.197998][   T40] audit: type=1326 audit(1753581790.016:92386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12251 comm="syz.2.1861" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c45f8e9a9 code=0x7fc00000
[  155.208403][   T40] audit: type=1326 audit(1753581790.016:92387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12251 comm="syz.2.1861" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c45f8e9a9 code=0x7fc00000
[  155.210943][ T1460] libceph: connect (1)[c::]:6789 error -1
[  155.219835][   T40] audit: type=1326 audit(1753581790.016:92388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12251 comm="syz.2.1861" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c45f8e9a9 code=0x7fc00000
[  155.229874][   T40] audit: type=1326 audit(1753581790.016:92389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12251 comm="syz.2.1861" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c45f8e9a9 code=0x7fc00000
[  155.231091][ T1460] libceph: mon0 (1)[c::]:6789 connect error
[  155.236831][   T40] audit: type=1326 audit(1753581790.016:92390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12251 comm="syz.2.1861" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c45f8e9a9 code=0x7fc00000
[  155.292252][T12137] veth0_vlan: entered promiscuous mode
[  155.300323][T12137] veth1_vlan: entered promiscuous mode
[  155.326783][T12137] veth0_macvtap: entered promiscuous mode
[  155.332362][T12137] veth1_macvtap: entered promiscuous mode
[  155.345283][T12137] batman_adv: batadv0: Interface activated: batadv_slave_0
[  155.353581][T12137] batman_adv: batadv0: Interface activated: batadv_slave_1
[  155.358974][T12137] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  155.362962][T12137] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  155.366793][T12137] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  155.371294][T12137] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  155.414943][T12307] __nla_validate_parse: 13 callbacks suppressed
[  155.414958][T12307] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1867'.
[  155.438558][T11826] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.444207][T11826] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  155.467542][T11826] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.470165][T11826] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  155.695327][T12338] netdevsim netdevsim5: Direct firmware load for ./file0 failed with error -2
[  155.706021][T12338] netdevsim netdevsim5: Falling back to sysfs fallback for: ./file0
[  155.735356][T12256] ceph: No mds server is up or the cluster is laggy
[  155.774239][T12344] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1872'.
[  155.788091][T12343] binder: 12342:12343 ioctl c0046209 0 returned -22
[  156.153243][T12380] lo speed is unknown, defaulting to 1000
[  156.408086][ T5963] Bluetooth: hci4: command tx timeout
[  156.500352][T12388] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2252907296 (9011629184 ns) > initial count (5558852540 ns). Using initial count to start timer.
[  156.505856][T12388] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2252907296 (9011629184 ns) > initial count (5558852540 ns). Using initial count to start timer.
[  156.511873][T12388] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2252907296 (9011629184 ns) > initial count (5558852540 ns). Using initial count to start timer.
[  156.517326][T12388] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2252907296 (9011629184 ns) > initial count (5558852540 ns). Using initial count to start timer.
[  156.523365][T12388] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2252907296 (9011629184 ns) > initial count (5558852540 ns). Using initial count to start timer.
[  156.529436][T12388] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2252907296 (9011629184 ns) > initial count (5558852540 ns). Using initial count to start timer.
[  156.536264][T12388] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2252907296 (9011629184 ns) > initial count (5558852540 ns). Using initial count to start timer.
[  156.544561][T12388] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2252907296 (9011629184 ns) > initial count (5558852540 ns). Using initial count to start timer.
[  156.552114][T12388] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2252907296 (9011629184 ns) > initial count (5558852540 ns). Using initial count to start timer.
[  156.559361][T12388] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2252907296 (9011629184 ns) > initial count (5558852540 ns). Using initial count to start timer.
[  156.698427][T12397] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  156.747855][T12406] syzkaller1: entered promiscuous mode
[  156.751412][T12406] syzkaller1: entered allmulticast mode
[  156.780859][T12411] overlayfs: failed to resolve './file1': -2
[  156.904006][T12423] netlink: 124 bytes leftover after parsing attributes in process `syz.1.1890'.
[  156.927901][T12423] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1890'.
[  156.931948][T12423] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1890'.
[  157.619493][T12456] vxcan1: tx address claim with dest, not broadcast
[  157.730221][T12461] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  157.734324][T12461] tmpfs: Bad value for 'mpol'
[  157.887198][T12486] hfsplus: unable to find HFS+ superblock
[  157.915604][T12488] xt_hashlimit: Unknown mode mask 180, kernel too old?
[  157.975732][T12526] uprobe: syz.2.1910:12526 failed to unregister, leaking uprobe
[  158.000578][T12505] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1908'.
[  158.308940][ T5998] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  158.459068][ T5998] usb 7-1: Using ep0 maxpacket: 32
[  158.462900][ T5998] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  158.466961][ T5998] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  158.470670][ T5998] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  158.474707][ T5998] usb 7-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  158.477595][ T5998] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.483074][ T5998] usb 7-1: config 0 descriptor??
[  158.489063][ T5963] Bluetooth: hci4: command tx timeout
[  158.892092][T12565] hpfs: hpfs_map_sector(): read error
[  158.919972][ T5998] input: HID 0458:5011 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0458:5011.0005/input/input20
[  158.992673][ T5998] input: HID 0458:5011 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0458:5011.0005/input/input21
[  159.032808][ T5998] kye 0003:0458:5011.0005: input,hiddev0,hidraw1: USB HID v0.00 Mouse [HID 0458:5011] on usb-dummy_hcd.2-1/input0
[  159.058935][T12574] FAULT_INJECTION: forcing a failure.
[  159.058935][T12574] name failslab, interval 1, probability 0, space 0, times 1
[  159.063839][T12574] CPU: 3 UID: 0 PID: 12574 Comm: syz.3.1922 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  159.063855][T12574] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  159.063862][T12574] Call Trace:
[  159.063866][T12574]  <TASK>
[  159.063870][T12574]  dump_stack_lvl+0x16c/0x1f0
[  159.063906][T12574]  should_fail_ex+0x512/0x640
[  159.063927][T12574]  ? fs_reclaim_acquire+0xae/0x150
[  159.063946][T12574]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[  159.063957][T12574]  should_failslab+0xc2/0x120
[  159.063969][T12574]  __kmalloc_noprof+0xd2/0x510
[  159.063989][T12574]  tomoyo_realpath_from_path+0xc2/0x6e0
[  159.064002][T12574]  ? tomoyo_profile+0x47/0x60
[  159.064016][T12574]  tomoyo_path_number_perm+0x245/0x580
[  159.064031][T12574]  ? tomoyo_path_number_perm+0x237/0x580
[  159.064048][T12574]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  159.064065][T12574]  ? find_held_lock+0x2b/0x80
[  159.064092][T12574]  ? find_held_lock+0x2b/0x80
[  159.064105][T12574]  ? hook_file_ioctl_common+0x145/0x410
[  159.064122][T12574]  ? __fget_files+0x20e/0x3c0
[  159.064135][T12574]  security_file_ioctl+0x9b/0x240
[  159.064146][T12574]  __x64_sys_ioctl+0xb7/0x210
[  159.064162][T12574]  do_syscall_64+0xcd/0x4c0
[  159.064175][T12574]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.064186][T12574] RIP: 0033:0x7fdcbd38e9a9
[  159.064195][T12574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.064206][T12574] RSP: 002b:00007fdcbe29b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  159.064217][T12574] RAX: ffffffffffffffda RBX: 00007fdcbd5b5fa0 RCX: 00007fdcbd38e9a9
[  159.064224][T12574] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  159.064230][T12574] RBP: 00007fdcbe29b090 R08: 0000000000000000 R09: 0000000000000000
[  159.064237][T12574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.064243][T12574] R13: 0000000000000000 R14: 00007fdcbd5b5fa0 R15: 00007ffdf2019008
[  159.064257][T12574]  </TASK>
[  159.064262][T12574] ERROR: Out of memory at tomoyo_realpath_from_path.
[  159.119481][T12493] net_ratelimit: 31 callbacks suppressed
[  159.119497][T12493] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  159.141239][T12493] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  159.145595][T12493] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  159.150160][T12493] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  159.184324][T12583] kvm: Disabled LAPIC found during irq injection
[  159.263242][   T40] kauditd_printk_skb: 4639 callbacks suppressed
[  159.263253][   T40] audit: type=1400 audit(1753581794.113:97030): avc:  denied  { write } for  pid=12587 comm="syz.3.1926" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1
[  159.335854][T12599] e1000 0000:00:06.0 eth0: Unsupported Speed/Duplex configuration
[  159.343256][T12599] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1929'.
[  159.391571][T12605] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1914'.
[  159.395008][T12605] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1914'.
[  159.398184][T12605] netlink: 'syz.2.1914': attribute type 11 has an invalid length.
[  159.670907][T12527] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  159.676752][T12527] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  159.682687][T12527] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  159.688419][T12527] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  160.024496][    C0] kye 0003:0458:5011.0005: usb_submit_urb(ctrl) failed: -1
[  160.160650][   T24] usb 7-1: reset high-speed USB device number 16 using dummy_hcd
[  160.179190][T12615] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1932'.
[  160.200066][T12524] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  160.204779][T12524] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  160.214594][T12619] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12619 comm=syz.5.1933
[  160.221846][T12619] binder: 12618:12619 ioctl c0046209 0 returned -22
[  160.259499][T12623] FAULT_INJECTION: forcing a failure.
[  160.259499][T12623] name failslab, interval 1, probability 0, space 0, times 0
[  160.264472][T12623] CPU: 2 UID: 0 PID: 12623 Comm: syz.3.1935 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  160.264487][T12623] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  160.264494][T12623] Call Trace:
[  160.264498][T12623]  <TASK>
[  160.264503][T12623]  dump_stack_lvl+0x16c/0x1f0
[  160.264526][T12623]  should_fail_ex+0x512/0x640
[  160.264543][T12623]  ? fs_reclaim_acquire+0xae/0x150
[  160.264558][T12623]  ? tomoyo_encode2+0x100/0x3e0
[  160.264568][T12623]  should_failslab+0xc2/0x120
[  160.264580][T12623]  __kmalloc_noprof+0xd2/0x510
[  160.264600][T12623]  tomoyo_encode2+0x100/0x3e0
[  160.264613][T12623]  tomoyo_encode+0x29/0x50
[  160.264623][T12623]  tomoyo_realpath_from_path+0x18f/0x6e0
[  160.264636][T12623]  ? tomoyo_profile+0x47/0x60
[  160.264650][T12623]  tomoyo_path_number_perm+0x245/0x580
[  160.264665][T12623]  ? tomoyo_path_number_perm+0x237/0x580
[  160.264682][T12623]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  160.264699][T12623]  ? find_held_lock+0x2b/0x80
[  160.264726][T12623]  ? find_held_lock+0x2b/0x80
[  160.264740][T12623]  ? hook_file_ioctl_common+0x145/0x410
[  160.264756][T12623]  ? __fget_files+0x20e/0x3c0
[  160.264769][T12623]  security_file_ioctl+0x9b/0x240
[  160.264781][T12623]  __x64_sys_ioctl+0xb7/0x210
[  160.264797][T12623]  do_syscall_64+0xcd/0x4c0
[  160.264809][T12623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.264821][T12623] RIP: 0033:0x7fdcbd38e9a9
[  160.264830][T12623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.264842][T12623] RSP: 002b:00007fdcbe29b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  160.264852][T12623] RAX: ffffffffffffffda RBX: 00007fdcbd5b5fa0 RCX: 00007fdcbd38e9a9
[  160.264859][T12623] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  160.264866][T12623] RBP: 00007fdcbe29b090 R08: 0000000000000000 R09: 0000000000000000
[  160.264873][T12623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.264879][T12623] R13: 0000000000000000 R14: 00007fdcbd5b5fa0 R15: 00007ffdf2019008
[  160.264893][T12623]  </TASK>
[  160.264903][T12623] ERROR: Out of memory at tomoyo_realpath_from_path.
[  160.423902][T12631] kernel profiling enabled (shift: 7)
[  160.691799][T12655] PKCS7: Unknown OID: [4] 5.25.43204.122
[  160.694650][T12655] PKCS7: Only support pkcs7_signedData type
[  160.787608][   T40] audit: type=1400 audit(1753581795.633:97031): avc:  denied  { create } for  pid=12656 comm="syz.2.1944" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  160.795820][   T40] audit: type=1400 audit(1753581795.633:97032): avc:  denied  { bind } for  pid=12656 comm="syz.2.1944" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[  160.977063][   T60] usb 7-1: USB disconnect, device number 16
[  161.495776][T12673] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1948'.
[  161.495776][T12672] __nla_validate_parse: 3 callbacks suppressed
[  161.495791][T12672] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1948'.
[  161.532151][T12670] FAULT_INJECTION: forcing a failure.
[  161.532151][T12670] name failslab, interval 1, probability 0, space 0, times 0
[  161.536331][T12670] CPU: 0 UID: 0 PID: 12670 Comm: syz.3.1947 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  161.536347][T12670] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.536354][T12670] Call Trace:
[  161.536359][T12670]  <TASK>
[  161.536364][T12670]  dump_stack_lvl+0x16c/0x1f0
[  161.536399][T12670]  should_fail_ex+0x512/0x640
[  161.536420][T12670]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  161.536438][T12670]  should_failslab+0xc2/0x120
[  161.536449][T12670]  __kmalloc_cache_noprof+0x6a/0x3e0
[  161.536463][T12670]  ? __pfx___might_resched+0x10/0x10
[  161.536478][T12670]  ? vhost_task_create+0xe5/0x2e0
[  161.536490][T12670]  ? rcu_is_watching+0x12/0xc0
[  161.536504][T12670]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  161.536522][T12670]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  161.536536][T12670]  vhost_task_create+0xe5/0x2e0
[  161.536547][T12670]  ? __pfx_vhost_task_create+0x10/0x10
[  161.536563][T12670]  ? __pfx_vhost_task_fn+0x10/0x10
[  161.536581][T12670]  kvm_mmu_post_init_vm+0x1b7/0x370
[  161.536597][T12670]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  161.536611][T12670]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  161.536629][T12670]  kvm_vcpu_ioctl+0x5eb/0x1690
[  161.536644][T12670]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  161.536662][T12670]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  161.536675][T12670]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  161.536692][T12670]  ? hook_file_ioctl_common+0x145/0x410
[  161.536709][T12670]  ? selinux_file_ioctl+0x180/0x270
[  161.536719][T12670]  ? selinux_file_ioctl+0xb4/0x270
[  161.536730][T12670]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  161.536745][T12670]  __x64_sys_ioctl+0x18e/0x210
[  161.536761][T12670]  do_syscall_64+0xcd/0x4c0
[  161.536773][T12670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.536785][T12670] RIP: 0033:0x7fdcbd38e9a9
[  161.536794][T12670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.536806][T12670] RSP: 002b:00007fdcbe29b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  161.536817][T12670] RAX: ffffffffffffffda RBX: 00007fdcbd5b5fa0 RCX: 00007fdcbd38e9a9
[  161.536824][T12670] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  161.536831][T12670] RBP: 00007fdcbe29b090 R08: 0000000000000000 R09: 0000000000000000
[  161.536837][T12670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  161.536844][T12670] R13: 0000000000000000 R14: 00007fdcbd5b5fa0 R15: 00007ffdf2019008
[  161.536858][T12670]  </TASK>
[  161.669036][T12685] input: syz1 as /devices/virtual/input/input22
[  161.839681][T12702] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1951'.
[  161.844550][T12693] /dev/sr0: Can't open blockdev
[  161.848392][T12698] gfs2: gfs2 mount does not exist
[  162.031068][ T5991] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  162.052436][T12715] FAULT_INJECTION: forcing a failure.
[  162.052436][T12715] name failslab, interval 1, probability 0, space 0, times 0
[  162.056838][T12715] CPU: 2 UID: 0 PID: 12715 Comm: syz.3.1960 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  162.056854][T12715] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  162.056861][T12715] Call Trace:
[  162.056866][T12715]  <TASK>
[  162.056871][T12715]  dump_stack_lvl+0x16c/0x1f0
[  162.056893][T12715]  should_fail_ex+0x512/0x640
[  162.056915][T12715]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  162.056935][T12715]  should_failslab+0xc2/0x120
[  162.056946][T12715]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  162.056963][T12715]  ? copy_process+0x4b6/0x7650
[  162.056982][T12715]  copy_process+0x4b6/0x7650
[  162.057003][T12715]  ? __pfx_copy_process+0x10/0x10
[  162.057020][T12715]  ? lockdep_init_map_type+0x5c/0x280
[  162.057033][T12715]  ? lockdep_init_map_type+0x5c/0x280
[  162.057044][T12715]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  162.057062][T12715]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  162.057075][T12715]  vhost_task_create+0x1d2/0x2e0
[  162.057087][T12715]  ? __pfx_vhost_task_create+0x10/0x10
[  162.057103][T12715]  ? __pfx_vhost_task_fn+0x10/0x10
[  162.057121][T12715]  kvm_mmu_post_init_vm+0x1b7/0x370
[  162.057137][T12715]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  162.057152][T12715]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  162.057169][T12715]  kvm_vcpu_ioctl+0x5eb/0x1690
[  162.057184][T12715]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  162.057202][T12715]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  162.057215][T12715]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  162.057232][T12715]  ? hook_file_ioctl_common+0x145/0x410
[  162.057249][T12715]  ? selinux_file_ioctl+0x180/0x270
[  162.057259][T12715]  ? selinux_file_ioctl+0xb4/0x270
[  162.057270][T12715]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  162.057285][T12715]  __x64_sys_ioctl+0x18e/0x210
[  162.057301][T12715]  do_syscall_64+0xcd/0x4c0
[  162.057314][T12715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.057326][T12715] RIP: 0033:0x7fdcbd38e9a9
[  162.057335][T12715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.057347][T12715] RSP: 002b:00007fdcbe29b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  162.057358][T12715] RAX: ffffffffffffffda RBX: 00007fdcbd5b5fa0 RCX: 00007fdcbd38e9a9
[  162.057365][T12715] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  162.057372][T12715] RBP: 00007fdcbe29b090 R08: 0000000000000000 R09: 0000000000000000
[  162.057378][T12715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.057384][T12715] R13: 0000000000000000 R14: 00007fdcbd5b5fa0 R15: 00007ffdf2019008
[  162.057399][T12715]  </TASK>
[  162.192229][ T5991] usb 6-1: Using ep0 maxpacket: 8
[  162.203869][ T5991] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  162.206820][ T5991] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  162.212707][ T5991] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  162.216983][ T5991] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  162.220545][ T5991] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  162.224765][ T5991] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  162.227094][ T5991] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  162.230538][ T5991] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  162.235326][ T5991] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  162.238695][ T5991] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  162.242801][ T5991] usb 6-1: config 168 descriptor has 1 excess byte, ignoring
[  162.245116][ T5991] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  162.248499][ T5991] usb 6-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  162.252978][ T5991] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  162.256978][ T5991] usb 6-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  162.263676][ T5991] usb 6-1: string descriptor 0 read error: -22
[  162.266396][ T5991] usb 6-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  162.269644][ T5991] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  162.279557][ T5991] adutux 6-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  162.316521][T12725] SELinux: ebitmap start bit (511) is not a multiple of the map unit size (64)
[  162.319484][T12725] SELinux: failed to load policy
[  162.447849][   T40] audit: type=1400 audit(1753581797.292:97033): avc:  denied  { remount } for  pid=12732 comm="syz.3.1967" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  162.487112][T12699] program syz.1.1955 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  162.612956][T12748] FAULT_INJECTION: forcing a failure.
[  162.612956][T12748] name failslab, interval 1, probability 0, space 0, times 0
[  162.616939][T12748] CPU: 1 UID: 0 PID: 12748 Comm: syz.3.1972 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  162.616955][T12748] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  162.616961][T12748] Call Trace:
[  162.616966][T12748]  <TASK>
[  162.616970][T12748]  dump_stack_lvl+0x16c/0x1f0
[  162.616997][T12748]  should_fail_ex+0x512/0x640
[  162.617015][T12748]  ? __kmalloc_noprof+0xbf/0x510
[  162.617033][T12748]  ? lsm_blob_alloc+0x68/0x90
[  162.617046][T12748]  should_failslab+0xc2/0x120
[  162.617058][T12748]  __kmalloc_noprof+0xd2/0x510
[  162.617074][T12748]  ? __pfx_perf_event_init_task+0x10/0x10
[  162.617088][T12748]  ? audit_alloc+0xa2/0x7b0
[  162.617102][T12748]  ? __pfx_audit_alloc+0x10/0x10
[  162.617117][T12748]  lsm_blob_alloc+0x68/0x90
[  162.617131][T12748]  security_task_alloc+0x2d/0x260
[  162.617144][T12748]  copy_process+0x2205/0x7650
[  162.617172][T12748]  ? __pfx_copy_process+0x10/0x10
[  162.617189][T12748]  ? lockdep_init_map_type+0x5c/0x280
[  162.617202][T12748]  ? lockdep_init_map_type+0x5c/0x280
[  162.617213][T12748]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  162.617231][T12748]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  162.617244][T12748]  vhost_task_create+0x1d2/0x2e0
[  162.617256][T12748]  ? __pfx_vhost_task_create+0x10/0x10
[  162.617272][T12748]  ? __pfx_vhost_task_fn+0x10/0x10
[  162.617291][T12748]  kvm_mmu_post_init_vm+0x1b7/0x370
[  162.617307][T12748]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  162.617321][T12748]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  162.617339][T12748]  kvm_vcpu_ioctl+0x5eb/0x1690
[  162.617354][T12748]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  162.617372][T12748]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  162.617386][T12748]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  162.617402][T12748]  ? hook_file_ioctl_common+0x145/0x410
[  162.617419][T12748]  ? selinux_file_ioctl+0x180/0x270
[  162.617429][T12748]  ? selinux_file_ioctl+0xb4/0x270
[  162.617440][T12748]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  162.617455][T12748]  __x64_sys_ioctl+0x18e/0x210
[  162.617471][T12748]  do_syscall_64+0xcd/0x4c0
[  162.617484][T12748]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.617495][T12748] RIP: 0033:0x7fdcbd38e9a9
[  162.617505][T12748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.617516][T12748] RSP: 002b:00007fdcbe29b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  162.617527][T12748] RAX: ffffffffffffffda RBX: 00007fdcbd5b5fa0 RCX: 00007fdcbd38e9a9
[  162.617534][T12748] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  162.617541][T12748] RBP: 00007fdcbe29b090 R08: 0000000000000000 R09: 0000000000000000
[  162.617547][T12748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.617554][T12748] R13: 0000000000000000 R14: 00007fdcbd5b5fa0 R15: 00007ffdf2019008
[  162.617569][T12748]  </TASK>
[  162.719558][    C1] vkms_vblank_simulate: vblank timer overrun
[  162.867078][T12772] pim6reg1: entered promiscuous mode
[  162.869117][T12772] pim6reg1: entered allmulticast mode
[  163.195392][T12794] [U] 
[  163.304311][T12801] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  163.664983][T12807] lo speed is unknown, defaulting to 1000
[  163.972139][ T5991] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  164.027199][T12800] overlayfs: statfs failed on './file0'
[  164.130595][T12817] tmpfs: Bad value for 'mpol'
[  164.134865][ T5991] usb 10-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  164.138679][ T5991] usb 10-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  164.143090][ T5991] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 66
[  164.147995][ T5991] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  164.152496][ T5991] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  164.157124][ T5991] usb 10-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  164.159240][T12819] xt_hashlimit: size too large, truncated to 1048576
[  164.160678][ T5991] usb 10-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  164.169103][ T5991] usb 10-1: Product: syz
[  164.170919][ T5991] usb 10-1: Manufacturer: syz
[  164.175989][ T5991] cdc_wdm 10-1:1.0: skipping garbage
[  164.178142][ T5991] cdc_wdm 10-1:1.0: skipping garbage
[  164.183960][ T5991] cdc_wdm 10-1:1.0: cdc-wdm1: USB WDM device
[  164.186374][ T5991] cdc_wdm 10-1:1.0: Unknown control protocol
[  164.305111][T12823] netlink: 700 bytes leftover after parsing attributes in process `syz.2.1993'.
[  164.312327][T12498] net_ratelimit: 30 callbacks suppressed
[  164.312341][T12498] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  164.318909][T12498] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  164.324033][T12498] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  164.329222][T12498] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  164.345206][T12826] openvswitch: netlink: EtherType 0 is less than min 600
[  164.434663][T12827] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1988'.
[  164.437522][T12827] openvswitch: netlink: nsh attribute has unmatched MD type 0.
[  164.439889][T12827] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  164.469667][T12831] netlink: 'syz.2.1995': attribute type 1 has an invalid length.
[  164.794655][   T40] audit: type=1400 audit(1753581799.640:97034): avc:  denied  { lock } for  pid=12840 comm="syz.2.2000" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=41875 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  164.813360][ T5991] usb 6-1: USB disconnect, device number 13
[  164.818921][ T5957] usb 10-1: USB disconnect, device number 2
[  164.843347][T12523] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  164.847706][T12523] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  164.851976][T12523] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  164.940675][T12853] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  164.946138][T12853] syzkaller0: entered promiscuous mode
[  164.947861][T12853] syzkaller0: entered allmulticast mode
[  164.996553][T12853] tipc: Resetting bearer <eth:syzkaller0>
[  165.002109][T12852] tipc: Resetting bearer <eth:syzkaller0>
[  165.011681][T12852] tipc: Disabling bearer <eth:syzkaller0>
[  165.075693][   T40] audit: type=1400 audit(1753581799.920:97035): avc:  denied  { ioctl } for  pid=12860 comm="syz.3.2005" path="socket:[45109]" dev="sockfs" ino=45109 ioctlcmd=0x941c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  165.300063][T12876] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2011'.
[  165.359749][T12883] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  165.364419][T12883] SELinux: failed to load policy
[  165.402704][T12887] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  165.404815][T12887] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  165.407570][T12887] vhci_hcd vhci_hcd.0: Device attached
[  165.412108][T12890] vhci_hcd: connection closed
[  165.412322][T12498] vhci_hcd: stop threads
[  165.413115][T12889] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2015'.
[  165.417350][T12498] vhci_hcd: release socket
[  165.420210][T12498] vhci_hcd: disconnect device
[  165.443439][ T6017] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  165.536858][T12894] /dev/nullb0: Can't open blockdev
[  165.573032][ T6017] usb 6-1: device descriptor read/64, error -71
[  165.675622][T12900] SELinux: security_context_str_to_sid (5���]�S9q#���) failed with errno=-22
[  165.797398][   T40] audit: type=1400 audit(1753581800.640:97036): avc:  denied  { connect } for  pid=12907 comm="syz.2.2020" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  165.833689][ T6017] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  165.881582][   T40] audit: type=1400 audit(1753581800.720:97037): avc:  denied  { bind } for  pid=12915 comm="syz.2.2022" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  165.891284][   T40] audit: type=1400 audit(1753581800.720:97038): avc:  denied  { listen } for  pid=12915 comm="syz.2.2022" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  165.951031][T12921] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2023'.
[  165.958001][T12921] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2023'.
[  165.974190][ T6017] usb 6-1: device descriptor read/64, error -71
[  166.033285][T12926] (unnamed net_device) (uninitialized): option packets_per_slave: mode dependency failed, not supported in mode balance-alb(6)
[  166.093419][ T6017] usb usb6-port1: attempt power cycle
[  166.177970][T12936] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=29 sclass=netlink_audit_socket pid=12936 comm=syz.5.2027
[  166.182620][T12936] delete_channel: no stack
[  166.329888][T12949] /dev/nullb0: Can't open blockdev
[  166.453292][ T6017] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  166.475670][ T6017] usb 6-1: device descriptor read/8, error -71
[  166.603386][ T6708] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  166.711794][T12919] orangefs_mount: mount request failed with -4
[  166.733345][ T6017] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  166.754518][ T6708] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  166.754574][ T6017] usb 6-1: device descriptor read/8, error -71
[  166.757625][ T6708] usb 10-1: config 0 interface 0 has no altsetting 0
[  166.763382][ T6708] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  166.766465][ T6708] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  166.769267][ T6708] usb 10-1: Product: syz
[  166.770784][ T6708] usb 10-1: Manufacturer: syz
[  166.772401][ T6708] usb 10-1: SerialNumber: syz
[  166.777064][ T6708] usb 10-1: config 0 descriptor??
[  166.786145][ T6708] usb 10-1: selecting invalid altsetting 0
[  166.810363][T12969] Unknown options in mask 5
[  166.866303][T12971] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2035'.
[  166.874645][ T6017] usb usb6-port1: unable to enumerate USB device
[  166.894120][T12971] veth13: entered promiscuous mode
[  166.895885][T12971] bridge3: port 1(veth13) entered blocking state
[  166.898083][T12971] bridge3: port 1(veth13) entered disabled state
[  166.900206][T12971] veth13: entered allmulticast mode
[  166.985283][   T40] audit: type=1400 audit(1753581801.830:97039): avc:  denied  { ioctl } for  pid=12951 comm="syz.5.2031" path="socket:[45313]" dev="sockfs" ino=45313 ioctlcmd=0x9439 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  166.986036][   T60] usb 10-1: USB disconnect, device number 3
[  167.193414][ T5991] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  167.237232][T12981] netlink: 'syz.2.2039': attribute type 3 has an invalid length.
[  167.310500][T12992] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2041'.
[  167.314209][T12992] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2041'.
[  167.328361][T12992] dvmrp1: entered allmulticast mode
[  167.347312][ T5991] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  167.350706][ T5991] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  167.354937][ T5991] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  167.357741][ T5991] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.363749][T12975] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  167.369371][ T5991] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  167.388438][   T40] audit: type=1400 audit(1753581802.230:97040): avc:  denied  { mounton } for  pid=13002 comm="syz.2.2043" path="/456/file0" dev="devtmpfs" ino=726 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:removable_device_t tclass=blk_file permissive=1
[  167.568852][ T5991] usb 8-1: USB disconnect, device number 18
[  167.588532][T13022] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2046'.
[  167.598356][   T40] audit: type=1400 audit(1753581802.440:97041): avc:  denied  { bind } for  pid=13021 comm="syz.5.2046" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  167.835956][T13035] netlink: 'syz.3.2050': attribute type 1 has an invalid length.
[  167.838504][T13035] netlink: 228 bytes leftover after parsing attributes in process `syz.3.2050'.
[  167.929742][   T40] audit: type=1400 audit(1753581802.770:97042): avc:  denied  { append } for  pid=13049 comm="syz.3.2055" name="rtc0" dev="devtmpfs" ino=944 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  167.936783][T13051] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13051 comm=syz.3.2055
[  168.112335][T13074] overlayfs: failed to resolve './file0': -2
[  168.131309][T13077] netfs: Couldn't get user pages (rc=-14)
[  168.165377][T13083] netlink: 'syz.2.2064': attribute type 10 has an invalid length.
[  168.166130][T13084] netlink: 'syz.2.2064': attribute type 10 has an invalid length.
[  168.170493][T13084] netlink: 2 bytes leftover after parsing attributes in process `syz.2.2064'.
[  168.176553][T13083] batman_adv: batadv0: Adding interface: team0
[  168.178627][T13083] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  168.189021][T13083] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  168.193391][T13084] team0: entered promiscuous mode
[  168.195038][T13084] team_slave_0: entered promiscuous mode
[  168.196978][T13084] team_slave_1: entered promiscuous mode
[  168.200076][T13084] 8021q: adding VLAN 0 to HW filter on device team0
[  168.202373][T13084] batman_adv: batadv0: Interface activated: team0
[  168.207287][T13084] batman_adv: batadv0: Interface deactivated: team0
[  168.209461][T13084] batman_adv: batadv0: Removing interface: team0
[  168.219987][T13084] bridge0: port 4(team0) entered blocking state
[  168.222012][T13084] bridge0: port 4(team0) entered disabled state
[  168.227259][T13084] bridge0: port 4(team0) entered blocking state
[  168.229285][T13084] bridge0: port 4(team0) entered forwarding state
[  168.243827][T13093] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2066'.
[  168.263153][   T40] audit: type=1400 audit(1753581803.100:97043): avc:  denied  { setopt } for  pid=13095 comm="syz.2.2067" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  168.310333][T13110] tmpfs: Unknown parameter 'Koswap'
[  168.487394][T13131] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2078'.
[  168.564440][T13128] block nbd3: shutting down sockets
[  168.570074][T13128] syz.3.2077: attempt to access beyond end of device
[  168.570074][T13128] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0
[  168.574579][T13128] syz.3.2077: attempt to access beyond end of device
[  168.574579][T13128] nbd3: rw=0, sector=120, nr_sectors = 8 limit=0
[  168.578690][T13128] Mount JFS Failure: -5
[  168.830823][T13168] netlink: 'syz.5.2089': attribute type 12 has an invalid length.
[  168.831549][T13169] program syz.5.2089 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  168.880402][T13165] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  168.939566][T13182] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2092'.
[  168.994677][T13186]  pmem0: [POWERTEC]
[  169.014374][T13188] random: crng reseeded on system resumption
[  169.311203][T13209] af_packet: tpacket_rcv: packet too big, clamped from 64993 to 3942. macoff=106
[  169.395491][T13212] 9pnet_virtio: no channels available for device syz
[  169.461566][T13214] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  169.463380][T12497] net_ratelimit: 37 callbacks suppressed
[  169.463390][T12497] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  169.471581][T12497] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  169.475899][T12497] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  169.480937][T12497] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  169.604364][T13217] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2103'.
[  169.648746][T13164] overlayfs: statfs failed on './file0'
[  169.760231][T13228] ptrace attach of "/syz-executor exec"[5948] was attempted by ""[13228]
[  169.831617][ T5362]  pmem0: [POWERTEC]
[  169.878264][T13233] netlink: 'syz.1.2107': attribute type 1 has an invalid length.
[  169.932673][T13236] ip_vti0: entered allmulticast mode
[  169.995244][T12523] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  169.999670][T12523] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  170.003976][T12523] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:aa:aa:2a
[  170.008902][T12523] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 01:00:5e:00:00:01
[  170.040444][   T40] kauditd_printk_skb: 3 callbacks suppressed
[  170.040458][   T40] audit: type=1400 audit(1753581804.880:97047): avc:  denied  { remount } for  pid=13243 comm="syz.2.2110" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[  170.343375][T13279] Unknown options in mask 5
[  170.364925][T13281] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  170.368765][T13281] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  170.387063][T13281] overlayfs: missing 'workdir'
[  170.437899][T13290] IPVS: set_ctl: invalid protocol: 43 255.255.255.255:20004
[  170.524194][T12524] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:00:00:00:01
[  170.528760][T12524] batman_adv: batadv0: Local translation table size (48) exceeds maximum packet size (0); Ignoring new local tt entry: 33:33:ff:00:00:2a
[  170.537679][T13298] tmpfs: Bad value for 'mpol'
[  170.549149][T13298] lo speed is unknown, defaulting to 1000
[  170.603148][T13300] lo speed is unknown, defaulting to 1000
[  171.119210][T13309] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  171.126013][  T837] IPVS: starting estimator thread 0...
[  171.130220][T13309] overlayfs: overlapping lowerdir path
[  171.166347][T13315] 9pnet_fd: p9_fd_create_tcp (13315): problem binding to privport
[  171.213403][T13313] IPVS: using max 41 ests per chain, 98400 per kthread
[  171.409387][T13323] futex_wake_op: syz.1.2133 tries to shift op by 32; fix this program
[  171.895805][T13348] ./cgroup: Can't lookup blockdev
[  171.955177][   T40] audit: type=1400 audit(1753581806.800:97048): avc:  denied  { mounton } for  pid=13349 comm="syz.1.2143" path="/504/file0" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=dir permissive=1
[  172.044558][   T40] audit: type=1400 audit(1753581806.890:97049): avc:  denied  { unmount } for  pid=5956 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  172.130056][   T40] audit: type=1400 audit(1753581806.970:97050): avc:  denied  { ioctl } for  pid=13354 comm="syz.1.2144" path="socket:[45786]" dev="sockfs" ino=45786 ioctlcmd=0x890c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  172.194442][   T40] audit: type=1404 audit(1753581807.040:97051): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  172.203511][   T40] audit: type=1400 audit(1753581807.050:97052): avc:  denied  { read write } for  pid=13362 comm="syz.1.2147" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=0
[  172.216449][   T40] audit: type=1404 audit(1753581807.060:97053): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1
[  172.233815][T13363] FAULT_INJECTION: forcing a failure.
[  172.233815][T13363] name failslab, interval 1, probability 0, space 0, times 0
[  172.238943][T13363] CPU: 0 UID: 0 PID: 13363 Comm: syz.1.2147 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  172.238968][T13363] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  172.238980][T13363] Call Trace:
[  172.238986][T13363]  <TASK>
[  172.238994][T13363]  dump_stack_lvl+0x16c/0x1f0
[  172.239036][T13363]  should_fail_ex+0x512/0x640
[  172.239070][T13363]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  172.239099][T13363]  should_failslab+0xc2/0x120
[  172.239118][T13363]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  172.239144][T13363]  ? __asan_memcpy+0x3c/0x60
[  172.239167][T13363]  ? alloc_pid+0xc7/0xbc0
[  172.239189][T13363]  alloc_pid+0xc7/0xbc0
[  172.239214][T13363]  copy_process+0x466f/0x7650
[  172.239252][T13363]  ? __pfx_copy_process+0x10/0x10
[  172.239280][T13363]  ? lockdep_init_map_type+0x5c/0x280
[  172.239301][T13363]  ? lockdep_init_map_type+0x5c/0x280
[  172.239320][T13363]  ? __pfx_kvm_nx_huge_page_recovery_worker_kill+0x10/0x10
[  172.239347][T13363]  ? __pfx_kvm_nx_huge_page_recovery_worker+0x10/0x10
[  172.239369][T13363]  vhost_task_create+0x1d2/0x2e0
[  172.239388][T13363]  ? __pfx_vhost_task_create+0x10/0x10
[  172.239416][T13363]  ? __pfx_vhost_task_fn+0x10/0x10
[  172.239449][T13363]  kvm_mmu_post_init_vm+0x1b7/0x370
[  172.239475][T13363]  kvm_arch_vcpu_ioctl_run+0x66/0x18c0
[  172.239498][T13363]  ? kvm_vcpu_ioctl+0x14c6/0x1690
[  172.239526][T13363]  kvm_vcpu_ioctl+0x5eb/0x1690
[  172.239552][T13363]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  172.239583][T13363]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  172.239604][T13363]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  172.239632][T13363]  ? hook_file_ioctl_common+0x145/0x410
[  172.239661][T13363]  ? selinux_file_ioctl+0x180/0x270
[  172.239677][T13363]  ? selinux_file_ioctl+0xb4/0x270
[  172.239696][T13363]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  172.239720][T13363]  __x64_sys_ioctl+0x18e/0x210
[  172.239747][T13363]  do_syscall_64+0xcd/0x4c0
[  172.239766][T13363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.239784][T13363] RIP: 0033:0x7f448ff8e9a9
[  172.239799][T13363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.239816][T13363] RSP: 002b:00007f448ddf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  172.239833][T13363] RAX: ffffffffffffffda RBX: 00007f44901b5fa0 RCX: 00007f448ff8e9a9
[  172.239853][T13363] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  172.239864][T13363] RBP: 00007f448ddf6090 R08: 0000000000000000 R09: 0000000000000000
[  172.239875][T13363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.239886][T13363] R13: 0000000000000000 R14: 00007f44901b5fa0 R15: 00007ffe92874e48
[  172.239913][T13363]  </TASK>
[  172.251515][   T40] audit: type=1400 audit(1753581807.090:97054): avc:  denied  { read write } for  pid=5952 comm="syz-executor" name="loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  172.323580][T13367] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  172.324055][   T40] audit: type=1400 audit(1753581807.090:97055): avc:  denied  { open } for  pid=5952 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  172.326483][T13367] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  172.328895][   T40] audit: type=1400 audit(1753581807.090:97056): avc:  denied  { ioctl } for  pid=5952 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=661 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  172.330645][T13367] vhci_hcd vhci_hcd.0: Device attached
[  172.363333][T13368] vhci_hcd: connection closed
[  172.363553][T12523] vhci_hcd: stop threads
[  172.366539][T12523] vhci_hcd: release socket
[  172.367976][T12523] vhci_hcd: disconnect device
[  172.532299][T13374] binfmt_misc: register: failed to install interpreter file ./file0
[  172.572877][T13383] tmpfs: Cannot disable swap on remount
[  172.618527][T13389] __nla_validate_parse: 2 callbacks suppressed
[  172.618543][T13389] netlink: 68 bytes leftover after parsing attributes in process `syz.2.2158'.
[  172.619433][T13390] overlay: filesystem on ./bus is read-only
[  172.621199][T13389] netlink: 68 bytes leftover after parsing attributes in process `syz.2.2158'.
[  172.631517][T13390] overlayfs: missing 'lowerdir'
[  172.633616][T13390] overlayfs: missing 'lowerdir'
[  172.636294][T13390] overlayfs: missing 'lowerdir'
[  172.639665][T13390] overlayfs: missing 'lowerdir'
[  172.641901][T13390] overlayfs: missing 'lowerdir'
[  172.646735][T13390] overlayfs: missing 'lowerdir'
[  172.648935][T13390] overlayfs: missing 'lowerdir'
[  172.651402][T13390] overlayfs: missing 'lowerdir'
[  172.653866][T13390] overlayfs: missing 'lowerdir'
[  172.656418][T13390] overlayfs: missing 'lowerdir'
[  172.667441][T13390] overlayfs: missing 'lowerdir'
[  172.671741][T13390] overlayfs: missing 'lowerdir'
[  172.675844][T13390] overlayfs: missing 'lowerdir'
[  172.679745][T13390] overlayfs: missing 'lowerdir'
[  172.683578][T13390] overlayfs: missing 'lowerdir'
[  172.688226][T13390] overlayfs: missing 'lowerdir'
[  172.690506][T13390] overlayfs: missing 'lowerdir'
[  172.692834][T13390] overlayfs: missing 'lowerdir'
[  172.695569][T13390] overlayfs: missing 'lowerdir'
[  172.698939][T13390] overlayfs: missing 'lowerdir'
[  172.701555][T13390] overlayfs: missing 'lowerdir'
[  172.703984][T13390] overlayfs: missing 'lowerdir'
[  172.705914][T13390] overlayfs: missing 'lowerdir'
[  172.707853][T13390] overlayfs: missing 'lowerdir'
[  172.709832][T13390] overlayfs: missing 'lowerdir'
[  172.712077][T13390] overlayfs: missing 'lowerdir'
[  172.715834][T13390] overlayfs: missing 'lowerdir'
[  172.718343][T13390] overlayfs: missing 'lowerdir'
[  172.720304][T13390] overlayfs: missing 'lowerdir'
[  172.722322][T13390] overlayfs: missing 'lowerdir'
[  172.726770][T13390] overlayfs: missing 'lowerdir'
[  172.728785][T13390] overlayfs: missing 'lowerdir'
[  172.805298][T13396] FAULT_INJECTION: forcing a failure.
[  172.805298][T13396] name failslab, interval 1, probability 0, space 0, times 0
[  172.809228][T13396] CPU: 0 UID: 0 PID: 13396 Comm: syz.2.2160 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  172.809243][T13396] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  172.809250][T13396] Call Trace:
[  172.809254][T13396]  <TASK>
[  172.809259][T13396]  dump_stack_lvl+0x16c/0x1f0
[  172.809292][T13396]  should_fail_ex+0x512/0x640
[  172.809313][T13396]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  172.809332][T13396]  should_failslab+0xc2/0x120
[  172.809344][T13396]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  172.809360][T13396]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  172.809376][T13396]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  172.809390][T13396]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  172.809408][T13396]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  172.809429][T13396]  mmu_topup_memory_caches+0x25/0x170
[  172.809444][T13396]  kvm_mmu_load+0xd9/0x22a0
[  172.809457][T13396]  ? kvm_apic_has_interrupt+0x106/0x1f0
[  172.809468][T13396]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  172.809480][T13396]  ? __pfx_vmx_flush_tlb_guest+0x10/0x10
[  172.809495][T13396]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  172.809507][T13396]  ? __pfx_kvm_mmu_load+0x10/0x10
[  172.809520][T13396]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  172.809537][T13396]  ? kvm_check_and_inject_events+0x71c/0x1310
[  172.809567][T13396]  vcpu_run+0x34eb/0x5500
[  172.809578][T13396]  ? kvm_mmu_post_init_vm+0x269/0x370
[  172.809595][T13396]  ? __lock_acquire+0xb8a/0x1c90
[  172.809610][T13396]  ? __pfx_vcpu_run+0x10/0x10
[  172.809625][T13396]  ? fpu_swap_kvm_fpstate+0x1be/0x410
[  172.809655][T13396]  ? __local_bh_enable_ip+0xa4/0x120
[  172.809673][T13396]  ? kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  172.809687][T13396]  kvm_arch_vcpu_ioctl_run+0x51e/0x18c0
[  172.809704][T13396]  kvm_vcpu_ioctl+0x5eb/0x1690
[  172.809720][T13396]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  172.809738][T13396]  ? ioctl_has_perm.constprop.0.isra.0+0x383/0x540
[  172.809751][T13396]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  172.809767][T13396]  ? hook_file_ioctl_common+0x145/0x410
[  172.809785][T13396]  ? selinux_file_ioctl+0x180/0x270
[  172.809795][T13396]  ? selinux_file_ioctl+0xb4/0x270
[  172.809806][T13396]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  172.809820][T13396]  __x64_sys_ioctl+0x18e/0x210
[  172.809837][T13396]  do_syscall_64+0xcd/0x4c0
[  172.809849][T13396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.809860][T13396] RIP: 0033:0x7f1c45f8e9a9
[  172.809870][T13396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.809885][T13396] RSP: 002b:00007f1c46d2f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  172.809897][T13396] RAX: ffffffffffffffda RBX: 00007f1c461b5fa0 RCX: 00007f1c45f8e9a9
[  172.809904][T13396] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  172.809910][T13396] RBP: 00007f1c46d2f090 R08: 0000000000000000 R09: 0000000000000000
[  172.809917][T13396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.809923][T13396] R13: 0000000000000000 R14: 00007f1c461b5fa0 R15: 00007ffcf6367338
[  172.809938][T13396]  </TASK>
[  172.817996][T13376] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2154'.
[  173.255628][T13429] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2168'.
[  173.289281][T13430] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2168'.
[  173.292325][T13429] syz.3.2168: vmalloc error: size 10485760, failed to allocated page array size 20480, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  173.298125][T13429] CPU: 3 UID: 0 PID: 13429 Comm: syz.3.2168 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  173.298140][T13429] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.298146][T13429] Call Trace:
[  173.298150][T13429]  <TASK>
[  173.298155][T13429]  dump_stack_lvl+0x16c/0x1f0
[  173.298176][T13429]  warn_alloc+0x248/0x3a0
[  173.298195][T13429]  ? __pfx_warn_alloc+0x10/0x10
[  173.298216][T13429]  ? frame_vector_create+0x5c/0x100
[  173.298231][T13429]  ? __vmalloc_node_noprof+0xad/0xf0
[  173.298247][T13429]  __vmalloc_node_range_noprof+0x101b/0x14b0
[  173.298266][T13429]  ? frame_vector_create+0x5c/0x100
[  173.298281][T13429]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.298296][T13429]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  173.298311][T13429]  ? __alloc_pages_noprof+0xb/0x1b0
[  173.298327][T13429]  ? ___kmalloc_large_node+0x84/0x1e0
[  173.298344][T13429]  __kvmalloc_node_noprof+0x30a/0x620
[  173.298360][T13429]  ? frame_vector_create+0x5c/0x100
[  173.298374][T13429]  ? frame_vector_create+0x5c/0x100
[  173.298391][T13429]  ? frame_vector_create+0x5c/0x100
[  173.298404][T13429]  frame_vector_create+0x5c/0x100
[  173.298417][T13429]  vb2_create_framevec+0x3f/0xd0
[  173.298429][T13429]  vb2_vmalloc_get_userptr+0x13b/0x540
[  173.298443][T13429]  ? kernel_text_address+0x8d/0x100
[  173.298458][T13429]  ? __pfx_vb2_vmalloc_get_userptr+0x10/0x10
[  173.298472][T13429]  __prepare_userptr.constprop.0+0x744/0x1680
[  173.298488][T13429]  ? __pfx___prepare_userptr.constprop.0+0x10/0x10
[  173.298521][T13429]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  173.298535][T13429]  ? vb2_queue_or_prepare_buf+0x5c7/0x29f0
[  173.298550][T13429]  __buf_prepare+0x63a/0x820
[  173.298565][T13429]  vb2_core_prepare_buf+0xa9/0x2e0
[  173.298578][T13429]  vb2_prepare_buf+0x269/0x330
[  173.298592][T13429]  v4l2_m2m_prepare_buf+0xe8/0x1e0
[  173.298605][T13429]  v4l_prepare_buf+0x96/0xc0
[  173.298623][T13429]  __video_do_ioctl+0xb40/0xfc0
[  173.298642][T13429]  ? __might_fault+0xe3/0x190
[  173.298657][T13429]  ? __pfx___video_do_ioctl+0x10/0x10
[  173.298689][T13429]  video_usercopy+0x4d0/0x1720
[  173.298700][T13429]  ? __pfx___video_do_ioctl+0x10/0x10
[  173.298717][T13429]  ? selinux_kernel_read_file+0x70/0x130
[  173.298729][T13429]  ? __pfx_video_usercopy+0x10/0x10
[  173.298748][T13429]  v4l2_ioctl+0x1ba/0x250
[  173.298764][T13429]  ? __pfx_v4l2_ioctl+0x10/0x10
[  173.298781][T13429]  __x64_sys_ioctl+0x18e/0x210
[  173.298797][T13429]  do_syscall_64+0xcd/0x4c0
[  173.298808][T13429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.298819][T13429] RIP: 0033:0x7fdcbd38e9a9
[  173.298828][T13429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.298839][T13429] RSP: 002b:00007fdcbe29b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  173.298849][T13429] RAX: ffffffffffffffda RBX: 00007fdcbd5b5fa0 RCX: 00007fdcbd38e9a9
[  173.298857][T13429] RDX: 0000200000002dc0 RSI: 00000000c058565d RDI: 0000000000000004
[  173.298863][T13429] RBP: 00007fdcbd410d69 R08: 0000000000000000 R09: 0000000000000000
[  173.298870][T13429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  173.298876][T13429] R13: 0000000000000000 R14: 00007fdcbd5b5fa0 R15: 00007ffdf2019008
[  173.298891][T13429]  </TASK>
[  173.298895][T13429] Mem-Info:
[  173.403971][T13429] active_anon:23713 inactive_anon:2314 isolated_anon:0
[  173.403971][T13429]  active_file:13839 inactive_file:12176 isolated_file:0
[  173.403971][T13429]  unevictable:1768 dirty:32 writeback:0
[  173.403971][T13429]  slab_reclaimable:9395 slab_unreclaimable:78605
[  173.403971][T13429]  mapped:30840 shmem:15898 pagetables:1721
[  173.403971][T13429]  sec_pagetables:318 bounce:0
[  173.403971][T13429]  kernel_misc_reclaimable:0
[  173.403971][T13429]  free:437870 free_pcp:14156 free_cma:0
[  173.418910][T13429] Node 0 active_anon:94776kB inactive_anon:9256kB active_file:52264kB inactive_file:48476kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:115148kB dirty:128kB writeback:0kB shmem:60048kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16208kB pagetables:6272kB sec_pagetables:1268kB all_unreclaimable? no Balloon:0kB
[  173.429128][T13429] Node 1 active_anon:76kB inactive_anon:0kB active_file:3092kB inactive_file:228kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:8212kB dirty:0kB writeback:0kB shmem:3544kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:176kB pagetables:612kB sec_pagetables:4kB all_unreclaimable? no Balloon:0kB
[  173.439683][T13429] Node 0 DMA free:11260kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:100kB inactive_anon:0kB active_file:764kB inactive_file:188kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:40kB local_pcp:32kB free_cma:0kB
[  173.448620][T13429] lowmem_reserve[]: 0 1234 1234 1234 1234
[  173.450438][T13429] Node 0 DMA32 free:187760kB boost:0kB min:27516kB low:34392kB high:41268kB reserved_highatomic:2048KB free_highatomic:1644KB active_anon:94676kB inactive_anon:9256kB active_file:51500kB inactive_file:48288kB unevictable:3536kB writepending:128kB present:2080628kB managed:1264296kB mlocked:0kB bounce:0kB free_pcp:36880kB local_pcp:16084kB free_cma:0kB
[  173.461444][T13429] lowmem_reserve[]: 0 0 0 0 0
[  173.463001][T13429] Node 1 Normal free:1552460kB boost:0kB min:39720kB low:49648kB high:59576kB reserved_highatomic:0KB free_highatomic:0KB active_anon:76kB inactive_anon:0kB active_file:3092kB inactive_file:228kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781956kB mlocked:0kB bounce:0kB free_pcp:19784kB local_pcp:9136kB free_cma:0kB
[  173.472618][T13429] lowmem_reserve[]: 0 0 0 0 0
[  173.474208][T13429] Node 0 DMA: 23*4kB (UME) 35*8kB (UME) 25*16kB (UME) 34*32kB (UME) 17*64kB (UM) 5*128kB (UME) 4*256kB (UME) 3*512kB (UME) 3*1024kB (UME) 1*2048kB (U) 0*4096kB = 11268kB
[  173.479471][T13429] Node 0 DMA32: 1144*4kB (UMH) 980*8kB (UMEH) 329*16kB (UMEH) 458*32kB (UMEH) 327*64kB (UMEH) 354*128kB (UMEH) 154*256kB (UME) 61*512kB (UME) 18*1024kB (UM) 0*2048kB 0*4096kB = 187664kB
[  173.486764][T13429] Node 1 Normal: 43*4kB (UM) 112*8kB (UE) 96*16kB (UE) 141*32kB (UME) 82*64kB (UME) 76*128kB (UME) 66*256kB (UME) 40*512kB (UM) 30*1024kB (UM) 20*2048kB (UM) 347*4096kB (UM) = 1552460kB
[  173.492499][T13429] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  173.495544][T13429] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  173.498409][T13429] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  173.501350][T13429] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  173.504257][T13429] 41992 total pagecache pages
[  173.505937][T13429] 83 pages in swap cache
[  173.507513][T13429] Free swap  = 108696kB
[  173.508855][T13429] Total swap = 124996kB
[  173.510622][T13429] 1048443 pages RAM
[  173.512213][T13429] 0 pages HighMem/MovableOnly
[  173.513777][T13429] 283040 pages reserved
[  173.515078][T13429] 0 pages cma reserved
[  173.735477][T13445] ==================================================================
[  173.735486][T13445] BUG: KASAN: vmalloc-out-of-bounds in sys_fillrect+0x15d4/0x17b0
[  173.735506][T13445] Write of size 8 at addr ffffc900053a1000 by task syz.3.2174/13445
[  173.735515][T13445] 
[  173.735521][T13445] CPU: 1 UID: 0 PID: 13445 Comm: syz.3.2174 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  173.735535][T13445] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.735542][T13445] Call Trace:
[  173.735547][T13445]  <TASK>
[  173.735551][T13445]  dump_stack_lvl+0x116/0x1f0
[  173.735571][T13445]  print_report+0xcd/0x610
[  173.735583][T13445]  ? __virt_addr_valid+0x81/0x610
[  173.735597][T13445]  ? sys_fillrect+0x15d4/0x17b0
[  173.735611][T13445]  kasan_report+0xe0/0x110
[  173.735622][T13445]  ? sys_fillrect+0x15d4/0x17b0
[  173.735637][T13445]  sys_fillrect+0x15d4/0x17b0
[  173.735652][T13445]  ? __pfx_sys_fillrect+0x10/0x10
[  173.735669][T13445]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[  173.735685][T13445]  ? fb_copy_cmap+0x2ad/0x360
[  173.735696][T13445]  bit_clear_margins+0x2f7/0x4c0
[  173.735708][T13445]  ? __pfx_bit_clear_margins+0x10/0x10
[  173.735721][T13445]  ? fb_get_color_depth+0x120/0x250
[  173.735732][T13445]  fbcon_clear_margins.constprop.0+0x1d3/0x290
[  173.735750][T13445]  fbcon_switch+0xa01/0x14c0
[  173.735762][T13445]  ? __pfx_fbcon_switch+0x10/0x10
[  173.735775][T13445]  ? __pfx_bit_cursor+0x10/0x10
[  173.735786][T13445]  ? fbcon_cursor+0x409/0x5f0
[  173.735796][T13445]  ? is_console_locked+0x9/0x20
[  173.735813][T13445]  ? con_is_visible+0x65/0x150
[  173.735828][T13445]  redraw_screen+0x2be/0x760
[  173.735846][T13445]  ? __pfx_vc_do_resize+0x10/0x10
[  173.735862][T13445]  ? __pfx_redraw_screen+0x10/0x10
[  173.735880][T13445]  fbcon_set_disp+0x7d4/0xe40
[  173.735898][T13445]  set_con2fb_map+0x703/0x1060
[  173.735909][T13445]  fbcon_set_con2fb_map_ioctl+0x16c/0x220
[  173.735921][T13445]  ? __pfx_fbcon_set_con2fb_map_ioctl+0x10/0x10
[  173.735934][T13445]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  173.735948][T13445]  do_fb_ioctl+0x328/0x7e0
[  173.735961][T13445]  ? __pfx_do_fb_ioctl+0x10/0x10
[  173.735975][T13445]  ? do_vfs_ioctl+0x523/0x1a60
[  173.735997][T13445]  ? selinux_file_ioctl+0x180/0x270
[  173.736009][T13445]  fb_ioctl+0xe5/0x150
[  173.736021][T13445]  ? __pfx_fb_ioctl+0x10/0x10
[  173.736033][T13445]  __x64_sys_ioctl+0x18e/0x210
[  173.736048][T13445]  do_syscall_64+0xcd/0x4c0
[  173.736059][T13445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.736071][T13445] RIP: 0033:0x7fdcbd38e9a9
[  173.736080][T13445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.736091][T13445] RSP: 002b:00007fdcbe29b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  173.736102][T13445] RAX: ffffffffffffffda RBX: 00007fdcbd5b5fa0 RCX: 00007fdcbd38e9a9
[  173.736110][T13445] RDX: 0000200000000180 RSI: 0000000000004610 RDI: 0000000000000005
[  173.736116][T13445] RBP: 00007fdcbd410d69 R08: 0000000000000000 R09: 0000000000000000
[  173.736123][T13445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  173.736134][T13445] R13: 0000000000000000 R14: 00007fdcbd5b5fa0 R15: 00007ffdf2019008
[  173.736145][T13445]  </TASK>
[  173.736149][T13445] 
[  173.736152][T13445] The buggy address ffffc900053a1000 belongs to a vmalloc virtual mapping
[  173.736158][T13445] Memory state around the buggy address:
[  173.736164][T13445]  ffffc900053a0f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.736172][T13445]  ffffc900053a0f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  173.736180][T13445] >ffffc900053a1000: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  173.736186][T13445]                    ^
[  173.736191][T13445]  ffffc900053a1080: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  173.736199][T13445]  ffffc900053a1100: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[  173.736205][T13445] ==================================================================
[  173.736211][T13445] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  173.736218][T13445] CPU: 1 UID: 0 PID: 13445 Comm: syz.3.2174 Not tainted 6.16.0-rc6-syzkaller-00287-g990b11a523a8 #0 PREEMPT(full) 
[  173.736232][T13445] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  173.736239][T13445] Call Trace:
[  173.736242][T13445]  <TASK>
[  173.736246][T13445]  dump_stack_lvl+0x3d/0x1f0
[  173.736264][T13445]  panic+0x71c/0x800
[  173.736281][T13445]  ? __pfx_panic+0x10/0x10
[  173.736298][T13445]  ? __pfx__printk+0x10/0x10
[  173.736310][T13445]  ? check_panic_on_warn+0x1f/0xb0
[  173.736320][T13445]  ? sys_fillrect+0x15d4/0x17b0
[  173.736334][T13445]  check_panic_on_warn+0xab/0xb0
[  173.736344][T13445]  end_report+0x107/0x170
[  173.736354][T13445]  kasan_report+0xee/0x110
[  173.736364][T13445]  ? sys_fillrect+0x15d4/0x17b0
[  173.736380][T13445]  sys_fillrect+0x15d4/0x17b0
[  173.736396][T13445]  ? __pfx_sys_fillrect+0x10/0x10
[  173.736412][T13445]  drm_fbdev_shmem_defio_fillrect+0x22/0x140
[  173.736427][T13445]  ? fb_copy_cmap+0x2ad/0x360
[  173.736438][T13445]  bit_clear_margins+0x2f7/0x4c0
[  173.736449][T13445]  ? __pfx_bit_clear_margins+0x10/0x10
[  173.736462][T13445]  ? fb_get_color_depth+0x120/0x250
[  173.736474][T13445]  fbcon_clear_margins.constprop.0+0x1d3/0x290
[  173.736492][T13445]  fbcon_switch+0xa01/0x14c0
[  173.736504][T13445]  ? __pfx_fbcon_switch+0x10/0x10
[  173.736517][T13445]  ? __pfx_bit_cursor+0x10/0x10
[  173.736528][T13445]  ? fbcon_cursor+0x409/0x5f0
[  173.736538][T13445]  ? is_console_locked+0x9/0x20
[  173.736554][T13445]  ? con_is_visible+0x65/0x150
[  173.736568][T13445]  redraw_screen+0x2be/0x760
[  173.736584][T13445]  ? __pfx_vc_do_resize+0x10/0x10
[  173.736601][T13445]  ? __pfx_redraw_screen+0x10/0x10
[  173.736619][T13445]  fbcon_set_disp+0x7d4/0xe40
[  173.736636][T13445]  set_con2fb_map+0x703/0x1060
[  173.736648][T13445]  fbcon_set_con2fb_map_ioctl+0x16c/0x220
[  173.736660][T13445]  ? __pfx_fbcon_set_con2fb_map_ioctl+0x10/0x10
[  173.736673][T13445]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  173.736686][T13445]  do_fb_ioctl+0x328/0x7e0
[  173.736699][T13445]  ? __pfx_do_fb_ioctl+0x10/0x10
[  173.736713][T13445]  ? do_vfs_ioctl+0x523/0x1a60
[  173.736735][T13445]  ? selinux_file_ioctl+0x180/0x270
[  173.736746][T13445]  fb_ioctl+0xe5/0x150
[  173.736758][T13445]  ? __pfx_fb_ioctl+0x10/0x10
[  173.736770][T13445]  __x64_sys_ioctl+0x18e/0x210
[  173.736785][T13445]  do_syscall_64+0xcd/0x4c0
[  173.736796][T13445]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.736807][T13445] RIP: 0033:0x7fdcbd38e9a9
[  173.736815][T13445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.736825][T13445] RSP: 002b:00007fdcbe29b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  173.736835][T13445] RAX: ffffffffffffffda RBX: 00007fdcbd5b5fa0 RCX: 00007fdcbd38e9a9
[  173.736843][T13445] RDX: 0000200000000180 RSI: 0000000000004610 RDI: 0000000000000005
[  173.736850][T13445] RBP: 00007fdcbd410d69 R08: 0000000000000000 R09: 0000000000000000
[  173.736856][T13445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  173.736863][T13445] R13: 0000000000000000 R14: 00007fdcbd5b5fa0 R15: 00007ffdf2019008
[  173.736874][T13445]  </TASK>
[  173.737573][T13445] Kernel Offset: disabled

VM DIAGNOSIS:
00:25:21  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff81608000 RDX=ffff8880586ba440
RSI=ffffffff81608048 RDI=ffffffff93d52080 RBP=0000000000000000 RSP=ffffc90000007fd0
R8 =0000000000000001 R9 =fffffbfff27aa410 R10=ffffffff93d52087 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81608049 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f9e8b7e16c0 ffffffff 00c00000
GS =0000 ffff8880d6720000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c3139c4 CR3=000000004892a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fffff800 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9e8aa11d42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9e8aa11d4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9e8aa11d49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9e8aa11d5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9e8aa11de3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9e8aa11ec1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 2323232323232323 2323232323232323
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000336f65 6469762f7665642f
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000104c46 474a550c5546470c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000034 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff855a5665 RDI=ffffffff9b0b9e60 RBP=ffffffff9b0b9e20 RSP=ffffc9000661f178
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3030303963666657
R12=0000000000000000 R13=0000000000000034 R14=ffffffff9b0b9e20 R15=ffffffff855a5600
RIP=ffffffff855a568f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 00007fdcbe29b6c0 ffffffff 00c00000
GS =0000 ffff8880d6820000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fdcbe258f98 CR3=000000003f173000 CR4=00352ef0
DR0=000000000000000e DR1=00000000000044e4 DR2=0000000000000008 DR3=0000000000000002 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=00000000000000ff Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdcbd411d42
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdcbd411d4f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdcbd411d49
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdcbd411d5d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdcbd411de3
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdcbd411ec1
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdcbd586488 00007fdcbd586480 00007fdcbd586478 00007fdcbd586450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdcbe0ed100 00007fdcbd586440 00007fdcbd586458 00007fdcbd5864a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fdcbd586498 00007fdcbd586490 00007fdcbd586488 00007fdcbd586480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080010001 RBX=0000000000000000 RCX=ffffffff81608000 RDX=ffff88801deb4880
RSI=ffffffff81608048 RDI=ffffffff93d52080 RBP=0000000000000002 RSP=ffffc90000648fd0
R8 =0000000000000001 R9 =fffffbfff27aa410 R10=ffffffff93d52087 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81608049 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6920000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000555590c2c808 CR3=00000000328b7000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000100001 Opmask01=000000000000001f Opmask02=00000000ffff7fdf Opmask03=0000000010400004
Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f68637461772f76 6564752f6e75722f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f68637461772f76 6564752f6e75722f
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055fa7c440f70
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbfff7f1b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbfff7f1b20
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373268973401673 431e161e035c1810
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1c1f115c435d4316 10120300161e121d
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 772f766564752f6e 75722f00646c6f2e 68637461772f7665 64752f6e75722f00
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 520a534041500a4b 50570a0041494a0b 4d465144520a5340 41500a4b50570a00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f30737562646e2f 30303a3231303049 5043412f30303a53 55425953584e4c2f
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000041 6467756c700a3a33 000055fa00336500 306d656d702f6b63
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4751435d4e1f6502 4349431f6542141f 46553871787f2976 737176307f203b39
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7f7f7f5f7f7f7f7f 7f7f4f7f7f777f7f 7f7f7f7f7e7f3f77 7f7f7f7d7f7b7b3d
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343064623a312b32 316f70627e322d33 2e36312e312d6e61 696265642d332e36
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e513d5300313130 3530000030310031 313400323d4d4200 32323031323d4d55
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2c2c2c2c00302c2d 2c3000003031002c 3131002c30303100 303030312c342c33
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000080010000 RBX=0000000000000000 RCX=ffffffff81608000 RDX=ffff888025afa440
RSI=ffffffff81608048 RDI=ffffffff93d52080 RBP=0000000000000003 RSP=ffffc900006f8fd0
R8 =0000000000000001 R9 =fffffbfff27aa410 R10=ffffffff93d52087 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81608049 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055558ee59500 ffffffff 00c00000
GS =0000 ffff8880d6a20000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000200000005f18 CR3=000000004e5a7000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fefeffd0 Opmask01=0000000000004211 Opmask02=000000007ffeffff Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=00000000004007ff Opmask06=0000000007ffe7ff Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 44455a494c414954 494e495f43455355
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 000055fa7c43b600
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbfff7f1b20
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ff00000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a2a2a2a2a2a15d5 2a2a2a2a2a415943
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e754f4645425d05 1a474f475a054149
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 656c696620732520 6465746165726300 0a73253a47000a73 253d73253a45000a
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 40494c4305560005 4140514440574600 0a56001f47000a56 001856001f45000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 0000000000000000 000055fa7c43b600
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000009f1 0000000000000070 0000657300326500 306d656d702f6b63
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055fa7c43efe0 000055fa7c437b10 000055fa7c449cb0 000055fa7c43c9c0
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055fa7c43b600 000055fa7c4564e0 000055fa7c439f80 000055fa7c516850
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055fa7c448720 000055fa7c456170 000055fa7c44e240 000055fa7c448ea0
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7265747369676572 6e755f7665647465 6e2e65726f632e74 656e2e6c74637379
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 282b2e2fdf37342d 280bbfbf23243324 26312033fc040f18 1317140d080b0412
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 343133bffc121104 1214041204110814 100411bffc040f18 1317140d080b0412
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000