last executing test programs:

14.401784376s ago: executing program 1 (id=1085):
sched_setscheduler(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bd2)
r0 = getpgid(0xffffffffffffffff)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
read$msr(r1, 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000280), 0x1, 0x422000)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(0xffffffffffffffff, 0xc05064a7, 0x0)
r2 = inotify_init1(0x0)
fcntl$setown(r2, 0x8, 0xffffffffffffffff)
fcntl$getownex(r2, 0x10, &(0x7f0000000100)={0x0, <r3=>0x0})
prctl$PR_SET_PTRACER(0x59616d61, r3)
r4 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x400)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r5=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r4, 0xab00, r5)
ioctl$NBD_DO_IT(r4, 0xab03)
syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
process_vm_readv(r3, &(0x7f00000002c0)=[{&(0x7f0000000080)=""/237, 0xed}], 0x1, &(0x7f00000003c0)=[{&(0x7f0000000300)=""/177, 0xb1}], 0x1, 0x0)

13.415914445s ago: executing program 1 (id=1094):
pipe(0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x1181})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000200)="ee"})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000640)={0x20, 0x0, &(0x7f0000000e00)=[@request_death={0x400c6313}, @clear_death], 0x0, 0x0, 0x0})

13.41571959s ago: executing program 1 (id=1095):
r0 = socket$xdp(0x2c, 0x3, 0x0)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0, 0x8012, r0, 0x0)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x40000000}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xa000000}, {}, {0x4, 0x1, 0xb, 0x9, 0xa}}}, &(0x7f0000000200)='syzkaller\x00', 0x9, 0x1003, &(0x7f0000001e40)=""/4099, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (fail_nth: 21)

13.350953774s ago: executing program 1 (id=1097):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007a00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x34, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (fail_nth: 5)

13.350744568s ago: executing program 1 (id=1098):
r0 = socket(0x2b, 0x80801, 0x1)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x1e, &(0x7f0000000480)=ANY=[@ANYBLOB="00000000000000006dc2ffd604863b6ec1f0fcebba1487f26d9876d37a5a8ffeb448e188a8a25124db67b55027f8c91a3df145bbeddcc81e20539937df8e7a6b4d8496272a09e4d79adcc497822621c83e3cfa4a8e6c7888abd797db2873910c2671afe67ac96985bd26c51ba2c9d20103becb1f8d58"], 0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000140))
ioctl$KVM_SET_PIT2(r3, 0x4070aea0, &(0x7f0000000400)={[{0xca, 0x4, 0x7, 0x5, 0x7, 0x8, 0x3, 0x1, 0x8, 0xc, 0x0, 0x1, 0x8000000000000000}, {0x9, 0x2, 0x3, 0x0, 0x5, 0x4, 0x2, 0x4, 0x9, 0x6, 0x10, 0x5, 0xff}, {0xffffff80, 0x9, 0x0, 0x1, 0x4, 0x6, 0x7c, 0x9, 0xd6, 0x0, 0x1, 0x9, 0x2}], 0xd})
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000006dc0), 0x0, 0x0)
close(r4)
openat$sndtimer(0xffffffffffffff9c, &(0x7f00000070c0), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000080)={{0x0, 0x3}})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r4, 0x54a2)
ioctl$SNDRV_TIMER_IOCTL_STOP(r4, 0x54a1)
ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}]})
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000240009000000000000000e0006"], 0x14}}, 0x0)
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
memfd_create(&(0x7f0000000180)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3', 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
r6 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000800), 0x0, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, 0x0)
openat$sndseq(0xffffff9c, &(0x7f0000000380), 0xa000)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000500)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2080000}, 0xc, &(0x7f0000000340)={&(0x7f0000000200)=ANY=[@ANYBLOB="2cd4ff00006c01040000000000000000000000040c000640fffffffffffffffe0900010073797a3000000000"], 0x2c}}, 0x1)
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r4, 0xc0bc5310, 0x0)
r8 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r8, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0xd4}, 0x1, 0x0, 0x0, 0x40880}, 0x0)

8.869535092s ago: executing program 0 (id=1124):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x24, 0x1, 0x4, 0x5, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x5}, @NFULA_CFG_CMD={0x5}]}, 0x24}, 0x1, 0x0, 0x1000000, 0x8080}, 0x24008080)

8.869145537s ago: executing program 0 (id=1126):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
sendmsg$xdp(r0, 0x0, 0x0)
syz_open_dev$cec(0x0, 0x0, 0x82a80)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000240), 0x0, 0x0, 0x0)
futex(0x0, 0x1, 0x0, 0x0, 0x0, 0x0)
kexec_load(0x7, 0x0, 0x0, 0x1) (fail_nth: 10)

8.711204194s ago: executing program 0 (id=1128):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4000084}, 0x4000)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1})
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_open_dev$MSR(&(0x7f0000000280), 0x0, 0x0)
io_uring_setup(0x177f, &(0x7f0000000340)={0x0, 0x5a27})
syz_open_procfs(0x0, &(0x7f0000000380)='oom_adj\x00')
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000d00)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0xfffffffe, '\x00', 0x0, 0xffffffffffffffff, 0x200000, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket$inet_sctp(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x3a0ffffffff)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r3, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r5}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

8.561711412s ago: executing program 0 (id=1132):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007a00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x34, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000001300)={'team0\x00', <r3=>0x0})
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="bbbbbbbbbbbb0180c200000208060001080006040002aaaaaaaaaa00f5"], 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @link_local}, 0x14)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'team_slave_0\x00', <r7=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)={0x5c, r1, 0x1, 0x0, 0x0, {}, [{{0x8, 0x1, r3}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r7}}}]}}]}, 0x5c}}, 0x0)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$BATADV_CMD_TP_METER_CANCEL(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x24, r8, 0x200, 0x70bd2d, 0x25dfdbfe, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x5}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x80000000}]}, 0x24}, 0x1, 0x0, 0x0, 0x8004004}, 0x40)

8.56132798s ago: executing program 0 (id=1133):
socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
faccessat2(0xffffffffffffffff, &(0x7f0000000180)='./bus\x00', 0x100, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file2\x00', 0xb8442, 0x195)
r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r1, &(0x7f00000004c0)='./file1\x00', 0x2000, 0x1)
chdir(&(0x7f0000000140)='./bus\x00')
linkat(r0, &(0x7f00000002c0)='./file1\x00', r1, &(0x7f0000000440)='./file0\x00', 0x0)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)={[{@redirect_dir_nofollow}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}], [{@seclabel}, {@uid_lt}, {@fsuuid={'fsuuid', 0x3d, {[0x30, 0x39, 0x39, 0x63, 0x37, 0x63, 0x31, 0x38], 0x2d, [0x32, 0x35, 0x35, 0x63], 0x2d, [0x36, 0x61, 0x30, 0x38], 0x2d, [0x0, 0x63, 0x64, 0x36], 0x2d, [0x61, 0x66, 0x66, 0x65, 0x0, 0x63, 0x38, 0x65]}}}, {@permit_directio}]})
r2 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
mknodat$loop(r2, &(0x7f0000000340)='./file1\x00', 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000280)='./file0\x00')
r3 = socket$xdp(0x2c, 0x3, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
sendmsg$xdp(r3, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000040)={0x2, 'team_slave_1\x00', 0x4}, 0x18)
syz_open_dev$cec(0x0, 0x0, 0x82a80)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x5ec, &(0x7f0000000000)=0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)

5.481271296s ago: executing program 0 (id=1153):
r0 = socket(0x2b, 0x80801, 0x1)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x1e, &(0x7f0000000040), 0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000140))
ioctl$KVM_SET_PIT2(r3, 0x4070aea0, &(0x7f0000000400)={[{0xca, 0x4, 0x7, 0x5, 0x7, 0x8, 0x3, 0x1, 0x8, 0xc, 0x0, 0x1, 0x8000000000000000}, {0x9, 0x2, 0x3, 0x0, 0x5, 0x4, 0x2, 0x4, 0x9, 0x6, 0x10, 0x5, 0xff}, {0xffffff80, 0x9, 0x0, 0x1, 0x3, 0x6, 0x7c, 0x9, 0xd6, 0x0, 0x1, 0x9, 0x2}], 0xd})
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000006dc0), 0x0, 0x0)
close(r4)
openat$sndtimer(0xffffffffffffff9c, &(0x7f00000070c0), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000080)={{0x0, 0x3}})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r4, 0x54a2)
ioctl$SNDRV_TIMER_IOCTL_STOP(r4, 0x54a1)
ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}]})
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000240009000000000000000e0006"], 0x14}}, 0x0)
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
r5 = memfd_create(&(0x7f0000000180)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3', 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
r7 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000800), 0x0, 0x0)
r8 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r7, 0x0)
openat$sndseq(0xffffff9c, &(0x7f0000000380), 0xa000)
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r4, 0xc0bc5310, 0x0)
r9 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r9, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, 0x0)
close_range(r5, 0xffffffffffffffff, 0x12000000)

3.460936548s ago: executing program 3 (id=1170):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CHANNEL(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)={0x2c, r1, 0x3, 0x70bd29, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_CHANNEL={0x5}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x2}]}, 0x2c}, 0x1, 0x1a00}, 0x802)

3.401458364s ago: executing program 3 (id=1171):
r0 = io_uring_setup(0x177f, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0xfffffffd})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
unshare(0x2a020400)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = mq_open(&(0x7f000084dff0)='!selinuxselinux\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000300)={0x0, 0x1, 0x7})
mq_timedreceive(r3, &(0x7f0000000440)=""/121, 0x79, 0x6, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000580)={@in6={{0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0xb}, 0x40000}}, 0x0, 0x0, 0x42, 0x0, "bd1c790806ed6dcd18899f9ea77ca9fb5184ff0ba54b7dfe784d2f6b7dcd9474d9b295588ac0b991d5c66461eca3f1ff5543acc6c970d0ad22d692e84d692972368e64c272da633a217b45fcc8b1ff3b"}, 0xd8)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000340)=0x2, 0xa2)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f0000000540), 0x3c)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f000000e0c0), 0x10010)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x1, &(0x7f0000000200)=@gcm_256={{0x304}, "00e0f07600", "832b4d2434b35bca8c0b78d2afff6d70d2025c7f53123828322d5af0d5c6c3a5", '`\a-N', "298f0e6df9ae9b3d"}, 0x38)
sendfile(r4, r5, &(0x7f0000000100)=0x8dff, 0x100000000010001)
close_range(r0, 0xffffffffffffffff, 0x0)

3.131380906s ago: executing program 2 (id=1173):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4000084}, 0x4000)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x1})
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_open_dev$MSR(&(0x7f0000000280), 0x0, 0x0)
io_uring_setup(0x177f, &(0x7f0000000340)={0x0, 0x5a27})
syz_open_procfs(0x0, &(0x7f0000000380)='oom_adj\x00')
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000d00)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0xfffffffe, '\x00', 0x0, 0xffffffffffffffff, 0x200000, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket$inet_sctp(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x3a0ffffffff)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r3, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r5}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

2.530892413s ago: executing program 3 (id=1174):
socket(0x10, 0x3, 0x0)
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d00000067000000050000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000780)=""/54, 0x36}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, 0x0, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_tracing={0x1a, 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000ff00000000000000020000001860000007000000000000000080000018370000010000000000009500"/64], &(0x7f0000000800)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x23, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, &(0x7f0000000840)={0x1, 0x4}, 0x8, 0x10, &(0x7f0000000880)={0x0, 0x3, 0x2, 0x1c}, 0x10, 0x2091c, 0xffffffffffffffff, 0x1, &(0x7f0000000d40)=[0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000d80)=[{0x4, 0x2, 0x4, 0x4}], 0x10, 0x1, @void, @value}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
recvmmsg$unix(r2, &(0x7f0000000700)=[{{&(0x7f0000000500), 0x6e, &(0x7f0000000400)=[{&(0x7f0000000580)=""/104, 0x68}, {&(0x7f0000000340)=""/33, 0x21}], 0x2, &(0x7f0000000600)}}], 0x1, 0x2100, &(0x7f0000000740))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r3, &(0x7f0000000300)={{0x6, @rose}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x48)
sendto$netrom(r3, 0x0, 0x0, 0x0, &(0x7f0000000000)={{0x6, @rose}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @default, @null]}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffd}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
r6 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000000000000077df591f71991277939b518552bedb7bcbdaf0e9e30ebdc9b4672f21133e6d150cc51989753bf01e02a4649c92d53ed39a9ebcb144509fb4beee7bb8f3736f2f01064fdbf24165e51718be84dce1f4518b02615ff8366e447c3d2d3a7d108c"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x14, &(0x7f0000000900)=ANY=[@ANYBLOB="1800000000000700000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r8, 0xfca804a0, 0xe, 0x590, &(0x7f00000002c0)="4ce02b9d64e50d293ddb0ae4b8a0", 0x0, 0x4003, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18020000fcffffff000000000000210085000000360000009500070000000000b83f3584230b8f5ec8921327291cf4880dd3a91af830f8a476ba1b51d4eb67103b000000000000000000000000000000640f9922d207e93470686f20ad"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r9, 0x1800000000000060, 0x0, 0x0, 0x0, 0x0, 0x2300, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_open_procfs(0x0, &(0x7f00000004c0)='net/wireless\x00')
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1d, 0x0, 0x400, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$KVM_IOEVENTFD(r6, 0x4040ae79, &(0x7f0000000380)={0x100000, 0x0, 0x0, r6, 0x8})
openat$snapshot(0xffffff9c, &(0x7f0000000000), 0x1, 0x0)

1.661035339s ago: executing program 3 (id=1175):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20040001)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
socket(0x0, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)={0x14, 0x4, 0x6, 0x201}, 0x14}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
setsockopt$sock_int(r2, 0x1, 0x29, 0x0, 0x0)
write$binfmt_misc(r2, &(0x7f0000000300), 0x6)
recvmmsg(r2, &(0x7f0000000600), 0x204083acb88ff8b, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000100)={'batadv_slave_1\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=r5], 0x90}}, 0x0)

1.421337206s ago: executing program 2 (id=1176):
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x0)
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(0xffffffffffffffff, 0x3ba0, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./bus\x00', 0x0, 0x0)
readahead(r1, 0x0, 0x0)
r2 = openat$vnet(0xffffff9c, &(0x7f0000000500), 0x2, 0x0)
write$vhost_msg(r2, &(0x7f00000005c0)={0x1, {&(0x7f0000000580), 0x0, &(0x7f0000000980)=""/207, 0x3, 0x3}}, 0x44)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x441)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="0900000005000000080000971400000042000000", @ANYRESHEX=r4, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRESDEC=r2, @ANYBLOB="73c2c9dd834e52aa1ec9bc78d45640890000000000000000000000000000000000000000e4cf9e3000000000"], 0x48)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0xf, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback=0x1e, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = eventfd(0x7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x90)
ioctl$VHOST_SET_VRING_BASE(r4, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000540)={0x0, 0x0, 0x0, &(0x7f00000002c0)=""/138, 0x0, 0x100000})
ioctl$VHOST_SET_LOG_FD(r4, 0x4004af07, &(0x7f0000000740)=r5)
ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f0000000040)={0x1, r5})
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_VRING_ERR(r4, 0x4008af22, &(0x7f0000000140)={0x1, r5})
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000940)={0x1, 0x0, [{0x0, 0xdd, &(0x7f0000000780)=""/221}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000000)=0x20000)

1.231567003s ago: executing program 3 (id=1177):
r0 = syz_io_uring_setup(0x305, &(0x7f0000000240)={0x0, 0x0, 0x20}, &(0x7f0000000500)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
r3 = signalfd4(0xffffffffffffffff, &(0x7f00000004c0), 0x8, 0x0)
r4 = io_uring_setup(0x64fb, &(0x7f0000000000)={0x0, 0xffff, 0x0, 0x3, 0x107, 0x0, r0})
syz_usb_connect$cdc_ncm(0x0, 0x6e, 0x0, 0x0)
dup2(r3, r4)
r5 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
setsockopt$ax25_int(r5, 0x101, 0xa, &(0x7f0000000080)=0xbb1e, 0x4)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
unshare(0x62040200)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r7 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})

510.698621ms ago: executing program 3 (id=1178):
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf27, 0x500, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
mmap(&(0x7f0000fa2000/0x3000)=nil, 0x3000, 0x0, 0x13, r1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x0, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mremap(&(0x7f0000fa4000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000fa2000/0x1000)=nil)
read$FUSE(r0, &(0x7f0000004180)={0x2020}, 0xfffffffffffffe96)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x3, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}, {0xfcf2, 0x9, 0x3, 0x6}, {0x5, 0x43, 0x8, 0x2}]})
set_thread_area(&(0x7f0000000040)={0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1})

291.263398ms ago: executing program 2 (id=1179):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'sha512-generic\x00'}, 0x58)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000140)='./file1\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_QUOTAON(r1, 0xffffffff80000201, 0x0, 0x0)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f00000010c0)="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", 0xf41}], 0x1}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000020000000000000f9ffff0b8500000007000000850000000700000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r3, 0x0, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d0000006700000005"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000180)='tlb_flush\x00', r4}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000340)=""/69, 0x623c41ea}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
socket$inet6(0xa, 0x2, 0x0)
r5 = socket$kcm(0x10, 0x400000002, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='ext4_es_lookup_extent_enter\x00'}, 0x10)
r6 = syz_open_dev$vim2m(&(0x7f0000000b00), 0x7, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r6, 0xc0405602, &(0x7f0000000180)={0x29, 0x1, 0x0, "732283ef1acb5aa7abe50000000009be908100"})
write$cgroup_subtree(r5, &(0x7f0000000000)=ANY=[@ANYBLOB="1c0000005e00"], 0xfe33)
recvmsg$kcm(r5, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
syz_open_dev$usbfs(&(0x7f0000000400), 0x77, 0x101641)
fgetxattr(0xffffffffffffffff, 0x0, &(0x7f0000000240)=""/145, 0x91)
socket$nl_route(0x10, 0x3, 0x0)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x44)
socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)

220.626068ms ago: executing program 2 (id=1180):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1=0xe000bb00, @remote, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f0000000080)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff010000000100000056000000250000001900040004e0144000000007fd17e5ffff0800040000000000", 0x39}, {&(0x7f0000000040)="c7a97837781b70ed03", 0x9}], 0x2)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r3, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_RECVSEQ(r3, 0x111, 0x2, 0x2, 0x4)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r4, 0x8922, &(0x7f0000000180)={'lo\x00'})

219.97874ms ago: executing program 2 (id=1181):
r0 = socket(0x10, 0x80803, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
gettid()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@ipv4_newaddr={0x40, 0x14, 0x509, 0x0, 0x0, {0x2, 0x20, 0x0, 0x0, r4}, [@IFA_TARGET_NETNSID={0x8}, @IFA_LOCAL={0x8, 0x2, @multicast2}, @IFA_RT_PRIORITY={0x8, 0x9, 0x5889}, @IFA_BROADCAST={0x8, 0x4, @local}, @IFA_RT_PRIORITY={0x8, 0x9, 0x8000103}]}, 0x40}, 0x1, 0x0, 0x0, 0x48000}, 0x8080)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r6=>0x0})
setsockopt$IP_VS_SO_SET_EDIT(r0, 0x0, 0x483, &(0x7f0000000300)={0x3c, @empty, 0x4e22, 0x2, 'fo\x00', 0x1, 0x10, 0x6e}, 0x2c)
sendmsg$nl_route(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0x70}}, 0x0)
rt_sigqueueinfo(0x0, 0x2a, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x800823, &(0x7f0000000680)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000050000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYRES16=0x0])
r7 = dup(0xffffffffffffffff)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000003c0)=ANY=[@ANYRES32, @ANYRESDEC, @ANYBLOB=',wfdno=', @ANYBLOB="0000d01fbe26ed470e87b7283c3b43f5f9dfaa1bd77f9e35aade40c6cd6ec92f47ac758056a77f3b2d96868aa95dad07000000573692f7dcfc38932e4301b21f13d6122b2f9a92b38f4af6e8b4333f7d4a34be73a230d4a1dd53745dc7a91731046bda291101274dcc70999ac7826d6cb26f3b164ff2c86242fc75c406ce8a2d106d9870fddf79ed7eeaffc87d875631826fdadd3e9d258ad799a1047eee705da34a6900"])
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1c, 0x4, 0x8, 0x3, 0x12000, 0xffffffffffffffff, 0x2, '\x00', r6, 0xffffffffffffffff, 0x1, 0x1, 0x0, 0x0, @void, @value, @value=r7}, 0x50)
socket$rxrpc(0x21, 0x2, 0xa)

101.312466ms ago: executing program 2 (id=1182):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r3, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f0000000300)={0x1cc, r4, 0x400, 0x70bd29, 0x2, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_SEC_KEY={0x150, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "d8f797d0e7a433c6c7d8e68b8828ed9a"}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "c841bc2985e1682b68d8e0abc6178a15e3c84b8c52caa958d2e746f9bf92cb4c"}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "d07515a6a5d310fd738a9352b43107dc2f6338ebf75b62232ee3fd08bd287d24"}, @NL802154_KEY_ATTR_ID={0x34, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x4f}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x14, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6}]}]}, @NL802154_KEY_ATTR_ID={0x58, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x4}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xe5}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x30, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xfffd}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x200}]}, @NL802154_KEY_ATTR_ID={0x54, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xfffffffb}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x4}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x300c}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x5}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x4c}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}]}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0xd}]}, @NL802154_ATTR_SEC_KEY={0x44, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "e11dba5eba3f8a4898bbb60fda4c6f3aaa6b02386391a7ae21dcfe2b420d6f2d"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x7f}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "f2938d201f07d01437034bec114d250e"}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x1cc}, 0x1, 0x0, 0x0, 0x8000}, 0x24044001)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000002c0)={'macvlan0\x00', <r5=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=r5, @ANYBLOB="00001700000000001c0037800b0005006970768a616e00000c0002"], 0x44}}, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
close(r6)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r6, 0x0, 0x4ffe6, 0x0)

0s ago: executing program 1 (id=1172):
socket$alg(0x26, 0x5, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r0}, 0x10)
r1 = openat$ppp(0xffffff9c, &(0x7f00000001c0), 0x80400, 0x0)
ioctl$PPPIOCATTACH(r1, 0x4004743d, &(0x7f0000000240)=0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x15, 0x301, 0x0, 0x0, {0xb}}, 0x14}}, 0x0)
r3 = syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r3, 0xc05c6104, &(0x7f0000000300)={"f2efe21e", 0x0, 0x6, 0x4d, 0x0, 0x1ff, "2179d46fd08e3c0ced34c7d0c7e6d7", "7da24a09", "5161dc20", "a2d1d4a2", ["1af0b1ba1cb8fd54c9c9b587", "bed0f3d6ce7a5f7389827f04", "33af343c608277cab6dc9ddf", "9b3842fc63849f62b6eb1c3c"]})
r4 = syz_open_dev$cec(&(0x7f0000000d00), 0x0, 0xc2b02)
ioctl$CEC_TRANSMIT(r4, 0xc0386105, &(0x7f0000000d40)={0x0, 0x0, 0x4, 0x0, 0x0, 0x4063, "57c1169b6664ea61326ac71ae7213059"})
r5 = syz_open_dev$cec(0x0, 0x0, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$usbmon(&(0x7f00000000c0), 0x4c0e, 0xc0003)
syz_genetlink_get_family_id$ieee802154(0x0, r6)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r7=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r7, 0x541b, &(0x7f0000000200)={<r8=>0xffffffffffffffff})
ioctl$CEC_ADAP_S_PHYS_ADDR(r5, 0x40026102, &(0x7f0000000080)=0x5)
close_range(r8, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

813550][ T8178]  ? __pfx_aa_get_newest_label+0x10/0x10
[  164.815034][ T8178]  ? __pfx___lock_acquire+0x10/0x10
[  164.816426][ T8178]  ? __pfx_mark_lock+0x10/0x10
[  164.817846][ T8178]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  164.819332][ T8178]  __vmalloc_noprof+0x6d/0x90
[  164.820701][ T8178]  ? bpf_prog_alloc_no_stats+0x54/0x5e0
[  164.822152][ T8178]  bpf_prog_alloc_no_stats+0x54/0x5e0
[  164.823565][ T8178]  ? security_capable+0x7e/0x260
[  164.824807][ T8178]  bpf_prog_alloc+0x3b/0x230
[  164.826001][ T8178]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  164.827527][ T8178]  bpf_prog_load+0x1b4e/0x2670
[  164.828758][ T8178]  ? __pfx_bpf_prog_load+0x10/0x10
[  164.830110][ T8178]  ? find_held_lock+0x2d/0x110
[  164.831383][ T8178]  __sys_bpf+0x4c8c/0x5780
[  164.832579][ T8178]  ? ksys_write+0x21e/0x260
[  164.833789][ T8178]  ? __pfx___sys_bpf+0x10/0x10
[  164.835060][ T8178]  ? vfs_write+0x14d/0x1140
[  164.836277][ T8178]  ? __mutex_unlock_slowpath+0x164/0x650
[  164.837780][ T8178]  ? fput+0x30/0x390
[  164.838824][ T8178]  ? ksys_write+0x1ad/0x260
[  164.840036][ T8178]  ? __pfx_ksys_write+0x10/0x10
[  164.841328][ T8178]  __ia32_sys_bpf+0x76/0xe0
[  164.842542][ T8178]  __do_fast_syscall_32+0x73/0x120
[  164.843972][ T8178]  do_fast_syscall_32+0x32/0x80
[  164.845266][ T8178]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  164.846933][ T8178] RIP: 0023:0xf73ee579
[  164.848028][ T8178] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  164.852971][ T8178] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  164.855152][ T8178] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200000c0
[  164.857229][ T8178] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000
[  164.859297][ T8178] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  164.861385][ T8178] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  164.863462][ T8178] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  164.865549][ T8178]  </TASK>
[  165.021117][ T8184] usb 2-1: USB disconnect, device number 3
[  165.414152][ T8195] team0: entered promiscuous mode
[  165.415533][ T8195] team_slave_0: entered promiscuous mode
[  165.420245][ T8195] team_slave_1: entered promiscuous mode
[  165.422685][ T8195] team_slave_1: left promiscuous mode
[  165.428424][ T8195] team0: Port device team_slave_1 removed
[  165.431577][ T8194] team0: left promiscuous mode
[  165.433295][ T8194] team_slave_0: left promiscuous mode
[  166.164456][ T8214] netlink: 8 bytes leftover after parsing attributes in process `syz.0.792'.
[  166.169159][   T39] audit: type=1326 audit(1727663593.258:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8213 comm="syz.0.792" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf73ee579 code=0x0
[  166.481212][ T8219] netlink: 4 bytes leftover after parsing attributes in process `syz.1.793'.
[  166.527668][ T5386] net_ratelimit: 10 callbacks suppressed
[  166.527681][ T5386] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  166.606795][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  166.606911][ T5386] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  166.752165][   T39] audit: type=1326 audit(1727663593.838:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8227 comm="syz.2.795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  166.776771][   T39] audit: type=1326 audit(1727663593.848:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8227 comm="syz.2.795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  166.782405][   T39] audit: type=1326 audit(1727663593.848:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8227 comm="syz.2.795" exe="/syz-executor" sig=0 arch=40000003 syscall=243 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  166.796947][   T39] audit: type=1326 audit(1727663593.848:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8227 comm="syz.2.795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  166.802499][   T39] audit: type=1326 audit(1727663593.848:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8227 comm="syz.2.795" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[  167.066822][  T830] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  167.267964][  T830] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  167.270789][  T830] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  167.273308][  T830] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  167.275669][  T830] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.284886][ T8230] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  167.290993][  T830] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  167.327147][  T830] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  167.565068][ T5386] usb 7-1: USB disconnect, device number 12
[  167.569319][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  167.576453][ T8230] FAULT_INJECTION: forcing a failure.
[  167.576453][ T8230] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.582736][ T8230] CPU: 2 UID: 0 PID: 8230 Comm: syz.2.796 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  167.585430][ T8230] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.588209][ T8230] Call Trace:
[  167.589101][ T8230]  <TASK>
[  167.589887][ T8230]  dump_stack_lvl+0x16c/0x1f0
[  167.591134][ T8230]  should_fail_ex+0x497/0x5b0
[  167.592402][ T8230]  _copy_to_user+0x30/0xc0
[  167.593475][ T8230]  simple_read_from_buffer+0xd0/0x160
[  167.594936][ T8230]  proc_fail_nth_read+0x198/0x270
[  167.596288][ T8230]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  167.597747][ T8230]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  167.599197][ T8230]  vfs_read+0x1ce/0xbd0
[  167.600405][ T8230]  ? __fget_files+0x23a/0x3f0
[  167.601658][ T8230]  ? fdget_pos+0x24c/0x360
[  167.602842][ T8230]  ? __pfx_lock_release+0x10/0x10
[  167.604202][ T8230]  ? trace_lock_acquire+0x14a/0x1d0
[  167.605635][ T8230]  ? __pfx_vfs_read+0x10/0x10
[  167.606932][ T8230]  ? __pfx___mutex_lock+0x10/0x10
[  167.608274][ T8230]  ? __fget_files+0x244/0x3f0
[  167.609518][ T8230]  ksys_read+0x12f/0x260
[  167.610632][ T8230]  ? __pfx_ksys_read+0x10/0x10
[  167.611890][ T8230]  __do_fast_syscall_32+0x73/0x120
[  167.613232][ T8230]  do_fast_syscall_32+0x32/0x80
[  167.614506][ T8230]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  167.616155][ T8230] RIP: 0023:0xf73ce579
[  167.617232][ T8230] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  167.622203][ T8230] RSP: 002b:00000000f56b65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  167.624395][ T8230] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000f56b6620
[  167.626444][ T8230] RDX: 000000000000000f RSI: 00000000f73bbff4 RDI: 0000000000000000
[  167.628497][ T8230] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  167.630567][ T8230] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  167.632628][ T8230] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.634695][ T8230]  </TASK>
[  167.635834][    C2] hpet: Lost 2 RTC interrupts
[  167.646859][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  167.650535][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  167.732841][ T8254] lo speed is unknown, defaulting to 1000
[  167.817630][ T1997] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  167.970789][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  167.977938][ T8261] netlink: 28 bytes leftover after parsing attributes in process `syz.2.802'.
[  167.980346][ T8261] netlink: 28 bytes leftover after parsing attributes in process `syz.2.802'.
[  168.117105][ T5407] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  168.127899][ T8266] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  168.282870][ T8278] netlink: 'syz.2.806': attribute type 21 has an invalid length.
[  168.285038][ T8278] netlink: 164 bytes leftover after parsing attributes in process `syz.2.806'.
[  168.563702][ T8291] netlink: 28 bytes leftover after parsing attributes in process `syz.2.810'.
[  168.566478][ T8291] netlink: 28 bytes leftover after parsing attributes in process `syz.2.810'.
[  169.242182][ T8294] lo speed is unknown, defaulting to 1000
[  169.425511][ T8303] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  169.440888][ T8303] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.812'.
[  170.596171][ T8321] netlink: 60 bytes leftover after parsing attributes in process `syz.2.818'.
[  171.053393][ T8309] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  171.406932][ T8332] netlink: 12 bytes leftover after parsing attributes in process `syz.2.822'.
[  171.566269][ T8335] lo speed is unknown, defaulting to 1000
[  171.727014][   T63] net_ratelimit: 12 callbacks suppressed
[  171.727027][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  171.806864][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  171.810679][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  171.892826][ T8349] lo: entered allmulticast mode
[  171.896818][ T8349] lo: left allmulticast mode
[  171.943316][ T8353] FAULT_INJECTION: forcing a failure.
[  171.943316][ T8353] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  171.947639][ T8353] CPU: 3 UID: 0 PID: 8353 Comm: syz.0.828 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  171.950964][ T8353] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  171.954691][ T8353] Call Trace:
[  171.955826][ T8353]  <TASK>
[  171.956830][ T8353]  dump_stack_lvl+0x16c/0x1f0
[  171.958396][ T8353]  should_fail_ex+0x497/0x5b0
[  171.959975][ T8353]  _copy_from_user+0x30/0xf0
[  171.961553][ T8353]  bpf_test_init.isra.0+0xf1/0x150
[  171.963295][ T8353]  bpf_prog_test_run_xdp+0x4f0/0x1580
[  171.965113][ T8353]  ? lock_acquire+0x2f/0xb0
[  171.966643][ T8353]  ? __fget_files+0x40/0x3f0
[  171.968229][ T8353]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  171.970241][ T8353]  ? fput+0x30/0x390
[  171.971574][ T8353]  ? __bpf_prog_get+0xa0/0x290
[  171.973189][ T8353]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  171.975163][ T8353]  __sys_bpf+0x1921/0x5780
[  171.976683][ T8353]  ? ksys_write+0x21e/0x260
[  171.978195][ T8353]  ? __pfx___sys_bpf+0x10/0x10
[  171.979789][ T8353]  ? vfs_write+0x14d/0x1140
[  171.981360][ T8353]  ? __mutex_unlock_slowpath+0x164/0x650
[  171.983302][ T8353]  ? fput+0x30/0x390
[  171.984698][ T8353]  ? ksys_write+0x1ad/0x260
[  171.986220][ T8353]  ? __pfx_ksys_write+0x10/0x10
[  171.987893][ T8353]  __ia32_sys_bpf+0x76/0xe0
[  171.989439][ T8353]  __do_fast_syscall_32+0x73/0x120
[  171.991142][ T8353]  do_fast_syscall_32+0x32/0x80
[  171.992768][ T8353]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  171.994903][ T8353] RIP: 0023:0xf73ee579
[  171.996289][ T8353] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  172.002714][ T8353] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  172.005470][ T8353] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000600
[  172.008086][ T8353] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  172.010669][ T8353] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  172.013584][ T8353] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  172.016276][ T8353] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  172.018904][ T8353]  </TASK>
[  172.125115][ T8354] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  172.137155][ T8356] overlayfs: conflicting options: metacopy=off,verity=on
[  172.767016][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  172.847008][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  172.847459][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  173.056190][ T8359] lo speed is unknown, defaulting to 1000
[  173.088056][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  173.092852][ T1997] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  173.097969][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  173.100219][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  173.439939][ T8376] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  173.608877][ T8382] program syz.3.834 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.939789][ T8384] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.836'.
[  173.945916][ T8384] xt_CT: You must specify a L4 protocol and not use inversions on it
[  174.016952][ T8390] netlink: 'syz.2.838': attribute type 9 has an invalid length.
[  174.021209][ T8390] netlink: 134640 bytes leftover after parsing attributes in process `syz.2.838'.
[  174.060059][ T8398] tipc: Started in network mode
[  174.061385][ T8398] tipc: Node identity ac1414aa, cluster identity 4711
[  174.063382][ T8398] FAULT_INJECTION: forcing a failure.
[  174.063382][ T8398] name failslab, interval 1, probability 0, space 0, times 0
[  174.067073][   T30] IPVS: starting estimator thread 0...
[  174.068052][ T8398] CPU: 2 UID: 0 PID: 8398 Comm: syz.1.841 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  174.071199][ T8398] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  174.074030][ T8398] Call Trace:
[  174.074919][ T8398]  <TASK>
[  174.075709][ T8398]  dump_stack_lvl+0x16c/0x1f0
[  174.076942][ T8398]  should_fail_ex+0x497/0x5b0
[  174.078220][ T8398]  should_failslab+0xc2/0x120
[  174.079479][ T8398]  __kmalloc_cache_noprof+0x6b/0x310
[  174.080868][ T8398]  ? tipc_mon_create+0x15f/0x5e0
[  174.082181][ T8398]  tipc_mon_create+0x15f/0x5e0
[  174.083506][ T8398]  tipc_enable_bearer+0xa48/0xfa0
[  174.084840][ T8398]  ? __pfx_tipc_enable_bearer+0x10/0x10
[  174.086281][ T8398]  ? bpf_trace_run2+0x2a6/0x590
[  174.087568][ T8398]  ? __mutex_trylock_common+0xea/0x250
[  174.089016][ T8398]  ? __nla_parse+0x40/0x60
[  174.090216][ T8398]  __tipc_nl_bearer_enable+0x32a/0x420
[  174.091808][ T8398]  ? __mutex_lock+0x1a6/0x9c0
[  174.093045][ T8398]  ? __pfx___tipc_nl_bearer_enable+0x10/0x10
[  174.094610][ T8398]  ? __pfx___mutex_lock+0x10/0x10
[  174.095944][ T8398]  ? __nla_parse+0x40/0x60
[  174.096202][ T8392] netlink: 8 bytes leftover after parsing attributes in process `syz.3.839'.
[  174.097116][ T8398]  tipc_nl_bearer_enable+0x21/0x40
[  174.097136][ T8398]  genl_family_rcv_msg_doit+0x202/0x2f0
[  174.097152][ T8398]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  174.103799][ T8398]  ? __radix_tree_lookup+0x21f/0x2c0
[  174.105250][ T8398]  genl_rcv_msg+0x565/0x800
[  174.106497][ T8398]  ? __pfx_genl_rcv_msg+0x10/0x10
[  174.107862][ T8398]  ? __pfx_tipc_nl_bearer_enable+0x10/0x10
[  174.109408][ T8398]  ? __pfx___lock_acquire+0x10/0x10
[  174.110863][ T8398]  netlink_rcv_skb+0x165/0x410
[  174.112146][ T8398]  ? __pfx_genl_rcv_msg+0x10/0x10
[  174.113507][ T8398]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  174.114914][ T8398]  ? down_read+0xc9/0x330
[  174.116178][ T8398]  ? __pfx_down_read+0x10/0x10
[  174.117457][ T8398]  ? netlink_deliver_tap+0x1ae/0xcf0
[  174.118852][ T8398]  genl_rcv+0x28/0x40
[  174.119924][ T8398]  netlink_unicast+0x53c/0x7f0
[  174.121193][ T8398]  ? __pfx_netlink_unicast+0x10/0x10
[  174.122584][ T8398]  ? __phys_addr_symbol+0x30/0x80
[  174.123948][ T8398]  ? __check_object_size+0x488/0x710
[  174.125340][ T8398]  netlink_sendmsg+0x8b8/0xd70
[  174.126601][ T8398]  ? __pfx_netlink_sendmsg+0x10/0x10
[  174.127984][ T8398]  ? lock_acquire+0x2f/0xb0
[  174.129191][ T8398]  ____sys_sendmsg+0x9ae/0xb40
[  174.130459][ T8398]  ? __pfx_____sys_sendmsg+0x10/0x10
[  174.131863][ T8398]  ? get_compat_msghdr+0x11b/0x170
[  174.133220][ T8398]  ? __pfx___lock_acquire+0x10/0x10
[  174.134577][ T8398]  ___sys_sendmsg+0x135/0x1e0
[  174.135837][ T8398]  ? __pfx____sys_sendmsg+0x10/0x10
[  174.137222][ T8398]  ? lock_acquire+0x2f/0xb0
[  174.138431][ T8398]  ? __fget_files+0x40/0x3f0
[  174.139668][ T8398]  ? fdget+0x176/0x210
[  174.140751][ T8398]  __sys_sendmsg+0x117/0x1f0
[  174.141973][ T8398]  ? __pfx___sys_sendmsg+0x10/0x10
[  174.143336][ T8398]  ? __fget_files+0x244/0x3f0
[  174.144586][ T8398]  __do_fast_syscall_32+0x73/0x120
[  174.145934][ T8398]  do_fast_syscall_32+0x32/0x80
[  174.147215][ T8398]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  174.148871][ T8398] RIP: 0023:0xf7f95579
[  174.149947][ T8398] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  174.154928][ T8398] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  174.157105][ T8398] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  174.159157][ T8398] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  174.161194][ T8398] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  174.163263][ T8398] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  174.165331][ T8398] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  174.167392][ T8398]  </TASK>
[  174.168645][    C2] hpet: Lost 5 RTC interrupts
[  174.182087][ T8398] tipc: Disabling bearer <udp:s>
[  174.207350][ T8399] IPVS: using max 35 ests per chain, 84000 per kthread
[  174.795475][ T8381] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  174.972130][ T8415] fuse: Unknown parameter ''
[  175.259701][ T8421] lo speed is unknown, defaulting to 1000
[  175.420389][   T39] audit: type=1326 audit(1727663602.508:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8430 comm="syz.2.850" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf73ce579 code=0x0
[  175.576514][ T8433] ptrace attach of "/syz-executor exec"[5346] was attempted by "/syz-executor exec"[8433]
[  176.317205][ T8439] netlink: 'syz.3.852': attribute type 11 has an invalid length.
[  176.679133][ T8455] FAULT_INJECTION: forcing a failure.
[  176.679133][ T8455] name failslab, interval 1, probability 0, space 0, times 0
[  176.682428][ T8455] CPU: 3 UID: 0 PID: 8455 Comm: syz.3.856 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  176.685107][ T8455] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  176.688001][ T8455] Call Trace:
[  176.688888][ T8455]  <TASK>
[  176.689676][ T8455]  dump_stack_lvl+0x16c/0x1f0
[  176.690925][ T8455]  should_fail_ex+0x497/0x5b0
[  176.692190][ T8455]  ? fs_reclaim_acquire+0xae/0x160
[  176.693561][ T8455]  should_failslab+0xc2/0x120
[  176.694791][ T8455]  __kmalloc_node_noprof+0xd1/0x440
[  176.696129][ T8455]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  176.697531][ T8455]  __kvmalloc_node_noprof+0xad/0x1a0
[  176.698928][ T8455]  check_cfg+0x10a/0x840
[  176.700061][ T8455]  ? check_subprogs+0x57c/0x7d0
[  176.701358][ T8455]  bpf_check+0x73ac/0xc7c0
[  176.702562][ T8455]  ? __pfx_bpf_check+0x10/0x10
[  176.703893][ T8455]  ? find_held_lock+0x2d/0x110
[  176.705167][ T8455]  ? ktime_get_with_offset+0x13a/0x240
[  176.706669][ T8455]  ? trace_lock_acquire+0x14a/0x1d0
[  176.708283][ T8455]  ? ktime_get_with_offset+0x13a/0x240
[  176.709694][ T8455]  ? timekeeping_debug_get_ns+0x3e0/0x5b0
[  176.711173][ T8455]  ? lockdep_hardirqs_on+0x7c/0x110
[  176.712542][ T8455]  ? bpf_obj_name_cpy+0x156/0x1b0
[  176.713855][ T8455]  bpf_prog_load+0xe3f/0x2670
[  176.715088][ T8455]  ? __pfx_bpf_prog_load+0x10/0x10
[  176.716438][ T8455]  ? find_held_lock+0x2d/0x110
[  176.717716][ T8455]  __sys_bpf+0x4c8c/0x5780
[  176.718932][ T8455]  ? ksys_write+0x21e/0x260
[  176.720326][ T8455]  ? __pfx___sys_bpf+0x10/0x10
[  176.721766][ T8455]  ? vfs_write+0x14d/0x1140
[  176.723125][ T8455]  ? __mutex_unlock_slowpath+0x164/0x650
[  176.724571][ T8455]  ? fput+0x30/0x390
[  176.725578][ T8455]  ? ksys_write+0x1ad/0x260
[  176.727043][ T8455]  ? __pfx_ksys_write+0x10/0x10
[  176.728668][ T8455]  __ia32_sys_bpf+0x76/0xe0
[  176.730190][ T8455]  __do_fast_syscall_32+0x73/0x120
[  176.731493][ T8455]  do_fast_syscall_32+0x32/0x80
[  176.732799][ T8455]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  176.734500][ T8455] RIP: 0023:0xf7fb1579
[  176.735591][ T8455] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  176.740622][ T8455] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  176.742861][ T8455] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200054c0
[  176.745286][ T8455] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  176.747656][ T8455] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  176.749712][ T8455] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  176.751813][ T8455] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  176.753883][ T8455]  </TASK>
[  176.927034][ T4804] net_ratelimit: 24 callbacks suppressed
[  176.927051][ T4804] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  177.006733][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  177.006838][ T4804] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  177.046762][   T63] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  177.216773][   T63] usb 8-1: Using ep0 maxpacket: 16
[  177.229769][   T63] usb 8-1: config 0 has an invalid interface number: 8 but max is 0
[  177.232524][   T63] usb 8-1: config 0 has no interface number 0
[  177.234071][   T63] usb 8-1: config 0 interface 8 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  177.238769][   T63] usb 8-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  177.240994][   T63] usb 8-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  177.242981][   T63] usb 8-1: Product: syz
[  177.244027][   T63] usb 8-1: SerialNumber: syz
[  177.250001][   T63] usb 8-1: config 0 descriptor??
[  177.254506][   T63] usbhid 8-1:0.8: couldn't find an input interrupt endpoint
[  177.586813][   T25] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  177.727184][   T25] usb 7-1: device descriptor read/64, error -71
[  177.966829][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  177.976801][   T25] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  178.017788][ T8483] FAULT_INJECTION: forcing a failure.
[  178.017788][ T8483] name failslab, interval 1, probability 0, space 0, times 0
[  178.021371][ T8483] CPU: 2 UID: 0 PID: 8483 Comm: syz.1.866 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  178.024677][ T8483] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.028213][ T8483] Call Trace:
[  178.029361][ T8483]  <TASK>
[  178.030366][ T8483]  dump_stack_lvl+0x16c/0x1f0
[  178.031977][ T8483]  should_fail_ex+0x497/0x5b0
[  178.033452][ T8483]  ? fs_reclaim_acquire+0xae/0x160
[  178.035006][ T8483]  should_failslab+0xc2/0x120
[  178.036707][ T8483]  __kmalloc_noprof+0xcb/0x410
[  178.038015][ T8483]  sk_prot_alloc+0x1a8/0x2a0
[  178.039203][ T8483]  sk_alloc+0x36/0xb90
[  178.040279][ T8483]  bpf_prog_test_run_skb+0x335/0x2140
[  178.041654][ T8483]  ? lock_acquire+0x2f/0xb0
[  178.042839][ T8483]  ? __fget_files+0x40/0x3f0
[  178.044166][ T8483]  ? __fget_files+0x244/0x3f0
[  178.045379][ T8483]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  178.046982][ T8483]  ? fput+0x30/0x390
[  178.047421][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  178.048541][ T8483]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  178.048556][ T8483]  __sys_bpf+0x1921/0x5780
[  178.051451][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  178.052717][ T8483]  ? ksys_write+0x21e/0x260
[  178.052736][ T8483]  ? __pfx___sys_bpf+0x10/0x10
[  178.054504][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  178.056253][ T8483]  ? vfs_write+0x14d/0x1140
[  178.058391][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  178.058640][ T8483]  ? __mutex_unlock_slowpath+0x164/0x650
[  178.061250][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  178.062416][ T8483]  ? fput+0x30/0x390
[  178.064944][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  178.066465][ T8483]  ? ksys_write+0x1ad/0x260
[  178.072772][ T8483]  ? __pfx_ksys_write+0x10/0x10
[  178.074028][ T8483]  __ia32_sys_bpf+0x76/0xe0
[  178.075209][ T8483]  __do_fast_syscall_32+0x73/0x120
[  178.076546][ T8483]  do_fast_syscall_32+0x32/0x80
[  178.077816][ T8483]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  178.079469][ T8483] RIP: 0023:0xf7f95579
[  178.080552][ T8483] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  178.085470][ T8483] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  178.087625][ T8483] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000540
[  178.089615][ T8483] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  178.091645][ T8483] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  178.093654][ T8483] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  178.095937][ T8483] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  178.097948][ T8483]  </TASK>
[  178.099192][    C2] hpet: Lost 4 RTC interrupts
[  178.126457][ T8485] netlink: 8 bytes leftover after parsing attributes in process `syz.1.867'.
[  178.132383][ T8485] netlink: 4 bytes leftover after parsing attributes in process `syz.1.867'.
[  178.156804][   T25] usb 7-1: device descriptor read/64, error -71
[  178.276987][   T25] usb usb7-port1: attempt power cycle
[  178.351417][ T8487] netlink: 4 bytes leftover after parsing attributes in process `syz.1.868'.
[  178.617066][   T25] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  178.637435][   T25] usb 7-1: device descriptor read/8, error -71
[  178.685812][ T8496] binder: 8495:8496 ioctl 400c620e 20000140 returned -22
[  178.689763][ T8496] netlink: 'syz.0.871': attribute type 6 has an invalid length.
[  178.691864][ T8496] netlink: 'syz.0.871': attribute type 8 has an invalid length.
[  178.842914][ T8499] lo speed is unknown, defaulting to 1000
[  178.876822][   T25] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  178.897808][   T25] usb 7-1: device descriptor read/8, error -71
[  179.007113][   T25] usb usb7-port1: unable to enumerate USB device
[  179.606432][ T8505] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  179.822573][ T5407] usb 8-1: USB disconnect, device number 11
[  180.147493][ T8517] 9pnet_fd: Insufficient options for proto=fd
[  180.558138][ T8520] netlink: 4 bytes leftover after parsing attributes in process `syz.2.877'.
[  180.641666][ T8523] netlink: 8 bytes leftover after parsing attributes in process `syz.2.878'.
[  180.793409][ T8532] netlink: 16 bytes leftover after parsing attributes in process `syz.2.879'.
[  180.871078][   T56] kernel write not supported for file /radio3 (pid: 56 comm: kworker/1:1)
[  180.900274][ T8543] ufs: You didn't specify the type of your ufs filesystem
[  180.900274][ T8543] 
[  180.900274][ T8543] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  180.900274][ T8543] 
[  180.900274][ T8543] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  180.911185][ T8543] ufs: ufstype=old is supported read-only
[  180.913206][ T8543] ufs: ufs_fill_super(): bad magic number
[  180.964653][ T8505] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  181.052504][ T8549] binder: 8548:8549 ioctl 400c620e 20000140 returned -22
[  181.054930][ T8549] netlink: 'syz.1.885': attribute type 6 has an invalid length.
[  181.057051][ T8549] netlink: 'syz.1.885': attribute type 8 has an invalid length.
[  181.112952][ T8554] netlink: 8 bytes leftover after parsing attributes in process `syz.1.887'.
[  181.224942][ T8567] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  181.228884][ T8567] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.892'.
[  181.260492][ T8569] FAULT_INJECTION: forcing a failure.
[  181.260492][ T8569] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  181.263956][ T8569] CPU: 0 UID: 0 PID: 8569 Comm: syz.1.893 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  181.266528][ T8569] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  181.269120][ T8569] Call Trace:
[  181.270025][ T8569]  <TASK>
[  181.270783][ T8569]  dump_stack_lvl+0x16c/0x1f0
[  181.271995][ T8569]  should_fail_ex+0x497/0x5b0
[  181.273178][ T8569]  _copy_to_user+0x30/0xc0
[  181.274339][ T8569]  simple_read_from_buffer+0xd0/0x160
[  181.275693][ T8569]  proc_fail_nth_read+0x198/0x270
[  181.276968][ T8569]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  181.278374][ T8569]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  181.279758][ T8569]  vfs_read+0x1ce/0xbd0
[  181.280834][ T8569]  ? __fget_files+0x23a/0x3f0
[  181.282079][ T8569]  ? fdget_pos+0x24c/0x360
[  181.283211][ T8569]  ? __pfx_lock_release+0x10/0x10
[  181.284512][ T8569]  ? trace_lock_acquire+0x14a/0x1d0
[  181.285928][ T8569]  ? __pfx_vfs_read+0x10/0x10
[  181.287146][ T8569]  ? __pfx___mutex_lock+0x10/0x10
[  181.288574][ T8569]  ? __fget_files+0x244/0x3f0
[  181.289791][ T8569]  ksys_read+0x12f/0x260
[  181.290890][ T8569]  ? __pfx_ksys_read+0x10/0x10
[  181.292135][ T8569]  __do_fast_syscall_32+0x73/0x120
[  181.293447][ T8569]  do_fast_syscall_32+0x32/0x80
[  181.294717][ T8569]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  181.296325][ T8569] RIP: 0023:0xf7f95579
[  181.297493][ T8569] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  181.302351][ T8569] RSP: 002b:00000000f57165a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  181.304498][ T8569] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5716620
[  181.306499][ T8569] RDX: 000000000000000f RSI: 00000000f741bff4 RDI: 0000000000000000
[  181.308553][ T8569] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  181.310551][ T8569] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  181.312617][ T8569] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  181.314640][ T8569]  </TASK>
[  181.315537][    C0] vkms_vblank_simulate: vblank timer overrun
[  181.436781][   T56] usb 8-1: new full-speed USB device number 12 using dummy_hcd
[  181.557808][ T8577] netlink: 8 bytes leftover after parsing attributes in process `syz.2.896'.
[  181.607992][   T56] usb 8-1: config 0 has no interfaces?
[  181.609679][   T56] usb 8-1: New USB device found, idVendor=1668, idProduct=0323, bcdDevice=5f.ca
[  181.612072][   T56] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.615930][   T56] usb 8-1: config 0 descriptor??
[  181.673034][ T8574] netlink: 28 bytes leftover after parsing attributes in process `syz.1.894'.
[  181.675591][ T8574] netlink: 28 bytes leftover after parsing attributes in process `syz.1.894'.
[  181.690673][ T8583] netlink: 28 bytes leftover after parsing attributes in process `syz.0.895'.
[  181.693022][ T8583] netlink: 28 bytes leftover after parsing attributes in process `syz.0.895'.
[  181.858274][   T56] usb 8-1: USB disconnect, device number 12
[  182.047797][   T57] net_ratelimit: 382 callbacks suppressed
[  182.047813][   T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  182.127292][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  182.149050][ T8588] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  182.153772][ T8588] batadv_slave_0: entered promiscuous mode
[  182.212079][ T5407] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  182.217752][ T1997] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  182.297177][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  182.299311][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  182.301445][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  182.346768][ T1997] tipc: Node number set to 2886997162
[  182.376778][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  182.379112][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  182.466760][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  183.993279][ T8611] lo speed is unknown, defaulting to 1000
[  184.232408][ T8615] netlink: 'syz.3.908': attribute type 4 has an invalid length.
[  184.696776][ T1997] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  184.858469][ T1997] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  184.860847][ T1997] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  184.863533][ T1997] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  184.865784][ T1997] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  184.869072][ T1997] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  184.873774][ T1997] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  184.876170][ T1997] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  184.883637][ T1997] usb 7-1: Product: syz
[  184.884844][ T1997] usb 7-1: Manufacturer: syz
[  184.897521][ T1997] cdc_wdm 7-1:1.0: skipping garbage
[  184.898998][ T1997] cdc_wdm 7-1:1.0: skipping garbage
[  184.906911][ T1997] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  184.909946][ T1997] cdc_wdm 7-1:1.0: Unknown control protocol
[  184.995271][ T8637] netlink: 'syz.3.915': attribute type 1 has an invalid length.
[  185.069954][ T8639] netlink: 'syz.3.916': attribute type 20 has an invalid length.
[  185.100872][ T1997] usb 7-1: USB disconnect, device number 17
[  185.152267][ T8645] input: syz0 as /devices/virtual/input/input21
[  185.567607][ T4804] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  185.743278][ T4804] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  185.745614][ T4804] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  185.748454][ T4804] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  185.754740][ T4804] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  185.759165][ T4804] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  185.763725][ T4804] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  185.766143][ T4804] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  185.769105][ T4804] usb 7-1: Product: syz
[  185.770796][ T4804] usb 7-1: Manufacturer: syz
[  185.784977][ T4804] cdc_wdm 7-1:1.0: skipping garbage
[  185.787813][ T4804] cdc_wdm 7-1:1.0: skipping garbage
[  185.792323][ T4804] cdc_wdm 7-1:1.0: cdc-wdm0: USB WDM device
[  185.793899][ T4804] cdc_wdm 7-1:1.0: Unknown control protocol
[  185.984043][ T8653] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  185.987952][ T8653] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  186.000540][ T1997] usb 7-1: USB disconnect, device number 18
[  186.006777][   T25] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  186.050434][ T8659] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  186.054807][ T8659] batadv_slave_0: entered promiscuous mode
[  186.152083][ T8668] input input22: cannot allocate more than FF_MAX_EFFECTS effects
[  186.158750][ T8668] random: crng reseeded on system resumption
[  186.163356][ T8668] input input23: cannot allocate more than FF_MAX_EFFECTS effects
[  186.166339][ T8670] dummy0: entered promiscuous mode
[  186.168110][ T8670] macsec1: entered promiscuous mode
[  186.169582][ T8670] macsec1: entered allmulticast mode
[  186.171028][ T8670] dummy0: entered allmulticast mode
[  186.173679][ T8670] dummy0: left allmulticast mode
[  186.175072][ T8670] dummy0: left promiscuous mode
[  186.177101][   T25] usb 6-1: Using ep0 maxpacket: 16
[  186.179561][   T25] usb 6-1: config 0 has an invalid interface number: 8 but max is 0
[  186.186729][   T25] usb 6-1: config 0 has no interface number 0
[  186.188730][   T25] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  186.191508][   T25] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  186.195113][   T25] usb 6-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  186.197647][   T25] usb 6-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  186.199750][   T25] usb 6-1: Product: syz
[  186.200845][   T25] usb 6-1: SerialNumber: syz
[  186.203556][   T25] usb 6-1: config 0 descriptor??
[  186.206296][   T25] cm109 6-1:0.8: invalid payload size 0, expected 4
[  186.208871][   T25] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.8/input/input24
[  186.354306][ T8682] __nla_validate_parse: 7 callbacks suppressed
[  186.354315][ T8682] netlink: 4 bytes leftover after parsing attributes in process `syz.2.929'.
[  186.409414][    C2] cm109 6-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  186.456379][ T8690] FAULT_INJECTION: forcing a failure.
[  186.456379][ T8690] name failslab, interval 1, probability 0, space 0, times 0
[  186.459938][ T8690] CPU: 3 UID: 0 PID: 8690 Comm: syz.3.933 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  186.462618][ T8690] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  186.465440][ T8690] Call Trace:
[  186.466325][ T8690]  <TASK>
[  186.467110][ T8690]  dump_stack_lvl+0x16c/0x1f0
[  186.468368][ T8690]  should_fail_ex+0x497/0x5b0
[  186.469692][ T8690]  should_failslab+0xc2/0x120
[  186.470937][ T8690]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  186.472366][ T8690]  ? skb_clone+0x190/0x3f0
[  186.473551][ T8690]  skb_clone+0x190/0x3f0
[  186.474677][ T8690]  netlink_deliver_tap+0xb26/0xcf0
[  186.476034][ T8690]  netlink_unicast+0x5e1/0x7f0
[  186.477306][ T8690]  ? __pfx_netlink_unicast+0x10/0x10
[  186.478695][ T8690]  ? __phys_addr_symbol+0x30/0x80
[  186.480066][ T8690]  ? __check_object_size+0x488/0x710
[  186.481458][ T8690]  netlink_sendmsg+0x8b8/0xd70
[  186.482726][ T8690]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.484160][ T8690]  ? lock_acquire+0x2f/0xb0
[  186.485385][ T8690]  ____sys_sendmsg+0x9ae/0xb40
[  186.486653][ T8690]  ? __pfx_____sys_sendmsg+0x10/0x10
[  186.488048][ T8690]  ? get_compat_msghdr+0x11b/0x170
[  186.489409][ T8690]  ? __pfx___lock_acquire+0x10/0x10
[  186.490778][ T8690]  ___sys_sendmsg+0x135/0x1e0
[  186.492031][ T8690]  ? __pfx____sys_sendmsg+0x10/0x10
[  186.493406][ T8690]  ? lock_acquire+0x2f/0xb0
[  186.494607][ T8690]  ? __fget_files+0x40/0x3f0
[  186.495835][ T8690]  ? fdget+0x176/0x210
[  186.496923][ T8690]  __sys_sendmsg+0x117/0x1f0
[  186.498145][ T8690]  ? __pfx___sys_sendmsg+0x10/0x10
[  186.499535][ T8690]  ? __fget_files+0x244/0x3f0
[  186.500838][ T8690]  __do_fast_syscall_32+0x73/0x120
[  186.502186][ T8690]  do_fast_syscall_32+0x32/0x80
[  186.503483][ T8690]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  186.505131][ T8690] RIP: 0023:0xf7fb1579
[  186.506208][ T8690] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  186.511184][ T8690] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  186.513344][ T8690] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[  186.515426][ T8690] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  186.517484][ T8690] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  186.519650][ T8690] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  186.522468][ T8690] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  186.524839][ T8690]  </TASK>
[  186.554370][ T8692] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  186.626913][    C3] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[  186.627226][   T25] usb 6-1: USB disconnect, device number 15
[  186.629243][    C3] cm109 6-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  186.636337][   T25] cm109 6-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  187.007049][   T57] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  187.166872][   T57] usb 8-1: Using ep0 maxpacket: 16
[  187.169669][   T57] usb 8-1: config 0 has an invalid interface number: 8 but max is 0
[  187.173201][   T57] usb 8-1: config 0 has no interface number 0
[  187.175433][   T57] usb 8-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  187.179502][   T57] usb 8-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  187.184101][   T57] usb 8-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  187.186442][   T57] usb 8-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  187.190006][   T57] usb 8-1: Product: syz
[  187.191538][   T57] usb 8-1: SerialNumber: syz
[  187.194800][   T57] usb 8-1: config 0 descriptor??
[  187.203451][   T57] cm109 8-1:0.8: invalid payload size 0, expected 4
[  187.205802][   T57] input: CM109 USB driver as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.8/input/input25
[  187.326961][    C2] net_ratelimit: 48 callbacks suppressed
[  187.326973][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  187.331920][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  187.373154][ T8725] netlink: 28 bytes leftover after parsing attributes in process `syz.2.946'.
[  187.376208][ T8725] netlink: 28 bytes leftover after parsing attributes in process `syz.2.946'.
[  187.415435][    C2] cm109 8-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[  187.450642][ T8720] netlink: 28 bytes leftover after parsing attributes in process `syz.0.944'.
[  187.453377][ T8720] netlink: 28 bytes leftover after parsing attributes in process `syz.0.944'.
[  187.484356][ T8727] rtc_cmos 00:05: Alarms can be up to one day in the future
[  187.496776][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  187.617265][ T8738] warn_alloc: 1 callbacks suppressed
[  187.617276][ T8738] syz.0.950: vmalloc error: size 16384, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  187.623857][ T8738] CPU: 0 UID: 0 PID: 8738 Comm: syz.0.950 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  187.623885][ T8738] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  187.623891][ T8738] Call Trace:
[  187.623896][ T8738]  <TASK>
[  187.623900][ T8738]  dump_stack_lvl+0x16c/0x1f0
[  187.623920][ T8738]  warn_alloc+0x24d/0x3a0
[  187.623936][ T8738]  ? __pfx_warn_alloc+0x10/0x10
[  187.623949][ T8738]  ? policy_nodemask+0xea/0x4e0
[  187.623965][ T8738]  ? alloc_pages_mpol_noprof+0x315/0x610
[  187.623982][ T8738]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  187.623999][ T8738]  ? __pfx___might_resched+0x10/0x10
[  187.624012][ T8738]  __vmalloc_node_range_noprof+0x1326/0x15a0
[  187.624030][ T8738]  ? hashlimit_mt_check_common+0x8b0/0x1450
[  187.624045][ T8738]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  187.624058][ T8738]  ? __pfx_lock_release+0x10/0x10
[  187.624072][ T8738]  ? trace_lock_acquire+0x14a/0x1d0
[  187.624086][ T8738]  ? hashlimit_mt_check_common+0x8b0/0x1450
[  187.624097][ T8738]  vmalloc_noprof+0x6b/0x90
[  187.624110][ T8738]  ? hashlimit_mt_check_common+0x8b0/0x1450
[  187.624120][ T8738]  hashlimit_mt_check_common+0x8b0/0x1450
[  187.624134][ T8738]  hashlimit_mt_check_v1+0x2fe/0x370
[  187.624145][ T8738]  ? __pfx_hashlimit_mt_check_v1+0x10/0x10
[  187.624155][ T8738]  ? rcu_is_watching+0x12/0xc0
[  187.624170][ T8738]  ? __pfx_hashlimit_mt_check_v1+0x10/0x10
[  187.624181][ T8738]  xt_check_match+0x284/0xa50
[  187.624192][ T8738]  ? __pfx_xt_check_match+0x10/0x10
[  187.624202][ T8738]  ? rcu_is_watching+0x12/0xc0
[  187.624218][ T8738]  ? pcpu_alloc_noprof+0x1f5/0x16c0
[  187.624233][ T8738]  ? xt_find_match.part.0+0x1b6/0x250
[  187.628687][   T57] usb 8-1: USB disconnect, device number 13
[  187.629817][ T8738]  find_check_entry.constprop.0+0x325/0x9c0
[  187.629840][ T8738]  ? __pfx_find_check_entry.constprop.0+0x10/0x10
[  187.667475][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  187.668048][ T8738]  ? kfree+0x14f/0x4b0
[  187.674520][ T8738]  ? kvfree+0x47/0x50
[  187.675584][ T8738]  translate_table+0xc88/0x1730
[  187.676882][ T8738]  ? __pfx_translate_table+0x10/0x10
[  187.678288][ T8738]  translate_compat_table+0x13d9/0x18c0
[  187.679759][ T8738]  ? __pfx_translate_compat_table+0x10/0x10
[  187.681316][ T8738]  ? __might_fault+0x13b/0x190
[  187.682580][ T8738]  ? __pfx_lock_release+0x10/0x10
[  187.683950][ T8738]  compat_do_replace+0x35d/0x500
[  187.685257][ T8738]  ? __pfx_compat_do_replace+0x10/0x10
[  187.686754][ T8738]  ? aa_get_newest_label+0x376/0x680
[  187.688148][ T8738]  ? __pfx_aa_get_newest_label+0x10/0x10
[  187.689616][ T8738]  ? bpf_lsm_capable+0x9/0x10
[  187.690856][ T8738]  ? security_capable+0x7e/0x260
[  187.692175][ T8738]  do_ipt_set_ctl+0x686/0xc10
[  187.693424][ T8738]  ? trace_contention_end+0xea/0x140
[  187.694819][ T8738]  ? __mutex_lock+0x1a6/0x9c0
[  187.696078][ T8738]  ? __pfx_do_ipt_set_ctl+0x10/0x10
[  187.697452][ T8738]  ? __pfx___mutex_lock+0x10/0x10
[  187.698781][ T8738]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  187.700374][ T8738]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  187.701793][ T8738]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  187.703421][ T8738]  nf_setsockopt+0x8a/0xf0
[  187.704647][ T8738]  ip_setsockopt+0xcb/0xf0
[  187.705825][ T8738]  udp_setsockopt+0x7d/0xd0
[  187.707028][ T8738]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  187.708595][ T8738]  do_sock_setsockopt+0x222/0x480
[  187.709917][ T8738]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  187.711394][ T8738]  ? fdget+0x176/0x210
[  187.712471][ T8738]  __sys_setsockopt+0x1a4/0x270
[  187.713890][ T8738]  ? __pfx___sys_setsockopt+0x10/0x10
[  187.715313][ T8738]  ? fput+0x30/0x390
[  187.716360][ T8738]  ? ksys_write+0x1ad/0x260
[  187.717560][ T8738]  ? __pfx_ksys_write+0x10/0x10
[  187.718886][ T8738]  __ia32_sys_setsockopt+0xbc/0x160
[  187.720275][ T8738]  ? lockdep_hardirqs_on+0x7c/0x110
[  187.721647][ T8738]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  187.723396][ T8738]  __do_fast_syscall_32+0x73/0x120
[  187.724779][ T8738]  do_fast_syscall_32+0x32/0x80
[  187.726060][ T8738]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  187.727721][ T8738] RIP: 0023:0xf73ee579
[  187.728794][ T8738] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  187.733824][ T8738] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  187.736016][ T8738] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  187.738075][ T8738] RDX: 0000000000000040 RSI: 0000000020000000 RDI: 0000000000000578
[  187.740147][ T8738] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  187.742280][ T8738] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  187.744300][ T8738] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  187.746351][ T8738]  </TASK>
[  187.747286][    C0] vkms_vblank_simulate: vblank timer overrun
[  187.750336][ T4804] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  187.750663][ T8738] Mem-Info:
[  187.753330][ T8738] active_anon:4852 inactive_anon:329 isolated_anon:0
[  187.753330][ T8738]  active_file:8156 inactive_file:32895 isolated_file:0
[  187.753330][ T8738]  unevictable:882 dirty:458 writeback:0
[  187.753330][ T8738]  slab_reclaimable:5118 slab_unreclaimable:59671
[  187.753330][ T8738]  mapped:21078 shmem:906 pagetables:736
[  187.753330][ T8738]  sec_pagetables:317 bounce:0
[  187.753330][ T8738]  kernel_misc_reclaimable:0
[  187.753330][ T8738]  free:73708 free_pcp:1092 free_cma:0
[  187.753342][   T57] cm109 8-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  187.753356][ T8738] Node 0 active_anon:0kB inactive_anon:572kB active_file:24kB inactive_file:0kB unevictable:1992kB isolated(anon):0kB isolated(file):0kB mapped:5800kB dirty:12kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9804kB pagetables:1196kB sec_pagetables:1208kB all_unreclaimable? no
[  187.774587][ T8738] Node 1 active_anon:19484kB inactive_anon:744kB active_file:32600kB inactive_file:131592kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:78512kB dirty:1820kB writeback:0kB shmem:2088kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2096kB pagetables:1748kB sec_pagetables:60kB all_unreclaimable? no
[  187.783211][ T8738] Node 0 DMA free:948kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:32kB writepending:0kB present:15992kB managed:15360kB mlocked:32kB bounce:0kB free_pcp:144kB local_pcp:4kB free_cma:0kB
[  187.792473][ T8738] lowmem_reserve[]: 0 273 0 0 0
[  187.793811][ T8738] Node 0 DMA32 free:22928kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:268kB inactive_anon:296kB active_file:24kB inactive_file:0kB unevictable:1960kB writepending:12kB present:1032196kB managed:306284kB mlocked:424kB bounce:0kB free_pcp:840kB local_pcp:88kB free_cma:0kB
[  187.803968][ T8740] netlink: 12 bytes leftover after parsing attributes in process `syz.1.951'.
[  187.806853][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  187.807551][ T8738] lowmem_reserve[]: 0 0 0 0 0
[  187.809686][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  187.813036][ T8738] Node 1 DMA32 free:271780kB boost:14336kB min:61480kB low:73264kB high:85048kB reserved_highatomic:0KB active_anon:19484kB inactive_anon:744kB active_file:32600kB inactive_file:131592kB unevictable:1536kB writepending:1820kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:3248kB local_pcp:1020kB free_cma:0kB
[  187.821019][ T8738] lowmem_reserve[]: 0 0 0 0 0
[  187.822355][ T8738] Node 0 DMA: 20*4kB (UE) 3*8kB (E) 5*16kB (UE) 24*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 952kB
[  187.832473][ T8738] Node 0 DMA32: 283*4kB (UEH) 93*8kB (UEH) 21*16kB (UMEH) 79*32kB (UMEH) 55*64kB (UMEH) 38*128kB (UME) 16*256kB (UM) 8*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 21316kB
[  187.837018][ T8738] Node 1 DMA32: 482*4kB (UME) 394*8kB (UME) 526*16kB (UME) 346*32kB (UME) 394*64kB (UM) 220*128kB (UME) 135*256kB (UME) 93*512kB (UME) 63*1024kB (UM) 19*2048kB (UM) 2*4096kB (U) = 271736kB
[  187.841965][ T8738] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  187.844664][ T8738] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  187.847202][ T8738] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  187.849711][ T8738] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  187.852163][ T8738] 43055 total pagecache pages
[  187.853469][ T8738] 984 pages in swap cache
[  187.854652][ T8738] Free swap  = 109456kB
[  187.855811][ T8738] Total swap = 124996kB
[  187.857472][ T8738] 524155 pages RAM
[  187.858602][ T8738] 0 pages HighMem/MovableOnly
[  187.859907][ T8738] 206681 pages reserved
[  187.861067][ T8738] 0 pages cma reserved
[  187.984498][  T830] rtc_cmos 00:05: Alarms can be up to one day in the future
[  187.987194][  T830] rtc_cmos 00:05: Alarms can be up to one day in the future
[  187.989414][  T830] rtc_cmos 00:05: Alarms can be up to one day in the future
[  187.991593][  T830] rtc_cmos 00:05: Alarms can be up to one day in the future
[  187.993287][  T830] rtc rtc0: __rtc_set_alarm: err=-22
[  188.015546][ T8743] Process accounting resumed
[  188.526748][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  188.766804][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  188.769082][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  189.497940][ T8776] lo speed is unknown, defaulting to 1000
[  190.063308][   T11] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.194044][   T11] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.237664][ T5353] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  190.244726][ T5353] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  190.267041][ T5353] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  190.287032][ T5353] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  190.288176][   T11] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.302536][ T5353] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  190.304774][ T5353] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  190.361806][   T11] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.417664][ T8800] FAULT_INJECTION: forcing a failure.
[  190.417664][ T8800] name failslab, interval 1, probability 0, space 0, times 0
[  190.420957][ T8800] CPU: 3 UID: 0 PID: 8800 Comm: syz.1.971 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  190.423645][ T8800] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  190.426456][ T8800] Call Trace:
[  190.427349][ T8800]  <TASK>
[  190.428129][ T8800]  dump_stack_lvl+0x16c/0x1f0
[  190.429385][ T8800]  should_fail_ex+0x497/0x5b0
[  190.430631][ T8800]  should_failslab+0xc2/0x120
[  190.431880][ T8800]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  190.433356][ T8800]  ? skb_clone+0x190/0x3f0
[  190.434649][ T8800]  skb_clone+0x190/0x3f0
[  190.435820][ T8800]  bpf_clone_redirect+0xb2/0x3d0
[  190.437125][ T8800]  bpf_prog_bebbfe2050753572+0x5f/0x64
[  190.438559][ T8800]  ? find_held_lock+0x2d/0x110
[  190.439835][ T8800]  ? ktime_get+0xd9/0x1a0
[  190.440978][ T8800]  ? __pfx_lock_release+0x10/0x10
[  190.442306][ T8800]  ? trace_lock_acquire+0x14a/0x1d0
[  190.443688][ T8800]  ? ktime_get+0xd9/0x1a0
[  190.444824][ T8800]  ? timekeeping_debug_get_ns+0x3e0/0x5b0
[  190.446307][ T8800]  ? lockdep_hardirqs_on+0x7c/0x110
[  190.446789][ T8791] lo speed is unknown, defaulting to 1000
[  190.447812][ T8800]  ? read_tsc+0x9/0x20
[  190.447831][ T8800]  ? timekeeping_debug_get_ns+0x334/0x5b0
[  190.447845][ T8800]  ? bpf_test_run+0x3a4/0xa90
[  190.453170][ T8800]  ? __pfx___cant_migrate+0x10/0x10
[  190.454540][ T8800]  ? bpf_test_timer_continue+0x150/0x3d0
[  190.456019][ T8800]  bpf_test_run+0x49d/0xa90
[  190.457231][ T8800]  ? __pfx_bpf_test_run+0x10/0x10
[  190.458564][ T8800]  ? krealloc_noprof+0xff/0x130
[  190.459859][ T8800]  bpf_prog_test_run_skb+0xb8b/0x2140
[  190.461273][ T8800]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  190.462805][ T8800]  ? fput+0x30/0x390
[  190.463847][ T8800]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  190.465382][ T8800]  __sys_bpf+0x1921/0x5780
[  190.466564][ T8800]  ? ksys_write+0x21e/0x260
[  190.467799][ T8800]  ? __pfx___sys_bpf+0x10/0x10
[  190.469067][ T8800]  ? vfs_write+0x14d/0x1140
[  190.470269][ T8800]  ? __mutex_unlock_slowpath+0x164/0x650
[  190.471763][ T8800]  ? fput+0x30/0x390
[  190.472807][ T8800]  ? ksys_write+0x1ad/0x260
[  190.474003][ T8800]  ? __pfx_ksys_write+0x10/0x10
[  190.475305][ T8800]  __ia32_sys_bpf+0x76/0xe0
[  190.476511][ T8800]  __do_fast_syscall_32+0x73/0x120
[  190.477865][ T8800]  do_fast_syscall_32+0x32/0x80
[  190.479155][ T8800]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  190.480829][ T8800] RIP: 0023:0xf7f95579
[  190.481910][ T8800] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  190.486937][ T8800] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  190.489115][ T8800] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000080
[  190.491185][ T8800] RDX: 000000000000002c RSI: 0000000000000000 RDI: 0000000000000000
[  190.493256][ T8800] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  190.495320][ T8800] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  190.497384][ T8800] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  190.499585][ T8800]  </TASK>
[  190.523166][   T11] bridge_slave_1: left allmulticast mode
[  190.524690][   T11] bridge_slave_1: left promiscuous mode
[  190.526233][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.558727][   T11] bridge_slave_0: left allmulticast mode
[  190.560256][   T11] bridge_slave_0: left promiscuous mode
[  190.561819][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.769082][ T8821] CIFS: VFS: Malformed UNC in devname
[  191.032892][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  191.037203][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  191.040857][   T11] bond0 (unregistering): Released all slaves
[  191.071397][ T8813] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.083665][ T8832] netlink: 8 bytes leftover after parsing attributes in process `syz.3.978'.
[  191.088938][ T8832] vlan2: entered allmulticast mode
[  191.090315][ T8832] mac80211_hwsim hwsim13 wlan1: entered allmulticast mode
[  191.092814][ T8835] FAULT_INJECTION: forcing a failure.
[  191.092814][ T8835] name failslab, interval 1, probability 0, space 0, times 0
[  191.097106][ T8835] CPU: 0 UID: 0 PID: 8835 Comm: syz.1.979 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  191.099788][ T8835] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  191.102589][ T8835] Call Trace:
[  191.103492][ T8835]  <TASK>
[  191.104279][ T8835]  dump_stack_lvl+0x16c/0x1f0
[  191.105528][ T8835]  should_fail_ex+0x497/0x5b0
[  191.106778][ T8835]  ? fs_reclaim_acquire+0xae/0x160
[  191.108148][ T8835]  should_failslab+0xc2/0x120
[  191.109396][ T8835]  __kmalloc_cache_noprof+0x6b/0x310
[  191.110785][ T8835]  ? garp_init_applicant+0xbb/0x500
[  191.112140][ T8835]  ? kasan_save_track+0x14/0x30
[  191.113402][ T8835]  garp_init_applicant+0xbb/0x500
[  191.114732][ T8835]  register_vlan_dev+0x197/0x940
[  191.116050][ T8835]  ? vlan_changelink+0x2c3/0x5e0
[  191.117369][ T8835]  vlan_newlink+0x40e/0x6a0
[  191.118580][ T8835]  ? __pfx_vlan_newlink+0x10/0x10
[  191.119920][ T8835]  __rtnl_newlink+0x119c/0x1920
[  191.121225][ T8835]  ? __pfx___rtnl_newlink+0x10/0x10
[  191.122619][ T8835]  rtnl_newlink+0x67/0xa0
[  191.123784][ T8835]  ? __pfx_rtnl_newlink+0x10/0x10
[  191.125110][ T8835]  rtnetlink_rcv_msg+0x3c7/0xea0
[  191.126424][ T8835]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  191.127863][ T8835]  ? __pfx___lock_acquire+0x10/0x10
[  191.129238][ T8835]  netlink_rcv_skb+0x165/0x410
[  191.130486][ T8835]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  191.131922][ T8835]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  191.133304][ T8835]  ? netlink_deliver_tap+0x1ae/0xcf0
[  191.134695][ T8835]  netlink_unicast+0x53c/0x7f0
[  191.135973][ T8835]  ? __pfx_netlink_unicast+0x10/0x10
[  191.137357][ T8835]  ? __phys_addr_symbol+0x30/0x80
[  191.138682][ T8835]  ? __check_object_size+0x488/0x710
[  191.140087][ T8835]  netlink_sendmsg+0x8b8/0xd70
[  191.141352][ T8835]  ? __pfx_netlink_sendmsg+0x10/0x10
[  191.142737][ T8835]  ? lock_acquire+0x2f/0xb0
[  191.143958][ T8835]  ____sys_sendmsg+0x9ae/0xb40
[  191.145219][ T8835]  ? __pfx_____sys_sendmsg+0x10/0x10
[  191.146604][ T8835]  ? get_compat_msghdr+0x11b/0x170
[  191.147953][ T8835]  ? __pfx___lock_acquire+0x10/0x10
[  191.149321][ T8835]  ___sys_sendmsg+0x135/0x1e0
[  191.150563][ T8835]  ? __pfx____sys_sendmsg+0x10/0x10
[  191.151937][ T8835]  ? lock_acquire+0x2f/0xb0
[  191.153136][ T8835]  ? __fget_files+0x40/0x3f0
[  191.154366][ T8835]  ? fdget+0x176/0x210
[  191.155451][ T8835]  __sys_sendmsg+0x117/0x1f0
[  191.156671][ T8835]  ? __pfx___sys_sendmsg+0x10/0x10
[  191.158018][ T8835]  ? __fget_files+0x244/0x3f0
[  191.159280][ T8835]  __do_fast_syscall_32+0x73/0x120
[  191.160626][ T8835]  do_fast_syscall_32+0x32/0x80
[  191.161911][ T8835]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  191.163582][ T8835] RIP: 0023:0xf7f95579
[  191.164656][ T8835] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  191.169652][ T8835] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  191.171821][ T8835] RAX: ffffffffffffffda RBX: 0000000000000012 RCX: 00000000200002c0
[  191.173880][ T8835] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  191.175942][ T8835] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  191.178000][ T8835] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  191.180066][ T8835] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  191.182135][ T8835]  </TASK>
[  191.183022][    C0] vkms_vblank_simulate: vblank timer overrun
[  191.200458][ T8791] chnl_net:caif_netlink_parms(): no params data found
[  191.208842][   T11] tipc: Disabling bearer <udp:s>
[  191.212216][   T11] tipc: Left network mode
[  191.240772][   T11] IPVS: stopping backup sync thread 6738 ...
[  191.309829][ T8813] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.371592][ T8848] netlink: 28 bytes leftover after parsing attributes in process `syz.3.980'.
[  191.376922][ T8848] netlink: 28 bytes leftover after parsing attributes in process `syz.3.980'.
[  191.394225][ T8791] bridge0: port 1(bridge_slave_0) entered blocking state
[  191.396827][ T8791] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.398865][ T8791] bridge_slave_0: entered allmulticast mode
[  191.401716][ T8791] bridge_slave_0: entered promiscuous mode
[  191.406137][ T8791] bridge0: port 2(bridge_slave_1) entered blocking state
[  191.412066][ T8791] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.414107][ T8791] bridge_slave_1: entered allmulticast mode
[  191.417660][ T8791] bridge_slave_1: entered promiscuous mode
[  191.442919][ T8813] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.488792][ T8791] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  191.492357][ T8791] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  191.562266][ T8813] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.574519][ T8791] team0: Port device team_slave_0 added
[  191.589993][ T8791] team0: Port device team_slave_1 added
[  191.636992][ T8791] batman_adv: batadv0: Adding interface: batadv_slave_0
[  191.640030][ T8791] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  191.646575][ T8791] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  191.689006][ T8791] batman_adv: batadv0: Adding interface: batadv_slave_1
[  191.690869][ T8791] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  191.698719][ T8791] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  191.725146][ T8813] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  191.748769][ T8813] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  191.756425][ T8791] hsr_slave_0: entered promiscuous mode
[  191.759993][ T8791] hsr_slave_1: entered promiscuous mode
[  191.762825][ T8791] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  191.765078][ T8791] Cannot create hsr debugfs directory
[  191.770325][ T8813] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  191.774742][ T8813] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  191.793889][ T8814] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.903680][ T8814] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.925873][   T11] hsr_slave_0: left promiscuous mode
[  191.927990][   T11] hsr_slave_1: left promiscuous mode
[  191.929893][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  191.932187][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.935456][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  191.939359][   T11] batman_adv: batadv0: Removing interface: ipvlan1
[  191.964590][   T11] veth1_macvtap: left promiscuous mode
[  191.966014][   T11] veth0_macvtap: left promiscuous mode
[  191.976961][   T11] veth1_vlan: left promiscuous mode
[  191.980446][   T11] veth0_vlan: left promiscuous mode
[  192.378297][ T5353] Bluetooth: hci0: command tx timeout
[  192.619777][    T9] net_ratelimit: 30 callbacks suppressed
[  192.619789][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  192.686812][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  193.006880][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  193.009273][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  193.018573][ T4804] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  193.250807][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  193.256952][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  193.452847][   T11] team0 (unregistering): Port device team_slave_1 removed
[  193.558645][   T11] team0 (unregistering): Port device team_slave_0 removed
[  193.570734][ T1376] ieee802154 phy0 wpan0: encryption failed: -22
[  193.576745][ T1376] ieee802154 phy1 wpan1: encryption failed: -22
[  193.589785][   T30] usb 6-1: new full-speed USB device number 16 using dummy_hcd
[  193.726793][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  193.754549][   T30] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  193.757994][   T30] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  193.760979][   T30] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 64
[  193.764665][   T30] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  193.768284][   T30] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.773741][ T8874] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  193.776406][   T30] hub 6-1:1.0: bad descriptor, ignoring hub
[  193.786767][   T30] hub 6-1:1.0: probe with driver hub failed with error -5
[  193.789329][   T30] cdc_wdm 6-1:1.0: skipping garbage
[  193.791040][   T30] cdc_wdm 6-1:1.0: skipping garbage
[  193.799614][   T30] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[  193.801582][   T30] cdc_wdm 6-1:1.0: Unknown control protocol
[  194.056854][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  194.059326][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  194.092429][ T8878] block nbd3: shutting down sockets
[  194.345628][ T8814] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.398852][ T8874] usb 6-1: reset full-speed USB device number 16 using dummy_hcd
[  194.456994][ T5352] Bluetooth: hci0: command tx timeout
[  194.473753][ T8814] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.602986][ T8880] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  194.608491][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  194.610390][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  194.613019][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  194.614759][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  194.616533][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  194.618257][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  194.620494][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  194.622207][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  194.623992][    C3] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  194.625711][    C3] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  194.880980][    C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  194.882746][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  194.884533][    C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  194.886267][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  194.888197][    C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  194.889839][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  194.891635][    C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  194.893361][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  194.895300][    C2] cdc_wdm 6-1:1.0: nonzero urb status received: -71
[  194.897024][    C2] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes
[  194.953839][   T11] IPVS: stop unused estimator thread 0...
[  195.020079][    T9] usb 6-1: USB disconnect, device number 16
[  195.084499][ T8791] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  195.089565][ T8791] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  195.093181][ T8791] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  195.100224][ T8791] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  195.167494][ T8791] 8021q: adding VLAN 0 to HW filter on device bond0
[  195.202479][ T8791] 8021q: adding VLAN 0 to HW filter on device team0
[  195.219083][ T1105] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.221051][ T1105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  195.225710][ T1202] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.228484][ T1202] bridge0: port 2(bridge_slave_1) entered forwarding state
[  195.361569][ T8791] 8021q: adding VLAN 0 to HW filter on device batadv0
[  195.387679][ T8791] veth0_vlan: entered promiscuous mode
[  195.401624][ T8791] veth1_vlan: entered promiscuous mode
[  195.414404][ T8791] veth0_macvtap: entered promiscuous mode
[  195.417892][ T8791] veth1_macvtap: entered promiscuous mode
[  195.423670][ T8791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  195.426478][ T8791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.436608][ T8791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  195.444307][ T8791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.448201][ T8791] batman_adv: batadv0: Interface activated: batadv_slave_0
[  195.449044][   T39] audit: type=1326 audit(1727663622.538:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8926 comm="syz.3.988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000
[  195.451262][ T8791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  195.455756][   T39] audit: type=1326 audit(1727663622.538:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8926 comm="syz.3.988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000
[  195.459721][ T8791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.466509][ T8791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  195.469504][ T8791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.470725][   T39] audit: type=1326 audit(1727663622.538:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8926 comm="syz.3.988" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fb1579 code=0x7ffc0000
[  195.472084][ T8791] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  195.477819][   T39] audit: type=1326 audit(1727663622.538:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8926 comm="syz.3.988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000
[  195.480468][ T8791] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  195.485774][   T39] audit: type=1326 audit(1727663622.538:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8926 comm="syz.3.988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000
[  195.494426][   T39] audit: type=1326 audit(1727663622.538:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8926 comm="syz.3.988" exe="/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf7fb1579 code=0x7ffc0000
[  195.497419][ T8791] batman_adv: batadv0: Interface activated: batadv_slave_1
[  195.500623][   T39] audit: type=1326 audit(1727663622.548:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8926 comm="syz.3.988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000
[  195.503267][ T8791] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  195.507533][   T39] audit: type=1326 audit(1727663622.548:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8926 comm="syz.3.988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000
[  195.510443][ T8791] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  195.515042][   T39] audit: type=1326 audit(1727663622.548:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8926 comm="syz.3.988" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7fb1579 code=0x7ffc0000
[  195.515061][   T39] audit: type=1326 audit(1727663622.548:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8926 comm="syz.3.988" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000
[  195.519739][ T8791] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  195.530742][ T8791] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  195.585246][   T84] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  195.596799][   T84] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  195.606056][ T1043] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  195.608576][ T1043] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  195.705371][ T8940] lo speed is unknown, defaulting to 1000
[  195.773736][ T8814] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  195.790745][ T8814] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  195.820569][ T8814] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  195.845391][ T8814] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  196.015571][ T8963] Bluetooth: MGMT ver 1.23
[  196.035483][ T1202] Bluetooth: hci5: Frame reassembly failed (-84)
[  196.472613][ T8973] overlayfs: failed to resolve './file2': -2
[  196.504940][ T8976] IPVS: Error connecting to the multicast addr
[  196.526846][ T5353] Bluetooth: hci0: command tx timeout
[  196.834105][ T9000] hpfs: Bad magic ... probably not HPFS
[  196.952499][ T9007] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1002'.
[  196.955019][ T9007] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1002'.
[  197.125351][ T9009] netlink: 'syz.2.1003': attribute type 4 has an invalid length.
[  197.131518][ T9009] netlink: 'syz.2.1003': attribute type 4 has an invalid length.
[  197.481061][ T9018] vlan1: entered promiscuous mode
[  197.886857][    C2] net_ratelimit: 22 callbacks suppressed
[  197.886870][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  198.057120][ T5352] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  198.206837][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  198.209717][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  198.217751][ T4804] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  198.608313][ T5352] Bluetooth: hci0: command tx timeout
[  198.686884][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  198.689327][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  198.696962][ T5388] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  198.926830][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  199.246850][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  199.249337][ T4804] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  199.359368][ T9062] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0, syncid = 0, id = 0
[  199.373839][ T9060] grow_buffers: requested out-of-range block 936748722493325311 for device sda1
[  199.376300][ T9060] EXT4-fs warning (device sda1): ext4_resize_fs:2017: can't read last block, resize aborted
[  199.508378][ T9069] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1021'.
[  199.769135][   T56] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  199.908427][ T9102] lo speed is unknown, defaulting to 1000
[  199.936845][   T56] usb 5-1: Using ep0 maxpacket: 8
[  199.942401][   T56] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  199.944811][   T56] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  199.947967][   T56] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  199.950599][   T56] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  199.953341][   T56] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  199.961313][   T56] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  199.963891][   T56] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.081729][ T9122] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1025'.
[  200.090652][ T9122] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long
[  200.094891][ T9122] bridge_slave_1: left allmulticast mode
[  200.096449][ T9122] bridge_slave_1: left promiscuous mode
[  200.098374][ T9122] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.101721][ T9122] bridge2: port 1(bridge_slave_1) entered blocking state
[  200.103633][ T9122] bridge2: port 1(bridge_slave_1) entered disabled state
[  200.105566][ T9122] bridge_slave_1: entered allmulticast mode
[  200.108046][ T9122] bridge_slave_1: entered promiscuous mode
[  200.111309][ T9122] bridge2: port 1(bridge_slave_1) entered blocking state
[  200.113193][ T9122] bridge2: port 1(bridge_slave_1) entered forwarding state
[  200.172135][   T56] usb 5-1: GET_CAPABILITIES returned 0
[  200.173664][   T56] usbtmc 5-1:16.0: can't read capabilities
[  200.207211][ T9127] FAULT_INJECTION: forcing a failure.
[  200.207211][ T9127] name failslab, interval 1, probability 0, space 0, times 0
[  200.211936][ T9127] CPU: 2 UID: 0 PID: 9127 Comm: syz.2.1027 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  200.214649][ T9127] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  200.217484][ T9127] Call Trace:
[  200.218375][ T9127]  <TASK>
[  200.219161][ T9127]  dump_stack_lvl+0x16c/0x1f0
[  200.220446][ T9127]  should_fail_ex+0x497/0x5b0
[  200.221707][ T9127]  ? fs_reclaim_acquire+0xae/0x160
[  200.223087][ T9127]  should_failslab+0xc2/0x120
[  200.224351][ T9127]  __kmalloc_noprof+0xcb/0x410
[  200.225677][ T9127]  ? find_held_lock+0x2d/0x110
[  200.226955][ T9127]  memcg_list_lru_alloc+0x538/0xa90
[  200.228347][ T9127]  ? rcu_read_unlock+0x17/0x60
[  200.229623][ T9127]  ? __pfx_memcg_list_lru_alloc+0x10/0x10
[  200.231128][ T9127]  ? get_mem_cgroup_from_objcg+0xd3/0x330
[  200.232639][ T9127]  __memcg_slab_post_alloc_hook+0x12c/0x9b0
[  200.234206][ T9127]  ? kasan_save_track+0x14/0x30
[  200.235514][ T9127]  kmem_cache_alloc_lru_noprof+0x2c8/0x2f0
[  200.237053][ T9127]  ? alloc_inode+0xba/0x230
[  200.238263][ T9127]  ? __pfx_map_id_range_down+0x10/0x10
[  200.239718][ T9127]  alloc_inode+0xba/0x230
[  200.240871][ T9127]  new_inode+0x22/0x210
[  200.241979][ T9127]  binderfs_fill_super+0x548/0x1240
[  200.243383][ T9127]  ? __pfx_binderfs_fill_super+0x10/0x10
[  200.244869][ T9127]  ? shrinker_register+0x1a8/0x260
[  200.246227][ T9127]  ? sget_fc+0x488/0xb90
[  200.247367][ T9127]  ? __pfx_set_anon_super_fc+0x10/0x10
[  200.248814][ T9127]  ? __pfx_binderfs_fill_super+0x10/0x10
[  200.250295][ T9127]  get_tree_nodev+0xda/0x190
[  200.251530][ T9127]  vfs_get_tree+0x8f/0x380
[  200.252718][ T9127]  vfs_cmd_create+0xd7/0x2a0
[  200.253950][ T9127]  __do_sys_fsconfig+0x884/0xbe0
[  200.255281][ T9127]  ? __pfx___do_sys_fsconfig+0x10/0x10
[  200.256773][ T9127]  __do_fast_syscall_32+0x73/0x120
[  200.258133][ T9127]  do_fast_syscall_32+0x32/0x80
[  200.259436][ T9127]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  200.261105][ T9127] RIP: 0023:0xf73ce579
[  200.262190][ T9127] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  200.267201][ T9127] RSP: 002b:00000000f569556c EFLAGS: 00000296 ORIG_RAX: 00000000000001af
[  200.269383][ T9127] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000000000006
[  200.271452][ T9127] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  200.273534][ T9127] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  200.275617][ T9127] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  200.277685][ T9127] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  200.279775][ T9127]  </TASK>
[  200.737739][ T9132] usbtmc 5-1:16.0: usb_control_msg returned -32
[  200.743559][   T57] usb 5-1: USB disconnect, device number 8
[  200.882818][ T9134] vlan2: entered promiscuous mode
[  200.956896][ T4804] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  201.086828][ T4804] usb 8-1: device descriptor read/64, error -71
[  201.336995][ T4804] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  201.381987][ T9151] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1034'.
[  201.386892][ T9151] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1034'.
[  201.466744][ T4804] usb 8-1: device descriptor read/64, error -71
[  201.842457][ T4804] usb usb8-port1: attempt power cycle
[  202.205739][ T9159] FAULT_INJECTION: forcing a failure.
[  202.205739][ T9159] name failslab, interval 1, probability 0, space 0, times 0
[  202.209211][ T9159] CPU: 1 UID: 0 PID: 9159 Comm: syz.2.1038 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  202.211871][ T9159] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  202.214671][ T9159] Call Trace:
[  202.215584][ T9159]  <TASK>
[  202.216374][ T9159]  dump_stack_lvl+0x16c/0x1f0
[  202.217631][ T9159]  should_fail_ex+0x497/0x5b0
[  202.218880][ T9159]  ? fs_reclaim_acquire+0xae/0x160
[  202.220393][ T9159]  should_failslab+0xc2/0x120
[  202.221747][ T9159]  __kmalloc_noprof+0xcb/0x410
[  202.223028][ T9159]  lsm_blob_alloc+0x68/0x90
[  202.224245][ T9159]  security_sk_alloc+0x30/0x270
[  202.225544][ T9159]  sk_prot_alloc+0x1c7/0x2a0
[  202.226782][ T9159]  sk_alloc+0x36/0xb90
[  202.227876][ T9159]  bpf_prog_test_run_skb+0x335/0x2140
[  202.229294][ T9159]  ? lock_acquire+0x2f/0xb0
[  202.230510][ T9159]  ? __fget_files+0x40/0x3f0
[  202.231750][ T9159]  ? __fget_files+0x244/0x3f0
[  202.233001][ T9159]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  202.234551][ T9159]  ? fput+0x30/0x390
[  202.235606][ T9159]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  202.237165][ T9159]  __sys_bpf+0x1921/0x5780
[  202.238360][ T9159]  ? ksys_write+0x21e/0x260
[  202.239592][ T9159]  ? __pfx___sys_bpf+0x10/0x10
[  202.240871][ T9159]  ? vfs_write+0x14d/0x1140
[  202.242086][ T9159]  ? __mutex_unlock_slowpath+0x164/0x650
[  202.243599][ T9159]  ? fput+0x30/0x390
[  202.244646][ T9159]  ? ksys_write+0x1ad/0x260
[  202.245853][ T9159]  ? __pfx_ksys_write+0x10/0x10
[  202.247178][ T9159]  __ia32_sys_bpf+0x76/0xe0
[  202.248398][ T9159]  __do_fast_syscall_32+0x73/0x120
[  202.249765][ T9159]  do_fast_syscall_32+0x32/0x80
[  202.251061][ T9159]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  202.252744][ T9159] RIP: 0023:0xf73ce579
[  202.253830][ T9159] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  202.256758][ T4804] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  202.258858][ T9159] RSP: 002b:00000000f56b656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  202.263146][ T9159] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000200002c0
[  202.265246][ T9159] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  202.267266][ T9159] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  202.269332][ T9159] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  202.271415][ T9159] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  202.273499][ T9159]  </TASK>
[  202.287319][ T4804] usb 8-1: device descriptor read/8, error -71
[  202.506788][   T39] kauditd_printk_skb: 57 callbacks suppressed
[  202.506799][   T39] audit: type=1804 audit(1727663629.588:473): pid=9168 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1041" name="/newroot/277/file0" dev="fuse" ino=1 res=1 errno=0
[  202.522387][ T9180] netlink: 'syz.1.1045': attribute type 3 has an invalid length.
[  202.524579][ T9180] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1045'.
[  202.537395][ T4804] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  202.557198][ T4804] usb 8-1: device descriptor read/8, error -71
[  202.676928][ T4804] usb usb8-port1: unable to enumerate USB device
[  202.815744][ T9196] lo speed is unknown, defaulting to 1000
[  203.019422][ T9211] input: syz0 as /devices/virtual/input/input26
[  203.024874][ T9211] input: failed to attach handler leds to device input26, error: -6
[  203.088884][    C2] net_ratelimit: 24 callbacks suppressed
[  203.088897][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  203.098043][ T4804] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  203.136864][ T9213] lo speed is unknown, defaulting to 1000
[  203.177186][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  203.336785][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  203.339131][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  203.406935][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  203.409377][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  204.126766][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  204.136841][ T4804] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  204.200225][ T9242] dns_resolver: Unsupported server list version (0)
[  204.446936][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  205.057356][ T9248] tipc: Enabled bearer <udp:s>, priority 10
[  205.489889][ T9272] FAULT_INJECTION: forcing a failure.
[  205.489889][ T9272] name failslab, interval 1, probability 0, space 0, times 0
[  205.493074][ T9272] CPU: 2 UID: 0 PID: 9272 Comm: syz.0.1074 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  205.495694][ T9272] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  205.498426][ T9272] Call Trace:
[  205.499313][ T9272]  <TASK>
[  205.500092][ T9272]  dump_stack_lvl+0x16c/0x1f0
[  205.501260][ T9272]  should_fail_ex+0x497/0x5b0
[  205.502449][ T9272]  ? netlink_rcv_skb+0x165/0x410
[  205.503754][ T9272]  ? netlink_unicast+0x53c/0x7f0
[  205.505017][ T9272]  should_failslab+0xc2/0x120
[  205.506182][ T9272]  __kmalloc_noprof+0xcb/0x410
[  205.507381][ T9272]  dev_prep_valid_name.constprop.0+0x170/0x630
[  205.508996][ T9272]  ? __pfx_dev_prep_valid_name.constprop.0+0x10/0x10
[  205.510648][ T9272]  ? lockdep_init_map_type+0x16d/0x7d0
[  205.512004][ T9272]  ? lockdep_init_map_type+0x16d/0x7d0
[  205.513427][ T9272]  register_netdevice+0x4b6/0x1e20
[  205.514698][ T9272]  ? kasan_save_track+0x14/0x30
[  205.515923][ T9272]  ? __pfx_register_netdevice+0x10/0x10
[  205.517369][ T9272]  ? alloc_netdev_mqs+0xf2a/0x12a0
[  205.518707][ T9272]  ? validate_linkmsg+0x6d2/0x9a0
[  205.520001][ T9272]  br_dev_newlink+0x27/0x110
[  205.521200][ T9272]  ? __pfx_br_dev_newlink+0x10/0x10
[  205.522567][ T9272]  __rtnl_newlink+0x119c/0x1920
[  205.523824][ T9272]  ? __pfx___rtnl_newlink+0x10/0x10
[  205.525108][ T9272]  rtnl_newlink+0x67/0xa0
[  205.526222][ T9272]  ? __pfx_rtnl_newlink+0x10/0x10
[  205.527446][ T9272]  rtnetlink_rcv_msg+0x3c7/0xea0
[  205.528674][ T9272]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  205.530085][ T9272]  ? __pfx___dev_queue_xmit+0x10/0x10
[  205.531457][ T9272]  netlink_rcv_skb+0x165/0x410
[  205.532651][ T9272]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  205.534035][ T9272]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  205.535413][ T9272]  ? netlink_deliver_tap+0x1ae/0xcf0
[  205.536767][ T9272]  netlink_unicast+0x53c/0x7f0
[  205.538025][ T9272]  ? __pfx_netlink_unicast+0x10/0x10
[  205.539388][ T9272]  ? __phys_addr_symbol+0x30/0x80
[  205.540647][ T9272]  ? __check_object_size+0x488/0x710
[  205.541966][ T9272]  netlink_sendmsg+0x8b8/0xd70
[  205.543205][ T9272]  ? __pfx_netlink_sendmsg+0x10/0x10
[  205.544576][ T9272]  ? lock_acquire+0x2f/0xb0
[  205.545762][ T9272]  ____sys_sendmsg+0x9ae/0xb40
[  205.547003][ T9272]  ? __pfx_____sys_sendmsg+0x10/0x10
[  205.548372][ T9272]  ? get_compat_msghdr+0x11b/0x170
[  205.549678][ T9272]  ? __pfx___lock_acquire+0x10/0x10
[  205.550985][ T9272]  ___sys_sendmsg+0x135/0x1e0
[  205.552190][ T9272]  ? __pfx____sys_sendmsg+0x10/0x10
[  205.553512][ T9272]  ? lock_acquire+0x2f/0xb0
[  205.554642][ T9272]  ? __fget_files+0x40/0x3f0
[  205.555859][ T9272]  ? fdget+0x176/0x210
[  205.556922][ T9272]  __sys_sendmsg+0x117/0x1f0
[  205.558166][ T9272]  ? __pfx___sys_sendmsg+0x10/0x10
[  205.559506][ T9272]  ? __fget_files+0x244/0x3f0
[  205.560741][ T9272]  __do_fast_syscall_32+0x73/0x120
[  205.562056][ T9272]  do_fast_syscall_32+0x32/0x80
[  205.563307][ T9272]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  205.564860][ T9272] RIP: 0023:0xf742e579
[  205.565888][ T9272] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  205.570686][ T9272] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  205.572753][ T9272] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[  205.574763][ T9272] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  205.576787][ T9272] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  205.578830][ T9272] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  205.580861][ T9272] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  205.582876][ T9272]  </TASK>
[  205.971458][ T9292] lo speed is unknown, defaulting to 1000
[  206.186815][  T830] tipc: Node number set to 2886997162
[  207.000272][ T9311] ptrace attach of "/syz-executor exec"[5354] was attempted by "/syz-executor exec"[9311]
[  207.626022][ T9328] FAULT_INJECTION: forcing a failure.
[  207.626022][ T9328] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  207.629554][ T9328] CPU: 1 UID: 0 PID: 9328 Comm: syz.0.1092 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  207.632251][ T9328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  207.635039][ T9328] Call Trace:
[  207.635943][ T9328]  <TASK>
[  207.636737][ T9328]  dump_stack_lvl+0x16c/0x1f0
[  207.638394][ T9328]  should_fail_ex+0x497/0x5b0
[  207.639830][ T9328]  _copy_from_user+0x30/0xf0
[  207.641076][ T9328]  bpf_prog_load+0x1bdd/0x2670
[  207.642361][ T9328]  ? __pfx_bpf_prog_load+0x10/0x10
[  207.643750][ T9328]  ? find_held_lock+0x2d/0x110
[  207.645039][ T9328]  __sys_bpf+0x4c8c/0x5780
[  207.646243][ T9328]  ? ksys_write+0x21e/0x260
[  207.647411][ T9328]  ? __pfx___sys_bpf+0x10/0x10
[  207.648637][ T9328]  ? vfs_write+0x14d/0x1140
[  207.649829][ T9328]  ? __mutex_unlock_slowpath+0x164/0x650
[  207.651345][ T9328]  ? fput+0x30/0x390
[  207.652359][ T9328]  ? ksys_write+0x1ad/0x260
[  207.653514][ T9328]  ? __pfx_ksys_write+0x10/0x10
[  207.654819][ T9328]  __ia32_sys_bpf+0x76/0xe0
[  207.656038][ T9328]  __do_fast_syscall_32+0x73/0x120
[  207.657416][ T9328]  do_fast_syscall_32+0x32/0x80
[  207.658714][ T9328]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  207.660395][ T9328] RIP: 0023:0xf742e579
[  207.661487][ T9328] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  207.666531][ T9328] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  207.668729][ T9328] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020000200
[  207.670809][ T9328] RDX: 0000000000000078 RSI: 0000000000000000 RDI: 0000000000000000
[  207.672895][ T9328] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  207.674985][ T9328] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  207.677068][ T9328] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  207.679159][ T9328]  </TASK>
[  207.720105][ T5352] block nbd1: Receive control failed (result -32)
[  207.720785][ T9310] block nbd1: shutting down sockets
[  207.778117][ T9333] binder: 9332:9333 ioctl c0306201 20000640 returned -22
[  207.799095][ T9335] FAULT_INJECTION: forcing a failure.
[  207.799095][ T9335] name failslab, interval 1, probability 0, space 0, times 0
[  207.802460][ T9335] CPU: 1 UID: 0 PID: 9335 Comm: syz.1.1095 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  207.805176][ T9335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  207.808023][ T9335] Call Trace:
[  207.808915][ T9335]  <TASK>
[  207.809706][ T9335]  dump_stack_lvl+0x16c/0x1f0
[  207.810964][ T9335]  should_fail_ex+0x497/0x5b0
[  207.812225][ T9335]  ? fs_reclaim_acquire+0xae/0x160
[  207.813589][ T9335]  should_failslab+0xc2/0x120
[  207.814848][ T9335]  __kmalloc_cache_noprof+0x6b/0x310
[  207.816670][ T9335]  ? do_check_common+0x185/0xd610
[  207.818553][ T9335]  do_check_common+0x185/0xd610
[  207.820177][ T9335]  ? bpf_tracing_func_proto+0x80/0x9e0
[  207.821606][ T9335]  ? raw_tp_prog_func_proto+0x76/0xa0
[  207.823013][ T9335]  ? __pfx_raw_tp_prog_func_proto+0x10/0x10
[  207.824577][ T9335]  ? mark_fastcall_pattern_for_call+0x135/0xdf0
[  207.826234][ T9335]  ? __pfx_mark_fastcall_pattern_for_call+0x10/0x10
[  207.827965][ T9335]  ? kfree+0x14f/0x4b0
[  207.829050][ T9335]  ? __pfx_do_check_common+0x10/0x10
[  207.830446][ T9335]  ? kvfree+0x47/0x50
[  207.831516][ T9335]  ? check_cfg+0x400/0x840
[  207.832712][ T9335]  bpf_check+0x7737/0xc7c0
[  207.833916][ T9335]  ? __pfx_bpf_check+0x10/0x10
[  207.835143][ T9335]  ? find_held_lock+0x2d/0x110
[  207.836393][ T9335]  ? ktime_get_with_offset+0x13a/0x240
[  207.837781][ T9335]  ? trace_lock_acquire+0x14a/0x1d0
[  207.839065][ T9335]  ? ktime_get_with_offset+0x13a/0x240
[  207.840508][ T9335]  ? timekeeping_debug_get_ns+0x3e0/0x5b0
[  207.842004][ T9335]  ? lockdep_hardirqs_on+0x7c/0x110
[  207.843385][ T9335]  ? bpf_obj_name_cpy+0x156/0x1b0
[  207.844706][ T9335]  bpf_prog_load+0xe3f/0x2670
[  207.845925][ T9335]  ? __pfx_bpf_prog_load+0x10/0x10
[  207.847198][ T9335]  ? find_held_lock+0x2d/0x110
[  207.848390][ T9335]  __sys_bpf+0x4c8c/0x5780
[  207.849605][ T9335]  ? ksys_write+0x21e/0x260
[  207.850796][ T9335]  ? __pfx___sys_bpf+0x10/0x10
[  207.852035][ T9335]  ? vfs_write+0x14d/0x1140
[  207.853180][ T9335]  ? __mutex_unlock_slowpath+0x164/0x650
[  207.854574][ T9335]  ? fput+0x30/0x390
[  207.855573][ T9335]  ? ksys_write+0x1ad/0x260
[  207.856719][ T9335]  ? __pfx_ksys_write+0x10/0x10
[  207.857952][ T9335]  __ia32_sys_bpf+0x76/0xe0
[  207.859100][ T9335]  __do_fast_syscall_32+0x73/0x120
[  207.860387][ T9335]  do_fast_syscall_32+0x32/0x80
[  207.861578][ T9335]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  207.863145][ T9335] RIP: 0023:0xf7f95579
[  207.864164][ T9335] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  207.868849][ T9335] RSP: 002b:00000000f571656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  207.870975][ T9335] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200007c0
[  207.872995][ T9335] RDX: 0000000000000090 RSI: 0000000000000000 RDI: 0000000000000000
[  207.875026][ T9335] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  207.877052][ T9335] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  207.879096][ T9335] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  207.881135][ T9335]  </TASK>
[  207.911820][ T9338] netlink: 'syz.0.1096': attribute type 10 has an invalid length.
[  207.914372][ T9338] syz_tun: entered promiscuous mode
[  207.920223][ T9338] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  208.206816][    C2] net_ratelimit: 35 callbacks suppressed
[  208.206830][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  208.286862][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  208.287444][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.343508][ T9348] lo speed is unknown, defaulting to 1000
[  208.367697][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.411361][ T9363] binder: 9362:9363 ioctl c0306201 20000640 returned -22
[  208.456953][ T9365] team0: entered promiscuous mode
[  208.458362][ T9365] team_slave_0: entered promiscuous mode
[  208.459936][ T9365] team_slave_1: entered promiscuous mode
[  208.462244][ T9365] team_slave_1: left promiscuous mode
[  208.477662][ T9365] team0: Port device team_slave_1 removed
[  208.482571][ T9364] team0: left promiscuous mode
[  208.483987][ T9364] team_slave_0: left promiscuous mode
[  208.582219][ T9376] blktrace: Concurrent blktraces are not allowed on nbd3
[  208.606807][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.609620][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.613120][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.615913][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.794847][ T9380] lo speed is unknown, defaulting to 1000
[  208.811252][ T9387] Cannot find set identified by id 0 to match
[  208.856641][ T9379] lo speed is unknown, defaulting to 1000
[  208.927321][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.929670][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  208.934825][ T9390] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1114'.
[  208.942977][ T9390] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1114'.
[  209.269966][ T9394] lo speed is unknown, defaulting to 1000
[  209.676810][   T56] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  209.827981][   T56] usb 7-1: config 0 has no interfaces?
[  209.829462][   T56] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  209.831862][   T56] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.834924][   T56] usb 7-1: config 0 descriptor??
[  209.988887][ T9403] syz.3.1117: vmalloc error: size 1842069504, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  209.993466][ T9403] CPU: 0 UID: 0 PID: 9403 Comm: syz.3.1117 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  209.996186][ T9403] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  209.998979][ T9403] Call Trace:
[  209.999880][ T9403]  <TASK>
[  210.000666][ T9403]  dump_stack_lvl+0x16c/0x1f0
[  210.001930][ T9403]  warn_alloc+0x24d/0x3a0
[  210.003109][ T9403]  ? __pfx_warn_alloc+0x10/0x10
[  210.004403][ T9403]  ? __pfx_stack_trace_save+0x10/0x10
[  210.005788][ T9403]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  210.007201][ T9403]  ? kasan_save_stack+0x42/0x60
[  210.008479][ T9403]  ? kasan_save_stack+0x33/0x60
[  210.009734][ T9403]  ? kasan_save_track+0x14/0x30
[  210.010975][ T9403]  ? __kasan_kmalloc+0xaa/0xb0
[  210.012202][ T9403]  ? vb2_vmalloc_alloc+0xe2/0x3d0
[  210.013482][ T9403]  ? vb2_core_create_bufs+0x558/0xab0
[  210.014856][ T9403]  ? vb2_create_bufs+0x566/0x780
[  210.016186][ T9403]  ? vb2_ioctl_create_bufs+0x244/0x3e0
[  210.017643][ T9403]  __vmalloc_node_range_noprof+0x11a7/0x15a0
[  210.019260][ T9403]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  210.020604][ T9403]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  210.022293][ T9403]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  210.023673][ T9403]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  210.025130][ T9403]  vmalloc_user_noprof+0x6b/0x90
[  210.026464][ T9403]  ? vb2_vmalloc_alloc+0x11e/0x3d0
[  210.027828][ T9403]  vb2_vmalloc_alloc+0x11e/0x3d0
[  210.029171][ T9403]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  210.030621][ T9403]  __vb2_queue_alloc+0x896/0x1230
[  210.031997][ T9403]  ? vbi_out_queue_setup+0x1e3/0x2b0
[  210.033433][ T9403]  vb2_core_create_bufs+0x558/0xab0
[  210.034826][ T9403]  ? __pfx_vbi_out_queue_setup+0x10/0x10
[  210.036336][ T9403]  ? __pfx_vb2_core_create_bufs+0x10/0x10
[  210.037871][ T9403]  vb2_create_bufs+0x566/0x780
[  210.039168][ T9403]  ? __pfx_vb2_create_bufs+0x10/0x10
[  210.040588][ T9403]  ? __mutex_lock+0x1a6/0x9c0
[  210.041855][ T9403]  vb2_ioctl_create_bufs+0x244/0x3e0
[  210.043303][ T9403]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  210.044883][ T9403]  vidioc_create_bufs+0x7d/0xf0
[  210.046186][ T9403]  v4l_create_bufs+0x198/0x270
[  210.047474][ T9403]  __video_do_ioctl+0xaf0/0xf00
[  210.048792][ T9403]  ? __pfx___video_do_ioctl+0x10/0x10
[  210.050228][ T9403]  ? trace_kmalloc+0x2d/0xe0
[  210.051474][ T9403]  ? __kmalloc_noprof+0x207/0x410
[  210.052884][ T9403]  video_usercopy+0x426/0x1500
[  210.054171][ T9403]  ? __pfx___video_do_ioctl+0x10/0x10
[  210.055603][ T9403]  ? __pfx_video_usercopy+0x10/0x10
[  210.056988][ T9403]  v4l2_ioctl+0x1ba/0x250
[  210.058383][ T9403]  v4l2_compat_ioctl32+0x214/0x2c0
[  210.059750][ T9403]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  210.061252][ T9403]  __do_compat_sys_ioctl+0x259/0x2b0
[  210.062683][ T9403]  __do_fast_syscall_32+0x73/0x120
[  210.064071][ T9403]  do_fast_syscall_32+0x32/0x80
[  210.065376][ T9403]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  210.067031][ T9403] RIP: 0023:0xf7fb1579
[  210.068129][ T9403] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  210.073212][ T9403] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  210.075412][ T9403] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0f8565c
[  210.077497][ T9403] RDX: 00000000200002c0 RSI: 0000000000000000 RDI: 0000000000000000
[  210.079594][ T9403] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  210.081663][ T9403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  210.084114][ T9403] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  210.086204][ T9403]  </TASK>
[  210.087156][    C0] vkms_vblank_simulate: vblank timer overrun
[  210.089408][ T9403] Mem-Info:
[  210.090241][ T9403] active_anon:4650 inactive_anon:165 isolated_anon:0
[  210.090241][ T9403]  active_file:8297 inactive_file:32919 isolated_file:0
[  210.090241][ T9403]  unevictable:882 dirty:271 writeback:0
[  210.090241][ T9403]  slab_reclaimable:5118 slab_unreclaimable:59651
[  210.090241][ T9403]  mapped:21187 shmem:887 pagetables:752
[  210.090241][ T9403]  sec_pagetables:318 bounce:0
[  210.090241][ T9403]  kernel_misc_reclaimable:0
[  210.090241][ T9403]  free:73261 free_pcp:2203 free_cma:0
[  210.102456][ T9403] Node 0 active_anon:32kB inactive_anon:28kB active_file:8kB inactive_file:4kB unevictable:1992kB isolated(anon):0kB isolated(file):0kB mapped:7220kB dirty:4kB writeback:0kB shmem:1540kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9812kB pagetables:1200kB sec_pagetables:1212kB all_unreclaimable? no
[  210.117106][ T9403] Node 1 active_anon:18568kB inactive_anon:632kB active_file:33180kB inactive_file:131672kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:77528kB dirty:1080kB writeback:0kB shmem:2008kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2096kB pagetables:1808kB sec_pagetables:60kB all_unreclaimable? no
[  210.125500][ T9403] Node 0 DMA free:928kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:4kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:32kB writepending:0kB present:15992kB managed:15360kB mlocked:32kB bounce:0kB free_pcp:128kB local_pcp:88kB free_cma:0kB
[  210.132730][ T9403] lowmem_reserve[]: 0 273 0 0 0
[  210.134086][ T9403] Node 0 DMA32 free:21296kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:28kB inactive_anon:104kB active_file:8kB inactive_file:4kB unevictable:1960kB writepending:4kB present:1032196kB managed:306284kB mlocked:424kB bounce:0kB free_pcp:508kB local_pcp:192kB free_cma:0kB
[  210.142663][ T9403] lowmem_reserve[]: 0 0 0 0 0
[  210.143972][ T9403] Node 1 DMA32 free:271892kB boost:14336kB min:61480kB low:73264kB high:85048kB reserved_highatomic:0KB active_anon:18568kB inactive_anon:632kB active_file:33180kB inactive_file:131672kB unevictable:1536kB writepending:1080kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:6996kB local_pcp:64kB free_cma:0kB
[  210.153439][ T9403] lowmem_reserve[]: 0 0 0 0 0
[  210.154705][ T9403] Node 0 DMA: 2*4kB (E) 9*8kB (UE) 5*16kB (UE) 24*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 928kB
[  210.162158][ T9403] Node 0 DMA32: 224*4kB (UMEH) 158*8kB (UMEH) 49*16kB (MEH) 97*32kB (UMH) 51*64kB (UMEH) 37*128kB (UME) 15*256kB (UM) 8*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 21984kB
[  210.166422][ T9403] Node 1 DMA32: 287*4kB (UME) 358*8kB (UME) 526*16kB (UME) 501*32kB (UME) 265*64kB (UME) 232*128kB (UME) 141*256kB (UME) 96*512kB (UME) 67*1024kB (UM) 17*2048kB (UM) 2*4096kB (U) = 271980kB
[  210.171463][ T9403] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  210.173917][ T9403] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  210.176319][ T9403] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  210.179134][ T9403] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  210.181487][ T9403] 43078 total pagecache pages
[  210.182681][ T9403] 859 pages in swap cache
[  210.183824][ T9403] Free swap  = 109752kB
[  210.184867][ T9403] Total swap = 124996kB
[  210.185947][ T9403] 524155 pages RAM
[  210.187426][ T9403] 0 pages HighMem/MovableOnly
[  210.188671][ T9403] 206681 pages reserved
[  210.189748][ T9403] 0 pages cma reserved
[  210.366779][ T5353] Bluetooth: hci0: command 0x0405 tx timeout
[  212.372828][ T9424] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1123'.
[  212.375287][ T9424] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1123'.
[  212.394145][   T57] usb 7-1: USB disconnect, device number 19
[  212.420269][   T39] audit: type=1326 audit(1727663639.508:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.0.1126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  212.421304][ T9430] FAULT_INJECTION: forcing a failure.
[  212.421304][ T9430] name failslab, interval 1, probability 0, space 0, times 0
[  212.425524][   T39] audit: type=1326 audit(1727663639.508:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.0.1126" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf742e579 code=0x7ffc0000
[  212.429547][ T9430] CPU: 1 UID: 0 PID: 9430 Comm: syz.0.1126 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  212.435209][   T39] audit: type=1326 audit(1727663639.508:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.0.1126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  212.437352][ T9430] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  212.437361][ T9430] Call Trace:
[  212.437365][ T9430]  <TASK>
[  212.437370][ T9430]  dump_stack_lvl+0x16c/0x1f0
[  212.437390][ T9430]  should_fail_ex+0x497/0x5b0
[  212.443039][   T39] audit: type=1326 audit(1727663639.508:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.0.1126" exe="/syz-executor" sig=0 arch=40000003 syscall=333 compat=1 ip=0xf742e579 code=0x7ffc0000
[  212.445491][ T9430]  ? fs_reclaim_acquire+0xae/0x160
[  212.446383][   T39] audit: type=1326 audit(1727663639.508:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.0.1126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  212.447125][ T9430]  should_failslab+0xc2/0x120
[  212.447143][ T9430]  __kmalloc_cache_noprof+0x6b/0x310
[  212.447156][ T9430]  ? audit_log_d_path+0xce/0x1e0
[  212.447171][ T9430]  audit_log_d_path+0xce/0x1e0
[  212.449651][   T39] audit: type=1326 audit(1727663639.508:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.0.1126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  212.449749][ T9430]  audit_log_d_path_exe+0x46/0x70
[  212.454965][   T39] audit: type=1326 audit(1727663639.508:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.0.1126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf742e579 code=0x7ffc0000
[  212.456161][ T9430]  audit_log_task+0x279/0x300
[  212.462258][   T39] audit: type=1326 audit(1727663639.508:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.0.1126" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf742e579 code=0x7ffc0000
[  212.462476][ T9430]  ? __pfx_audit_log_task+0x10/0x10
[  212.463834][   T39] audit: type=1326 audit(1727663639.508:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.0.1126" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf742e579 code=0x7ffc0000
[  212.465002][ T9430]  ? migrate_enable+0x1ef/0x260
[  212.466244][   T39] audit: type=1326 audit(1727663639.508:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9429 comm="syz.0.1126" exe="/syz-executor" sig=0 arch=40000003 syscall=283 compat=1 ip=0xf742e579 code=0x7ffc0000
[  212.471212][ T9430]  ? __pfx_migrate_enable+0x10/0x10
[  212.471230][ T9430]  audit_seccomp+0x7a/0x280
[  212.471242][ T9430]  __seccomp_filter+0x816/0xf40
[  212.471254][ T9430]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  212.471268][ T9430]  ? __pfx___seccomp_filter+0x10/0x10
[  212.471282][ T9430]  ? __do_compat_sys_kexec_load+0x279/0x330
[  212.471295][ T9430]  __secure_computing+0x26c/0x3f0
[  212.471307][ T9430]  syscall_trace_enter+0x8b/0x240
[  212.471322][ T9430]  __do_fast_syscall_32+0xc2/0x120
[  212.471338][ T9430]  do_fast_syscall_32+0x32/0x80
[  212.471350][ T9430]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  212.513190][ T9430] RIP: 0023:0xf742e579
[  212.513209][ T9430] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  212.513220][ T9430] RSP: 002b:00000000f57165a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  212.513231][ T9430] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5716620
[  212.513238][ T9430] RDX: 000000000000000f RSI: 00000000f741bff4 RDI: 0000000000000000
[  212.513244][ T9430] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  212.513250][ T9430] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  212.513257][ T9430] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  212.525765][ T9432] lo speed is unknown, defaulting to 1000
[  212.527180][ T9430]  </TASK>
[  212.750319][ T9453] overlay: ./file0 is not a directory
[  212.765544][ T9453] overlayfs: failed to resolve './file0': -2
[  213.032903][ T9464] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1135'.
[  213.036720][ T9464] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1135'.
[  213.256774][    C2] net_ratelimit: 378 callbacks suppressed
[  213.256787][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.261134][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.406801][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  213.406808][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.410628][    C3] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.412952][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.486751][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  213.806870][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.809146][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.811846][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  213.912981][ T9493] lo speed is unknown, defaulting to 1000
[  214.109392][ T9503] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1146'.
[  214.111831][ T9503] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1146'.
[  214.712521][ T9506] 9pnet_virtio: no channels available for device syz
[  215.817544][ T9522] Cannot find set identified by id 0 to match
[  215.889352][ T9526] lo speed is unknown, defaulting to 1000
[  216.059728][ T9537] FAULT_INJECTION: forcing a failure.
[  216.059728][ T9537] name failslab, interval 1, probability 0, space 0, times 0
[  216.063752][ T9537] CPU: 1 UID: 0 PID: 9537 Comm: syz.3.1156 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  216.066944][ T9537] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  216.070274][ T9537] Call Trace:
[  216.071430][ T9537]  <TASK>
[  216.072375][ T9537]  dump_stack_lvl+0x16c/0x1f0
[  216.073549][ T9537]  should_fail_ex+0x497/0x5b0
[  216.074775][ T9537]  should_failslab+0xc2/0x120
[  216.076029][ T9537]  __kmalloc_noprof+0xcb/0x410
[  216.077279][ T9537]  aa_label_asxprint+0x75/0x140
[  216.078559][ T9537]  apparmor_secid_to_secctx+0xb1/0x180
[  216.080101][ T9537]  security_secid_to_secctx+0x9c/0x290
[  216.081707][ T9537]  audit_log_task_context+0xf5/0x170
[  216.083290][ T9537]  ? __pfx_audit_log_task_context+0x10/0x10
[  216.084880][ T9537]  ? from_kuid+0x89/0xd0
[  216.086133][ T9537]  ? __pfx_audit_log_start+0x10/0x10
[  216.087971][ T9537]  audit_log_task+0x1d0/0x300
[  216.089218][ T9537]  ? __pfx_audit_log_task+0x10/0x10
[  216.090592][ T9537]  ? migrate_enable+0x1ef/0x260
[  216.091889][ T9537]  ? __pfx_migrate_enable+0x10/0x10
[  216.093451][ T9537]  ? find_held_lock+0x2d/0x110
[  216.094680][ T9537]  audit_seccomp+0x7a/0x280
[  216.096220][ T9537]  __seccomp_filter+0x816/0xf40
[  216.097871][ T9537]  ? lock_acquire+0x2f/0xb0
[  216.099331][ T9537]  ? __pfx___seccomp_filter+0x10/0x10
[  216.100743][ T9537]  ? do_set_thread_area+0x2d1/0x630
[  216.102148][ T9537]  ? __pfx_do_set_thread_area+0x10/0x10
[  216.103662][ T9537]  __secure_computing+0x26c/0x3f0
[  216.105061][ T9537]  syscall_trace_enter+0x8b/0x240
[  216.106768][ T9537]  __do_fast_syscall_32+0xc2/0x120
[  216.108490][ T9537]  do_fast_syscall_32+0x32/0x80
[  216.110132][ T9537]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  216.112244][ T9537] RIP: 0023:0xf7fb1579
[  216.113639][ T9537] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  216.120008][ T9537] RSP: 002b:00000000f57365a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  216.122787][ T9537] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5736620
[  216.125170][ T9537] RDX: 000000000000000f RSI: 00000000f743bff4 RDI: 0000000000000000
[  216.127624][ T9537] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
[  216.130221][ T9537] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  216.132787][ T9537] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  216.135119][ T9537]  </TASK>
[  216.265479][ T9540] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1157'.
[  216.268108][ T9540] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1157'.
[  216.517653][ T9551] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1161'.
[  216.819378][ T9563] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1166'.
[  216.821825][ T9563] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1166'.
[  217.226513][ T9566] lo speed is unknown, defaulting to 1000
[  218.229738][ T5352] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  218.240135][ T5352] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  218.265804][ T5352] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  218.276594][ T5352] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  218.285886][ T5352] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  218.288560][ T5352] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  218.606825][    C2] net_ratelimit: 34 callbacks suppressed
[  218.606854][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  218.609992][ T4804] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  218.686758][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  218.882163][ T9591] random: crng reseeded on system resumption
[  219.016834][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  219.019491][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  219.256837][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  219.259421][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  219.646834][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  219.649201][ T4804] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  219.684858][ T5942] tipc: Disabling bearer <eth:syzkaller0>
[  219.687809][   T11] smc: removing ib device syz1
[  219.717982][ T9586] lo speed is unknown, defaulting to 1000
[  219.736863][    C2] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  219.789547][ T9586] chnl_net:caif_netlink_parms(): no params data found
[  219.799462][ T9599] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1175'.
[  219.802870][ T9599] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1175'.
[  219.968610][ T9586] bridge0: port 1(bridge_slave_0) entered blocking state
[  219.970620][ T9586] bridge0: port 1(bridge_slave_0) entered disabled state
[  219.972845][ T9586] bridge_slave_0: entered allmulticast mode
[  219.987912][ T9586] bridge_slave_0: entered promiscuous mode
[  219.992361][ T9586] bridge0: port 2(bridge_slave_1) entered blocking state
[  219.994620][ T9586] bridge0: port 2(bridge_slave_1) entered disabled state
[  219.997411][ T9586] bridge_slave_1: entered allmulticast mode
[  220.000129][ T9586] bridge_slave_1: entered promiscuous mode
[  220.052189][ T9586] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  220.059258][ T9586] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  220.090953][ T9608] lo speed is unknown, defaulting to 1000
[  220.106051][ T9586] team0: Port device team_slave_0 added
[  220.109852][ T9586] team0: Port device team_slave_1 added
[  220.142188][ T9586] batman_adv: batadv0: Adding interface: batadv_slave_0
[  220.144052][ T9586] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  220.153524][ T9586] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  220.162709][ T9586] batman_adv: batadv0: Adding interface: batadv_slave_1
[  220.164638][ T9586] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  220.172253][ T9586] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  220.230490][ T9586] hsr_slave_0: entered promiscuous mode
[  220.233108][ T9586] hsr_slave_1: entered promiscuous mode
[  220.235233][ T9586] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  220.237820][ T9586] Cannot create hsr debugfs directory
[  220.366771][ T5352] Bluetooth: hci5: command tx timeout
[  220.881078][ T9586] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  220.884779][ T9586] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  220.889664][ T9586] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  220.895488][ T9586] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  220.976326][ T9586] 8021q: adding VLAN 0 to HW filter on device bond0
[  220.985475][ T9586] 8021q: adding VLAN 0 to HW filter on device team0
[  220.990130][ T1202] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.991963][ T1202] bridge0: port 1(bridge_slave_0) entered forwarding state
[  220.998102][ T1105] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.000004][ T1105] bridge0: port 2(bridge_slave_1) entered forwarding state
[  221.061015][ T9621] netlink: 'syz.2.1180': attribute type 4 has an invalid length.
[  221.099232][ T9586] 8021q: adding VLAN 0 to HW filter on device batadv0
[  221.123376][ T9586] veth0_vlan: entered promiscuous mode
[  221.132496][ T9586] veth1_vlan: entered promiscuous mode
[  221.145749][ T9586] veth0_macvtap: entered promiscuous mode
[  221.152596][ T9586] veth1_macvtap: entered promiscuous mode
[  221.159324][ T9586] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.161982][ T9586] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.164461][ T9586] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.168109][ T9586] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.170547][ T9586] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.173235][ T9586] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.177584][ T9586] batman_adv: batadv0: Interface activated: batadv_slave_0
[  221.183755][ T9586] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.186442][ T9586] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.189771][ T9586] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.192509][ T9586] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.195061][ T9586] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.198274][ T9586] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.200874][ T9586] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.203477][ T9586] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.206920][ T9586] batman_adv: batadv0: Interface activated: batadv_slave_1
[  221.210170][ T9586] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  221.212371][ T9586] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  221.214578][ T9586] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  221.217439][ T9586] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  221.245879][ T9629] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1182'.
[  221.249560][ T9629] netlink: 'syz.2.1182': attribute type 2 has an invalid length.
[  221.253915][   T84] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  221.255940][   T84] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  221.270019][   T84] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  221.272013][   T84] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  221.342461][ T4804] ==================================================================
[  221.344563][ T4804] BUG: KASAN: slab-use-after-free in __list_del_entry_valid_or_report+0x14c/0x1c0
[  221.346841][ T4804] Read of size 8 at addr ffff888025f44f08 by task kworker/3:2/4804
[  221.349992][ T4804] 
[  221.351254][ T4804] CPU: 3 UID: 0 PID: 4804 Comm: kworker/3:2 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  221.353933][ T4804] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  221.356651][ T4804] Workqueue: events binder_deferred_func
[  221.358060][ T4804] Call Trace:
[  221.358927][ T4804]  <TASK>
[  221.359696][ T4804]  dump_stack_lvl+0x116/0x1f0
[  221.360901][ T4804]  print_report+0xc3/0x620
[  221.362036][ T4804]  ? __virt_addr_valid+0x5e/0x590
[  221.363351][ T4804]  ? __phys_addr+0xc6/0x150
[  221.364520][ T4804]  kasan_report+0xd9/0x110
[  221.365663][ T4804]  ? __list_del_entry_valid_or_report+0x14c/0x1c0
[  221.367296][ T4804]  ? __list_del_entry_valid_or_report+0x14c/0x1c0
[  221.368871][ T4804]  __list_del_entry_valid_or_report+0x14c/0x1c0
[  221.370428][ T4804]  binder_release_work+0x9b/0x490
[  221.371681][ T4804]  binder_deferred_func+0xe6e/0x12e0
[  221.373050][ T4804]  process_one_work+0x958/0x1b30
[  221.374346][ T4804]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  221.375793][ T4804]  ? __pfx_process_one_work+0x10/0x10
[  221.377166][ T4804]  ? assign_work+0x1a0/0x250
[  221.378218][ T9635] binder: BINDER_SET_CONTEXT_MGR already set
[  221.378351][ T4804]  worker_thread+0x6c8/0xf00
[  221.378370][ T4804]  ? __pfx_worker_thread+0x10/0x10
[  221.378383][ T4804]  kthread+0x2c1/0x3a0
[  221.380500][ T9635] binder: 9634:9635 ioctl 4018620d 20000100 returned -16
[  221.381670][ T4804]  ? _raw_spin_unlock_irq+0x23/0x50
[  221.383981][ T9635] binder: 9634:9635 ioctl c0306201 20000640 returned -22
[  221.384039][ T4804]  ? __pfx_kthread+0x10/0x10
[  221.389910][ T4804]  ret_from_fork+0x45/0x80
[  221.391041][ T4804]  ? __pfx_kthread+0x10/0x10
[  221.392186][ T4804]  ret_from_fork_asm+0x1a/0x30
[  221.393383][ T4804]  </TASK>
[  221.394173][ T4804] 
[  221.394767][ T4804] Allocated by task 9633:
[  221.395839][ T4804]  kasan_save_stack+0x33/0x60
[  221.397111][ T4804]  kasan_save_track+0x14/0x30
[  221.398332][ T4804]  __kasan_kmalloc+0xaa/0xb0
[  221.399480][ T4804]  binder_thread_write+0xe19/0x4c60
[  221.400758][ T4804]  binder_ioctl+0x268b/0x7050
[  221.401922][ T4804]  compat_ptr_ioctl+0x6b/0xa0
[  221.403121][ T4804]  __do_compat_sys_ioctl+0x259/0x2b0
[  221.404416][ T4804]  __do_fast_syscall_32+0x73/0x120
[  221.405699][ T4804]  do_fast_syscall_32+0x32/0x80
[  221.406912][ T4804]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  221.408457][ T4804] 
[  221.409083][ T4804] Freed by task 4804:
[  221.410075][ T4804]  kasan_save_stack+0x33/0x60
[  221.411245][ T4804]  kasan_save_track+0x14/0x30
[  221.412428][ T4804]  kasan_save_free_info+0x3b/0x60
[  221.413699][ T4804]  __kasan_slab_free+0x51/0x70
[  221.414898][ T4804]  kfree+0x14f/0x4b0
[  221.415882][ T4804]  binder_deferred_func+0xdd7/0x12e0
[  221.417213][ T4804]  process_one_work+0x958/0x1b30
[  221.418433][ T4804]  worker_thread+0x6c8/0xf00
[  221.419599][ T4804]  kthread+0x2c1/0x3a0
[  221.420631][ T4804]  ret_from_fork+0x45/0x80
[  221.421734][ T4804]  ret_from_fork_asm+0x1a/0x30
[  221.422966][ T4804] 
[  221.423581][ T4804] The buggy address belongs to the object at ffff888025f44f00
[  221.423581][ T4804]  which belongs to the cache kmalloc-64 of size 64
[  221.426940][ T4804] The buggy address is located 8 bytes inside of
[  221.426940][ T4804]  freed 64-byte region [ffff888025f44f00, ffff888025f44f40)
[  221.430202][ T4804] 
[  221.430834][ T4804] The buggy address belongs to the physical page:
[  221.432509][ T4804] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x25f44
[  221.434877][ T4804] anon flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  221.436948][ T4804] page_type: f5(slab)
[  221.437984][ T4804] raw: 00fff00000000000 ffff88801ac428c0 0000000000000000 dead000000000001
[  221.440165][ T4804] raw: 0000000000000000 0000000080200020 00000001f5000000 0000000000000000
[  221.442311][ T4804] page dumped because: kasan: bad access detected
[  221.443926][ T4804] page_owner tracks the page as allocated
[  221.445327][ T4804] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 6883, tgid 6882 (syz.3.409), ts 107587701157, free_ts 107261614590
[  221.450047][ T4804]  post_alloc_hook+0x2d1/0x350
[  221.451250][ T4804]  get_page_from_freelist+0x101e/0x3070
[  221.452628][ T4804]  __alloc_pages_noprof+0x6be/0x25c0
[  221.453920][ T4804]  new_slab+0xca/0x3f0
[  221.454939][ T4804]  ___slab_alloc+0xd1d/0x16f0
[  221.456109][ T4804]  __slab_alloc.constprop.0+0x56/0xb0
[  221.457406][ T4804]  __kmalloc_node_noprof+0x367/0x440
[  221.458700][ T4804]  __kvmalloc_node_noprof+0xad/0x1a0
[  221.460037][ T4804]  alloc_shrinker_info+0xea/0x460
[  221.461304][ T4804]  mem_cgroup_css_online+0x217/0x640
[  221.462600][ T4804]  online_css+0xaf/0x350
[  221.463690][ T4804]  cgroup_apply_control_enable+0x6d7/0xc80
[  221.465122][ T4804]  cgroup_mkdir+0x39b/0x1140
[  221.466291][ T4804]  kernfs_iop_mkdir+0x14a/0x1d0
[  221.467536][ T4804]  vfs_mkdir+0x57d/0x860
[  221.468641][ T4804]  do_mkdirat+0x301/0x3a0
[  221.469734][ T4804] page last free pid 6166 tgid 6166 stack trace:
[  221.471318][ T4804]  free_unref_page+0x5f4/0xdc0
[  221.472514][ T4804]  __put_partials+0x14c/0x170
[  221.473691][ T4804]  qlist_free_all+0x4e/0x120
[  221.474860][ T4804]  kasan_quarantine_reduce+0x192/0x1e0
[  221.476220][ T4804]  __kasan_slab_alloc+0x69/0x90
[  221.477462][ T4804]  __kmalloc_cache_node_noprof+0x173/0x360
[  221.478905][ T4804]  __get_vm_area_node+0xe1/0x2d0
[  221.480146][ T4804]  __vmalloc_node_range_noprof+0x26a/0x15a0
[  221.481633][ T4804]  vzalloc_noprof+0x6b/0x90
[  221.482793][ T4804]  compat_get_entries+0x3ad/0x7d0
[  221.484065][ T4804]  do_ipt_get_ctl+0x598/0xaa0
[  221.485269][ T4804]  nf_getsockopt+0x79/0xe0
[  221.486399][ T4804]  ip_getsockopt+0x18e/0x1e0
[  221.487581][ T4804]  tcp_getsockopt+0x9e/0x100
[  221.488794][ T4804]  do_sock_getsockopt+0x3fe/0x870
[  221.490102][ T4804]  __sys_getsockopt+0x1a1/0x270
[  221.491383][ T4804] 
[  221.492010][ T4804] Memory state around the buggy address:
[  221.493451][ T4804]  ffff888025f44e00: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc
[  221.495509][ T4804]  ffff888025f44e80: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  221.497575][ T4804] >ffff888025f44f00: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  221.499559][ T4804]                       ^
[  221.500639][ T4804]  ffff888025f44f80: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  221.502640][ T4804]  ffff888025f45000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  221.504678][ T4804] ==================================================================
[  221.507130][ T4804] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  221.508939][ T4804] CPU: 3 UID: 0 PID: 4804 Comm: kworker/3:2 Not tainted 6.11.0-syzkaller-12113-ge7ed34365879 #0
[  221.511520][ T4804] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  221.514149][ T4804] Workqueue: events binder_deferred_func
[  221.515558][ T4804] Call Trace:
[  221.516409][ T4804]  <TASK>
[  221.517164][ T4804]  dump_stack_lvl+0x3d/0x1f0
[  221.518339][ T4804]  panic+0x71d/0x800
[  221.519336][ T4804]  ? mark_held_locks+0x9f/0xe0
[  221.520544][ T4804]  ? __pfx_panic+0x10/0x10
[  221.521657][ T4804]  ? irqentry_exit+0x3b/0x90
[  221.522836][ T4804]  ? lockdep_hardirqs_on+0x7c/0x110
[  221.524173][ T4804]  ? check_panic_on_warn+0x1f/0xb0
[  221.525443][ T4804]  check_panic_on_warn+0xab/0xb0
[  221.526691][ T4804]  end_report+0x117/0x180
[  221.527780][ T4804]  kasan_report+0xe9/0x110
[  221.528905][ T4804]  ? __list_del_entry_valid_or_report+0x14c/0x1c0
[  221.530509][ T4804]  ? __list_del_entry_valid_or_report+0x14c/0x1c0
[  221.532116][ T4804]  __list_del_entry_valid_or_report+0x14c/0x1c0
[  221.533667][ T4804]  binder_release_work+0x9b/0x490
[  221.534950][ T4804]  binder_deferred_func+0xe6e/0x12e0
[  221.536282][ T4804]  process_one_work+0x958/0x1b30
[  221.537560][ T4804]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  221.538954][ T4804]  ? __pfx_process_one_work+0x10/0x10
[  221.540278][ T4804]  ? assign_work+0x1a0/0x250
[  221.541470][ T4804]  worker_thread+0x6c8/0xf00
[  221.542655][ T4804]  ? __pfx_worker_thread+0x10/0x10
[  221.543959][ T4804]  kthread+0x2c1/0x3a0
[  221.545012][ T4804]  ? _raw_spin_unlock_irq+0x23/0x50
[  221.546354][ T4804]  ? __pfx_kthread+0x10/0x10
[  221.547559][ T4804]  ret_from_fork+0x45/0x80
[  221.548717][ T4804]  ? __pfx_kthread+0x10/0x10
[  221.549921][ T4804]  ret_from_fork_asm+0x1a/0x30
[  221.551177][ T4804]  </TASK>
[  221.552418][ T4804] Kernel Offset: disabled
[  221.553539][ T4804] Rebooting in 86400 seconds..

VM DIAGNOSIS:
02:34:08  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000000 RBX=626ea1c19c6b862b RCX=ffffffff816940ee RDX=ffffffff969e60e0
RSI=0000000000000008 RDI=ffffffff969e60e0 RBP=ffffffff969e60a0 RSP=ffffc9000068f960
R8 =0000000000000000 R9 =fffffbfff2d315a5 R10=ffffffff9698ad2f R11=0000000000000000
R12=dffffc0000000000 R13=ffff88801e518b30 R14=0000000000000004 R15=ffff88801e518000
RIP=ffffffff8169f877 RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000063af8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c400000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000003 RBX=1ffff920003edf17 RCX=ffffffff816a2689 RDX=0000000000000000
RSI=ffffffff8bb11fe0 RDI=ffffffff8d819b88 RBP=ffffffff901cf8f8 RSP=ffffc90001f6f8a8
R8 =0000000000000000 R9 =fffffbfff20398c1 R10=ffffffff901cc60f R11=0000000000000000
R12=ffffffff8ddb7800 R13=0000000000000001 R14=000000000003dbcc R15=ffff8880235ae000
RIP=ffffffff816a26c0 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000020001000 CR3=000000002a662000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f747bff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000020 RCX=ffffffff848ee131 RDX=0000000000000020
RSI=0000000000000040 RDI=0000000000000040 RBP=ffffc9000353f538 RSP=ffffc9000353f398
R8 =0000000000000001 R9 =0000000000000040 R10=0000000000000020 R11=0000000000000000
R12=0000000000000020 R13=ffffc9000353f518 R14=ffff8880125b67a4 R15=ffffc9000353f540
RIP=ffffffff818cb160 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007ff68a2d6d00 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005616b0353000 CR3=00000000001ca000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=1b36c5261b36c526 1b36c5261b36c526 1b36c5261b36c526 1b36c5261b36c526 1b36c5261b36c526 1b36c5261b36c526 1b36c5261b36c526 1b36c5261b36c526
ZMM22=09e875dd09e875dd 09e875dd09e875dd 09e875dd09e875dd 09e875dd09e875dd 09e875dd09e875dd 09e875dd09e875dd 09e875dd09e875dd 09e875dd09e875dd
ZMM23=3093856830938568 3093856830938568 3093856830938568 3093856830938568 3093856830938568 3093856830938568 3093856830938568 3093856830938568
ZMM24=a1a3da33a1a3da33 a1a3da33a1a3da33 a1a3da33a1a3da33 a1a3da33a1a3da33 a1a3da33a1a3da33 a1a3da33a1a3da33 a1a3da33a1a3da33 a1a3da33a1a3da33
ZMM25=31a6c92631a6c926 31a6c92631a6c926 31a6c92631a6c926 31a6c92631a6c926 31a6c92631a6c926 31a6c92631a6c926 31a6c92631a6c926 31a6c92631a6c926
ZMM26=c00d0ae2c00d0ae2 c00d0ae2c00d0ae2 c00d0ae2c00d0ae2 c00d0ae2c00d0ae2 c00d0ae2c00d0ae2 c00d0ae2c00d0ae2 c00d0ae2c00d0ae2 c00d0ae2c00d0ae2
ZMM27=dab11918dab11918 dab11918dab11918 dab11918dab11918 dab11918dab11918 dab11918dab11918 dab11918dab11918 dab11918dab11918 dab11918dab11918
ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=e3080000e3080000 e3080000e3080000 e3080000e3080000 e3080000e3080000 e3080000e3080000 e3080000e3080000 e3080000e3080000 e3080000e3080000
info registers vcpu 3

CPU#3
RAX=0000000000000039 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85035855 RDI=ffffffff9a63a260 RBP=ffffffff9a63a220 RSP=ffffc900252af620
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000030383454
R12=0000000000000000 R13=0000000000000039 R14=ffffffff850357f0 R15=0000000000000000
RIP=ffffffff8503587f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f72a18e0 CR3=0000000075cfe000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0001017400000000 0000000500000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000