last executing test programs:

2m25.309501558s ago: executing program 3 (id=902):
syz_emit_vhci(&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x7)
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000080)=ANY=[@ANYBLOB], 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0xd, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000040), 0x0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r5, <r6=>0xffffffffffffffff}, &(0x7f0000000240), &(0x7f0000000280)=r3}, 0x20)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=ANY=[@ANYBLOB], 0x104}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r8=>0x0})
r9 = landlock_create_ruleset(&(0x7f0000000080)={0x220, 0x1, 0x1}, 0x18, 0x0)
landlock_restrict_self(r9, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x8000003d)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000200)={<r10=>r6, 0x718b95a8, 0xf, 0x9})
mknodat$loop(r10, &(0x7f0000000340)='./file0\x00', 0x2, 0x0)
ioctl$KVM_GET_LAPIC(r1, 0x8400ae8e, 0x0)
pipe2(&(0x7f0000000000), 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x17, 0x7, &(0x7f0000000680)=@framed={{0x18, 0x8, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x5}, [@func={0x85, 0x0, 0x1, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0x19}, @generic={0xa7}, @exit]}, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r11 = syz_open_dev$video4linux(&(0x7f0000000100), 0x0, 0x0)
poll(&(0x7f0000000280)=[{r11, 0x8}], 0x1, 0x5)
r12 = socket$inet6_sctp(0xa, 0x5, 0x84)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r13=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r13, 0x8914, &(0x7f0000000040)={'virt_wifi0\x00', @random="0005ddd5b9f7"})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="4c1f00001000010400"/20, @ANYRES32=0x0, @ANYBLOB="03000000000000001c0012800c0001006d6163766c616e000c000280080201000800000008000580", @ANYRES32=r12, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r8], 0x4c}}, 0x4014)

2m25.309268109s ago: executing program 3 (id=903):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000001c000100030000000000000007", @ANYRES32], 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x0)

2m25.239773483s ago: executing program 3 (id=904):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x3c, 0x10, 0x403, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x74, 0x0, 0x800, 0x55007}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb, 0x30a}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_MLD_VERSION={0x5, 0x2c, 0x2}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x840}, 0x0)

2m25.239329029s ago: executing program 3 (id=905):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080)={<r0=>0x0}, &(0x7f0000000100)=0xc)
setpgid(r0, 0xffffffffffffffff)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x18801a, 0x0) (async)
mount$bind(0x0, &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x18801a, 0x0)
r1 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$ARPT_SO_SET_REPLACE(r2, 0x0, 0x60, &(0x7f00000008c0)={'filter\x00', 0x2, 0x4, 0x3c8, 0x0, 0x1f8, 0x0, 0x2e0, 0x2e0, 0x2e0, 0x4, 0x0, {[{{@uncond, 0xc0, 0x108}, @unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00'}}}, {{@uncond, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30}}, {{@arp={@dev={0xac, 0x14, 0x14, 0x3e}, @dev, 0x0, 0xff0000ff, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0x108}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x418) (async)
setsockopt$ARPT_SO_SET_REPLACE(r2, 0x0, 0x60, &(0x7f00000008c0)={'filter\x00', 0x2, 0x4, 0x3c8, 0x0, 0x1f8, 0x0, 0x2e0, 0x2e0, 0x2e0, 0x4, 0x0, {[{{@uncond, 0xc0, 0x108}, @unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00'}}}, {{@uncond, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30}}, {{@arp={@dev={0xac, 0x14, 0x14, 0x3e}, @dev, 0x0, 0xff0000ff, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0x108}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x418)
r3 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
ioctl$VIDIOC_S_INPUT(r3, 0xc0045627, &(0x7f0000000080)=0x2)
socket$nl_route(0x10, 0x3, 0x0) (async)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) (async)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
ioctl$VIDIOC_S_SELECTION(r3, 0xc040565f, &(0x7f0000000040)={0x9, 0x0, 0x0, {0x400e802, 0x4, 0x9, 0x8}})
accept(r1, 0x0, 0x0)
syz_open_dev$radio(&(0x7f0000000240), 0x1, 0x2) (async)
r5 = syz_open_dev$radio(&(0x7f0000000240), 0x1, 0x2)
ioctl$VIDIOC_S_SELECTION(r5, 0xc040565f, &(0x7f00000002c0)={0x4, 0x101, 0x1, {0xe, 0xfffffffc, 0x9, 0x2d}})
acct(&(0x7f0000000000)='./file0\x00') (async)
acct(&(0x7f0000000000)='./file0\x00')
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) (async)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0xb28082, 0x0)
setns(0xffffffffffffffff, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x64, 0x3, 0x300, 0x6e, 0xffffffad, 0x190, 0x190, 0x190, 0x268, 0x268, 0x268, 0x268, 0x268, 0x3, 0x0, {[{{@ip={@remote, @local={0xac, 0x14, 0xd}, 0x0, 0x0, 'caif0\x00', 'ip6tnl0\x00'}, 0x0, 0x130, 0x190, 0xffffffc5, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "bdc74c01369df17d17ac76fa5f9b3bfa0c34430d864040bc25b2b73a59aa6ecab6b1d2cc05e3182f64694d7d05fb8b8c8f56627a54f905d564eeeb8334f650ca0f3c44f7fda4d20a55050342ea85ecc8838e7088de33582f36a0a375bb7008adc297a5ece1bb2df53d17bef26bb6f800", 0x7f}}]}, @common=@SET={0x60}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, 0x0, 0x0, 'team0\x00', 'team0\x00'}, 0x0, 0x98, 0xd8, 0x0, {}, [@common=@inet=@set1={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x360) (async)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x64, 0x3, 0x300, 0x6e, 0xffffffad, 0x190, 0x190, 0x190, 0x268, 0x268, 0x268, 0x268, 0x268, 0x3, 0x0, {[{{@ip={@remote, @local={0xac, 0x14, 0xd}, 0x0, 0x0, 'caif0\x00', 'ip6tnl0\x00'}, 0x0, 0x130, 0x190, 0xffffffc5, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "bdc74c01369df17d17ac76fa5f9b3bfa0c34430d864040bc25b2b73a59aa6ecab6b1d2cc05e3182f64694d7d05fb8b8c8f56627a54f905d564eeeb8334f650ca0f3c44f7fda4d20a55050342ea85ecc8838e7088de33582f36a0a375bb7008adc297a5ece1bb2df53d17bef26bb6f800", 0x7f}}]}, @common=@SET={0x60}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, 0x0, 0x0, 'team0\x00', 'team0\x00'}, 0x0, 0x98, 0xd8, 0x0, {}, [@common=@inet=@set1={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x360)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f0000000140), 0x0, 0x0)

2m25.159501297s ago: executing program 3 (id=906):
socket(0x10, 0x802, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201050037057b082d0800014b702c0203010902"], 0x0)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080))
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
epoll_create(0x101)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_mems\x00', 0x275a, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2000002)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
ioctl$FIDEDUPERANGE(r6, 0xc0189436, &(0x7f0000000040)={0x2, 0x0, 0x1, 0x0, 0x0, [{{r6}, 0x1}]})
ioctl$KVM_GET_MSRS(r5, 0xc008ae88, &(0x7f0000000040))
setsockopt$RXRPC_MIN_SECURITY_LEVEL(r4, 0x110, 0x4, &(0x7f00000000c0)=0x1, 0x4)

2m24.937602949s ago: executing program 3 (id=912):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{}, 0x0, 0x0}, 0x20)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d7", 0x6, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e999000000000000000000000000000000000000ffff00000000ac14", @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000fd"], 0xb8}}, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x3f00)

2m24.836515643s ago: executing program 32 (id=912):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{}, 0x0, 0x0}, 0x20)
r0 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d7", 0x6, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e999000000000000000000000000000000000000ffff00000000ac14", @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000fd"], 0xb8}}, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x3f00)

2m14.607832653s ago: executing program 1 (id=1178):
r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000c80)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x10, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_FLOW_REFILL_DELAY={0x8, 0x9, 0x4}, @TCA_FQ_RATE_ENABLE={0x8, 0x5, 0x4}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0xc800}, 0x1040)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)={0x1b, 0x0, 0x0, 0x1000000, 0x4, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x0, 0x0, 0x32314241}})

2m14.489597957s ago: executing program 1 (id=1182):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x458, 0x258, 0x4c, 0x232, 0x258, 0x0, 0x388, 0x2e8, 0x2e8, 0x388, 0x2e8, 0x3, 0x0, {[{{@ipv6={@mcast2, @mcast2, [], [], 'veth1_to_bond\x00', 'ip6gre0\x00', {}, {}, 0x6, 0x0, 0x3}, 0x0, 0x230, 0x258, 0x0, {}, [@common=@unspec=@cluster={{0x30}}, @common=@inet=@policy={{0x158}, {[{@ipv4=@dev, [], @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, {@ipv4, [], @ipv4=@broadcast}, {@ipv4=@multicast2, [], @ipv4=@dev}, {@ipv6=@loopback, [], @ipv6=@private2}], 0x1}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @remote}, @private1, [], [], 'team_slave_0\x00', 'xfrm0\x00'}, 0x0, 0xf8, 0x130, 0x0, {}, [@inet=@rpfilter={{0x28}}, @inet=@rpfilter={{0x28}}]}, @common=@inet=@SET3={0x38}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4b8) (fail_nth: 17)

2m14.389862348s ago: executing program 1 (id=1183):
sched_setscheduler(0x0, 0x2, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0x21, &(0x7f0000000200)="24fc911e918c74ad7a0e599e17a90eca", 0x10)
getsockopt$inet_tcp_buf(r0, 0x6, 0x21, 0x0, &(0x7f0000000080))
mlockall(0x2)
shmget$private(0x0, 0x400000, 0x4, &(0x7f000000e000/0x400000)=nil)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=<r2=>0x0)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000240)={0x4f8, 0x2b, 0x200, 0x70bd29, 0x25dfdbfb, "", [@nested={0x180, 0x4f, 0x0, 0x1, [@generic="0454f16d24a7795fb78e3bd7c84d67a2e68acb2b7c8cd49a980c51cdf9e6a074b84d573e065508f57e2dc6f23b36eee0def5e6ef40cae31b8d0e6ea49ff79730a0b6bfc6b57cbd31abe481b631577a7e03bbfeb01c19d233a4cbfd33be1a5a1cb1a6035f59b44aeb4eb6fd22ebd317bcb3dd1fb3df1b6d787ab275417f0391845a0c7dba4a4bb9deb0944a8f", @nested={0x4, 0x37}, @typed={0x8, 0xb, 0x0, 0x0, @u32=0x80000000}, @nested={0x4, 0x114}, @generic="022d535e7e095d9c8adff967250203dc16f9a04d249a3d370e542753e0abc8ebc03e79f6723f9524bd1da51235209c2bca917e059c41a4d068102d4c04f32b5a6765665df3937c9c65d0a7f56d39e3e61713fff0cd16822d812e95cc6881a6cf2b29762ff23dccc35c13afa52e647bd429884fcb712eb932463145f2ef2a745b7bb142cc97fabc6119add23cc79e9896560d0a946ad6333d61c97d21221f22c5abf2c3533122f2588200b8af742b43e16b70fba29e3ba21c5d845e18570291c3ad7c853416d3fa1741b72534f2274670ba52b862e2c1ca7dc561fae98bddae32"]}, @generic="3ac0ea83d30e43d822abf66e28236ed0d3487d4345b5c727866a7d43768e23ede404eadf1b2242ab9b2d682de41d18be668c73b7834a31e7c6827bbbedf95d59a59275c14ed415d235ebe860b1cf984f88f01c4ab8003aa4ea998935d7476c3c82944a40907757ebc7ed05f775593d7f34705e5d8cd9be4092ec0d8e2dc3", @generic="b52b13326c549a4ab59aa24e05380f67af93ee97489253306a72d71a591451db6e53edc6a201140ae61d8a117b9a8e8da5840c652c6882ae1969861f9799bfc7a0620942ddd8b15bfa8df9596639bbee1dd50fd55247817d10da51116f5bec93e022b28c539685c983ffe46a65130bb9e9570c9b41c10095ea10b1e9e80398809033421e2c956f5f65639cd6aeda157ceadd035607b20ed6556a10c944d514d333a1328d31037e24a956505b3341000c98e4054c939df521ddac6cbe6878243b21d6be7062fbc53155fcd1107ac56148d6435f4281bafb42056a5ea823d479837649cd3ea8cdc5", @nested={0x1f0, 0x6a, 0x0, 0x1, [@typed={0x8, 0xd1, 0x0, 0x0, @ipv4=@multicast2}, @typed={0xad, 0x151, 0x0, 0x0, @binary="e6aedb525e4871f609536713181d860bf31398c045cd3425cd3801cc692e7ffbfcf1ddb79ab922437e803acb952c6e714b84e7040e162bf2752c01d3664c69c62c6977ecad1ced49cff7d5ab5f7f81872304284ba3057f4a3184b404b7c255a799291d829e151eda1268a57c7d0be1453541b00260cf6cd3972a4863df5a97ebf71b4654be36d6e259b163414bb7340a5727ef07d0cd6effeb95b3cb32f5f041c565b36880773131b7"}, @generic="d225db8571063c174e500a3a3fbae365db2f64cfa12a42a20183d0a8fb3fa9f776b12ca86af8ff22335a176d8559dca73874928216f3a7c201b98f8306cf54306bc3", @generic="355cba50015df4d10071ae35f700766eb2c9278f76d2a2f69aa2449965d3a738ab04dbe6b858287ce54d096e6ba4e331", @nested={0x4, 0xf9}, @nested={0x4, 0x66}, @generic="5c1a7469c1dd258443868a4f0206c014f93976545a2c832695d1195c01642a45a9341b297209615b0bb41239c8cd4657e72dc87eb48332d4798372c7d80aa69188f1fecf46bc4b91ed75f1e0fd57b1e68d73007216b2e01486d738eb9b8e3cf2a7b2c104b08d28c2bfeb430ec0e8fa4cb006ca93d7d50f54145854e44453e16bfc1841b69040987cc0266f5aeb4bfc3f4fce768c194dd23aabd2d643a1fc3d6b9e0e5b1288db838075eaff37b01e2094303211493dd7", @nested={0x4, 0x2}]}, @typed={0x8, 0xa6, 0x0, 0x0, @pid=r2}, @typed={0x8, 0x86, 0x0, 0x0, @u32=0x3ff}]}, 0x4f8}], 0x1}, 0x0)
shmat(0x0, &(0x7f0000136000/0x4000)=nil, 0x4000)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r3, 0x0)

2m14.38928548s ago: executing program 1 (id=1184):
socket(0x10, 0x802, 0x0)
socket$key(0xf, 0x3, 0x2)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201050037057b082d0800014b702c0203010902"], 0x0)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
epoll_create(0x101)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_mems\x00', 0x275a, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x389380a, 0x0)
umount2(&(0x7f00000000c0)='./file0/file0\x00', 0x1)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x200)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
ioctl$FIDEDUPERANGE(r5, 0xc0189436, &(0x7f0000000040)={0x2, 0x0, 0x1, 0x0, 0x0, [{{r5}, 0x1}]})
ioctl$KVM_GET_MSRS(r4, 0xc008ae88, &(0x7f0000000040))

2m13.024782564s ago: executing program 1 (id=1196):
r0 = syz_open_dev$MSR(0x0, 0x0, 0x0)
lseek(r0, 0x9, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f00000001c0)='\x00', 0xfe3d, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000000c0)={0x0, 0xfd, 0xfe, 0x0, 0x0, 0x5, 0x8b, 0x0, 0x0, 0x80, 0x0, 0x0, 0xfc, 0x3}, 0xe)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0xfc, &(0x7f00000001c0)={&(0x7f0000000200)={0x14, 0x22, 0x1, 0xfffffffc, 0xfffffffc, {0x2}}, 0x14}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000004c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg$unix(r3, 0x0, 0x2)
setsockopt$sock_attach_bpf(r3, 0x1, 0x23, &(0x7f0000000000), 0x4)
sendmsg$inet(r4, &(0x7f0000000900)={0x0, 0x0, 0x0}, 0x0)
shutdown(r1, 0x1)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f0000000180)=0x6, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xe1, 0x0, &(0x7f0000000100)="b9ff03076844268cb89e14f005dd1be0ffff00fe3a21632f77fbac14141de007031762079f4b4d2f87e5feca6aab845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d", 0x0, 0x8, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_QOS_MAP(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x30, 0x0, 0x415e01c18bc11981, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_QOS_MAP={0x14, 0xc7, {[{0x8, 0x10}, {0x7f, 0x3}, {0xfa, 0x2}, {0xd8, 0x3}], "fd0ee3f6bd3284a7"}}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x40000a0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0xc0686611, 0x0)

2m12.959020546s ago: executing program 1 (id=1199):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000e00)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x0, 0x268, 0x311, 0x0, 0x268, 0x3f0, 0x460, 0x460, 0x3f0, 0x460, 0x9, 0x0, {[{{@uncond, 0x160, 0x288, 0x2b0, 0x3000000, {0x9401}, [@common=@inet=@hashlimit2={{0x150}, {'hsr0\x00', {0x0, 0x7f800000000000, 0x0, 0x0, 0x80, 0x5, 0x9}}}, @common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @local, @private2, @remote, [], [], [], 0x0, 0x7863}}]}, @common=@unspec=@NFQUEUE2={0x28}}, {{@ipv6={@private2, @remote, [], [], 'ip6gretap0\x00', 'ip6_vti0\x00'}, 0x0, 0xd8, 0x140, 0xe4030000, {}, [@common=@unspec=@realm={{0x30}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520)

2m12.916270256s ago: executing program 33 (id=1199):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000e00)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x0, 0x268, 0x311, 0x0, 0x268, 0x3f0, 0x460, 0x460, 0x3f0, 0x460, 0x9, 0x0, {[{{@uncond, 0x160, 0x288, 0x2b0, 0x3000000, {0x9401}, [@common=@inet=@hashlimit2={{0x150}, {'hsr0\x00', {0x0, 0x7f800000000000, 0x0, 0x0, 0x80, 0x5, 0x9}}}, @common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @local, @private2, @remote, [], [], [], 0x0, 0x7863}}]}, @common=@unspec=@NFQUEUE2={0x28}}, {{@ipv6={@private2, @remote, [], [], 'ip6gretap0\x00', 'ip6_vti0\x00'}, 0x0, 0xd8, 0x140, 0xe4030000, {}, [@common=@unspec=@realm={{0x30}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x520)

2m6.399808066s ago: executing program 0 (id=1333):
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
close(0xffffffffffffffff)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x40400, 0x0)
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0))
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x200000, 0x0)
close(r1)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r2, 0x8943, &(0x7f0000000100)={'syzkaller0\x00'})
ioctl$SIOCSIFHWADDR(r1, 0x8943, &(0x7f0000002280)={'syzkaller0\x00', @random="110000000002"})

2m6.279911654s ago: executing program 0 (id=1334):
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe2$9p(&(0x7f0000000240), 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
r0 = openat$kvm(0xffffff9c, 0x0, 0x41, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000080)={[{0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x4}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x20000000, 0x440, 0x6, 0x0, 0x0, 0x2004cb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000], 0x0, 0x200306})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2m6.279581586s ago: executing program 0 (id=1335):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000002c0)=ANY=[@ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB='6\x00\x00', @ANYRES32], 0x20)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0xfff3}}, [@TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x80, 0x4b6, 0x401, 0x0, 0x12, 0xfffffff8}}, {0x4}}]}]}, 0x48}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500))
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="090000000300000004000100", @ANYRES32, @ANYRES32], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x6, 0x14, &(0x7f0000000580)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300"], &(0x7f0000000540)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$ttynull(0xffffffffffffff9c, &(0x7f00000001c0), 0x103182, 0x0)
r1 = dup(0xffffffffffffffff)
ioctl$KDSETMODE(r1, 0x4b3a, 0x1)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
setsockopt$inet_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000c80)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=@newqdisc={0x6c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x3c, 0x2, {{0x6, 0x2, 0x0, 0x2, 0xffffffff}, [@TCA_NETEM_CORRUPT={0xc, 0x4, {0xfffffffd}}, @TCA_NETEM_RATE={0x14, 0x6, {0x1, 0x80, 0x7, 0x7a7}}]}}}]}, 0x6c}}, 0x20000000)
sendmsg$inet(r2, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000300)="f4f1ff34255f0e634dcc29", 0xb}, {&(0x7f0000002280)="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", 0x1000}], 0x2}, 0x0)

2m6.21791965s ago: executing program 0 (id=1337):
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000080)="366636f30f09c4e12f10c82e260f01b600a00000663e3e2e64f2450f5d693b410f233a410fc774ca18406f0f01c447091c00660f600b", 0x36}], 0x1, 0x12, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mlock(&(0x7f0000001000/0x2000)=nil, 0x2000)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_udp_encap(r3, 0x11, 0x68, &(0x7f0000000340)=0x1, 0x4)
setsockopt$inet_udp_encap(r3, 0x11, 0x64, &(0x7f0000000100)=0x2, 0x4)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2m6.059023387s ago: executing program 0 (id=1338):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x80001, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000400000000000900020073797a31000000000500010007000000050005000000000014000780080011400000000005001500030000000d000300686173683a6d"], 0x5c}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0xf000000)

2m5.815295165s ago: executing program 0 (id=1339):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000002c0)=ANY=[@ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB='6\x00\x00', @ANYRES32], 0x20)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0xfff3}}, [@TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x80, 0x4b6, 0x401, 0x0, 0x12, 0xfffffff8}}, {0x4}}]}]}, 0x48}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="090000000300000004000100", @ANYRES32, @ANYRES32], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x6, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000008000000000000000000000018010000786c6c2500000000070000007b1af8ff00", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000540)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)=""/83, 0x53}], 0x1}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

2m5.78268049s ago: executing program 34 (id=1339):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000002c0)=ANY=[@ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB='6\x00\x00', @ANYRES32], 0x20)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0xfff3}}, [@TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x80, 0x4b6, 0x401, 0x0, 0x12, 0xfffffff8}}, {0x4}}]}]}, 0x48}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="090000000300000004000100", @ANYRES32, @ANYRES32], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x6, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000008000000000000000000000018010000786c6c2500000000070000007b1af8ff00", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000540)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)=""/83, 0x53}], 0x1}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r5, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r6, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

15.037669473s ago: executing program 2 (id=3067):
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000300)=[0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r1, 0xc00c643c, &(0x7f0000000300))
mount$9p_virtio(0x0, 0x0, 0x0, 0x14403, 0x0)
close(r1)
bind$inet6(r0, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x4, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0xffffffac, 0x20000008, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000002600)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000140)="a132", 0x2}], 0x1}}], 0x1, 0x1)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000280)={&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000000580)=""/206, 0xce, 0x0, 0x0}, &(0x7f0000000540)=0x40)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f00000003c0)={0x28, 0x0, 0x2710, @host}, 0x10)

14.158636121s ago: executing program 2 (id=3071):
r0 = fsopen(&(0x7f0000000140)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x1)
fcntl$getownex(r0, 0x10, &(0x7f0000000000)) (async, rerun: 64)
fchdir(r1) (async, rerun: 64)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e24, @multicast2}, 0x10) (async, rerun: 32)
sendmmsg$inet(r2, &(0x7f0000000480)=[{{&(0x7f0000000000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x39}}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000080)="e6", 0x1}], 0x1}}], 0x1, 0x24040890) (async, rerun: 32)
bind$inet6(0xffffffffffffffff, 0x0, 0x0) (async)
r3 = syz_io_uring_setup(0x4169, &(0x7f0000000200)={0x0, 0x4eb0, 0x10100, 0x1}, &(0x7f0000000480), &(0x7f0000000040)=<r4=>0x0) (async)
syz_io_uring_setup(0x7b9c, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x2}, &(0x7f0000000340)=<r5=>0x0, &(0x7f00000005c0))
syz_io_uring_submit(r5, r4, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54}) (async, rerun: 32)
io_uring_enter(r3, 0x48e9, 0x0, 0x0, 0x0, 0x0) (async, rerun: 32)
r6 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async)
r7 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r7, 0xc0045516, &(0x7f0000000b00)=0x7) (async)
ioctl$SOUND_MIXER_WRITE_RECSRC(r6, 0xc0044dff, &(0x7f0000000080)=0x3ff)
ioctl$SOUND_MIXER_WRITE_RECSRC(r6, 0xc0044dff, &(0x7f0000000180)=0xef) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async, rerun: 64)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) (rerun: 64)
r8 = getpid()
sched_setscheduler(r8, 0x1, &(0x7f0000000100)=0x5) (async, rerun: 32)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff}) (rerun: 32)
connect$unix(r9, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r10, &(0x7f00000bd000), 0x318, 0x0) (async)
recvmmsg(r9, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000040)='./file0\x00') (async, rerun: 64)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0/file0/..\x00', &(0x7f0000000300)={0x410002, 0x11, 0xb}, 0x18) (async, rerun: 64)
syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)

14.105570175s ago: executing program 2 (id=3072):
r0 = syz_open_dev$MSR(0x0, 0x0, 0x0)
lseek(r0, 0x9, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f00000001c0)='\x00', 0xfe3d, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000000c0)={0x0, 0xfd, 0xfe, 0x0, 0x0, 0x5, 0x8b, 0x0, 0x0, 0x80, 0x0, 0x0, 0xfc, 0x3}, 0xe)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x14, 0x22, 0x1, 0xfffffffc, 0xfffffffc, {0x2}}, 0x14}, 0x1, 0x0, 0xfcffffff}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000004c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg$unix(r3, 0x0, 0x2)
setsockopt$sock_attach_bpf(r3, 0x1, 0x23, &(0x7f0000000000), 0x4)
sendmsg$inet(r4, &(0x7f0000000900)={0x0, 0x0, 0x0}, 0x0)
shutdown(r1, 0x1)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f0000000180)=0x6, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xe1, 0x0, &(0x7f0000000100)="b9ff03076844268cb89e14f005dd1be0ffff00fe3a21632f77fbac14141de007031762079f4b4d2f87e5feca6aab845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d", 0x0, 0x8, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_QOS_MAP(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x30, 0x0, 0x415e01c18bc11981, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_QOS_MAP={0x14, 0xc7, {[{0x8, 0x10}, {0x7f, 0x3}, {0xfa, 0x2}, {0xd8, 0x3}], "fd0ee3f6bd3284a7"}}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x40000a0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0xc0686611, 0x0)

14.018823679s ago: executing program 2 (id=3073):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/sockstat\x00')
read$FUSE(r1, &(0x7f0000000640)={0x2020}, 0x2020)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x3, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f00000000c0)=0x1, 0x4)
sendto$inet6(r0, &(0x7f00000002c0)="03", 0x1, 0x24008844, &(0x7f0000000040)={0xa, 0x2, 0x398, @ipv4={'\x00', '\xff\xff', @private=0xa010100}}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bic\x00', 0x4)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0xb, 0x8000000000002})
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f0000006300)={0x2020, 0x0, <r4=>0x0, <r5=>0x0, <r6=>0x0}, 0x2020)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
write$P9_RGETLOCK(r7, &(0x7f00000002c0)=ANY=[], 0x200002e6)
fcntl$setpipe(r7, 0x407, 0x7000000)
write$FUSE_INIT(r3, &(0x7f0000000040)={0x50, 0x0, r4, {0x7, 0x1f, 0x0, 0x10408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r3, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r3, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x0, {0xfeffffffffffffff, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3966, 0x1, 0x8000, 0x0, r5, r6, 0x2e1, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r8 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
write$tcp_congestion(r8, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r8, r3)
setsockopt$XDP_UMEM_COMPLETION_RING(0xffffffffffffffff, 0x11b, 0x6, 0x0, 0x0)
r9 = landlock_create_ruleset(&(0x7f00000000c0)={0x1400, 0x1, 0x2}, 0x18, 0x4)
landlock_restrict_self(r9, 0x0)
r10 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r10)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000440)='./binderfs2/binder1\x00', 0x800, 0x0)
dup3(r2, r1, 0x0)

13.407922072s ago: executing program 2 (id=3084):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000180)=@newqdisc={0x50, 0x24, 0xf0b, 0x2, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x1c, 0x2, [@TCA_FQ_CODEL_INTERVAL={0x8, 0x3, 0xffff}, @TCA_FQ_CODEL_CE_THRESHOLD={0x8, 0x7, 0x8}, @TCA_FQ_CODEL_MEMORY_LIMIT={0x8, 0x9, 0x6}]}}]}, 0x50}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x68, 0x2, 0x9, 0x401, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFCTH_TUPLE={0x1c, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}]}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x24, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}, @NFCTH_STATUS={0x8}]}, 0x68}, 0x1, 0x0, 0x0, 0x5}, 0x800)
r4 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
ioctl$MON_IOCX_MFETCH(r4, 0xc0109207, &(0x7f0000000080)={0x0, 0x6})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f0000001b00)={0x18, 0x2d, 0x100, 0x72bd26, 0x25dfdbfc, {0x6}, [@nested={0x4, 0xd}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000d}, 0x0)

13.078869948s ago: executing program 2 (id=3087):
socket(0x10, 0x3, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000c, 0x31, 0xffffffffffffffff, 0x80000000)
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000, 0x3, &(0x7f00007fe000/0x800000)=nil)

13.037507755s ago: executing program 35 (id=3087):
socket(0x10, 0x3, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000c, 0x31, 0xffffffffffffffff, 0x80000000)
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000, 0x3, &(0x7f00007fe000/0x800000)=nil)

11.018244982s ago: executing program 7 (id=3120):
ioprio_set$uid(0x3, 0x0, 0x4007)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 15)

10.757349398s ago: executing program 7 (id=3127):
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000180)=ANY=[@ANYBLOB="1700000056"], 0x1c}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x13, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r1, 0x4188aec6, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x7fff, 0xf3})
r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000180)={0x53, 0x0, 0x6, 0xa, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000000)="1201b9000000", 0x0, 0x0, 0x1, 0x0, 0x0})
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_VLAN_STATS_ENABLED={0x5, 0x29, 0x1}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)
r5 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r6=>0x0})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$AUDIT_GET_FEATURE(r5, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4040}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x10, 0x3fb, 0x2, 0x70bd27, 0x25dfdbfc, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x40000}, 0x80)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000480), 0xffffffffffffffff)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
signalfd(r1, &(0x7f00000004c0)={[0x200]}, 0x8)
ioctl$sock_SIOCGIFINDEX_802154(r9, 0x8933, &(0x7f0000000ac0)={'wpan1\x00', <r10=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x50, r8, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_DEVKEY={0x2c, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0202}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x57}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0002}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x9}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}]}, 0x50}, 0x1, 0x0, 0x0, 0x10040}, 0x4)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r8, 0x400, 0x70bd2c, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4040090)
syz_emit_ethernet(0x2a, &(0x7f0000000040)={@random="8580f83288e1", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x1, 0x5, 0x1c, 0x67, 0x0, 0x2, 0x2, 0x0, @private=0xa010102, @broadcast}, {0x11, 0x81, 0x0, @remote}}}}}, 0x0)
bind$can_j1939(r5, &(0x7f0000000380)={0x1d, r6, 0x2, {0x1, 0x0, 0x3}, 0xfd}, 0x18)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r11, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r13=>0x0})
sendmsg$NL80211_CMD_SET_CHANNEL(r11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, r12, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r13}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20008080}, 0x20000000)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000100), r9)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000000300), 0x0, 0x0, 0x0, 0xc0c1}, 0x840)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000004100), r3)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000440)={0x1, 0x0, [{0x2ee, 0x0, 0x8000000000000000}]})

10.661535327s ago: executing program 7 (id=3128):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newtaction={0x88, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0xfffff7e8, 0x0, 0x7000000}}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000}, 0x1, r1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x88}}, 0x0)

10.605975236s ago: executing program 7 (id=3129):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/vmstat\x00', 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x100b, 0x8000000000002})
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r4 = dup3(r3, r2, 0x80000)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@increfs], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x14}}, 0x10)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendfile(r1, r0, 0x0, 0x20000023893)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000180)='./file1\x00', 0x166)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
syz_clone(0x100, 0x0, 0xfffffffffffffc2a, 0x0, 0x0, 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0x0, 0x0)
r7 = fanotify_init(0x200, 0x0)
fanotify_mark(r7, 0x1, 0x4800003e, r6, 0x0)
readv(r7, &(0x7f0000000180)=[{&(0x7f00000025c0)=""/4096, 0x1000}], 0x1)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x8, &(0x7f0000000000)=@raw=[@alu={0x4, 0x1, 0x6, 0xa, 0x0, 0x2, 0xffffffffffffffff}, @jmp={0x5, 0x0, 0xb, 0xa, 0x9, 0xfffffffffffffffe, 0x10}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x80}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}], &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000000c0)={0x1, 0xd, 0x101}, 0x10, 0x0, 0x0, 0x5, &(0x7f0000000100)=[0xffffffffffffffff, r0, r0], &(0x7f0000000140)=[{0x3, 0x4, 0xc, 0x1}, {0x1, 0x3, 0x3, 0x8}, {0x0, 0x3, 0x3}, {0x0, 0x4, 0xb, 0x9}, {0x5, 0x4, 0x1, 0x5}], 0x10, 0x8, @void, @value}, 0x94)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000300)="eb0f90fdfb49e6e98a361d1bccfc05a5", 0x10)
close_range(r8, r1, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f00000002c0)={r8, r9})

10.52772896s ago: executing program 7 (id=3130):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x3c, 0x10, 0x403, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x74, 0x0, 0x800, 0x55007}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_MLD_VERSION={0x5, 0x2c, 0x2}]}}}]}, 0x3c}, 0x1, 0xa1ffffffffffffff, 0x0, 0x840}, 0x0)

9.115042889s ago: executing program 7 (id=3143):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x2}, 0xa0) (fail_nth: 2)

9.069401295s ago: executing program 36 (id=3143):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x2}, 0xa0) (fail_nth: 2)

4.217899011s ago: executing program 8 (id=3212):
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000040)={@private0, 0x1, 0x0, 0x1, 0x0, 0xffff, 0x6}, 0x20)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl(r0, 0x8b32, &(0x7f0000000040))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000440), 0x10)
r3 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000004780)={'syz_tun\x00', &(0x7f0000000400)=@ethtool_link_settings={0x8}})
setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r2, 0x28, 0x2, &(0x7f00000000c0), 0x8)
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040)='tracefs\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x20020, &(0x7f0000000240)=ANY=[@ANYBLOB='gid=', @ANYRESHEX=0x0, @ANYBLOB="2c00570d9431f9d867dad023a4b66eaca765a7be2827b0b9f4fa47fc9f32070000b1928ec9621965e68ff46f3b2e94ccfde49466450600582631ec3f3baf3c3a6dd0a2bd44"])
listen(r2, 0x0)
r4 = gettid()
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000080027bd7000fbdbdf25cf21b417", @ANYRES32=0x0, @ANYBLOB="00000000234000001400030076657468305f766972745f776966690008001300", @ANYRES32=r4, @ANYBLOB], 0x3c}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e000000180002"], 0x50}}, 0x0)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r6, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r6, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x2)
mount$9p_fd(0x0, &(0x7f00000005c0)='./file1\x00', &(0x7f0000000100), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="7472616e0f0066642c7266646e6f3d7f1c1f68a431d45c9f777392b537a941bcff6e3edf073bca5255ecdd597f2303e16475676951419216b1fc0a62010b00f5f4c7a335e4c13c1cbe26d70443c97773d9a1d66d7094dbfe614e3e964dbc96c44cbe79c8c0686acdf73a95a1ec23135910731eddf572d4b60759c5932c4c7f8c04a1d4dc6dadbdbbc7d895050000003b904591c7a4c81e", @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r6, @ANYBLOB=',\x00'])

3.331674941s ago: executing program 8 (id=3230):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f0000000140)={0x1100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x2}, 0xa0)

3.168741943s ago: executing program 8 (id=3232):
ioctl$HIDIOCGCOLLECTIONINFO(0xffffffffffffffff, 0xc0104811, 0x0)
openat$kvm(0x0, 0x0, 0x2382, 0x0)
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x4, 0x2, 0x0, 0x0, 0x7, 0x8}, {0x12, 0x3, 0x0, 0x401, 0x8001, 0x400}, 0xa4, 0x4, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000002680)=@newqdisc={0x34, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xfff2, 0xa}, {0xffe0}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x55}, 0x4000)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syslog(0x9, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
syslog(0x3, 0x0, 0x0)
r3 = userfaultfd(0x1)
ioctl$UFFDIO_ZEROPAGE(r3, 0xc020aa07, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d0f65acc0d06d1a1434e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab0300817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c690220b87b20581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697a8ad004eea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014751c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc518afc9ffc2cc788bee1b47683db01a2f9398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa407e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a0c93d47018c12e7ba8188a22e8b15c3e233db00002e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab188dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b4896c7aabf4df517d90bdc01e73835d50200a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987595ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e547f7ad33850d9feccd0111a2e3700845dee734fe7da3770845cf442d488afd80e17000000000000000000000000000000000000000000000000000005202000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a12489c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db08407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07af14915f29b719f54926fc32468f65bd06b4092140faed0c329be610c3082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b4c8787361f3289f86ae826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9bc7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa520000afe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da357f9e93ce055019c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c672b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8bc410d9f48bf7eac90529cd6af061c9e53addddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85e9bb70a3009a5d30f479e293a3302e11350ea857b37e76ca2f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f981fd9086e4000000000000646174b55d251f7f8ca5ccc22a5efb33b237eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4445eef08401cd1a3e266db41474e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24c5efd5c8495c1ccd580033c55725f2d60354f8ad5914a0155eaa743350ddb388f486b6de0549ef3b1b3c3b7d4d3a830ff39885776119408029be3788dd8422b1ab7b4c9d5b7d8682fd759c713108e1bdfc64b9121bbf07099def5c0ce3c861ae4b5cad8bba5a0b6059b9ef90c2f96a59320309e25df89484522bb1d6eaa92164f9e4042cb689a45a898354c17b08705205a9189772bcbcb6414e44b33a2470d3bc16f761c33f565b9da5e7991ad8482579cc1b16c1fcec815a5482ae8b1779c5e339971a6ec1217bcfd1ef24284de8a0a9f068f297037d6478c2434a9a18dcc6c7c791e444a79d7ce37f9cf2826b47ad8ca6a2fa254aa02cd098026798a6d336348af0fc11fa2809a5ebbe17ca4d0f889d518f64ee50f562b5fdb1f76d4a7fe14701f8ed0c6a55d66a6efea3e449e6b478abc5b196dd5308cb20c4e2a0bd702651bb39f10523102dcd8ece692159028f314e0d6bfa400475c6699fdc40efe0948e3cef7419a7f113134e5ee20fd87c4521ccfbd32d6f147f743d30866bdd86ca8bf0c7bcc475f4ed53517aaa51f1c151d859a7f0b53abd332c84bdad313e82ac3777a6f7f649ff8a25f6dfe09cb29213896b49a825257bf143e9fa3bbd47009e66fe5705b3ef2b40a182e408c680727d64e00e1ce508f8fd64ac6c84ccc28fc333067de63b9bb5daaa12ce60ee3779ded79651be69d2a413cd948a873dd7ad7017b150828cf100d3df8537f22aff58343c9ee966fceb594bbe10b911427f76a25a219be2f85287b7f83d323a30991067ad1369792166062085ff20c5fb"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e088641100050000210057ac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)

3.108631323s ago: executing program 8 (id=3234):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="300000001c00010000ffffff9e00000007", @ANYRES32], 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x0)

3.108313959s ago: executing program 8 (id=3235):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f00000011c0)='./file0\x00', &(0x7f00000004c0), 0x1440b, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
r0 = fsopen(&(0x7f00000003c0)='tracefs\x00', 0x1)
r1 = syz_usb_connect(0x0, 0x2d, &(0x7f00000003c0)=ANY=[@ANYBLOB="120100009ac0b620110f211066865578ac0109029c000100000400090400bf900b64ea00090587033b"], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.584737463s ago: executing program 4 (id=3268):
ioprio_set$uid(0x3, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x141082, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 83)

1.314655451s ago: executing program 4 (id=3271):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
r3 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$int_in(r3, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000001980)={0x1, 0x0, [{0x4, 0xd8, &(0x7f0000001a80)=""/216}]})
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_FEATURES(r3, 0x4008af00, &(0x7f0000000280)=0x4000000)
r5 = fcntl$dupfd(r3, 0x0, r4)
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r5, 0x4008af30, &(0x7f0000000080))
umount2(0x0, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af30, &(0x7f00000000c0)={0x1, r5})
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup_ro(r8, &(0x7f0000000640)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0)
preadv(r9, &(0x7f00000000c0)=[{&(0x7f00000004c0)=""/127, 0x7f}], 0x1, 0x0, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x1)
ioctl$KVM_SET_SIGNAL_MASK(r10, 0x4004ae8b, 0x0)
ioctl$VHOST_VDPA_GET_VRING_GROUP(r5, 0xc008af7b, &(0x7f0000000040)={0x0, 0x3})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x9, 0x3, &(0x7f0000000000)=@framed={{0x1e, 0xa, 0xa, 0x0, 0x0, 0x79, 0x10, 0x30}}, &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r11=>0x0})
r12 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r12, 0x560a, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x0, 0x0, 0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000180)={0x78, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r11}, @void}}, [@NL80211_ATTR_FRAME={0x5b, 0x33, @beacon={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, @broadcast, @device_a, @initial, {}, @value=@ver_80211n={0x0, 0x64, 0x2, 0x0, 0x0, 0x2}}, 0x0, @random, 0x0, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x1, [{0x60, 0x1}]}, @void, @val={0x4, 0x6, {0x0, 0x0, 0x1, 0x2000}}, @void, @val={0x5, 0x3}, @void, @void, @val={0x3c, 0x4}, @void, @val={0x72, 0x6}, @val={0x71, 0x7, {0x0, 0x1, 0xffffffffffffffff, 0x1, 0x2, 0xa, 0x60}}, @void}}]}, 0x78}}, 0x0)
userfaultfd(0x80801)
io_uring_enter(0xffffffffffffffff, 0x47ba, 0x0, 0x0, 0x0, 0x0)

1.178545101s ago: executing program 4 (id=3274):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x74, 0x0, 0x0)
ioctl$KVM_SET_TSC_KHZ(r2, 0xaea2, 0x7fffffff)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)

1.067769681s ago: executing program 4 (id=3277):
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c230000, 0x33, 0x2, @tid=0xffffffffffffffff})
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002600)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r0}, 0x18)
r1 = io_uring_setup(0x3226, &(0x7f0000000240)={0x0, 0x60fc, 0x200, 0x3, 0xf3})
r2 = syz_io_uring_setup(0x82e, &(0x7f0000000500)={0x0, 0xcd1d, 0x10100, 0xfffffffb, 0x0, 0x0, r1}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000080)=<r4=>0x0)
r5 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
ioctl$CDROMVOLCTRL(r5, 0x5392, &(0x7f00000004c0)={0xa, 0x5, 0x18, 0x10})
syz_io_uring_submit(r3, r4, &(0x7f00000003c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x20, 0x0, @fd_index=0x5, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001000)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
io_uring_enter(r2, 0x26c3, 0xdffffffb, 0x4c, 0x0, 0x0)

978.687431ms ago: executing program 4 (id=3279):
r0 = socket(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000280)="7800000018002507b9409b14ffff00000214ae04020206050a02040c430009003f00040510000000370085a168d0bf46d389516a9069921a4b0005000a00000049935ade4a460c89b6ec0cff3959547f5000000000c902007a00004a324004001600040000d5808bd3e30a37e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)

977.810864ms ago: executing program 4 (id=3281):
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.bfq.io_service_time_recursive\x00', 0x0, 0x0)
syz_usb_connect$hid(0x5, 0x3f, &(0x7f0000000b40)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0xdf, 0x17ef, 0x60ee, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x3c, 0x40, 0x2, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x2, 0x4, {0x9, 0x21, 0x7, 0x8, 0x1, {0x22, 0x564}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x10, 0xf3, 0x4}}, [{{0x9, 0x5, 0x2, 0x3, 0x40, 0x10, 0x1, 0x4}}]}}}]}}]}}, &(0x7f0000000dc0)={0xa, &(0x7f0000000b80)={0xa, 0x6, 0x250, 0x1, 0x3, 0x7, 0x10, 0xc0}, 0x5, &(0x7f0000000bc0)={0x5, 0xf, 0x5}, 0x3, [{0x61, &(0x7f0000000c00)=@string={0x61, 0x3, "fc2d5ec17db00226c08c5d69ed913726c1b2800501893790b737fe1612c0256b5fd273473b5d8c02cb35dafa7ef41da79a737361f8c9d8c0d35fed4ac381d2f78b65c2a53c6c4cb37de8fdc9d28ce714566579f40811cfaeb5c84741d21159"}}, {0x4, &(0x7f0000000c80)=@lang_id={0x4, 0x3, 0x402}}, {0xd2, &(0x7f0000000cc0)=@string={0xd2, 0x3, "ed3166834713853f932237f560aefb4f03700b7083424addefcdc7d5393ee527cc210ef26ceb481f334c4c059598a2f9ddd1104a9a6828d17bbc571522fb1c708d07479673ac8f558a7e1fc1a80d0198cdf0ee6d0933b8a0283bd501262d8afe6fc9191787287712d1f62eece28507e445e795da718975118f08b132515ca53cec43dc83f26d262eedf3b911c8930541a1d0f7f56a02b8d3ae909ff23e7957a9d21ce4c51ee6a376046b9cf180333e80e242996f166aef07e4ec16c2a10dd3f9726a918ad2b21a5763f1f7ad103020f7"}}]})
getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f00000000c0)={<r1=>0x0, 0xfffffffc}, &(0x7f0000000200)=0x8)
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, 0xfffffffffffffffc)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000b00)={r1, 0x10, 0x7fff}, 0x8)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=@newtaction={0x6c, 0x30, 0x48b, 0x1, 0x0, {}, [{0x58, 0x1, [@m_nat={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{}, @loopback, @multicast2, 0xff}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r4 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r4, 0x7a7, &(0x7f0000000100)=0x80000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r4, 0x7a0, &(0x7f0000000140)={@local})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r4, 0x7ab, &(0x7f0000000040)={&(0x7f0000000280)={{@local}, {@local}, 0x400, "787c2ce2fba15d4e9f8e96bc11e2ca247a20c3e26661b174fe1825253be9e8480cb4f3524914f59ba189c1429727ef39b4164f93bb821987b3b7f73495bc8e745304668e0e46798c7f5917ea8428d41cab5612336f04000000000000008e9c1c86a394feb64fb06f77dadbcb20fc62741432b7dca37007d68e98fe46135d6a1c5ed42102f58daa5211319db84aa9abac734be47c908dc3ffa3aa7b61ec16d3d1209fc618f6c4532ea582628502ac46d167db6d53d8f3184df68414e6b6ec0109664c570e155654e03d58dadd0e5a7bab42bbb4a9afdefc115eb1609e7b50dbd94b94ba09000000000000001c9e4a41d3e16af21d6c897a1121bc14de16e78d6d7f2ae79db44e302539fd926e0b91e0fc589e2fa19b218d0508b5ce3ad40d03936693ca5aa41ddc07cf492874569ab037e0530e38245b98131ae0c9afd871df5f51331938764f5a7dd96890edd467b2fbc335ed081729b5ea722a98b34d0dac6de995de4ee263c81b2567b3f87e0897857edd5d7e97d61fc67076eab4846010d4828cc879f95cddb69ff6438f2a109285c46d8224c36069d30c3c9cf4a6800ae224111136bd9c1e06c4bfc4685d7bb6a72345772b3ce9bf105490743dc4b700f24ce6b250b95e6c383fe44967a55d140baf0ec339e3815b29a2246cb5c953048c43266485bbd9d0caecf00e9501a4433b54930cba54e06607ada2f5d818e4804294fcf53058e58e0d33d4aa6dc943811056908fe9116e65cdddac1d2fb24d1eacee389af38b7e5a7056d0de50c6b49fb38388cf28c2d6dd3dbbab84ffbef4b0c02a77f018e8a9749a557909e6aa96185d268dad7744b094d8c6134b8defe26674d65f908f9c3a8c201f661fc26efe0eff248d3a473fe32a5b3643bfad8f186c2af3fbaa1d38560c1244c79a0e48893eefb792af281650f34f6c2d9a6c622aba234b63586713cb66179a0897d98ee5228569c32c1a682807c8db7eb197ccbbd6549db86a6a9aebbf5dc14060f22e2b07d6166f43c25ae0c88be7a4dc38e7ed08972a355b0e5d6fc43b8e5594fa6b36a36a44bb94b75eaff11dc17105f54beda54da2a1ea1acfab354745057dd2e7725f2c8450b19fdf37e19f6ce43449e9191f5a5beb4a1bc176f6130052e83acefd8ff18d592bb75f15f86c9113e4bd67ad420c33ae706cdc10060277b83ef30a50d4ac19c9a791b309377aa20a4743bbb799abc3ba58071b628c9ba8103bbfe389939e55296ec9b4f8d3a03aff30ce9aa0dd6e5158a672be8f3da8349ed4ad82f6ca67ee29e8b234840cf7846e604e5b8135abd94d71fe0a79180e75d4e193ea8df466c087b660fe984943751a9f6df8545699701d478c2b3daa949155770e74835bcd972de27afd20b02ce0e504c15b0237437200"}, 0x418, 0x7fffffff})
ioctl$IOCTL_VMCI_DATAGRAM_RECEIVE(r4, 0x7ac, &(0x7f0000000000)={&(0x7f00000006c0)={{@any, 0xf}, {@hyper, 0xff}, 0x400, "a0bef8f809fdbd794a5876812ecdc0f431e2e967134102e29601a109e8d6a5ea253fda100493f73e13d658b12a3dd0ee2619b2e158b8c1b070c4557ee3d7af4aa2bee609c235eee770aaee45497f554467c6e9d3f26475cfcac907d6b9d7846c4a66e178b7e711e1aa3c48463161dc313e13c58b5b22e077b23a647b4dbba9d052b703693008e1f49a92569615441c37e65f33c121efe1792557ebe6005581e24f47c1ea78ff928b49608b7e9b9e13903f343c17be0054fe54f0d8d7ec55847f847cc5bc5f54ffb48cdd6c4e992054759f155c47cf89fc8a0f48cfcea4ffe70b9fe7385805918d66fec51601c1ecbbd2d4968fa2ee1cb00bb49ae093b25d39cd0010349f9c63e8fe096e6f8afd79a91d6d0d16e0437fb9e342342795b94ceefe593cbf02d29e96b1f24b13cd77a1846e1bb48e2598c86b2c792fdda2200ebc4e4dd451afd893f7d56431141b1a3a783274db59e9b6e0433ef25a2bddb33a27bce4efdca9d10025d6dd659e7f2a57d3388cf7586814d510bb27139a7354ae00d731bfd4ef92d07469a83000d1850e84c47be45cfa6ddc6a85d6f733a6a2c952966ab3ed2a577de6dba67623b3f0e95ec21f0f7f8f8ffa4214f82dc15951b8186335578ce37d126681210eab215969b3d288e68dccb9772dfc9ae4c64b5ee5e120e90ba3685b2c7f83dedfcea4a974cc5720ed4eafa2b32bf03ae60cc716fff174a71a2ff4398e7d311303752c6b60572a9d4c50bea69e11f8ad4313677866073ae7780e58284e50e2a96e3d1b7c5ed63c9ca828961448d6d0240a7fbb458fd4ae04f42af11fb5a724be40a5ab6cc51eebd1d06cc1bb000e875db0030cc7c28a19f06dd362e774598e9669db5aaa732e589ecd57efebd3e3bbd87e6e8755cf41f97867085cfc0c13249180c5c4b0259c26f0e3a02da75480e52efeaee4a83458268362ee1e305cc3da30c43c7d25f80eba5d5386e08ecc4cb0a5ae4ddc8a7555a92800873676a1dcec504174f2bb2dea5776fbe3e8055d8918bb8589f9dd023a058a8b4fbed59a6cc78ef07bdb8f7b1dc77f1dcdc5583ca5a5dac9c5cff92a561b9ee1d8c7af343e7550c565a766299030a8e431edf48d8cd122ecda6182efe0dba76208af12a5539ed51991ad88cddca65043c0dde225d8602a783de11b636a7624d5002e27a2aed5963b0c40a80162a9449396190dd0c15bbf9fd35808a6921efb066f0924a4fe18f5cc3b008671dff827064e16e1a0589cc2bdff95a7987287955ecf2a8e8184d506ec4be628d93d5dad068ca02567388c536e23e5d36c74e9fa429279c09e29e5164219c81e2167cd01dc4ca5ff739ab6355ba1f0b84db5f2a939fd58e0b3a32a15432d77335eaee2a081699c0c865c03ffebb4c9a1bb041b164bea76b87ac63248bb570f0761c7b6eae686bd9a3f1f42bfc2961da5e11288"}, 0x418, 0x6})
close(r2)
setsockopt$bt_l2cap_L2CAP_LM(r2, 0x6, 0x3, &(0x7f0000000000), 0x4)
ioctl$FS_IOC_GETFSLABEL(r2, 0x541b, &(0x7f0000000100))

366.503793ms ago: executing program 5 (id=3284):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000040)={0x7c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x5f, 0x33, @beacon={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, @broadcast, @device_a, @initial, {}, @value=@ver_80211n={0x0, 0x64, 0x2, 0x0, 0x0, 0x2}}, 0x0, @random, 0x0, @val={0x0, 0x6, @default_ap_ssid}, @val, @void, @val={0x4, 0x6, {0x0, 0x0, 0x1, 0x2000}}, @void, @val={0x5, 0x3}, @val={0x25, 0x3, {0x1, 0x78, 0x9}}, @void, @val={0x3c, 0x4}, @void, @val={0x72, 0x6}, @val={0x71, 0x7, {0x0, 0x1, 0xffffffffffffffff, 0x1, 0x2, 0xa, 0x60}}, @void}}]}, 0x7c}}, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r6, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r7, {0x2, 0x2, @multicast2}, 0x2, 0x0, 0x4}}, 0x2e)
connect$pppl2tp(r5, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x0, @loopback}, 0x4}}, 0x2e)
userfaultfd(0x80801)
io_uring_enter(0xffffffffffffffff, 0x47ba, 0x0, 0x0, 0x0, 0x0)
ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000000)={0x0, 0x1, {0x1f, 0x19, 0x7, 0x12, 0x3, 0x7, 0x1, 0x58, 0xffffffffffffffff}})

278.715788ms ago: executing program 5 (id=3285):
syz_init_net_socket$llc(0x1a, 0x801, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0xa0001000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0) (fail_nth: 30)

277.966182ms ago: executing program 5 (id=3287):
ioprio_set$uid(0x3, 0x0, 0x4007)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 30)

208.411732ms ago: executing program 6 (id=3288):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newtaction={0x88, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0xfffff7e8, 0x0, 0xfffffff0}}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000}, 0x1, r1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x88}}, 0x0)

138.785628ms ago: executing program 6 (id=3289):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0)
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x1, @multicast, 'ip6gre0\x00'}}, 0x1e) (async)
connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x1, @multicast, 'ip6gre0\x00'}}, 0x1e)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x40) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x40)
r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r1, 0x40043d14, &(0x7f0000000500)={0x15})
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000003c0)=0x14)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x2)
r3 = syz_open_procfs$pagemap(0x0, &(0x7f0000001080))
ioctl$PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f00000001c0)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x42, 0x5c})
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0}) (async)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
dup3(r5, r4, 0x0) (async)
r6 = dup3(r5, r4, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0}) (async)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
sendmsg$kcm(r6, &(0x7f0000000a40)={&(0x7f0000000240)=@in6={0xa, 0x4e24, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x8}, 0x80, &(0x7f00000009c0)=[{&(0x7f00000002c0)='}!', 0x2}, {&(0x7f0000000340)="f9a0549cf662e946b8f574a2378c21d2b59f99c203d404c92806", 0x1a}, {&(0x7f0000000380)="37295c9d448ae9e58e146a23c1a2c29e3409c78e9f168891b16689a17be4812746e33820a97f302a490149ac613afabab70c2b", 0x33}, {&(0x7f00000010c0)="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", 0x1000}, {&(0x7f0000000400)="06aae4e71534c8944b434f564cfee4fcf7e849642416e14f06f4593e59aeee9696160becdf6490c101aafe867036f8dc8630368c05d50662166ea004d155655f285f66549fb662bfb32d078ecfb670fc8a4f7adf0683ab55bdbdfdae90ddb84edf1a1c9b3b1dda4b1da8f62bf0193295ef675fa3b3bea9d27ecbf4556b9d9f5ca3fbb7156540d210cb74ba1587d623b4871564151c59129042b42b7af29403a030ff226de594b3e1d20d3977e4ed493d46729e749dfabd5f4d1da5db4f", 0xbd}, {&(0x7f00000004c0)="0d34face086fc2dd970bd4b839", 0xd}], 0x6}, 0x40005) (async)
sendmsg$kcm(r6, &(0x7f0000000a40)={&(0x7f0000000240)=@in6={0xa, 0x4e24, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x8}, 0x80, &(0x7f00000009c0)=[{&(0x7f00000002c0)='}!', 0x2}, {&(0x7f0000000340)="f9a0549cf662e946b8f574a2378c21d2b59f99c203d404c92806", 0x1a}, {&(0x7f0000000380)="37295c9d448ae9e58e146a23c1a2c29e3409c78e9f168891b16689a17be4812746e33820a97f302a490149ac613afabab70c2b", 0x33}, {&(0x7f00000010c0)="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", 0x1000}, {&(0x7f0000000400)="06aae4e71534c8944b434f564cfee4fcf7e849642416e14f06f4593e59aeee9696160becdf6490c101aafe867036f8dc8630368c05d50662166ea004d155655f285f66549fb662bfb32d078ecfb670fc8a4f7adf0683ab55bdbdfdae90ddb84edf1a1c9b3b1dda4b1da8f62bf0193295ef675fa3b3bea9d27ecbf4556b9d9f5ca3fbb7156540d210cb74ba1587d623b4871564151c59129042b42b7af29403a030ff226de594b3e1d20d3977e4ed493d46729e749dfabd5f4d1da5db4f", 0xbd}, {&(0x7f00000004c0)="0d34face086fc2dd970bd4b839", 0xd}], 0x6}, 0x40005)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000080)=0x4b0ffc84, 0x4)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000180)={[{@subsystem='hugetlb'}, {@cpuset_v2_mode}, {@subsystem='cpuacct'}, {@xattr}]}) (async)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000180)={[{@subsystem='hugetlb'}, {@cpuset_v2_mode}, {@subsystem='cpuacct'}, {@xattr}]})
r7 = getpid()
syz_pidfd_open(r7, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=@ipv6_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {}, [@RTA_PRIORITY={0x8, 0x1e, 0x400}]}, 0x24}}, 0x0) (async)
sendmsg$nl_route(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=@ipv6_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {}, [@RTA_PRIORITY={0x8, 0x1e, 0x400}]}, 0x24}}, 0x0)
r9 = getpid()
sched_setscheduler(r9, 0x2, 0x0) (async)
sched_setscheduler(r9, 0x2, 0x0)
setpgid(r7, r9)
sendmmsg(r0, &(0x7f0000002340)=[{{0x0, 0x0, 0x0}}], 0x3e8, 0x0)

77.234781ms ago: executing program 8 (id=3290):
r0 = socket(0x10, 0x803, 0x0)
r1 = openat$userio(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f00000000c0)="5c00000013006bcc9e3be35c6e17aa31066b876c1d0000007ea6e763160af36504001ac0080010000500020002000000ef64bc24eab556a705251e618294ff0051f60a9553adac000e4509c5bbcd72c6c953ec3ded4d8217961381fd", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x10)
write$USERIO_CMD_SET_PORT_TYPE(r1, &(0x7f0000000040)={0x1, 0x6}, 0x2)
write$USERIO_CMD_REGISTER(r1, &(0x7f0000000100), 0x2)
write$USERIO_CMD_SEND_INTERRUPT(r1, &(0x7f0000000480)={0x2, 0x2}, 0x2)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
r3 = openat$sequencer(0xffffff9c, &(0x7f0000000040), 0x8000, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000002180)='net/mcfilter\x00')
preadv(r4, &(0x7f0000000740)=[{&(0x7f0000000300)=""/41, 0x29}], 0x1, 0x68, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f00000001c0)=0x11, 0x4)
read$sequencer(r3, &(0x7f0000000340)=""/117, 0x75)
getsockname$packet(r0, &(0x7f0000000080)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000140)=0x14)
getpgrp(0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000001c00020029bd7000fddbdf2507000000", @ANYRES32=r5, @ANYBLOB="800004030a0001000180c20000010000326d231e18b8e1df451911b0cdf86f91dde44ff4e2ef7b18dfb6bdc3a66f466098b3"], 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x4040010)

77.129984ms ago: executing program 6 (id=3291):
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f0000000140)={0x104000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x2}, 0xa0)

77.076567ms ago: executing program 5 (id=3292):
clock_gettime(0x2, &(0x7f0000000000))

8.728573ms ago: executing program 6 (id=3293):
syz_init_net_socket$llc(0x1a, 0x805, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0xa20d1000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)

8.603577ms ago: executing program 5 (id=3294):
r0 = fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x20d0800, 0x0)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x111202, 0x0)
r2 = io_uring_setup(0x57cb, &(0x7f00000000c0)={0x0, 0xcff1, 0x400, 0x3, 0x1ef})
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r2, 0x18, &(0x7f0000000140)={0x401, 0xffffffffffffffff, 0x0, {0x8, 0xb}, 0xfb}, 0x1)
r3 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000000)={'wg2\x00', {0x2, 0x4e23, @remote}})
ioctl$SNDCTL_MIDI_PRETIME(r1, 0xc0046d00, &(0x7f0000000240)=0x1)

8.520931ms ago: executing program 6 (id=3295):
syz_init_net_socket$llc(0x1a, 0x801, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0xa0001000, 0x0, 0xb00, 0xffffffffffffffff, 0x0, 0x0)

108.842µs ago: executing program 6 (id=3296):
syz_init_net_socket$llc(0x1a, 0x801, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0xa0001000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0) (fail_nth: 31)

0s ago: executing program 5 (id=3297):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)={0x14, r1, 0x1, 0x70bd2d, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4000804)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004c000078ac14", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='\\'], 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000280)="d25a9850a9d77f", 0x7, 0xfffffffffffffffe)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000018c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="48000000100005", @ANYRESDEC=r2], 0x48}, 0x1, 0x0, 0x0, 0xe4601ac1dea65316}, 0x0)
r3 = dup(r2)
ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r3, 0x3)
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = dup(r5)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r5, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

11][T14730] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3030'.
[  247.720576][ T6093] usb 9-1: Using ep0 maxpacket: 32
[  247.724026][ T6093] usb 9-1: config index 0 descriptor too short (expected 156, got 27)
[  247.727379][ T6093] usb 9-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  247.731210][ T6093] usb 9-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  247.734788][ T6093] usb 9-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  247.739017][ T6093] usb 9-1: config 0 interface 0 has no altsetting 0
[  247.742932][ T6093] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  247.745940][ T6093] usb 9-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  247.748715][ T6093] usb 9-1: Product: syz
[  247.750337][ T6093] usb 9-1: Manufacturer: syz
[  247.751955][ T6093] usb 9-1: SerialNumber: syz
[  247.755115][ T6093] usb 9-1: config 0 descriptor??
[  247.758538][ T6093] ldusb 9-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  247.762720][ T6093] ldusb 9-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  247.793462][T14735] syz.5.3032: vmalloc error: size 12288, failed to allocate pages, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1
[  247.801492][T14735] CPU: 1 UID: 0 PID: 14735 Comm: syz.5.3032 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  247.801508][T14735] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  247.801515][T14735] Call Trace:
[  247.801520][T14735]  <TASK>
[  247.801524][T14735]  dump_stack_lvl+0x16c/0x1f0
[  247.801542][T14735]  warn_alloc+0x248/0x3a0
[  247.801560][T14735]  ? __pfx_warn_alloc+0x10/0x10
[  247.801583][T14735]  ? alloc_pages_mpol+0x25a/0x550
[  247.801594][T14735]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  247.801622][T14735]  ? trace_kmalloc+0x2b/0xd0
[  247.801638][T14735]  __vmalloc_node_range_noprof+0x12d2/0x1540
[  247.801658][T14735]  ? kernel_clone+0xfc/0x960
[  247.801676][T14735]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  247.801690][T14735]  ? __memcg_slab_post_alloc_hook+0x4d0/0x940
[  247.801705][T14735]  ? rcu_is_watching+0x12/0xc0
[  247.801718][T14735]  ? kernel_clone+0xfc/0x960
[  247.801731][T14735]  __vmalloc_node_noprof+0x74/0xa0
[  247.801746][T14735]  ? kernel_clone+0xfc/0x960
[  247.801760][T14735]  copy_process+0x2ead/0x91a0
[  247.801774][T14735]  ? _kstrtoull+0x145/0x200
[  247.801784][T14735]  ? __pfx__kstrtoull+0x10/0x10
[  247.801796][T14735]  ? find_held_lock+0x2b/0x80
[  247.801814][T14735]  ? __pfx_copy_process+0x10/0x10
[  247.801832][T14735]  ? find_held_lock+0x2b/0x80
[  247.801850][T14735]  kernel_clone+0xfc/0x960
[  247.801864][T14735]  ? __pfx_kernel_clone+0x10/0x10
[  247.801883][T14735]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  247.801900][T14735]  __do_sys_clone+0xce/0x120
[  247.801914][T14735]  ? __pfx___do_sys_clone+0x10/0x10
[  247.801934][T14735]  ? ksys_write+0x1b9/0x240
[  247.801949][T14735]  ? __pfx_ksys_write+0x10/0x10
[  247.801963][T14735]  ? madvise_unlock+0xc6/0x190
[  247.801978][T14735]  do_syscall_64+0xcd/0x260
[  247.801993][T14735]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.802004][T14735] RIP: 0033:0x7f48da18e969
[  247.802013][T14735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.802024][T14735] RSP: 002b:00007f48d7ff5fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  247.802034][T14735] RAX: ffffffffffffffda RBX: 00007f48da3b5fa0 RCX: 00007f48da18e969
[  247.802041][T14735] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 00000000a0001000
[  247.802048][T14735] RBP: 00007f48d7ff6090 R08: 0000000000000000 R09: 0000000000000000
[  247.802054][T14735] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  247.802060][T14735] R13: 0000000000000000 R14: 00007f48da3b5fa0 R15: 00007ffce09d1658
[  247.802075][T14735]  </TASK>
[  247.802766][T14735] Mem-Info:
[  247.891983][T14735] active_anon:9370 inactive_anon:0 isolated_anon:0
[  247.891983][T14735]  active_file:5284 inactive_file:17653 isolated_file:0
[  247.891983][T14735]  unevictable:1768 dirty:199 writeback:0
[  247.891983][T14735]  slab_reclaimable:7923 slab_unreclaimable:86396
[  247.891983][T14735]  mapped:27854 shmem:5280 pagetables:677
[  247.891983][T14735]  sec_pagetables:309 bounce:0
[  247.891983][T14735]  kernel_misc_reclaimable:0
[  247.891983][T14735]  free:483980 free_pcp:2517 free_cma:0
[  247.907071][T14735] Node 0 active_anon:29152kB inactive_anon:0kB active_file:21112kB inactive_file:70408kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:111392kB dirty:792kB writeback:0kB shmem:17584kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12432kB pagetables:2708kB sec_pagetables:1236kB all_unreclaimable? no Balloon:0kB
[  247.917816][T14735] Node 1 active_anon:8328kB inactive_anon:0kB active_file:24kB inactive_file:204kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:24kB dirty:4kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:8192kB writeback_tmp:0kB kernel_stack:112kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  247.929094][T14735] Node 0 DMA free:15156kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:104kB local_pcp:0kB free_cma:0kB
[  247.938950][T14735] lowmem_reserve[]: 0 1238 1238 1238 1238
[  247.944628][T14735] Node 0 DMA32 free:348608kB boost:18432kB min:46008kB low:52900kB high:59792kB reserved_highatomic:0KB active_anon:29152kB inactive_anon:0kB active_file:21112kB inactive_file:70408kB unevictable:3536kB writepending:792kB present:2080628kB managed:1268568kB mlocked:0kB bounce:0kB free_pcp:4128kB local_pcp:1272kB free_cma:0kB
[  247.953826][T14742] netlink: 'syz.2.3035': attribute type 4 has an invalid length.
[  247.954632][T14735] lowmem_reserve[]: 0 0 0 0 0
[  247.961705][T14735] Node 1 Normal free:1572108kB boost:0kB min:39660kB low:49572kB high:59484kB reserved_highatomic:0KB active_anon:8328kB inactive_anon:0kB active_file:24kB inactive_file:204kB unevictable:3536kB writepending:4kB present:2097152kB managed:1781964kB mlocked:0kB bounce:0kB free_pcp:6340kB local_pcp:3536kB free_cma:0kB
[  247.971420][T14735] lowmem_reserve[]: 0 0 0 0 0
[  247.973060][T14735] Node 0 DMA: 3*4kB (U) 1*8kB (U) 2*16kB (U) 4*32kB (U) 6*64kB (U) 4*128kB (U) 1*256kB (U) 3*512kB (U) 2*1024kB (U) 3*2048kB (UM) 1*4096kB (U) = 15156kB
[  247.978155][T14735] Node 0 DMA32: 1452*4kB (UME) 1320*8kB (UME) 531*16kB (UME) 740*32kB (UME) 333*64kB (UME) 84*128kB (UME) 44*256kB (UME) 39*512kB (UME) 47*1024kB (UM) 26*2048kB (UM) 33*4096kB (UM) = 348384kB
[  247.984600][T14735] Node 1 Normal: 6*4kB (UME) 5*8kB (ME) 11*16kB (ME) 131*32kB (UME) 105*64kB (UME) 49*128kB (UME) 35*256kB (UE) 23*512kB (UM) 18*1024kB (U) 6*2048kB (UE) 367*4096kB (UM) = 1572112kB
[  247.990599][T14735] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  247.993774][T14735] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  247.997025][T14735] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  248.000193][T14735] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  248.003308][T14735] 28214 total pagecache pages
[  248.004930][T14735] 0 pages in swap cache
[  248.006381][T14735] Free swap  = 124996kB
[  248.007814][T14735] Total swap = 124996kB
[  248.009243][T14735] 1048443 pages RAM
[  248.010693][T14735] 0 pages HighMem/MovableOnly
[  248.012363][T14735] 281970 pages reserved
[  248.013946][T14735] 0 pages cma reserved
[  248.028436][T14746] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3037'.
[  248.205230][T14759] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3042'.
[  248.232702][T14763] netlink: 'syz.2.3044': attribute type 4 has an invalid length.
[  248.235799][T14762] netlink: 'syz.5.3043': attribute type 1 has an invalid length.
[  248.238994][T14762] netlink: 224 bytes leftover after parsing attributes in process `syz.5.3043'.
[  248.289294][T14769] netlink: 'syz.6.3047': attribute type 4 has an invalid length.
[  248.320249][T14775] netlink: 'syz.6.3049': attribute type 21 has an invalid length.
[  248.322838][T14775] netlink: 128 bytes leftover after parsing attributes in process `syz.6.3049'.
[  248.334828][T14777] FAULT_INJECTION: forcing a failure.
[  248.334828][T14777] name failslab, interval 1, probability 0, space 0, times 0
[  248.338827][T14777] CPU: 0 UID: 0 PID: 14777 Comm: syz.5.3051 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  248.338843][T14777] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  248.338850][T14777] Call Trace:
[  248.338854][T14777]  <TASK>
[  248.338858][T14777]  dump_stack_lvl+0x16c/0x1f0
[  248.338876][T14777]  should_fail_ex+0x512/0x640
[  248.338891][T14777]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  248.338909][T14777]  should_failslab+0xc2/0x120
[  248.338920][T14777]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  248.338936][T14777]  ? dup_fd+0x6ac/0xb90
[  248.338964][T14777]  ? copy_fs_struct+0x49/0x340
[  248.338980][T14777]  copy_fs_struct+0x49/0x340
[  248.338994][T14777]  copy_process+0x34c8/0x91a0
[  248.339009][T14777]  ? _kstrtoull+0x145/0x200
[  248.339019][T14777]  ? __pfx__kstrtoull+0x10/0x10
[  248.339036][T14777]  ? __pfx_copy_process+0x10/0x10
[  248.339054][T14777]  ? find_held_lock+0x2b/0x80
[  248.339073][T14777]  kernel_clone+0xfc/0x960
[  248.339087][T14777]  ? __pfx_kernel_clone+0x10/0x10
[  248.339107][T14777]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  248.339112][T14775] netlink: 'syz.6.3049': attribute type 5 has an invalid length.
[  248.339123][T14777]  __do_sys_clone+0xce/0x120
[  248.339137][T14777]  ? __pfx___do_sys_clone+0x10/0x10
[  248.339157][T14777]  ? ksys_write+0x1b9/0x240
[  248.339172][T14777]  ? __pfx_ksys_write+0x10/0x10
[  248.339186][T14777]  ? rcu_is_watching+0x12/0xc0
[  248.339202][T14777]  do_syscall_64+0xcd/0x260
[  248.339217][T14777]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.339228][T14777] RIP: 0033:0x7f48da18e969
[  248.339236][T14777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.339247][T14777] RSP: 002b:00007f48d7ff5fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  248.339257][T14777] RAX: ffffffffffffffda RBX: 00007f48da3b5fa0 RCX: 00007f48da18e969
[  248.339264][T14777] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 00000000a0001000
[  248.339270][T14777] RBP: 00007f48d7ff6090 R08: 0000000000000000 R09: 0000000000000000
[  248.339276][T14777] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  248.339282][T14777] R13: 0000000000000000 R14: 00007f48da3b5fa0 R15: 00007ffce09d1658
[  248.339295][T14777]  </TASK>
[  248.375651][T14781] FAULT_INJECTION: forcing a failure.
[  248.375651][T14781] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  248.378217][T14775] netlink: 'syz.6.3049': attribute type 6 has an invalid length.
[  248.378988][T14781] CPU: 0 UID: 0 PID: 14781 Comm: syz.5.3052 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  248.379004][T14781] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  248.379011][T14781] Call Trace:
[  248.379015][T14781]  <TASK>
[  248.379019][T14781]  dump_stack_lvl+0x16c/0x1f0
[  248.379038][T14781]  should_fail_ex+0x512/0x640
[  248.379055][T14781]  should_fail_alloc_page+0xe7/0x130
[  248.379067][T14781]  prepare_alloc_pages+0x3c2/0x610
[  248.379082][T14781]  ? rcu_is_watching+0x12/0xc0
[  248.379096][T14781]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  248.379114][T14781]  ? kasan_save_stack+0x42/0x60
[  248.379129][T14781]  ? kasan_save_stack+0x33/0x60
[  248.379144][T14781]  ? kasan_save_track+0x14/0x30
[  248.379160][T14781]  ? __kasan_kmalloc+0xaa/0xb0
[  248.379174][T14781]  ? __kvmalloc_node_noprof+0x279/0x600
[  248.379189][T14781]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  248.379200][T14781]  ? mmu_topup_memory_caches+0xbc/0x170
[  248.379215][T14781]  ? kvm_mmu_load+0xd9/0x22a0
[  248.379229][T14781]  ? vcpu_run+0x33d9/0x5320
[  248.379243][T14781]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  248.379257][T14781]  ? kvm_vcpu_ioctl+0x5e9/0x1680
[  248.379276][T14781]  ? __x64_sys_ioctl+0x190/0x200
[  248.379289][T14781]  ? do_syscall_64+0xcd/0x260
[  248.379302][T14781]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.379315][T14781]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  248.379341][T14781]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  248.379359][T14781]  ? policy_nodemask+0xea/0x4e0
[  248.379384][T14781]  alloc_pages_mpol+0x1fb/0x550
[  248.379395][T14781]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  248.379405][T14781]  ? rcu_is_watching+0x12/0xc0
[  248.379417][T14781]  ? trace_kmalloc+0x2b/0xd0
[  248.379428][T14781]  ? __kvmalloc_node_noprof+0x296/0x600
[  248.379443][T14781]  ? trace_kmem_cache_alloc+0x28/0xc0
[  248.379457][T14781]  alloc_pages_noprof+0x131/0x390
[  248.379468][T14781]  get_free_pages_noprof+0xc/0x40
[  248.379479][T14781]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  248.379494][T14781]  mmu_topup_memory_caches+0xbc/0x170
[  248.379511][T14781]  kvm_mmu_load+0xd9/0x22a0
[  248.379526][T14781]  ? kvm_apic_has_interrupt+0xb5/0x190
[  248.379539][T14781]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  248.379553][T14781]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  248.379567][T14781]  ? __pfx_kvm_mmu_load+0x10/0x10
[  248.379582][T14781]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  248.379593][T14781]  ? kvm_check_and_inject_events+0x71c/0x1310
[  248.379611][T14781]  vcpu_run+0x33d9/0x5320
[  248.379624][T14781]  ? kvm_mmu_post_init_vm+0x269/0x370
[  248.379642][T14781]  ? __lock_acquire+0xaa4/0x1ba0
[  248.379662][T14781]  ? __pfx_vcpu_run+0x10/0x10
[  248.379679][T14781]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  248.379692][T14781]  ? __local_bh_enable_ip+0xa4/0x120
[  248.379709][T14781]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  248.379724][T14781]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  248.379743][T14781]  kvm_vcpu_ioctl+0x5e9/0x1680
[  248.379761][T14781]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  248.379780][T14781]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  248.379798][T14781]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  248.379819][T14781]  ? hook_file_ioctl_common+0x145/0x410
[  248.379833][T14781]  ? selinux_file_ioctl+0x180/0x270
[  248.379847][T14781]  ? selinux_file_ioctl+0xb4/0x270
[  248.379863][T14781]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  248.379879][T14781]  __x64_sys_ioctl+0x190/0x200
[  248.379894][T14781]  do_syscall_64+0xcd/0x260
[  248.379909][T14781]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.379919][T14781] RIP: 0033:0x7f48da18e969
[  248.379928][T14781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.379939][T14781] RSP: 002b:00007f48d7ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  248.379949][T14781] RAX: ffffffffffffffda RBX: 00007f48da3b5fa0 RCX: 00007f48da18e969
[  248.379956][T14781] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  248.379962][T14781] RBP: 00007f48d7ff6090 R08: 0000000000000000 R09: 0000000000000000
[  248.379968][T14781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  248.379974][T14781] R13: 0000000000000000 R14: 00007f48da3b5fa0 R15: 00007ffce09d1658
[  248.379987][T14781]  </TASK>
[  248.586404][T14775] netlink: 3 bytes leftover after parsing attributes in process `syz.6.3049'.
[  248.696488][T14791] netlink: 'syz.5.3054': attribute type 6 has an invalid length.
[  248.725360][T14793] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3055'.
[  248.754801][T14795] netlink: 'syz.5.3056': attribute type 4 has an invalid length.
[  248.803567][T14801] netlink: 'syz.5.3059': attribute type 4 has an invalid length.
[  249.002487][T14812] FAULT_INJECTION: forcing a failure.
[  249.002487][T14812] name failslab, interval 1, probability 0, space 0, times 0
[  249.007839][T14812] CPU: 2 UID: 0 PID: 14812 Comm: syz.2.3063 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  249.007864][T14812] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  249.007873][T14812] Call Trace:
[  249.007881][T14812]  <TASK>
[  249.007889][T14812]  dump_stack_lvl+0x16c/0x1f0
[  249.007915][T14812]  should_fail_ex+0x512/0x640
[  249.007936][T14812]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  249.007964][T14812]  should_failslab+0xc2/0x120
[  249.007981][T14812]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  249.008006][T14812]  ? copy_sighand+0x43/0x2c0
[  249.008030][T14812]  copy_sighand+0x43/0x2c0
[  249.008050][T14812]  copy_process+0x271a/0x91a0
[  249.008071][T14812]  ? _kstrtoull+0x145/0x200
[  249.008087][T14812]  ? __pfx__kstrtoull+0x10/0x10
[  249.008113][T14812]  ? __pfx_copy_process+0x10/0x10
[  249.008142][T14812]  ? find_held_lock+0x2b/0x80
[  249.008172][T14812]  kernel_clone+0xfc/0x960
[  249.008195][T14812]  ? __pfx_kernel_clone+0x10/0x10
[  249.008224][T14812]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  249.008247][T14812]  __do_sys_clone+0xce/0x120
[  249.008268][T14812]  ? __pfx___do_sys_clone+0x10/0x10
[  249.008299][T14812]  ? ksys_write+0x1b9/0x240
[  249.008324][T14812]  ? __pfx_ksys_write+0x10/0x10
[  249.008346][T14812]  ? madvise_unlock+0xc6/0x190
[  249.008369][T14812]  do_syscall_64+0xcd/0x260
[  249.008391][T14812]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.008408][T14812] RIP: 0033:0x7fd4a278e969
[  249.008423][T14812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  249.008438][T14812] RSP: 002b:00007fd4a35f6fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  249.008455][T14812] RAX: ffffffffffffffda RBX: 00007fd4a29b5fa0 RCX: 00007fd4a278e969
[  249.008465][T14812] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 00000000a0001000
[  249.008475][T14812] RBP: 00007fd4a35f7090 R08: 0000000000000000 R09: 0000000000000000
[  249.008485][T14812] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[  249.008494][T14812] R13: 0000000000000000 R14: 00007fd4a29b5fa0 R15: 00007ffd867ff168
[  249.008516][T14812]  </TASK>
[  249.109785][ T5284] Bluetooth: hci2: unexpected event for opcode 0xa9d2
[  249.128786][T14814] 8021q: adding VLAN 0 to HW filter on device macvlan6
[  249.131619][T14814] bridge0: port 7(macvlan6) entered blocking state
[  249.133845][T14814] bridge0: port 7(macvlan6) entered disabled state
[  249.136078][T14814] macvlan6: entered allmulticast mode
[  249.140000][T14814] macvlan6: entered promiscuous mode
[  249.142389][T14814] bridge0: port 7(macvlan6) entered blocking state
[  249.144567][T14814] bridge0: port 7(macvlan6) entered forwarding state
[  249.459453][   T24] usb 11-1: new high-speed USB device number 14 using dummy_hcd
[  249.619537][   T24] usb 11-1: Using ep0 maxpacket: 8
[  249.622944][   T24] usb 11-1: config index 0 descriptor too short (expected 5924, got 36)
[  249.625770][   T24] usb 11-1: config 250 has an invalid interface number: 228 but max is -1
[  249.628968][   T24] usb 11-1: config 250 has 1 interface, different from the descriptor's value: 0
[  249.632028][   T24] usb 11-1: config 250 has no interface number 0
[  249.634215][   T24] usb 11-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  249.638694][   T24] usb 11-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  249.642389][   T24] usb 11-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  249.645941][   T24] usb 11-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  249.650876][   T24] usb 11-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  249.656898][   T24] usb 11-1: config 250 interface 228 has no altsetting 0
[  249.662736][   T24] usb 11-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  249.666769][   T24] usb 11-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  249.670422][   T24] usb 11-1: Product: syz
[  249.672510][   T24] usb 11-1: SerialNumber: syz
[  249.679452][   T24] hub 11-1:250.228: bad descriptor, ignoring hub
[  249.681619][   T24] hub 11-1:250.228: probe with driver hub failed with error -5
[  249.718228][T14827] set match dimension is over the limit!
[  249.848055][T14833] lo: entered allmulticast mode
[  249.850235][T14833] tunl0: entered allmulticast mode
[  249.852093][T14833] gre0: entered allmulticast mode
[  249.853828][T14833] gretap0: entered allmulticast mode
[  249.855782][T14833] erspan0: entered allmulticast mode
[  249.857569][T14833] ip_vti0: entered allmulticast mode
[  249.859555][T14833] ip6_vti0: entered allmulticast mode
[  249.861385][T14833] sit0: entered allmulticast mode
[  249.863544][T14833] ip6tnl0: entered allmulticast mode
[  249.867762][T14833] ip6gre0: entered allmulticast mode
[  249.879784][T14833] syz_tun: entered allmulticast mode
[  249.882620][   T24] usblp 11-1:250.228: usblp1: USB Bidirectional printer dev 14 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  249.894090][T14833] ip6gretap0: entered allmulticast mode
[  249.899174][T14833] bridge0: port 6(macvlan5) entered disabled state
[  249.902398][T14833] bridge0: port 5(macvlan4) entered disabled state
[  249.905376][T14833] bridge0: port 4(macvlan3) entered disabled state
[  249.908321][T14833] bridge0: port 3(macvlan2) entered disabled state
[  249.913107][T14833] bridge0: entered allmulticast mode
[  249.919517][T14833] vcan0: entered allmulticast mode
[  249.931936][T14833] team0: entered allmulticast mode
[  249.933886][T14833] team_slave_0: entered allmulticast mode
[  249.935870][T14833] team_slave_1: entered allmulticast mode
[  249.937939][T14833] geneve0: entered allmulticast mode
[  249.943238][T14833] dummy0: entered allmulticast mode
[  249.953247][T14833] nlmon0: entered allmulticast mode
[  249.958860][T14833] caif0: entered allmulticast mode
[  249.962161][T14833] batadv0: entered allmulticast mode
[  249.970288][T14833] vxcan0: entered allmulticast mode
[  249.973636][T14833] vxcan1: entered allmulticast mode
[  249.977135][T14833] veth0: entered allmulticast mode
[  249.984246][T14833] veth1: entered allmulticast mode
[  249.992556][T14833] wg0: entered allmulticast mode
[  249.997399][T14833] wg1: entered allmulticast mode
[  250.002802][T14833] wg2: entered allmulticast mode
[  250.008264][T14833] veth0_to_bridge: entered allmulticast mode
[  250.015202][T14833] veth1_to_bridge: entered allmulticast mode
[  250.022643][T14833] veth0_to_bond: entered allmulticast mode
[  250.034357][T14833] veth1_to_bond: entered allmulticast mode
[  250.043862][T14833] veth0_to_team: entered allmulticast mode
[  250.052890][T14833] veth1_to_team: entered allmulticast mode
[  250.063226][T14833] veth0_to_batadv: entered allmulticast mode
[  250.069906][T14833] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  250.073817][T14833] batadv_slave_0: entered allmulticast mode
[  250.081606][T14833] veth1_to_batadv: entered allmulticast mode
[  250.090461][T14833] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  250.094825][T14833] batadv_slave_1: entered allmulticast mode
[  250.101786][T14833] xfrm0: entered allmulticast mode
[  250.109263][T14833] veth0_to_hsr: entered allmulticast mode
[  250.114537][T14833] hsr_slave_0: entered allmulticast mode
[  250.120477][T14833] veth1_to_hsr: entered allmulticast mode
[  250.126170][T14833] hsr_slave_1: entered allmulticast mode
[  250.131560][T14833] hsr0: entered allmulticast mode
[  250.138319][T14833] veth1_virt_wifi: entered allmulticast mode
[  250.149209][T14833] veth0_virt_wifi: entered allmulticast mode
[  250.156743][T14833] net veth1_virt_wifi virt_wifi0: left promiscuous mode
[  250.159047][T14833] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  250.164086][T14833] veth1_vlan: entered allmulticast mode
[  250.170130][T14833] veth0_vlan: entered allmulticast mode
[  250.183105][T14833] @: entered allmulticast mode
[  250.184912][T14833] vlan1: entered allmulticast mode
[  250.189573][ T9237] usb 11-1: USB disconnect, device number 14
[  250.189702][T14833] macvlan0: entered allmulticast mode
[  250.193630][ T9237] usblp1: removed
[  250.198499][T14833] macvlan1: entered allmulticast mode
[  250.206058][T14833] ipvlan0: entered allmulticast mode
[  250.208420][T14833] ipvlan1: entered allmulticast mode
[  250.213213][T14833] veth1_macvtap: entered allmulticast mode
[  250.219923][T14833] veth0_macvtap: entered allmulticast mode
[  250.226979][T14833] macvtap0: entered allmulticast mode
[  250.232872][T14833] macsec0: entered allmulticast mode
[  250.240874][T14833] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  250.244702][T14833] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  250.247871][T14833] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  250.252057][T14833] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  250.255313][T14833] geneve1: entered allmulticast mode
[  250.261219][T14833] netdevsim netdevsim5 netdevsim0: entered allmulticast mode
[  250.268010][T14833] netdevsim netdevsim5 netdevsim1: entered allmulticast mode
[  250.273561][T14833] netdevsim netdevsim5 netdevsim2: entered allmulticast mode
[  250.286105][T14833] netdevsim netdevsim5 netdevsim3: entered allmulticast mode
[  250.295188][T14833] mac80211_hwsim hwsim14 wlan1: entered allmulticast mode
[  250.300338][T14833] bridge1: entered allmulticast mode
[  250.302522][T14833] dvmrp1: entered allmulticast mode
[  250.304333][T14833] bridge2: entered allmulticast mode
[  250.306189][T14833] bridge3: entered allmulticast mode
[  250.308001][T14833] bridge4: entered allmulticast mode
[  250.309980][T14833] bridge5: entered allmulticast mode
[  250.311871][T14833] bridge6: entered allmulticast mode
[  250.313700][T14833] bridge7: entered allmulticast mode
[  250.315528][T14833] bridge8: entered allmulticast mode
[  250.321060][T14833] syztnl2: entered allmulticast mode
[  250.324755][ T6093] usb 9-1: USB disconnect, device number 23
[  250.331492][ T6093] ldusb 9-1:0.0: LD USB Device #0 now disconnected
[  250.340448][T14833] bridge9: entered allmulticast mode
[  250.342369][T14833] bridge10: entered allmulticast mode
[  250.344666][T14833] bond0: left promiscuous mode
[  250.346231][T14833] bond_slave_0: left promiscuous mode
[  250.348103][T14833] bond_slave_1: left promiscuous mode
[  250.621179][T14852] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  250.732954][   T40] audit: type=1400 audit(506.638:654): avc:  denied  { audit_write } for  pid=14864 comm="syz.4.3079" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  250.738616][T14865] IPVS: set_ctl: invalid protocol: 135 224.0.0.1:20002
[  251.219492][  T836] usb 9-1: new high-speed USB device number 24 using dummy_hcd
[  251.358860][ T5284] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  251.363739][ T5284] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  251.366807][ T5284] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  251.370671][ T5284] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  251.375146][ T5284] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  251.379778][  T836] usb 9-1: Using ep0 maxpacket: 8
[  251.382948][  T836] usb 9-1: config index 0 descriptor too short (expected 5924, got 36)
[  251.387493][  T836] usb 9-1: config 250 has an invalid interface number: 228 but max is -1
[  251.391140][  T836] usb 9-1: config 250 has 1 interface, different from the descriptor's value: 0
[  251.395721][  T836] usb 9-1: config 250 has no interface number 0
[  251.397983][  T836] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  251.401763][  T836] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  251.405230][  T836] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  251.408509][  T836] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  251.411889][  T836] usb 9-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  251.416853][  T836] usb 9-1: config 250 interface 228 has no altsetting 0
[  251.420589][  T836] usb 9-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  251.423628][  T836] usb 9-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  251.426323][  T836] usb 9-1: Product: syz
[  251.427777][  T836] usb 9-1: SerialNumber: syz
[  251.434154][  T836] hub 9-1:250.228: bad descriptor, ignoring hub
[  251.436704][  T836] hub 9-1:250.228: probe with driver hub failed with error -5
[  251.457764][T14887] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  251.494138][T14882] chnl_net:caif_netlink_parms(): no params data found
[  251.563767][T14899] kvm: user requested TSC rate below hardware speed
[  251.575635][T14882] bridge0: port 1(bridge_slave_0) entered blocking state
[  251.579293][T14882] bridge0: port 1(bridge_slave_0) entered disabled state
[  251.583888][T14882] bridge_slave_0: entered allmulticast mode
[  251.587441][T14882] bridge_slave_0: entered promiscuous mode
[  251.602764][T14882] bridge0: port 2(bridge_slave_1) entered blocking state
[  251.605115][T14882] bridge0: port 2(bridge_slave_1) entered disabled state
[  251.607616][T14882] bridge_slave_1: entered allmulticast mode
[  251.611004][T14882] bridge_slave_1: entered promiscuous mode
[  251.643505][  T836] usblp 9-1:250.228: usblp0: USB Bidirectional printer dev 24 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  251.651537][T14882] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  251.656391][T14882] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  251.692735][T14882] team0: Port device team_slave_0 added
[  251.696899][T14882] team0: Port device team_slave_1 added
[  251.728445][T14882] batman_adv: batadv0: Adding interface: batadv_slave_0
[  251.731164][T14882] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  251.739571][T14882] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  251.744068][T14882] batman_adv: batadv0: Adding interface: batadv_slave_1
[  251.746407][T14882] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  251.756881][T14882] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  251.797083][T14882] hsr_slave_0: entered promiscuous mode
[  251.799722][T14882] hsr_slave_1: entered promiscuous mode
[  251.801912][T14882] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  251.804411][T14882] Cannot create hsr debugfs directory
[  251.835773][T14913] FAULT_INJECTION: forcing a failure.
[  251.835773][T14913] name failslab, interval 1, probability 0, space 0, times 0
[  251.840485][T14913] CPU: 3 UID: 0 PID: 14913 Comm: syz.6.3098 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  251.840502][T14913] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  251.840515][T14913] Call Trace:
[  251.840519][T14913]  <TASK>
[  251.840525][T14913]  dump_stack_lvl+0x16c/0x1f0
[  251.840558][T14913]  should_fail_ex+0x512/0x640
[  251.840576][T14913]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  251.840595][T14913]  should_failslab+0xc2/0x120
[  251.840606][T14913]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  251.840624][T14913]  ? copy_process+0x6c58/0x91a0
[  251.840640][T14913]  copy_process+0x6c58/0x91a0
[  251.840654][T14913]  ? _kstrtoull+0x145/0x200
[  251.840664][T14913]  ? __pfx__kstrtoull+0x10/0x10
[  251.840681][T14913]  ? __pfx_copy_process+0x10/0x10
[  251.840699][T14913]  ? find_held_lock+0x2b/0x80
[  251.840717][T14913]  kernel_clone+0xfc/0x960
[  251.840732][T14913]  ? __pfx_kernel_clone+0x10/0x10
[  251.840750][T14913]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  251.840767][T14913]  __do_sys_clone+0xce/0x120
[  251.840781][T14913]  ? __pfx___do_sys_clone+0x10/0x10
[  251.840801][T14913]  ? ksys_write+0x1b9/0x240
[  251.840815][T14913]  ? __pfx_ksys_write+0x10/0x10
[  251.840830][T14913]  ? rcu_is_watching+0x12/0xc0
[  251.840846][T14913]  do_syscall_64+0xcd/0x260
[  251.840861][T14913]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.840873][T14913] RIP: 0033:0x7fbc1fb8e969
[  251.840883][T14913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.840893][T14913] RSP: 002b:00007fbc2093bfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  251.840904][T14913] RAX: ffffffffffffffda RBX: 00007fbc1fdb5fa0 RCX: 00007fbc1fb8e969
[  251.840911][T14913] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 00000000a0001000
[  251.840917][T14913] RBP: 00007fbc2093c090 R08: 0000000000000000 R09: 0000000000000000
[  251.840924][T14913] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[  251.840930][T14913] R13: 0000000000000000 R14: 00007fbc1fdb5fa0 R15: 00007ffdd7b427c8
[  251.840942][T14913]  </TASK>
[  251.959713][  T836] usb 9-1: USB disconnect, device number 24
[  251.967440][  T836] usblp0: removed
[  251.971988][T14917] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  251.989929][T14882] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  251.994648][T14882] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  252.000683][T14882] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  252.005091][T14882] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  252.020814][T14882] bridge0: port 2(bridge_slave_1) entered blocking state
[  252.023187][T14882] bridge0: port 2(bridge_slave_1) entered forwarding state
[  252.025666][T14882] bridge0: port 1(bridge_slave_0) entered blocking state
[  252.028217][T14882] bridge0: port 1(bridge_slave_0) entered forwarding state
[  252.062136][T14882] 8021q: adding VLAN 0 to HW filter on device bond0
[  252.073029][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  252.077477][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  252.095437][T14882] 8021q: adding VLAN 0 to HW filter on device team0
[  252.105052][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  252.108449][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  252.117830][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  252.120322][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  252.139630][T14922] __nla_validate_parse: 2 callbacks suppressed
[  252.139646][T14922] netlink: 152 bytes leftover after parsing attributes in process `syz.6.3102'.
[  252.263289][T14882] 8021q: adding VLAN 0 to HW filter on device batadv0
[  252.331330][   T68] Bluetooth: hci1: unexpected event for opcode 0xa9d2
[  252.342703][T14936] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3104'.
[  252.359155][T14936] 8021q: adding VLAN 0 to HW filter on device macvlan9
[  252.362890][T14936] bridge0: port 10(macvlan9) entered blocking state
[  252.365646][T14936] bridge0: port 10(macvlan9) entered disabled state
[  252.368095][T14936] macvlan9: entered allmulticast mode
[  252.372880][T14936] macvlan9: entered promiscuous mode
[  252.375087][T14936] bridge0: port 10(macvlan9) entered blocking state
[  252.377307][T14936] bridge0: port 10(macvlan9) entered forwarding state
[  252.444921][T14882] veth0_vlan: entered promiscuous mode
[  252.471457][T14882] veth1_vlan: entered promiscuous mode
[  252.516907][T14882] veth0_macvtap: entered promiscuous mode
[  252.522118][T14882] veth1_macvtap: entered promiscuous mode
[  252.534802][T14882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  252.539125][T14882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  252.544133][T14882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  252.547602][T14882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  252.553255][T14882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  252.557483][T14882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  252.561001][T14882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  252.564432][T14882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  252.568601][T14882] batman_adv: batadv0: Interface activated: batadv_slave_0
[  252.573282][T14882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  252.576718][T14882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  252.580021][T14882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  252.583423][T14882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  252.586666][T14882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  252.590410][T14882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  252.593647][T14882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  252.597645][T14882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  252.602813][T14882] batman_adv: batadv0: Interface activated: batadv_slave_1
[  252.609556][T14882] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  252.612564][T14882] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  252.615669][T14882] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  252.618651][T14882] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  252.668619][ T1180] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  252.673090][ T1180] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.691394][ T1180] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  252.694897][ T1180] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.744982][T14966] FAULT_INJECTION: forcing a failure.
[  252.744982][T14966] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  252.750224][T14966] CPU: 0 UID: 0 PID: 14966 Comm: syz.7.3088 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  252.750241][T14966] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  252.750249][T14966] Call Trace:
[  252.750252][T14966]  <TASK>
[  252.750268][T14966]  dump_stack_lvl+0x16c/0x1f0
[  252.750287][T14966]  should_fail_ex+0x512/0x640
[  252.750303][T14966]  should_fail_alloc_page+0xe7/0x130
[  252.750315][T14966]  prepare_alloc_pages+0x3c2/0x610
[  252.750330][T14966]  ? rcu_is_watching+0x12/0xc0
[  252.750343][T14966]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  252.750361][T14966]  ? kasan_save_stack+0x42/0x60
[  252.750377][T14966]  ? kasan_save_stack+0x33/0x60
[  252.750392][T14966]  ? kasan_save_track+0x14/0x30
[  252.750406][T14966]  ? __kasan_kmalloc+0xaa/0xb0
[  252.750421][T14966]  ? __kvmalloc_node_noprof+0x279/0x600
[  252.750437][T14966]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  252.750447][T14966]  ? mmu_topup_memory_caches+0xbc/0x170
[  252.750463][T14966]  ? kvm_mmu_load+0xd9/0x22a0
[  252.750476][T14966]  ? vcpu_run+0x33d9/0x5320
[  252.750490][T14966]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  252.750504][T14966]  ? kvm_vcpu_ioctl+0x5e9/0x1680
[  252.750521][T14966]  ? __x64_sys_ioctl+0x190/0x200
[  252.750533][T14966]  ? do_syscall_64+0xcd/0x260
[  252.750547][T14966]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.750559][T14966]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  252.750585][T14966]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  252.750604][T14966]  ? policy_nodemask+0xea/0x4e0
[  252.750615][T14966]  alloc_pages_mpol+0x1fb/0x550
[  252.750627][T14966]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  252.750636][T14966]  ? rcu_is_watching+0x12/0xc0
[  252.750648][T14966]  ? trace_kmalloc+0x2b/0xd0
[  252.750659][T14966]  ? __kvmalloc_node_noprof+0x296/0x600
[  252.750674][T14966]  ? trace_kmem_cache_alloc+0x28/0xc0
[  252.750688][T14966]  alloc_pages_noprof+0x131/0x390
[  252.750699][T14966]  get_free_pages_noprof+0xc/0x40
[  252.750710][T14966]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  252.750725][T14966]  mmu_topup_memory_caches+0xbc/0x170
[  252.750741][T14966]  kvm_mmu_load+0xd9/0x22a0
[  252.750757][T14966]  ? kvm_apic_has_interrupt+0xb5/0x190
[  252.750769][T14966]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  252.750783][T14966]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  252.750796][T14966]  ? __pfx_kvm_mmu_load+0x10/0x10
[  252.750811][T14966]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  252.750822][T14966]  ? kvm_check_and_inject_events+0x71c/0x1310
[  252.750840][T14966]  vcpu_run+0x33d9/0x5320
[  252.750853][T14966]  ? kvm_mmu_post_init_vm+0x269/0x370
[  252.750871][T14966]  ? __lock_acquire+0xaa4/0x1ba0
[  252.750890][T14966]  ? __pfx_vcpu_run+0x10/0x10
[  252.750907][T14966]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  252.750921][T14966]  ? __local_bh_enable_ip+0xa4/0x120
[  252.750936][T14966]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  252.750951][T14966]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  252.750970][T14966]  kvm_vcpu_ioctl+0x5e9/0x1680
[  252.750987][T14966]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  252.751007][T14966]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  252.751025][T14966]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  252.751045][T14966]  ? hook_file_ioctl_common+0x145/0x410
[  252.751059][T14966]  ? selinux_file_ioctl+0x180/0x270
[  252.751073][T14966]  ? selinux_file_ioctl+0xb4/0x270
[  252.751090][T14966]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  252.751121][T14966]  __x64_sys_ioctl+0x190/0x200
[  252.751136][T14966]  do_syscall_64+0xcd/0x260
[  252.751150][T14966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.751160][T14966] RIP: 0033:0x7f9c3658e969
[  252.751170][T14966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  252.751180][T14966] RSP: 002b:00007f9c37418038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  252.751192][T14966] RAX: ffffffffffffffda RBX: 00007f9c367b5fa0 RCX: 00007f9c3658e969
[  252.751202][T14966] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  252.751212][T14966] RBP: 00007f9c37418090 R08: 0000000000000000 R09: 0000000000000000
[  252.751222][T14966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  252.751231][T14966] R13: 0000000000000000 R14: 00007f9c367b5fa0 R15: 00007ffe28edf188
[  252.751255][T14966]  </TASK>
[  252.889474][ T5975] usb 11-1: new high-speed USB device number 15 using dummy_hcd
[  252.987370][T14969] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  253.050634][T14971] validate_nla: 5 callbacks suppressed
[  253.050645][T14971] netlink: 'syz.7.3116': attribute type 4 has an invalid length.
[  253.059648][ T5975] usb 11-1: Using ep0 maxpacket: 8
[  253.063217][ T5975] usb 11-1: config index 0 descriptor too short (expected 5924, got 36)
[  253.066716][ T5975] usb 11-1: config 250 has an invalid interface number: 228 but max is -1
[  253.069632][ T5975] usb 11-1: config 250 has 1 interface, different from the descriptor's value: 0
[  253.072743][ T5975] usb 11-1: config 250 has no interface number 0
[  253.074945][ T5975] usb 11-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  253.078911][ T5975] usb 11-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  253.082611][ T5975] usb 11-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  253.086117][ T5975] usb 11-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  253.089741][ T5975] usb 11-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  253.094602][ T5975] usb 11-1: config 250 interface 228 has no altsetting 0
[  253.098229][ T5975] usb 11-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  253.101929][ T5975] usb 11-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  253.104755][ T5975] usb 11-1: Product: syz
[  253.106459][ T5975] usb 11-1: SerialNumber: syz
[  253.110934][ T5975] hub 11-1:250.228: bad descriptor, ignoring hub
[  253.113096][ T5975] hub 11-1:250.228: probe with driver hub failed with error -5
[  253.230094][T14980] FAULT_INJECTION: forcing a failure.
[  253.230094][T14980] name failslab, interval 1, probability 0, space 0, times 0
[  253.235321][T14980] CPU: 2 UID: 0 PID: 14980 Comm: syz.7.3120 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  253.235360][T14980] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  253.235369][T14980] Call Trace:
[  253.235374][T14980]  <TASK>
[  253.235381][T14980]  dump_stack_lvl+0x16c/0x1f0
[  253.235403][T14980]  should_fail_ex+0x512/0x640
[  253.235420][T14980]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  253.235444][T14980]  should_failslab+0xc2/0x120
[  253.235458][T14980]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  253.235478][T14980]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  253.235492][T14980]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  253.235512][T14980]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  253.235528][T14980]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  253.235547][T14980]  mmu_topup_memory_caches+0x25/0x170
[  253.235569][T14980]  kvm_mmu_load+0xd9/0x22a0
[  253.235589][T14980]  ? kvm_apic_has_interrupt+0xb5/0x190
[  253.235605][T14980]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  253.235623][T14980]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  253.235640][T14980]  ? __pfx_kvm_mmu_load+0x10/0x10
[  253.235658][T14980]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  253.235673][T14980]  ? kvm_check_and_inject_events+0x71c/0x1310
[  253.235696][T14980]  vcpu_run+0x33d9/0x5320
[  253.235713][T14980]  ? kvm_mmu_post_init_vm+0x269/0x370
[  253.235735][T14980]  ? __lock_acquire+0xaa4/0x1ba0
[  253.235760][T14980]  ? __pfx_vcpu_run+0x10/0x10
[  253.235782][T14980]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  253.235799][T14980]  ? __local_bh_enable_ip+0xa4/0x120
[  253.235820][T14980]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  253.235839][T14980]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  253.235863][T14980]  kvm_vcpu_ioctl+0x5e9/0x1680
[  253.235886][T14980]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  253.235911][T14980]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  253.235934][T14980]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  253.235960][T14980]  ? hook_file_ioctl_common+0x145/0x410
[  253.235978][T14980]  ? selinux_file_ioctl+0x180/0x270
[  253.235996][T14980]  ? selinux_file_ioctl+0xb4/0x270
[  253.236016][T14980]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  253.236037][T14980]  __x64_sys_ioctl+0x190/0x200
[  253.236056][T14980]  do_syscall_64+0xcd/0x260
[  253.236075][T14980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.236089][T14980] RIP: 0033:0x7f9c3658e969
[  253.236100][T14980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.236114][T14980] RSP: 002b:00007f9c37418038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  253.236129][T14980] RAX: ffffffffffffffda RBX: 00007f9c367b5fa0 RCX: 00007f9c3658e969
[  253.236140][T14980] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  253.236148][T14980] RBP: 00007f9c37418090 R08: 0000000000000000 R09: 0000000000000000
[  253.236155][T14980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  253.236163][T14980] R13: 0000000000000000 R14: 00007f9c367b5fa0 R15: 00007ffe28edf188
[  253.236181][T14980]  </TASK>
[  253.321184][ T5975] usblp 11-1:250.228: usblp0: USB Bidirectional printer dev 15 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  253.322798][    C2] vkms_vblank_simulate: vblank timer overrun
[  253.344020][T14990] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  253.409966][   T68] Bluetooth: hci2: command tx timeout
[  253.418487][T14992] nftables ruleset with unbound set
[  253.479910][   T10] usb 9-1: new high-speed USB device number 25 using dummy_hcd
[  253.595059][T15000] netlink: 'syz.7.3128': attribute type 4 has an invalid length.
[  253.629585][   T10] usb 9-1: Using ep0 maxpacket: 8
[  253.631908][  T835] usb 11-1: USB disconnect, device number 15
[  253.635260][T15003] evm: overlay not supported
[  253.636018][   T10] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  253.640337][  T835] usblp0: removed
[  253.643128][   T10] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  253.646271][   T10] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  253.655642][   T10] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  253.659943][   T10] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  253.662836][   T10] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  253.869995][   T10] usb 9-1: GET_CAPABILITIES returned 0
[  253.871814][   T10] usbtmc 9-1:16.0: can't read capabilities
[  254.048427][ T5284] Bluetooth: hci2: sending frame failed (-49)
[  254.051613][   T68] Bluetooth: hci2: Opcode 0x1003 failed: -49
[  254.073689][ T1022] usb 9-1: USB disconnect, device number 25
[  254.819700][T15026] block nbd6: Device being setup by another task
[  254.824595][T15019] block nbd6: shutting down sockets
[  254.825376][T15030] netlink: 'syz.5.3140': attribute type 64 has an invalid length.
[  254.829187][T15030] netlink: 'syz.5.3140': attribute type 4 has an invalid length.
[  254.831964][T15030] netlink: 152 bytes leftover after parsing attributes in process `syz.5.3140'.
[  254.922843][T15032] FAULT_INJECTION: forcing a failure.
[  254.922843][T15032] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  254.927837][T15032] CPU: 0 UID: 0 PID: 15032 Comm: syz.6.3141 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  254.927854][T15032] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  254.927860][T15032] Call Trace:
[  254.927864][T15032]  <TASK>
[  254.927869][T15032]  dump_stack_lvl+0x16c/0x1f0
[  254.927887][T15032]  should_fail_ex+0x512/0x640
[  254.927902][T15032]  should_fail_alloc_page+0xe7/0x130
[  254.927915][T15032]  prepare_alloc_pages+0x3c2/0x610
[  254.927929][T15032]  ? rcu_is_watching+0x12/0xc0
[  254.927943][T15032]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  254.927961][T15032]  ? kasan_save_stack+0x42/0x60
[  254.927976][T15032]  ? kasan_save_stack+0x33/0x60
[  254.927991][T15032]  ? kasan_save_track+0x14/0x30
[  254.928006][T15032]  ? __kasan_kmalloc+0xaa/0xb0
[  254.928020][T15032]  ? __kvmalloc_node_noprof+0x279/0x600
[  254.928036][T15032]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  254.928047][T15032]  ? mmu_topup_memory_caches+0xbc/0x170
[  254.928062][T15032]  ? kvm_mmu_load+0xd9/0x22a0
[  254.928076][T15032]  ? vcpu_run+0x33d9/0x5320
[  254.928090][T15032]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  254.928105][T15032]  ? kvm_vcpu_ioctl+0x5e9/0x1680
[  254.928119][T15032]  ? __x64_sys_ioctl+0x190/0x200
[  254.928131][T15032]  ? do_syscall_64+0xcd/0x260
[  254.928144][T15032]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.928157][T15032]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  254.928182][T15032]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  254.928201][T15032]  ? policy_nodemask+0xea/0x4e0
[  254.928213][T15032]  alloc_pages_mpol+0x1fb/0x550
[  254.928229][T15032]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  254.928239][T15032]  ? rcu_is_watching+0x12/0xc0
[  254.928250][T15032]  ? trace_kmalloc+0x2b/0xd0
[  254.928261][T15032]  ? __kvmalloc_node_noprof+0x296/0x600
[  254.928276][T15032]  ? trace_kmem_cache_alloc+0x28/0xc0
[  254.928290][T15032]  alloc_pages_noprof+0x131/0x390
[  254.928301][T15032]  get_free_pages_noprof+0xc/0x40
[  254.928312][T15032]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  254.928327][T15032]  mmu_topup_memory_caches+0xbc/0x170
[  254.928343][T15032]  kvm_mmu_load+0xd9/0x22a0
[  254.928359][T15032]  ? kvm_apic_has_interrupt+0xb5/0x190
[  254.928372][T15032]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  254.928386][T15032]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  254.928400][T15032]  ? __pfx_kvm_mmu_load+0x10/0x10
[  254.928414][T15032]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  254.928426][T15032]  ? kvm_check_and_inject_events+0x71c/0x1310
[  254.928444][T15032]  vcpu_run+0x33d9/0x5320
[  254.928458][T15032]  ? kvm_mmu_post_init_vm+0x269/0x370
[  254.928478][T15032]  ? __lock_acquire+0xaa4/0x1ba0
[  254.928497][T15032]  ? __pfx_vcpu_run+0x10/0x10
[  254.928514][T15032]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  254.928528][T15032]  ? __local_bh_enable_ip+0xa4/0x120
[  254.928545][T15032]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  254.928560][T15032]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  254.928579][T15032]  kvm_vcpu_ioctl+0x5e9/0x1680
[  254.928596][T15032]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  254.928615][T15032]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  254.928634][T15032]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  254.928654][T15032]  ? hook_file_ioctl_common+0x145/0x410
[  254.928668][T15032]  ? selinux_file_ioctl+0x180/0x270
[  254.928683][T15032]  ? selinux_file_ioctl+0xb4/0x270
[  254.928699][T15032]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  254.928715][T15032]  __x64_sys_ioctl+0x190/0x200
[  254.928729][T15032]  do_syscall_64+0xcd/0x260
[  254.928744][T15032]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.928754][T15032] RIP: 0033:0x7fbc1fb8e969
[  254.928767][T15032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  254.928777][T15032] RSP: 002b:00007fbc2093c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  254.928788][T15032] RAX: ffffffffffffffda RBX: 00007fbc1fdb5fa0 RCX: 00007fbc1fb8e969
[  254.928794][T15032] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  254.928800][T15032] RBP: 00007fbc2093c090 R08: 0000000000000000 R09: 0000000000000000
[  254.928809][T15032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  254.928816][T15032] R13: 0000000000000000 R14: 00007fbc1fdb5fa0 R15: 00007ffdd7b427c8
[  254.928829][T15032]  </TASK>
[  255.134548][T15040] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  255.145520][ T1022] usb 9-1: new high-speed USB device number 26 using dummy_hcd
[  255.203754][   T40] audit: type=1400 audit(511.108:655): avc:  denied  { create } for  pid=15043 comm="syz.6.3146" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  255.210469][   T40] audit: type=1400 audit(511.108:656): avc:  denied  { write } for  pid=15043 comm="syz.6.3146" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  255.239081][T15047] FAULT_INJECTION: forcing a failure.
[  255.239081][T15047] name failslab, interval 1, probability 0, space 0, times 0
[  255.246983][T15047] CPU: 3 UID: 0 PID: 15047 Comm: syz.6.3147 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  255.247010][T15047] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  255.247021][T15047] Call Trace:
[  255.247027][T15047]  <TASK>
[  255.247034][T15047]  dump_stack_lvl+0x16c/0x1f0
[  255.247062][T15047]  should_fail_ex+0x512/0x640
[  255.247083][T15047]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  255.247112][T15047]  should_failslab+0xc2/0x120
[  255.247130][T15047]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  255.247156][T15047]  ? vm_area_dup+0x25/0x760
[  255.247181][T15047]  vm_area_dup+0x25/0x760
[  255.247203][T15047]  copy_process+0x7f67/0x91a0
[  255.247241][T15047]  ? __pfx_copy_process+0x10/0x10
[  255.247272][T15047]  ? find_held_lock+0x2b/0x80
[  255.247302][T15047]  kernel_clone+0xfc/0x960
[  255.247326][T15047]  ? __pfx_kernel_clone+0x10/0x10
[  255.247358][T15047]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  255.247384][T15047]  __do_sys_clone+0xce/0x120
[  255.247406][T15047]  ? __pfx___do_sys_clone+0x10/0x10
[  255.247439][T15047]  ? ksys_write+0x1b9/0x240
[  255.247462][T15047]  ? __pfx_ksys_write+0x10/0x10
[  255.247490][T15047]  ? rcu_is_watching+0x12/0xc0
[  255.247517][T15047]  do_syscall_64+0xcd/0x260
[  255.247541][T15047]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  255.247559][T15047] RIP: 0033:0x7fbc1fb8e969
[  255.247573][T15047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  255.247589][T15047] RSP: 002b:00007fbc2093bfe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  255.247606][T15047] RAX: ffffffffffffffda RBX: 00007fbc1fdb5fa0 RCX: 00007fbc1fb8e969
[  255.247617][T15047] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 00000000a0001000
[  255.247628][T15047] RBP: 00007fbc2093c090 R08: 0000000000000000 R09: 0000000000000000
[  255.247637][T15047] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[  255.247647][T15047] R13: 0000000000000000 R14: 00007fbc1fdb5fa0 R15: 00007ffdd7b427c8
[  255.247669][T15047]  </TASK>
[  255.339547][ T1022] usb 9-1: Using ep0 maxpacket: 8
[  255.342803][ T1022] usb 9-1: config index 0 descriptor too short (expected 5924, got 36)
[  255.345589][ T1022] usb 9-1: config 250 has an invalid interface number: 228 but max is -1
[  255.349032][ T1022] usb 9-1: config 250 has 1 interface, different from the descriptor's value: 0
[  255.352225][ T1022] usb 9-1: config 250 has no interface number 0
[  255.354355][ T1022] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  255.358578][ T1022] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  255.358998][ T5284] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  255.362062][ T1022] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  255.362079][ T1022] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  255.362091][ T1022] usb 9-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  255.362105][ T1022] usb 9-1: config 250 interface 228 has no altsetting 0
[  255.366143][ T1022] usb 9-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  255.371807][ T5284] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  255.372297][T15053] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  255.373773][ T1022] usb 9-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  255.379185][ T5284] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  255.380442][ T1022] usb 9-1: Product: syz
[  255.384008][ T5284] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  255.386476][ T1022] usb 9-1: SerialNumber: syz
[  255.387361][T15051] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3149'.
[  255.391428][ T5284] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  255.398865][ T1022] hub 9-1:250.228: bad descriptor, ignoring hub
[  255.410763][ T1022] hub 9-1:250.228: probe with driver hub failed with error -5
[  255.442636][T15059] netlink: 'syz.6.3151': attribute type 4 has an invalid length.
[  255.494256][T15063] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3152'.
[  255.523077][T15068] netlink: 'syz.6.3154': attribute type 2 has an invalid length.
[  255.526749][T15068] netlink: 'syz.6.3154': attribute type 1 has an invalid length.
[  255.530894][T15068] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3154'.
[  255.546995][ T1143] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.559250][T15048] chnl_net:caif_netlink_parms(): no params data found
[  255.561957][T15075] Cannot find set identified by id 0 to match
[  255.572993][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  255.575371][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  255.604309][ T1022] usblp 9-1:250.228: usblp0: USB Bidirectional printer dev 26 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  255.630964][T15048] bridge0: port 1(bridge_slave_0) entered blocking state
[  255.633393][T15048] bridge0: port 1(bridge_slave_0) entered disabled state
[  255.635970][T15048] bridge_slave_0: entered allmulticast mode
[  255.638803][T15048] bridge_slave_0: entered promiscuous mode
[  255.642440][T15048] bridge0: port 2(bridge_slave_1) entered blocking state
[  255.644911][T15048] bridge0: port 2(bridge_slave_1) entered disabled state
[  255.647731][T15048] bridge_slave_1: entered allmulticast mode
[  255.656172][T15048] bridge_slave_1: entered promiscuous mode
[  255.692872][T15048] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  255.697962][T15048] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  255.737808][T15048] team0: Port device team_slave_0 added
[  255.745155][T15048] team0: Port device team_slave_1 added
[  255.748622][T15089] netlink: 92 bytes leftover after parsing attributes in process `syz.6.3160'.
[  255.796800][T15048] batman_adv: batadv0: Adding interface: batadv_slave_0
[  255.799138][T15048] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  255.799154][T15048] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  255.800480][T15048] batman_adv: batadv0: Adding interface: batadv_slave_1
[  255.807838][   T40] audit: type=1400 audit(511.708:657): avc:  denied  { watch } for  pid=15093 comm="syz.5.3162" path="pipe:[95223]" dev="pipefs" ino=95223 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  255.827142][T15048] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  255.838287][T15048] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  255.896633][T15098] netlink: 36 bytes leftover after parsing attributes in process `syz.6.3164'.
[  255.919704][ T1022] usb 9-1: USB disconnect, device number 26
[  255.924737][ T1022] usblp0: removed
[  255.933480][   T40] audit: type=1326 audit(511.838:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15097 comm="syz.6.3164" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc1fb8e969 code=0x50000
[  255.944766][   T40] audit: type=1326 audit(511.838:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15097 comm="syz.6.3164" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc1fb8e969 code=0x50000
[  255.948277][T15048] hsr_slave_0: entered promiscuous mode
[  255.954517][   T40] audit: type=1326 audit(511.838:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15097 comm="syz.6.3164" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc1fb8e969 code=0x50000
[  255.956620][T15048] hsr_slave_1: entered promiscuous mode
[  255.965778][   T40] audit: type=1326 audit(511.838:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15097 comm="syz.6.3164" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc1fb8e969 code=0x50000
[  255.966490][T15048] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  255.977114][   T40] audit: type=1326 audit(511.838:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15097 comm="syz.6.3164" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc1fb8e969 code=0x50000
[  255.984665][T15048] Cannot create hsr debugfs directory
[  255.987910][   T40] audit: type=1326 audit(511.838:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15097 comm="syz.6.3164" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc1fb8e969 code=0x50000
[  255.997322][   T40] audit: type=1326 audit(511.838:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15097 comm="syz.6.3164" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc1fb8e969 code=0x50000
[  256.004192][   T40] audit: type=1326 audit(511.838:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15097 comm="syz.6.3164" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc1fb8e969 code=0x50000
[  256.011201][   T40] audit: type=1326 audit(511.838:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15097 comm="syz.6.3164" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc1fb8e969 code=0x50000
[  256.050322][ T1143] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.112404][ T1143] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.180405][ T1143] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.347037][T15048] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  256.355914][ T1143] bridge_slave_1: left allmulticast mode
[  256.357752][ T1143] bridge_slave_1: left promiscuous mode
[  256.362357][ T1143] bridge0: port 2(bridge_slave_1) entered disabled state
[  256.368466][ T1143] bridge_slave_0: left allmulticast mode
[  256.371643][ T1143] bridge_slave_0: left promiscuous mode
[  256.374279][ T1143] bridge0: port 1(bridge_slave_0) entered disabled state
[  256.509647][T15124] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3172'.
[  256.619524][   T24] usb 9-1: new high-speed USB device number 27 using dummy_hcd
[  256.794101][   T24] usb 9-1: Using ep0 maxpacket: 32
[  256.797039][   T24] usb 9-1: config 0 has no interfaces?
[  256.798939][   T24] usb 9-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  256.801992][   T24] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  256.805788][ T1143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  256.809045][   T24] usb 9-1: config 0 descriptor??
[  256.814726][ T1143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  256.819269][ T1143] bond0 (unregistering): Released all slaves
[  256.827287][T15048] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  256.831696][T15048] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  256.836712][T15123] net veth1_virt_wifi virt_wifi0: entered promiscuous mode
[  256.839076][T15123] net veth1_virt_wifi virt_wifi0: left allmulticast mode
[  256.849904][T15124] 8021q: adding VLAN 0 to HW filter on device macvlan6
[  256.852654][T15124] bridge0: port 7(macvlan6) entered blocking state
[  256.854953][T15124] bridge0: port 7(macvlan6) entered disabled state
[  256.857647][T15124] macvlan6: entered allmulticast mode
[  256.860521][T15124] macvlan6: entered promiscuous mode
[  256.862409][T15124] bond0: entered promiscuous mode
[  256.864099][T15124] bond_slave_0: entered promiscuous mode
[  256.866136][T15124] bond_slave_1: entered promiscuous mode
[  256.924096][T15048] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  257.012676][T15048] 8021q: adding VLAN 0 to HW filter on device bond0
[  257.015310][T15130] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  257.017019][ T5972] usb 9-1: USB disconnect, device number 27
[  257.062472][T15048] 8021q: adding VLAN 0 to HW filter on device team0
[  257.074085][  T104] bridge0: port 1(bridge_slave_0) entered blocking state
[  257.076509][  T104] bridge0: port 1(bridge_slave_0) entered forwarding state
[  257.083815][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  257.086227][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  257.121864][ T1143] hsr_slave_0: left promiscuous mode
[  257.124097][ T1143] hsr_slave_1: left promiscuous mode
[  257.126485][ T1143] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  257.128929][ T1143] batman_adv: batadv0: Removing interface: batadv_slave_0
[  257.131996][ T1143] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  257.134464][ T1143] batman_adv: batadv0: Removing interface: batadv_slave_1
[  257.179998][ T1143] veth1_macvtap: left promiscuous mode
[  257.181871][ T1143] veth0_macvtap: left promiscuous mode
[  257.183745][ T1143] veth1_vlan: left promiscuous mode
[  257.185751][ T1143] veth0_vlan: left promiscuous mode
[  257.411490][   T68] Bluetooth: hci2: command tx timeout
[  257.480538][ T5972] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[  257.560717][T15140] FAULT_INJECTION: forcing a failure.
[  257.560717][T15140] name failslab, interval 1, probability 0, space 0, times 0
[  257.564806][T15140] CPU: 3 UID: 0 PID: 15140 Comm: syz.4.3178 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  257.564823][T15140] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  257.564830][T15140] Call Trace:
[  257.564834][T15140]  <TASK>
[  257.564839][T15140]  dump_stack_lvl+0x16c/0x1f0
[  257.564857][T15140]  should_fail_ex+0x512/0x640
[  257.564870][T15140]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  257.564889][T15140]  should_failslab+0xc2/0x120
[  257.564901][T15140]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  257.564918][T15140]  ? vm_area_dup+0x25/0x760
[  257.564933][T15140]  vm_area_dup+0x25/0x760
[  257.564947][T15140]  copy_process+0x7f67/0x91a0
[  257.564971][T15140]  ? __pfx_copy_process+0x10/0x10
[  257.564989][T15140]  ? find_held_lock+0x2b/0x80
[  257.565008][T15140]  kernel_clone+0xfc/0x960
[  257.565023][T15140]  ? __pfx_kernel_clone+0x10/0x10
[  257.565042][T15140]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  257.565059][T15140]  __do_sys_clone+0xce/0x120
[  257.565073][T15140]  ? __pfx___do_sys_clone+0x10/0x10
[  257.565093][T15140]  ? ksys_write+0x1b9/0x240
[  257.565109][T15140]  ? __pfx_ksys_write+0x10/0x10
[  257.565123][T15140]  ? rcu_is_watching+0x12/0xc0
[  257.565140][T15140]  do_syscall_64+0xcd/0x260
[  257.565155][T15140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.565166][T15140] RIP: 0033:0x7f226a38e969
[  257.565176][T15140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  257.565187][T15140] RSP: 002b:00007f226b22afe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  257.565197][T15140] RAX: ffffffffffffffda RBX: 00007f226a5b5fa0 RCX: 00007f226a38e969
[  257.565204][T15140] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 00000000a0001000
[  257.565210][T15140] RBP: 00007f226b22b090 R08: 0000000000000000 R09: 0000000000000000
[  257.565217][T15140] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[  257.565223][T15140] R13: 0000000000000000 R14: 00007f226a5b5fa0 R15: 00007ffefd00ced8
[  257.565236][T15140]  </TASK>
[  257.665547][ T5972] usb 10-1: Using ep0 maxpacket: 8
[  257.676249][ T5972] usb 10-1: config index 0 descriptor too short (expected 5924, got 36)
[  257.679828][ T5972] usb 10-1: config 250 has an invalid interface number: 228 but max is -1
[  257.683281][ T5972] usb 10-1: config 250 has 1 interface, different from the descriptor's value: 0
[  257.686995][ T5972] usb 10-1: config 250 has no interface number 0
[  257.689104][ T5972] usb 10-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  257.692889][ T5972] usb 10-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  257.696238][ T5972] usb 10-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  257.699649][ T5972] usb 10-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  257.703065][ T5972] usb 10-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  257.707416][ T5972] usb 10-1: config 250 interface 228 has no altsetting 0
[  257.731042][ T5972] usb 10-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  257.734029][ T5972] usb 10-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  257.736752][ T5972] usb 10-1: Product: syz
[  257.738150][ T5972] usb 10-1: SerialNumber: syz
[  257.774695][ T5972] hub 10-1:250.228: bad descriptor, ignoring hub
[  257.777518][ T5972] hub 10-1:250.228: probe with driver hub failed with error -5
[  257.981219][ T5972] usblp 10-1:250.228: usblp0: USB Bidirectional printer dev 15 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  258.077698][ T1143] team0 (unregistering): Port device team_slave_1 removed
[  258.160730][ T1143] team0 (unregistering): Port device team_slave_0 removed
[  258.279654][   T76] usb 10-1: USB disconnect, device number 15
[  258.284310][   T76] usblp0: removed
[  258.751589][T15152] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3181'.
[  258.831927][T15150] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3180'.
[  258.847492][T15048] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  258.851733][T15048] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  258.878986][T15162] netdevsim netdevsim4: Firmware load for './cgroup/../file0' refused, path contains '..' component
[  258.923298][T15170] FAULT_INJECTION: forcing a failure.
[  258.923298][T15170] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  258.928262][T15170] CPU: 2 UID: 0 PID: 15170 Comm: syz.4.3187 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  258.928279][T15170] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  258.928285][T15170] Call Trace:
[  258.928290][T15170]  <TASK>
[  258.928294][T15170]  dump_stack_lvl+0x16c/0x1f0
[  258.928312][T15170]  should_fail_ex+0x512/0x640
[  258.928328][T15170]  should_fail_alloc_page+0xe7/0x130
[  258.928340][T15170]  prepare_alloc_pages+0x3c2/0x610
[  258.928355][T15170]  ? rcu_is_watching+0x12/0xc0
[  258.928369][T15170]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  258.928387][T15170]  ? kasan_save_stack+0x42/0x60
[  258.928403][T15170]  ? kasan_save_stack+0x33/0x60
[  258.928418][T15170]  ? kasan_save_track+0x14/0x30
[  258.928432][T15170]  ? __kasan_kmalloc+0xaa/0xb0
[  258.928447][T15170]  ? __kvmalloc_node_noprof+0x279/0x600
[  258.928462][T15170]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  258.928473][T15170]  ? mmu_topup_memory_caches+0xbc/0x170
[  258.928490][T15170]  ? kvm_mmu_load+0xd9/0x22a0
[  258.928503][T15170]  ? vcpu_run+0x33d9/0x5320
[  258.928517][T15170]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  258.928532][T15170]  ? kvm_vcpu_ioctl+0x5e9/0x1680
[  258.928547][T15170]  ? __x64_sys_ioctl+0x190/0x200
[  258.928559][T15170]  ? do_syscall_64+0xcd/0x260
[  258.928572][T15170]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.928585][T15170]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  258.928610][T15170]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  258.928629][T15170]  ? policy_nodemask+0xea/0x4e0
[  258.928641][T15170]  alloc_pages_mpol+0x1fb/0x550
[  258.928653][T15170]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  258.928662][T15170]  ? rcu_is_watching+0x12/0xc0
[  258.928674][T15170]  ? trace_kmalloc+0x2b/0xd0
[  258.928685][T15170]  ? __kvmalloc_node_noprof+0x296/0x600
[  258.928700][T15170]  ? trace_kmem_cache_alloc+0x28/0xc0
[  258.928714][T15170]  alloc_pages_noprof+0x131/0x390
[  258.928725][T15170]  get_free_pages_noprof+0xc/0x40
[  258.928737][T15170]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  258.928752][T15170]  mmu_topup_memory_caches+0xbc/0x170
[  258.928768][T15170]  kvm_mmu_load+0xd9/0x22a0
[  258.928784][T15170]  ? kvm_apic_has_interrupt+0xb5/0x190
[  258.928797][T15170]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  258.928811][T15170]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  258.928824][T15170]  ? __pfx_kvm_mmu_load+0x10/0x10
[  258.928839][T15170]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  258.928850][T15170]  ? kvm_check_and_inject_events+0x71c/0x1310
[  258.928868][T15170]  vcpu_run+0x33d9/0x5320
[  258.928882][T15170]  ? kvm_mmu_post_init_vm+0x269/0x370
[  258.928899][T15170]  ? __lock_acquire+0xaa4/0x1ba0
[  258.928918][T15170]  ? __pfx_vcpu_run+0x10/0x10
[  258.928935][T15170]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  258.928949][T15170]  ? __local_bh_enable_ip+0xa4/0x120
[  258.928965][T15170]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  258.928980][T15170]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  258.928999][T15170]  kvm_vcpu_ioctl+0x5e9/0x1680
[  258.929016][T15170]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  258.929035][T15170]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  258.929054][T15170]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  258.929074][T15170]  ? hook_file_ioctl_common+0x145/0x410
[  258.929088][T15170]  ? selinux_file_ioctl+0x180/0x270
[  258.929103][T15170]  ? selinux_file_ioctl+0xb4/0x270
[  258.929119][T15170]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  258.929135][T15170]  __x64_sys_ioctl+0x190/0x200
[  258.929150][T15170]  do_syscall_64+0xcd/0x260
[  258.929164][T15170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.929174][T15170] RIP: 0033:0x7f226a38e969
[  258.929183][T15170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  258.929198][T15170] RSP: 002b:00007f226b22b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  258.929208][T15170] RAX: ffffffffffffffda RBX: 00007f226a5b5fa0 RCX: 00007f226a38e969
[  258.929215][T15170] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  258.929221][T15170] RBP: 00007f226b22b090 R08: 0000000000000000 R09: 0000000000000000
[  258.929227][T15170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  258.929233][T15170] R13: 0000000000000000 R14: 00007f226a5b5fa0 R15: 00007ffefd00ced8
[  258.929247][T15170]  </TASK>
[  258.960350][T15048] 8021q: adding VLAN 0 to HW filter on device batadv0
[  258.962208][    C2] vkms_vblank_simulate: vblank timer overrun
[  258.978322][T15179] netlink: 'syz.5.3189': attribute type 4 has an invalid length.
[  259.114314][T15186] FAULT_INJECTION: forcing a failure.
[  259.114314][T15186] name failslab, interval 1, probability 0, space 0, times 0
[  259.118485][T15186] CPU: 0 UID: 0 PID: 15186 Comm: syz.5.3190 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  259.118500][T15186] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  259.118507][T15186] Call Trace:
[  259.118511][T15186]  <TASK>
[  259.118516][T15186]  dump_stack_lvl+0x16c/0x1f0
[  259.118535][T15186]  should_fail_ex+0x512/0x640
[  259.118550][T15186]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  259.118569][T15186]  should_failslab+0xc2/0x120
[  259.118580][T15186]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  259.118596][T15186]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  259.118607][T15186]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  259.118622][T15186]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  259.118635][T15186]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  259.118649][T15186]  mmu_topup_memory_caches+0x25/0x170
[  259.118667][T15186]  kvm_mmu_load+0xd9/0x22a0
[  259.118683][T15186]  ? kvm_apic_has_interrupt+0xb5/0x190
[  259.118696][T15186]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  259.118710][T15186]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  259.118724][T15186]  ? __pfx_kvm_mmu_load+0x10/0x10
[  259.118739][T15186]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  259.118750][T15186]  ? kvm_check_and_inject_events+0x71c/0x1310
[  259.118769][T15186]  vcpu_run+0x33d9/0x5320
[  259.118782][T15186]  ? kvm_mmu_post_init_vm+0x269/0x370
[  259.118800][T15186]  ? __lock_acquire+0xaa4/0x1ba0
[  259.118820][T15186]  ? __pfx_vcpu_run+0x10/0x10
[  259.118837][T15186]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  259.118851][T15186]  ? __local_bh_enable_ip+0xa4/0x120
[  259.118868][T15186]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  259.118883][T15186]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  259.118902][T15186]  kvm_vcpu_ioctl+0x5e9/0x1680
[  259.118919][T15186]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  259.118938][T15186]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  259.118956][T15186]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  259.118976][T15186]  ? hook_file_ioctl_common+0x145/0x410
[  259.118989][T15186]  ? selinux_file_ioctl+0x180/0x270
[  259.119004][T15186]  ? selinux_file_ioctl+0xb4/0x270
[  259.119021][T15186]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  259.119036][T15186]  __x64_sys_ioctl+0x190/0x200
[  259.119051][T15186]  do_syscall_64+0xcd/0x260
[  259.119067][T15186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.119078][T15186] RIP: 0033:0x7f48da18e969
[  259.119087][T15186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.119097][T15186] RSP: 002b:00007f48d7ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  259.119108][T15186] RAX: ffffffffffffffda RBX: 00007f48da3b5fa0 RCX: 00007f48da18e969
[  259.119115][T15186] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  259.119121][T15186] RBP: 00007f48d7ff6090 R08: 0000000000000000 R09: 0000000000000000
[  259.119127][T15186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  259.119133][T15186] R13: 0000000000000000 R14: 00007f48da3b5fa0 R15: 00007ffce09d1658
[  259.119146][T15186]  </TASK>
[  259.135555][T15048] veth0_vlan: entered promiscuous mode
[  259.229896][T15048] veth1_vlan: entered promiscuous mode
[  259.247882][T15048] veth0_macvtap: entered promiscuous mode
[  259.258504][T15048] veth1_macvtap: entered promiscuous mode
[  259.276276][T15048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  259.279534][T15048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  259.282496][T15048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  259.285662][T15048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  259.288630][T15048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  259.294133][T15048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  259.297123][T15048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  259.300329][T15048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  259.304221][T15048] batman_adv: batadv0: Interface activated: batadv_slave_0
[  259.318913][T15048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  259.322628][T15048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  259.325821][T15048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  259.329202][T15048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  259.332850][T15048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  259.336151][T15048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  259.339232][T15048] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  259.342699][T15048] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  259.346711][T15048] batman_adv: batadv0: Interface activated: batadv_slave_1
[  259.357644][T15194] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3193'.
[  259.368490][T15048] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  259.371998][T15048] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  259.375336][T15048] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  259.378023][T15048] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  259.434061][T15202] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3195'.
[  259.442882][T15202] 8021q: adding VLAN 0 to HW filter on device macvlan11
[  259.445618][T15202] bridge0: port 12(macvlan11) entered blocking state
[  259.447939][T15202] bridge0: port 12(macvlan11) entered disabled state
[  259.450809][T15202] macvlan11: entered allmulticast mode
[  259.453530][T15202] macvlan11: entered promiscuous mode
[  259.455720][T15202] bridge0: port 12(macvlan11) entered blocking state
[  259.457963][T15202] bridge0: port 12(macvlan11) entered forwarding state
[  259.463808][T15204] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  259.470318][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  259.473059][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  259.489461][   T68] Bluetooth: hci2: command tx timeout
[  259.521498][T15210] FAULT_INJECTION: forcing a failure.
[  259.521498][T15210] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  259.525920][T15210] CPU: 3 UID: 0 PID: 15210 Comm: syz.5.3199 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  259.525937][T15210] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  259.525943][T15210] Call Trace:
[  259.525948][T15210]  <TASK>
[  259.525952][T15210]  dump_stack_lvl+0x16c/0x1f0
[  259.525970][T15210]  should_fail_ex+0x512/0x640
[  259.526011][T15210]  should_fail_alloc_page+0xe7/0x130
[  259.526028][T15210]  prepare_alloc_pages+0x3c2/0x610
[  259.526046][T15210]  ? rcu_is_watching+0x12/0xc0
[  259.526066][T15210]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  259.526089][T15210]  ? kasan_save_stack+0x42/0x60
[  259.526104][T15210]  ? kasan_save_stack+0x33/0x60
[  259.526119][T15210]  ? kasan_save_track+0x14/0x30
[  259.526134][T15210]  ? __kasan_kmalloc+0xaa/0xb0
[  259.526148][T15210]  ? __kvmalloc_node_noprof+0x279/0x600
[  259.526163][T15210]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  259.526174][T15210]  ? mmu_topup_memory_caches+0xbc/0x170
[  259.526190][T15210]  ? kvm_mmu_load+0xd9/0x22a0
[  259.526204][T15210]  ? vcpu_run+0x33d9/0x5320
[  259.526217][T15210]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  259.526233][T15210]  ? kvm_vcpu_ioctl+0x5e9/0x1680
[  259.526247][T15210]  ? __x64_sys_ioctl+0x190/0x200
[  259.526260][T15210]  ? do_syscall_64+0xcd/0x260
[  259.526278][T15210]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.526290][T15210]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  259.526316][T15210]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  259.526335][T15210]  ? policy_nodemask+0xea/0x4e0
[  259.526346][T15210]  alloc_pages_mpol+0x1fb/0x550
[  259.526357][T15210]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  259.526367][T15210]  ? rcu_is_watching+0x12/0xc0
[  259.526378][T15210]  ? trace_kmalloc+0x2b/0xd0
[  259.526389][T15210]  ? __kvmalloc_node_noprof+0x296/0x600
[  259.526405][T15210]  ? trace_kmem_cache_alloc+0x28/0xc0
[  259.526418][T15210]  alloc_pages_noprof+0x131/0x390
[  259.526430][T15210]  get_free_pages_noprof+0xc/0x40
[  259.526441][T15210]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  259.526456][T15210]  mmu_topup_memory_caches+0xbc/0x170
[  259.526472][T15210]  kvm_mmu_load+0xd9/0x22a0
[  259.526488][T15210]  ? kvm_apic_has_interrupt+0xb5/0x190
[  259.526501][T15210]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  259.526515][T15210]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  259.526528][T15210]  ? __pfx_kvm_mmu_load+0x10/0x10
[  259.526543][T15210]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  259.526554][T15210]  ? kvm_check_and_inject_events+0x71c/0x1310
[  259.526584][T15210]  vcpu_run+0x33d9/0x5320
[  259.526600][T15210]  ? kvm_mmu_post_init_vm+0x269/0x370
[  259.526617][T15210]  ? __lock_acquire+0xaa4/0x1ba0
[  259.526637][T15210]  ? __pfx_vcpu_run+0x10/0x10
[  259.526654][T15210]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  259.526668][T15210]  ? __local_bh_enable_ip+0xa4/0x120
[  259.526684][T15210]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  259.526699][T15210]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  259.526718][T15210]  kvm_vcpu_ioctl+0x5e9/0x1680
[  259.526735][T15210]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  259.526755][T15210]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  259.526772][T15210]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  259.526793][T15210]  ? hook_file_ioctl_common+0x145/0x410
[  259.526807][T15210]  ? selinux_file_ioctl+0x180/0x270
[  259.526822][T15210]  ? selinux_file_ioctl+0xb4/0x270
[  259.526837][T15210]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  259.526853][T15210]  __x64_sys_ioctl+0x190/0x200
[  259.526867][T15210]  do_syscall_64+0xcd/0x260
[  259.526882][T15210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.526892][T15210] RIP: 0033:0x7f48da18e969
[  259.526902][T15210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.526912][T15210] RSP: 002b:00007f48d7ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  259.526922][T15210] RAX: ffffffffffffffda RBX: 00007f48da3b5fa0 RCX: 00007f48da18e969
[  259.526929][T15210] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  259.526935][T15210] RBP: 00007f48d7ff6090 R08: 0000000000000000 R09: 0000000000000000
[  259.526941][T15210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  259.526947][T15210] R13: 0000000000000000 R14: 00007f48da3b5fa0 R15: 00007ffce09d1658
[  259.526960][T15210]  </TASK>
[  259.536601][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  259.679945][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  259.776807][T15219] FAULT_INJECTION: forcing a failure.
[  259.776807][T15219] name failslab, interval 1, probability 0, space 0, times 0
[  259.781610][T15219] CPU: 1 UID: 0 PID: 15219 Comm: syz.6.3203 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  259.781626][T15219] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  259.781633][T15219] Call Trace:
[  259.781637][T15219]  <TASK>
[  259.781641][T15219]  dump_stack_lvl+0x16c/0x1f0
[  259.781663][T15219]  should_fail_ex+0x512/0x640
[  259.781679][T15219]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  259.781698][T15219]  should_failslab+0xc2/0x120
[  259.781709][T15219]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  259.781725][T15219]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  259.781736][T15219]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  259.781752][T15219]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  259.781764][T15219]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  259.781779][T15219]  mmu_topup_memory_caches+0x25/0x170
[  259.781796][T15219]  kvm_mmu_load+0xd9/0x22a0
[  259.781811][T15219]  ? kvm_apic_has_interrupt+0xb5/0x190
[  259.781824][T15219]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  259.781838][T15219]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  259.781852][T15219]  ? __pfx_kvm_mmu_load+0x10/0x10
[  259.781867][T15219]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  259.781878][T15219]  ? kvm_check_and_inject_events+0x71c/0x1310
[  259.781897][T15219]  vcpu_run+0x33d9/0x5320
[  259.781910][T15219]  ? kvm_mmu_post_init_vm+0x269/0x370
[  259.781927][T15219]  ? __lock_acquire+0xaa4/0x1ba0
[  259.781947][T15219]  ? __pfx_vcpu_run+0x10/0x10
[  259.781964][T15219]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  259.782009][T15219]  ? __local_bh_enable_ip+0xa4/0x120
[  259.782050][T15219]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  259.782074][T15219]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  259.782105][T15219]  kvm_vcpu_ioctl+0x5e9/0x1680
[  259.782133][T15219]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  259.782155][T15219]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  259.782173][T15219]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  259.782193][T15219]  ? hook_file_ioctl_common+0x145/0x410
[  259.782207][T15219]  ? selinux_file_ioctl+0x180/0x270
[  259.782224][T15219]  ? selinux_file_ioctl+0xb4/0x270
[  259.782240][T15219]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  259.782257][T15219]  __x64_sys_ioctl+0x190/0x200
[  259.782271][T15219]  do_syscall_64+0xcd/0x260
[  259.782287][T15219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.782298][T15219] RIP: 0033:0x7fbc1fb8e969
[  259.782308][T15219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.782318][T15219] RSP: 002b:00007fbc2093c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  259.782332][T15219] RAX: ffffffffffffffda RBX: 00007fbc1fdb5fa0 RCX: 00007fbc1fb8e969
[  259.782339][T15219] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  259.782348][T15219] RBP: 00007fbc2093c090 R08: 0000000000000000 R09: 0000000000000000
[  259.782354][T15219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  259.782361][T15219] R13: 0000000000000000 R14: 00007fbc1fdb5fa0 R15: 00007ffdd7b427c8
[  259.782374][T15219]  </TASK>
[  259.892543][T15224] netlink: 'syz.6.3204': attribute type 4 has an invalid length.
[  259.941370][T15232] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  259.945399][T15234] Cannot find set identified by id 0 to match
[  259.979236][T15241] netlink: 276 bytes leftover after parsing attributes in process `syz.6.3206'.
[  259.992752][T15245] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3211'.
[  260.020417][T15249] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3212'.
[  260.024562][T15249] netlink: 'syz.8.3212': attribute type 19 has an invalid length.
[  260.028023][T15249] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3212'.
[  260.055423][T15256] FAULT_INJECTION: forcing a failure.
[  260.055423][T15256] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  260.063264][T15256] CPU: 2 UID: 0 PID: 15256 Comm: syz.6.3214 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  260.063281][T15256] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  260.063287][T15256] Call Trace:
[  260.063292][T15256]  <TASK>
[  260.063297][T15256]  dump_stack_lvl+0x16c/0x1f0
[  260.063315][T15256]  should_fail_ex+0x512/0x640
[  260.063331][T15256]  should_fail_alloc_page+0xe7/0x130
[  260.063344][T15256]  prepare_alloc_pages+0x3c2/0x610
[  260.063359][T15256]  ? rcu_is_watching+0x12/0xc0
[  260.063373][T15256]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  260.063391][T15256]  ? kasan_save_stack+0x42/0x60
[  260.063406][T15256]  ? kasan_save_stack+0x33/0x60
[  260.063421][T15256]  ? kasan_save_track+0x14/0x30
[  260.063436][T15256]  ? __kasan_kmalloc+0xaa/0xb0
[  260.063450][T15256]  ? __kvmalloc_node_noprof+0x279/0x600
[  260.063465][T15256]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  260.063476][T15256]  ? mmu_topup_memory_caches+0xbc/0x170
[  260.063491][T15256]  ? kvm_mmu_load+0xd9/0x22a0
[  260.063505][T15256]  ? vcpu_run+0x33d9/0x5320
[  260.063518][T15256]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  260.063533][T15256]  ? kvm_vcpu_ioctl+0x5e9/0x1680
[  260.063547][T15256]  ? __x64_sys_ioctl+0x190/0x200
[  260.063560][T15256]  ? do_syscall_64+0xcd/0x260
[  260.063574][T15256]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.063586][T15256]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  260.063612][T15256]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  260.063631][T15256]  ? policy_nodemask+0xea/0x4e0
[  260.063643][T15256]  alloc_pages_mpol+0x1fb/0x550
[  260.063655][T15256]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  260.063664][T15256]  ? rcu_is_watching+0x12/0xc0
[  260.063676][T15256]  ? trace_kmalloc+0x2b/0xd0
[  260.063686][T15256]  ? __kvmalloc_node_noprof+0x296/0x600
[  260.063702][T15256]  ? trace_kmem_cache_alloc+0x28/0xc0
[  260.063716][T15256]  alloc_pages_noprof+0x131/0x390
[  260.063727][T15256]  get_free_pages_noprof+0xc/0x40
[  260.063738][T15256]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  260.063752][T15256]  mmu_topup_memory_caches+0xbc/0x170
[  260.063769][T15256]  kvm_mmu_load+0xd9/0x22a0
[  260.063784][T15256]  ? kvm_apic_has_interrupt+0xb5/0x190
[  260.063797][T15256]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  260.063825][T15256]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  260.063839][T15256]  ? __pfx_kvm_mmu_load+0x10/0x10
[  260.063854][T15256]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  260.063865][T15256]  ? kvm_check_and_inject_events+0x71c/0x1310
[  260.063883][T15256]  vcpu_run+0x33d9/0x5320
[  260.063896][T15256]  ? kvm_mmu_post_init_vm+0x269/0x370
[  260.063914][T15256]  ? __lock_acquire+0xaa4/0x1ba0
[  260.063933][T15256]  ? __pfx_vcpu_run+0x10/0x10
[  260.063950][T15256]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  260.063964][T15256]  ? __local_bh_enable_ip+0xa4/0x120
[  260.063980][T15256]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  260.063995][T15256]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  260.064014][T15256]  kvm_vcpu_ioctl+0x5e9/0x1680
[  260.064031][T15256]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  260.064050][T15256]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  260.064068][T15256]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  260.064088][T15256]  ? hook_file_ioctl_common+0x145/0x410
[  260.064102][T15256]  ? selinux_file_ioctl+0x180/0x270
[  260.064117][T15256]  ? selinux_file_ioctl+0xb4/0x270
[  260.064133][T15256]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  260.064149][T15256]  __x64_sys_ioctl+0x190/0x200
[  260.064163][T15256]  do_syscall_64+0xcd/0x260
[  260.064178][T15256]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.064188][T15256] RIP: 0033:0x7fbc1fb8e969
[  260.064197][T15256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.064207][T15256] RSP: 002b:00007fbc2093c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  260.064217][T15256] RAX: ffffffffffffffda RBX: 00007fbc1fdb5fa0 RCX: 00007fbc1fb8e969
[  260.064223][T15256] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  260.064229][T15256] RBP: 00007fbc2093c090 R08: 0000000000000000 R09: 0000000000000000
[  260.064236][T15256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  260.064246][T15256] R13: 0000000000000000 R14: 00007fbc1fdb5fa0 R15: 00007ffdd7b427c8
[  260.064259][T15256]  </TASK>
[  260.108288][T15265] FAULT_INJECTION: forcing a failure.
[  260.108288][T15265] name failslab, interval 1, probability 0, space 0, times 0
[  260.109817][    C2] vkms_vblank_simulate: vblank timer overrun
[  260.116981][T15268] netlink: 'syz.5.3217': attribute type 4 has an invalid length.
[  260.117967][T15265] CPU: 3 UID: 0 PID: 15265 Comm: syz.4.3216 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  260.118007][T15265] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  260.118017][T15265] Call Trace:
[  260.118022][T15265]  <TASK>
[  260.118028][T15265]  dump_stack_lvl+0x16c/0x1f0
[  260.118052][T15265]  should_fail_ex+0x512/0x640
[  260.118066][T15265]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  260.118085][T15265]  should_failslab+0xc2/0x120
[  260.118096][T15265]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  260.118112][T15265]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  260.118124][T15265]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  260.118140][T15265]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  260.118152][T15265]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  260.118167][T15265]  mmu_topup_memory_caches+0x25/0x170
[  260.118184][T15265]  kvm_mmu_load+0xd9/0x22a0
[  260.118200][T15265]  ? kvm_apic_has_interrupt+0xb5/0x190
[  260.118214][T15265]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  260.118227][T15265]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  260.118242][T15265]  ? __pfx_kvm_mmu_load+0x10/0x10
[  260.118262][T15265]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  260.118274][T15265]  ? kvm_check_and_inject_events+0x71c/0x1310
[  260.118292][T15265]  vcpu_run+0x33d9/0x5320
[  260.118305][T15265]  ? kvm_mmu_post_init_vm+0x269/0x370
[  260.118324][T15265]  ? __lock_acquire+0xaa4/0x1ba0
[  260.118344][T15265]  ? __pfx_vcpu_run+0x10/0x10
[  260.118361][T15265]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  260.118375][T15265]  ? __local_bh_enable_ip+0xa4/0x120
[  260.118392][T15265]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  260.118407][T15265]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  260.118426][T15265]  kvm_vcpu_ioctl+0x5e9/0x1680
[  260.118444][T15265]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  260.118463][T15265]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  260.118481][T15265]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  260.118502][T15265]  ? hook_file_ioctl_common+0x145/0x410
[  260.118515][T15265]  ? selinux_file_ioctl+0x180/0x270
[  260.118530][T15265]  ? selinux_file_ioctl+0xb4/0x270
[  260.118546][T15265]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  260.118562][T15265]  __x64_sys_ioctl+0x190/0x200
[  260.118577][T15265]  do_syscall_64+0xcd/0x260
[  260.118592][T15265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.118603][T15265] RIP: 0033:0x7f226a38e969
[  260.118612][T15265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.118623][T15265] RSP: 002b:00007f226b22b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  260.118633][T15265] RAX: ffffffffffffffda RBX: 00007f226a5b5fa0 RCX: 00007f226a38e969
[  260.118640][T15265] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  260.118646][T15265] RBP: 00007f226b22b090 R08: 0000000000000000 R09: 0000000000000000
[  260.118652][T15265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  260.118658][T15265] R13: 0000000000000000 R14: 00007f226a5b5fa0 R15: 00007ffefd00ced8
[  260.118671][T15265]  </TASK>
[  260.417620][T15277] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  260.426864][T15279] set match dimension is over the limit!
[  260.463541][T15284] netlink: 20 bytes leftover after parsing attributes in process `syz.6.3223'.
[  260.595257][T15298] FAULT_INJECTION: forcing a failure.
[  260.595257][T15298] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  260.601695][T15298] CPU: 0 UID: 0 PID: 15298 Comm: syz.4.3228 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  260.601712][T15298] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  260.601719][T15298] Call Trace:
[  260.601723][T15298]  <TASK>
[  260.601727][T15298]  dump_stack_lvl+0x16c/0x1f0
[  260.601746][T15298]  should_fail_ex+0x512/0x640
[  260.601762][T15298]  should_fail_alloc_page+0xe7/0x130
[  260.601775][T15298]  prepare_alloc_pages+0x3c2/0x610
[  260.601789][T15298]  ? rcu_is_watching+0x12/0xc0
[  260.601803][T15298]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  260.601821][T15298]  ? kasan_save_stack+0x42/0x60
[  260.601837][T15298]  ? kasan_save_stack+0x33/0x60
[  260.601851][T15298]  ? kasan_save_track+0x14/0x30
[  260.601866][T15298]  ? __kasan_kmalloc+0xaa/0xb0
[  260.601880][T15298]  ? __kvmalloc_node_noprof+0x279/0x600
[  260.601896][T15298]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  260.601907][T15298]  ? mmu_topup_memory_caches+0xbc/0x170
[  260.601922][T15298]  ? kvm_mmu_load+0xd9/0x22a0
[  260.601936][T15298]  ? vcpu_run+0x33d9/0x5320
[  260.601949][T15298]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  260.601964][T15298]  ? kvm_vcpu_ioctl+0x5e9/0x1680
[  260.602001][T15298]  ? __x64_sys_ioctl+0x190/0x200
[  260.602015][T15298]  ? do_syscall_64+0xcd/0x260
[  260.602028][T15298]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.602042][T15298]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  260.602068][T15298]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  260.602086][T15298]  ? policy_nodemask+0xea/0x4e0
[  260.602098][T15298]  alloc_pages_mpol+0x1fb/0x550
[  260.602110][T15298]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  260.602119][T15298]  ? rcu_is_watching+0x12/0xc0
[  260.602131][T15298]  ? trace_kmalloc+0x2b/0xd0
[  260.602142][T15298]  ? __kvmalloc_node_noprof+0x296/0x600
[  260.602157][T15298]  ? trace_kmem_cache_alloc+0x28/0xc0
[  260.602175][T15298]  alloc_pages_noprof+0x131/0x390
[  260.602187][T15298]  get_free_pages_noprof+0xc/0x40
[  260.602199][T15298]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  260.602213][T15298]  mmu_topup_memory_caches+0xbc/0x170
[  260.602230][T15298]  kvm_mmu_load+0xd9/0x22a0
[  260.602246][T15298]  ? kvm_apic_has_interrupt+0xb5/0x190
[  260.602259][T15298]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  260.602273][T15298]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  260.602286][T15298]  ? __pfx_kvm_mmu_load+0x10/0x10
[  260.602301][T15298]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  260.602313][T15298]  ? kvm_check_and_inject_events+0x71c/0x1310
[  260.602331][T15298]  vcpu_run+0x33d9/0x5320
[  260.602347][T15298]  ? __lock_acquire+0xaa4/0x1ba0
[  260.602367][T15298]  ? __pfx_vcpu_run+0x10/0x10
[  260.602384][T15298]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  260.602398][T15298]  ? __local_bh_enable_ip+0xa4/0x120
[  260.602414][T15298]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  260.602429][T15298]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  260.602448][T15298]  kvm_vcpu_ioctl+0x5e9/0x1680
[  260.602465][T15298]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  260.602485][T15298]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  260.602503][T15298]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  260.602523][T15298]  ? hook_file_ioctl_common+0x145/0x410
[  260.602537][T15298]  ? selinux_file_ioctl+0x180/0x270
[  260.602552][T15298]  ? selinux_file_ioctl+0xb4/0x270
[  260.602568][T15298]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  260.602584][T15298]  __x64_sys_ioctl+0x190/0x200
[  260.602598][T15298]  do_syscall_64+0xcd/0x260
[  260.602613][T15298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.602623][T15298] RIP: 0033:0x7f226a38e969
[  260.602632][T15298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.602642][T15298] RSP: 002b:00007f226b22b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  260.602652][T15298] RAX: ffffffffffffffda RBX: 00007f226a5b5fa0 RCX: 00007f226a38e969
[  260.602659][T15298] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  260.602665][T15298] RBP: 00007f226b22b090 R08: 0000000000000000 R09: 0000000000000000
[  260.602671][T15298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  260.602677][T15298] R13: 0000000000000000 R14: 00007f226a5b5fa0 R15: 00007ffefd00ced8
[  260.602690][T15298]  </TASK>
[  260.642820][T15301] netlink: 'syz.5.3229': attribute type 16 has an invalid length.
[  260.763609][T15303] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 20001 - 0
[  260.763953][T15301] netlink: 48 bytes leftover after parsing attributes in process `syz.5.3229'.
[  260.766253][T15303] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 20001 - 0
[  260.777118][T15303] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 20001 - 0
[  260.782167][T15303] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 20001 - 0
[  260.868138][   T40] kauditd_printk_skb: 45192 callbacks suppressed
[  260.868149][   T40] audit: type=1400 audit(516.768:45859): avc:  denied  { unmount } for  pid=15048 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1
[  260.905484][T15306] FAULT_INJECTION: forcing a failure.
[  260.905484][T15306] name failslab, interval 1, probability 0, space 0, times 0
[  260.909885][T15306] CPU: 3 UID: 0 PID: 15306 Comm: syz.4.3231 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  260.909900][T15306] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  260.909907][T15306] Call Trace:
[  260.909911][T15306]  <TASK>
[  260.909915][T15306]  dump_stack_lvl+0x16c/0x1f0
[  260.909933][T15306]  should_fail_ex+0x512/0x640
[  260.909946][T15306]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  260.909985][T15306]  should_failslab+0xc2/0x120
[  260.910004][T15306]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  260.910025][T15306]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  260.910037][T15306]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  260.910052][T15306]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  260.910065][T15306]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  260.910079][T15306]  mmu_topup_memory_caches+0x25/0x170
[  260.910097][T15306]  kvm_mmu_load+0xd9/0x22a0
[  260.910113][T15306]  ? kvm_apic_has_interrupt+0xb5/0x190
[  260.910126][T15306]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  260.910140][T15306]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  260.910154][T15306]  ? __pfx_kvm_mmu_load+0x10/0x10
[  260.910169][T15306]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  260.910180][T15306]  ? kvm_check_and_inject_events+0x71c/0x1310
[  260.910204][T15306]  vcpu_run+0x33d9/0x5320
[  260.910217][T15306]  ? kvm_mmu_post_init_vm+0x269/0x370
[  260.910235][T15306]  ? __lock_acquire+0xaa4/0x1ba0
[  260.910255][T15306]  ? __pfx_vcpu_run+0x10/0x10
[  260.910271][T15306]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  260.910286][T15306]  ? __local_bh_enable_ip+0xa4/0x120
[  260.910302][T15306]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  260.910316][T15306]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  260.910336][T15306]  kvm_vcpu_ioctl+0x5e9/0x1680
[  260.910353][T15306]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  260.910373][T15306]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  260.910391][T15306]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  260.910411][T15306]  ? hook_file_ioctl_common+0x145/0x410
[  260.910425][T15306]  ? selinux_file_ioctl+0x180/0x270
[  260.910442][T15306]  ? selinux_file_ioctl+0xb4/0x270
[  260.910457][T15306]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  260.910473][T15306]  __x64_sys_ioctl+0x190/0x200
[  260.910489][T15306]  do_syscall_64+0xcd/0x260
[  260.910504][T15306]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.910515][T15306] RIP: 0033:0x7f226a38e969
[  260.910524][T15306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.910534][T15306] RSP: 002b:00007f226b22b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  260.910545][T15306] RAX: ffffffffffffffda RBX: 00007f226a5b5fa0 RCX: 00007f226a38e969
[  260.910552][T15306] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  260.910557][T15306] RBP: 00007f226b22b090 R08: 0000000000000000 R09: 0000000000000000
[  260.910563][T15306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  260.910570][T15306] R13: 0000000000000000 R14: 00007f226a5b5fa0 R15: 00007ffefd00ced8
[  260.910583][T15306]  </TASK>
[  261.060418][T15311] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  261.392084][T15327] netlink: 'syz.4.3239': attribute type 4 has an invalid length.
[  261.399458][   T24] usb 13-1: new high-speed USB device number 2 using dummy_hcd
[  261.482286][T15339] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  261.569881][   T24] usb 13-1: Using ep0 maxpacket: 32
[  261.570604][   T68] Bluetooth: hci2: command tx timeout
[  261.573764][   T24] usb 13-1: config index 0 descriptor too short (expected 156, got 27)
[  261.576936][   T24] usb 13-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  261.581103][   T24] usb 13-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  261.585543][   T24] usb 13-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  261.590848][   T24] usb 13-1: config 0 interface 0 has no altsetting 0
[  261.595754][   T24] usb 13-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  261.599740][   T24] usb 13-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  261.603285][   T24] usb 13-1: Product: syz
[  261.605030][   T24] usb 13-1: Manufacturer: syz
[  261.606942][   T24] usb 13-1: SerialNumber: syz
[  261.612023][   T24] usb 13-1: config 0 descriptor??
[  261.627721][   T24] ldusb 13-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  261.634666][   T40] audit: type=1400 audit(517.538:45860): avc:  denied  { ioctl } for  pid=15352 comm="syz.5.3249" path="/dev/cachefiles" dev="devtmpfs" ino=4 ioctlcmd=0x5335 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  261.634680][   T24] ldusb 13-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  262.063730][T15369] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  262.596672][   T40] audit: type=1400 audit(518.498:45861): avc:  denied  { bind } for  pid=15399 comm="syz.4.3265" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  262.680089][ T1022] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[  262.696574][T15410] FAULT_INJECTION: forcing a failure.
[  262.696574][T15410] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  262.702412][T15410] CPU: 3 UID: 0 PID: 15410 Comm: syz.4.3268 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  262.702440][T15410] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  262.702447][T15410] Call Trace:
[  262.702452][T15410]  <TASK>
[  262.702457][T15410]  dump_stack_lvl+0x16c/0x1f0
[  262.702488][T15410]  should_fail_ex+0x512/0x640
[  262.702504][T15410]  should_fail_alloc_page+0xe7/0x130
[  262.702517][T15410]  prepare_alloc_pages+0x3c2/0x610
[  262.702531][T15410]  ? rcu_is_watching+0x12/0xc0
[  262.702545][T15410]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  262.702564][T15410]  ? kasan_save_stack+0x42/0x60
[  262.702579][T15410]  ? kasan_save_stack+0x33/0x60
[  262.702594][T15410]  ? kasan_save_track+0x14/0x30
[  262.702608][T15410]  ? __kasan_kmalloc+0xaa/0xb0
[  262.702622][T15410]  ? __kvmalloc_node_noprof+0x279/0x600
[  262.702638][T15410]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  262.702649][T15410]  ? mmu_topup_memory_caches+0xbc/0x170
[  262.702664][T15410]  ? kvm_mmu_load+0xd9/0x22a0
[  262.702678][T15410]  ? vcpu_run+0x33d9/0x5320
[  262.702691][T15410]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  262.702706][T15410]  ? kvm_vcpu_ioctl+0x5e9/0x1680
[  262.702720][T15410]  ? __x64_sys_ioctl+0x190/0x200
[  262.702732][T15410]  ? do_syscall_64+0xcd/0x260
[  262.702745][T15410]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.702758][T15410]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  262.702783][T15410]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  262.702802][T15410]  ? policy_nodemask+0xea/0x4e0
[  262.702814][T15410]  alloc_pages_mpol+0x1fb/0x550
[  262.702825][T15410]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  262.702835][T15410]  ? rcu_is_watching+0x12/0xc0
[  262.702846][T15410]  ? trace_kmalloc+0x2b/0xd0
[  262.702857][T15410]  ? __kvmalloc_node_noprof+0x296/0x600
[  262.702873][T15410]  ? trace_kmem_cache_alloc+0x28/0xc0
[  262.702886][T15410]  alloc_pages_noprof+0x131/0x390
[  262.702898][T15410]  get_free_pages_noprof+0xc/0x40
[  262.702909][T15410]  __kvm_mmu_topup_memory_cache+0x278/0x600
[  262.702924][T15410]  mmu_topup_memory_caches+0xbc/0x170
[  262.702940][T15410]  kvm_mmu_load+0xd9/0x22a0
[  262.702955][T15410]  ? kvm_apic_has_interrupt+0xb5/0x190
[  262.702968][T15410]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  262.702982][T15410]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  262.702995][T15410]  ? __pfx_kvm_mmu_load+0x10/0x10
[  262.703010][T15410]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  262.703021][T15410]  ? kvm_check_and_inject_events+0x71c/0x1310
[  262.703039][T15410]  vcpu_run+0x33d9/0x5320
[  262.703052][T15410]  ? kvm_mmu_post_init_vm+0x269/0x370
[  262.703070][T15410]  ? __lock_acquire+0xaa4/0x1ba0
[  262.703089][T15410]  ? __pfx_vcpu_run+0x10/0x10
[  262.703106][T15410]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  262.703121][T15410]  ? __local_bh_enable_ip+0xa4/0x120
[  262.703137][T15410]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  262.703151][T15410]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  262.703174][T15410]  kvm_vcpu_ioctl+0x5e9/0x1680
[  262.703192][T15410]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  262.703211][T15410]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  262.703229][T15410]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  262.703249][T15410]  ? hook_file_ioctl_common+0x145/0x410
[  262.703263][T15410]  ? selinux_file_ioctl+0x180/0x270
[  262.703278][T15410]  ? selinux_file_ioctl+0xb4/0x270
[  262.703294][T15410]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  262.703310][T15410]  __x64_sys_ioctl+0x190/0x200
[  262.703324][T15410]  do_syscall_64+0xcd/0x260
[  262.703338][T15410]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.703348][T15410] RIP: 0033:0x7f226a38e969
[  262.703358][T15410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.703368][T15410] RSP: 002b:00007f226b22b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  262.703378][T15410] RAX: ffffffffffffffda RBX: 00007f226a5b5fa0 RCX: 00007f226a38e969
[  262.703385][T15410] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  262.703391][T15410] RBP: 00007f226b22b090 R08: 0000000000000000 R09: 0000000000000000
[  262.703397][T15410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  262.703402][T15410] R13: 0000000000000000 R14: 00007f226a5b5fa0 R15: 00007ffefd00ced8
[  262.703416][T15410]  </TASK>
[  262.711757][   T68] Bluetooth: hci1: unexpected event for opcode 0xa9d2
[  262.738305][T15413] 8021q: adding VLAN 0 to HW filter on device macvlan10
[  262.829472][ T1022] usb 10-1: Using ep0 maxpacket: 8
[  262.840171][T15413] bridge0: port 11(macvlan10) entered blocking state
[  262.843882][ T1022] usb 10-1: config index 0 descriptor too short (expected 5924, got 36)
[  262.843905][ T1022] usb 10-1: config 250 has an invalid interface number: 228 but max is -1
[  262.843922][ T1022] usb 10-1: config 250 has 1 interface, different from the descriptor's value: 0
[  262.843940][ T1022] usb 10-1: config 250 has no interface number 0
[  262.843973][ T1022] usb 10-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  262.843994][ T1022] usb 10-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  262.844014][ T1022] usb 10-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  262.844032][ T1022] usb 10-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  262.847470][T15413] bridge0: port 11(macvlan10) entered disabled state
[  262.850519][ T1022] usb 10-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  262.853198][T15413] macvlan10: entered allmulticast mode
[  262.854160][ T1022] usb 10-1: config 250 interface 228 has no altsetting 0
[  262.858665][T15413] macvlan10: entered promiscuous mode
[  262.860604][ T1022] usb 10-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  262.861884][T15413] bridge0: port 11(macvlan10) entered blocking state
[  262.863378][ T1022] usb 10-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  262.865894][T15413] bridge0: port 11(macvlan10) entered forwarding state
[  262.868566][ T1022] usb 10-1: Product: syz
[  262.917987][ T1022] usb 10-1: SerialNumber: syz
[  262.918208][T15415] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  262.922439][ T1022] hub 10-1:250.228: bad descriptor, ignoring hub
[  262.925100][ T1022] hub 10-1:250.228: probe with driver hub failed with error -5
[  263.126565][ T1022] usblp 10-1:250.228: usblp1: USB Bidirectional printer dev 16 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  263.247078][T15442] netlink: 'syz.4.3279': attribute type 4 has an invalid length.
[  263.261397][   T68] Bluetooth: hci1: unexpected event for opcode 0xa9d2
[  263.274630][T15444] 8021q: adding VLAN 0 to HW filter on device macvlan11
[  263.277267][T15444] bridge0: port 12(macvlan11) entered blocking state
[  263.281204][T15444] bridge0: port 12(macvlan11) entered disabled state
[  263.283636][T15444] macvlan11: entered allmulticast mode
[  263.286353][T15444] macvlan11: entered promiscuous mode
[  263.288584][T15444] bridge0: port 12(macvlan11) entered blocking state
[  263.290865][T15444] bridge0: port 12(macvlan11) entered forwarding state
[  263.429693][ T1022] usb 10-1: USB disconnect, device number 16
[  263.434656][ T1022] usblp1: removed
[  263.510464][ T5975] usb 9-1: new high-speed USB device number 28 using dummy_hcd
[  263.639579][ T5975] usb 9-1: device descriptor read/64, error -71
[  263.659502][   T68] Bluetooth: hci2: command tx timeout
[  263.903408][ T5975] usb 9-1: new high-speed USB device number 29 using dummy_hcd
[  263.968646][   T40] audit: type=1400 audit(519.868:45862): avc:  denied  { connect } for  pid=15458 comm="syz.6.3286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  263.976049][   T40] audit: type=1400 audit(519.868:45863): avc:  denied  { getopt } for  pid=15458 comm="syz.6.3286" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[  263.986447][T15461] FAULT_INJECTION: forcing a failure.
[  263.986447][T15461] name failslab, interval 1, probability 0, space 0, times 0
[  263.992501][T15461] CPU: 3 UID: 0 PID: 15461 Comm: syz.5.3287 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  263.992527][T15461] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  263.992537][T15461] Call Trace:
[  263.992543][T15461]  <TASK>
[  263.992551][T15461]  dump_stack_lvl+0x16c/0x1f0
[  263.992578][T15461]  should_fail_ex+0x512/0x640
[  263.992599][T15461]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  263.992630][T15461]  should_failslab+0xc2/0x120
[  263.992649][T15461]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  263.992673][T15461]  ? __kvm_mmu_topup_memory_cache+0x450/0x600
[  263.992689][T15461]  ? kvm_hv_setup_tsc_page+0x29a/0x8d0
[  263.992713][T15461]  ? __kvm_mmu_topup_memory_cache+0x18f/0x600
[  263.992734][T15461]  __kvm_mmu_topup_memory_cache+0x18f/0x600
[  263.992759][T15461]  mmu_topup_memory_caches+0x25/0x170
[  263.992787][T15461]  kvm_mmu_load+0xd9/0x22a0
[  263.992812][T15461]  ? kvm_apic_has_interrupt+0xb5/0x190
[  263.992832][T15461]  ? __pfx_kvm_apic_has_interrupt+0x10/0x10
[  263.992854][T15461]  ? __pfx_kvm_guest_time_update+0x10/0x10
[  263.992875][T15461]  ? __pfx_kvm_mmu_load+0x10/0x10
[  263.992897][T15461]  ? kvm_cpu_has_injectable_intr+0x9c/0x1a0
[  263.992916][T15461]  ? kvm_check_and_inject_events+0x71c/0x1310
[  263.992945][T15461]  vcpu_run+0x33d9/0x5320
[  263.992966][T15461]  ? kvm_mmu_post_init_vm+0x269/0x370
[  263.992994][T15461]  ? __lock_acquire+0xaa4/0x1ba0
[  263.993027][T15461]  ? __pfx_vcpu_run+0x10/0x10
[  263.993055][T15461]  ? fpu_swap_kvm_fpstate+0x235/0x4a0
[  263.993076][T15461]  ? __local_bh_enable_ip+0xa4/0x120
[  263.993103][T15461]  ? kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  263.993126][T15461]  kvm_arch_vcpu_ioctl_run+0x51c/0x18c0
[  263.993156][T15461]  kvm_vcpu_ioctl+0x5e9/0x1680
[  263.993183][T15461]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  263.993218][T15461]  ? ioctl_has_perm.constprop.0.isra.0+0x2fe/0x450
[  263.993246][T15461]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  263.993280][T15461]  ? hook_file_ioctl_common+0x145/0x410
[  263.993304][T15461]  ? selinux_file_ioctl+0x180/0x270
[  263.993327][T15461]  ? selinux_file_ioctl+0xb4/0x270
[  263.993352][T15461]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  263.993378][T15461]  __x64_sys_ioctl+0x190/0x200
[  263.993407][T15461]  do_syscall_64+0xcd/0x260
[  263.993432][T15461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.993449][T15461] RIP: 0033:0x7f48da18e969
[  263.993463][T15461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.993479][T15461] RSP: 002b:00007f48d7ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  263.993496][T15461] RAX: ffffffffffffffda RBX: 00007f48da3b5fa0 RCX: 00007f48da18e969
[  263.993507][T15461] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  263.993517][T15461] RBP: 00007f48d7ff6090 R08: 0000000000000000 R09: 0000000000000000
[  263.993527][T15461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  263.993537][T15461] R13: 0000000000000000 R14: 00007f48da3b5fa0 R15: 00007ffce09d1658
[  263.993560][T15461]  </TASK>
[  264.007408][T15464] netlink: 'syz.6.3288': attribute type 4 has an invalid length.
[  264.039540][ T5975] usb 9-1: device descriptor read/64, error -71
[  264.099125][T15466] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  264.140271][ T1022] usb 13-1: USB disconnect, device number 2
[  264.143413][ T1022] ldusb 13-1:0.0: LD USB Device #0 now disconnected
[  264.211589][ T5975] usb usb9-port1: attempt power cycle
[  264.217411][   T40] audit: type=1400 audit(520.118:45864): avc:  denied  { mount } for  pid=15475 comm="syz.5.3294" name="/" dev="rpc_pipefs" ino=97177 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  264.258973][T15484] netlink: 'syz.8.3290': attribute type 16 has an invalid length.
[  264.262324][T15484] __nla_validate_parse: 4 callbacks suppressed
[  264.262335][T15484] netlink: 48 bytes leftover after parsing attributes in process `syz.8.3290'.
[  264.267599][T15484] ==================================================================
[  264.270322][T15484] BUG: KASAN: global-out-of-bounds in fib6_ifup+0x257/0x2a0
[  264.272719][T15484] Read of size 8 at addr ffffffff9af9a530 by task syz.8.3290/15484
[  264.276220][T15484] 
[  264.277592][T15484] CPU: 0 UID: 0 PID: 15484 Comm: syz.8.3290 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  264.277608][T15484] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  264.277616][T15484] Call Trace:
[  264.277621][T15484]  <TASK>
[  264.277626][T15484]  dump_stack_lvl+0x116/0x1f0
[  264.277645][T15484]  print_report+0xc3/0x670
[  264.277657][T15484]  ? __virt_addr_valid+0x5e/0x590
[  264.277673][T15484]  ? __phys_addr+0xc6/0x150
[  264.277689][T15484]  ? fib6_ifup+0x257/0x2a0
[  264.277699][T15484]  kasan_report+0xe0/0x110
[  264.277710][T15484]  ? fib6_ifup+0x257/0x2a0
[  264.277722][T15484]  fib6_ifup+0x257/0x2a0
[  264.277732][T15484]  ? __pfx_fib6_ifup+0x10/0x10
[  264.277742][T15484]  fib6_clean_node+0x2a4/0x5b0
[  264.277754][T15484]  ? __pfx_fib6_clean_node+0x10/0x10
[  264.277766][T15484]  fib6_walk_continue+0x44f/0x8d0
[  264.277783][T15484]  fib6_walk+0x182/0x370
[  264.277799][T15484]  ? __pfx_fib6_ifup+0x10/0x10
[  264.277808][T15484]  fib6_clean_tree+0xd4/0x110
[  264.277824][T15484]  ? __pfx_fib6_clean_tree+0x10/0x10
[  264.277839][T15484]  ? mod_delayed_work_on+0x1a7/0x1c0
[  264.277853][T15484]  ? __pfx_fib6_clean_node+0x10/0x10
[  264.277863][T15484]  ? __pfx_fib6_ifup+0x10/0x10
[  264.277876][T15484]  ? __pfx_fib6_ifup+0x10/0x10
[  264.277885][T15484]  __fib6_clean_all+0x107/0x2d0
[  264.277902][T15484]  rt6_sync_up+0xc9/0x170
[  264.277916][T15484]  ? __pfx_rt6_sync_up+0x10/0x10
[  264.277931][T15484]  addrconf_notify+0x1709/0x19e0
[  264.277966][T15484]  ? ip6mr_device_event+0x1bc/0x230
[  264.277982][T15484]  notifier_call_chain+0xb9/0x410
[  264.277998][T15484]  ? __pfx_addrconf_notify+0x10/0x10
[  264.278012][T15484]  call_netdevice_notifiers_info+0xbe/0x140
[  264.278030][T15484]  __dev_notify_flags+0x2a8/0x2e0
[  264.278040][T15484]  ? __pfx___dev_notify_flags+0x10/0x10
[  264.278050][T15484]  ? __dev_change_flags+0x3d5/0x720
[  264.278060][T15484]  ? __pfx___dev_change_flags+0x10/0x10
[  264.278070][T15484]  ? validate_linkmsg+0x57c/0xb60
[  264.278082][T15484]  netif_change_flags+0x108/0x160
[  264.278093][T15484]  do_setlink.constprop.0+0xddf/0x44b0
[  264.278106][T15484]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  264.278118][T15484]  ? find_held_lock+0x2b/0x80
[  264.278131][T15484]  ? __mutex_trylock_common+0xe9/0x250
[  264.278148][T15484]  ? __pfx___mutex_trylock_common+0x10/0x10
[  264.278166][T15484]  ? __pfx___might_resched+0x10/0x10
[  264.278179][T15484]  ? rcu_is_watching+0x12/0xc0
[  264.278200][T15484]  ? trace_contention_end+0xdd/0x130
[  264.278217][T15484]  ? __mutex_lock+0x1ca/0xb90
[  264.278234][T15484]  ? rtnl_setlink+0x2b0/0x770
[  264.278245][T15484]  ? __pfx___mutex_lock+0x10/0x10
[  264.278260][T15484]  ? cap_capable+0xb3/0x250
[  264.278275][T15484]  rtnl_setlink+0x3cb/0x770
[  264.278286][T15484]  ? __pfx_rtnl_setlink+0x10/0x10
[  264.278297][T15484]  ? __kasan_slab_free+0x51/0x70
[  264.278306][T15484]  ? dev_hard_start_xmit+0x93/0x740
[  264.278321][T15484]  ? __dev_queue_xmit+0x7eb/0x43e0
[  264.278335][T15484]  ? netlink_deliver_tap+0xa87/0xd30
[  264.278346][T15484]  ? netlink_unicast+0x5df/0x7f0
[  264.278369][T15484]  ? __lock_acquire+0x5ca/0x1ba0
[  264.278388][T15484]  ? find_held_lock+0x2b/0x80
[  264.278399][T15484]  ? __pfx_rtnl_setlink+0x10/0x10
[  264.278409][T15484]  ? __pfx_rtnl_setlink+0x10/0x10
[  264.278420][T15484]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  264.278431][T15484]  ? __pfx_rtnl_setlink+0x10/0x10
[  264.278441][T15484]  rtnetlink_rcv_msg+0x95b/0xe90
[  264.278453][T15484]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  264.278467][T15484]  netlink_rcv_skb+0x16a/0x440
[  264.278479][T15484]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  264.278490][T15484]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  264.278506][T15484]  ? netlink_deliver_tap+0x1ae/0xd30
[  264.278518][T15484]  netlink_unicast+0x53a/0x7f0
[  264.278531][T15484]  ? __pfx_netlink_unicast+0x10/0x10
[  264.278544][T15484]  netlink_sendmsg+0x8d1/0xdd0
[  264.278557][T15484]  ? __pfx_netlink_sendmsg+0x10/0x10
[  264.278571][T15484]  ____sys_sendmsg+0xa95/0xc70
[  264.278586][T15484]  ? copy_msghdr_from_user+0x10a/0x160
[  264.278596][T15484]  ? __pfx_____sys_sendmsg+0x10/0x10
[  264.278610][T15484]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  264.278624][T15484]  ___sys_sendmsg+0x134/0x1d0
[  264.278635][T15484]  ? __pfx____sys_sendmsg+0x10/0x10
[  264.278652][T15484]  __sys_sendmsg+0x16d/0x220
[  264.278662][T15484]  ? __pfx___sys_sendmsg+0x10/0x10
[  264.278672][T15484]  ? __x64_sys_futex+0x1e0/0x4c0
[  264.278688][T15484]  ? rcu_is_watching+0x12/0xc0
[  264.278702][T15484]  do_syscall_64+0xcd/0x260
[  264.278717][T15484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.278728][T15484] RIP: 0033:0x7f95e938e969
[  264.278738][T15484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.278749][T15484] RSP: 002b:00007f95ea265038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  264.278761][T15484] RAX: ffffffffffffffda RBX: 00007f95e95b5fa0 RCX: 00007f95e938e969
[  264.278768][T15484] RDX: 0000000000000010 RSI: 0000200000000040 RDI: 0000000000000005
[  264.278776][T15484] RBP: 00007f95e9410ab1 R08: 0000000000000000 R09: 0000000000000000
[  264.278783][T15484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  264.278791][T15484] R13: 0000000000000000 R14: 00007f95e95b5fa0 R15: 00007fff1a3a79e8
[  264.278800][T15484]  </TASK>
[  264.278804][T15484] 
[  264.447840][T15484] The buggy address belongs to the variable:
[  264.449794][T15484]  __key.0+0x30/0x40
[  264.451116][T15484] 
[  264.451927][T15484] The buggy address belongs to the physical page:
[  264.454032][T15484] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1af9a
[  264.456868][T15484] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  264.459434][T15484] raw: 00fff00000002000 ffffea00006be688 ffffea00006be688 0000000000000000
[  264.462258][T15484] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  264.465041][T15484] page dumped because: kasan: bad access detected
[  264.467137][T15484] page_owner info is not present (never set?)
[  264.469118][T15484] 
[  264.469927][T15484] Memory state around the buggy address:
[  264.471800][T15484]  ffffffff9af9a400: 00 f9 f9 f9 f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9
[  264.474426][T15484]  ffffffff9af9a480: 00 f9 f9 f9 f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9
[  264.477040][T15484] >ffffffff9af9a500: 00 00 f9 f9 f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9
[  264.479589][T15484]                                      ^
[  264.481413][T15484]  ffffffff9af9a580: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f9
[  264.484061][T15484]  ffffffff9af9a600: f9 f9 f9 f9 00 00 f9 f9 f9 f9 f9 f9 00 00 f9 f9
[  264.486709][T15484] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  264.489437][T15484] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  264.491909][T15484] CPU: 0 UID: 0 PID: 15484 Comm: syz.8.3290 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  264.495811][T15484] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  264.499283][T15484] Call Trace:
[  264.500400][T15484]  <TASK>
[  264.501533][T15484]  dump_stack_lvl+0x3d/0x1f0
[  264.503086][T15484]  panic+0x71c/0x800
[  264.504409][T15484]  ? __pfx_panic+0x10/0x10
[  264.505900][T15484]  ? irqentry_exit+0x3b/0x90
[  264.507492][T15484]  ? lockdep_hardirqs_on+0x7c/0x110
[  264.509217][T15484]  ? fib6_ifup+0x257/0x2a0
[  264.510710][T15484]  ? fib6_ifup+0x257/0x2a0
[  264.512231][T15484]  check_panic_on_warn+0xab/0xb0
[  264.513908][T15484]  end_report+0x107/0x170
[  264.515339][T15484]  kasan_report+0xee/0x110
[  264.516801][T15484]  ? fib6_ifup+0x257/0x2a0
[  264.518280][T15484]  fib6_ifup+0x257/0x2a0
[  264.519690][T15484]  ? __pfx_fib6_ifup+0x10/0x10
[  264.521270][T15484]  fib6_clean_node+0x2a4/0x5b0
[  264.522884][T15484]  ? __pfx_fib6_clean_node+0x10/0x10
[  264.524644][T15484]  fib6_walk_continue+0x44f/0x8d0
[  264.526276][T15484]  fib6_walk+0x182/0x370
[  264.527652][T15484]  ? __pfx_fib6_ifup+0x10/0x10
[  264.529178][T15484]  fib6_clean_tree+0xd4/0x110
[  264.530748][T15484]  ? __pfx_fib6_clean_tree+0x10/0x10
[  264.532506][T15484]  ? mod_delayed_work_on+0x1a7/0x1c0
[  264.534266][T15484]  ? __pfx_fib6_clean_node+0x10/0x10
[  264.535997][T15484]  ? __pfx_fib6_ifup+0x10/0x10
[  264.537581][T15484]  ? __pfx_fib6_ifup+0x10/0x10
[  264.539164][T15484]  __fib6_clean_all+0x107/0x2d0
[  264.540792][T15484]  rt6_sync_up+0xc9/0x170
[  264.542291][T15484]  ? __pfx_rt6_sync_up+0x10/0x10
[  264.543939][T15484]  addrconf_notify+0x1709/0x19e0
[  264.545569][T15484]  ? ip6mr_device_event+0x1bc/0x230
[  264.547294][T15484]  notifier_call_chain+0xb9/0x410
[  264.548943][T15484]  ? __pfx_addrconf_notify+0x10/0x10
[  264.550642][T15484]  call_netdevice_notifiers_info+0xbe/0x140
[  264.552634][T15484]  __dev_notify_flags+0x2a8/0x2e0
[  264.554322][T15484]  ? __pfx___dev_notify_flags+0x10/0x10
[  264.556140][T15484]  ? __dev_change_flags+0x3d5/0x720
[  264.557860][T15484]  ? __pfx___dev_change_flags+0x10/0x10
[  264.559681][T15484]  ? validate_linkmsg+0x57c/0xb60
[  264.561346][T15484]  netif_change_flags+0x108/0x160
[  264.563040][T15484]  do_setlink.constprop.0+0xddf/0x44b0
[  264.564853][T15484]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[  264.566798][T15484]  ? find_held_lock+0x2b/0x80
[  264.568363][T15484]  ? __mutex_trylock_common+0xe9/0x250
[  264.570163][T15484]  ? __pfx___mutex_trylock_common+0x10/0x10
[  264.572140][T15484]  ? __pfx___might_resched+0x10/0x10
[  264.573893][T15484]  ? rcu_is_watching+0x12/0xc0
[  264.575497][T15484]  ? trace_contention_end+0xdd/0x130
[  264.577243][T15484]  ? __mutex_lock+0x1ca/0xb90
[  264.578810][T15484]  ? rtnl_setlink+0x2b0/0x770
[  264.580358][T15484]  ? __pfx___mutex_lock+0x10/0x10
[  264.582043][T15484]  ? cap_capable+0xb3/0x250
[  264.583555][T15484]  rtnl_setlink+0x3cb/0x770
[  264.585032][T15484]  ? __pfx_rtnl_setlink+0x10/0x10
[  264.586706][T15484]  ? __kasan_slab_free+0x51/0x70
[  264.588347][T15484]  ? dev_hard_start_xmit+0x93/0x740
[  264.590054][T15484]  ? __dev_queue_xmit+0x7eb/0x43e0
[  264.591750][T15484]  ? netlink_deliver_tap+0xa87/0xd30
[  264.593536][T15484]  ? netlink_unicast+0x5df/0x7f0
[  264.595177][T15484]  ? __lock_acquire+0x5ca/0x1ba0
[  264.596828][T15484]  ? find_held_lock+0x2b/0x80
[  264.598437][T15484]  ? __pfx_rtnl_setlink+0x10/0x10
[  264.600114][T15484]  ? __pfx_rtnl_setlink+0x10/0x10
[  264.601780][T15484]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  264.603522][T15484]  ? __pfx_rtnl_setlink+0x10/0x10
[  264.605194][T15484]  rtnetlink_rcv_msg+0x95b/0xe90
[  264.606841][T15484]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  264.608644][T15484]  netlink_rcv_skb+0x16a/0x440
[  264.610251][T15484]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  264.612078][T15484]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  264.613959][T15484]  ? netlink_deliver_tap+0x1ae/0xd30
[  264.615759][T15484]  netlink_unicast+0x53a/0x7f0
[  264.617348][T15484]  ? __pfx_netlink_unicast+0x10/0x10
[  264.619100][T15484]  netlink_sendmsg+0x8d1/0xdd0
[  264.620696][T15484]  ? __pfx_netlink_sendmsg+0x10/0x10
[  264.622621][T15484]  ____sys_sendmsg+0xa95/0xc70
[  264.624237][T15484]  ? copy_msghdr_from_user+0x10a/0x160
[  264.626059][T15484]  ? __pfx_____sys_sendmsg+0x10/0x10
[  264.627802][T15484]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  264.629714][T15484]  ___sys_sendmsg+0x134/0x1d0
[  264.631281][T15484]  ? __pfx____sys_sendmsg+0x10/0x10
[  264.633006][T15484]  __sys_sendmsg+0x16d/0x220
[  264.634552][T15484]  ? __pfx___sys_sendmsg+0x10/0x10
[  264.636231][T15484]  ? __x64_sys_futex+0x1e0/0x4c0
[  264.637859][T15484]  ? rcu_is_watching+0x12/0xc0
[  264.639445][T15484]  do_syscall_64+0xcd/0x260
[  264.640945][T15484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.642927][T15484] RIP: 0033:0x7f95e938e969
[  264.644406][T15484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.650600][T15484] RSP: 002b:00007f95ea265038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  264.653359][T15484] RAX: ffffffffffffffda RBX: 00007f95e95b5fa0 RCX: 00007f95e938e969
[  264.655916][T15484] RDX: 0000000000000010 RSI: 0000200000000040 RDI: 0000000000000005
[  264.658472][T15484] RBP: 00007f95e9410ab1 R08: 0000000000000000 R09: 0000000000000000
[  264.661014][T15484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  264.663617][T15484] R13: 0000000000000000 R14: 00007f95e95b5fa0 R15: 00007fff1a3a79e8
[  264.666194][T15484]  </TASK>
[  264.667867][T15484] Kernel Offset: disabled
[  264.669332][T15484] Rebooting in 86400 seconds..

VM DIAGNOSIS:
15:20:43  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000062 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854f50f5 RDI=ffffffff9adf94e0 RBP=ffffffff9adf94a0 RSP=ffffc900036be438
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3966666666666666
R12=0000000000000000 R13=0000000000000062 R14=ffffffff9adf94a0 R15=ffffffff854f5090
RIP=ffffffff854f511f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f95ea2656c0 ffffffff 00c00000
GS =0000 ffff8880d69df000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f48da174700 CR3=0000000055e54000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000010100 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9411a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9411a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9411a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9411aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9411b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9411c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9583488 00007f95e9583480 00007f95e9583478 00007f95e9583450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95ea0ed100 00007f95e9583440 00007f95e9583458 00007f95e95834a0
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9583498 00007f95e9583490 00007f95e9583488 00007f95e9583480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000070 0000000000000002 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff911993ca RBX=ffffffff909646a0 RCX=dffffc0000000000 RDX=ffffffff8179f14f
RSI=0000000000000000 RDI=ffffffff90964694 RBP=ffffffff909646a4 RSP=ffffc900006a05c8
R8 =ffffffff91199436 R9 =0000000000000000 R10=0000000000000005 R11=00000000000079f1
R12=ffffffff909646b0 R13=ffffffff8179f161 R14=ffffffff90964694 R15=ffffffff90964694
RIP=ffffffff8169bf61 RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6adf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ff7138e7d60 CR3=0000000037e1d000 CR4=00352ef0
DR0=0000000000000007 DR1=0000000000000002 DR2=0000000000000008 DR3=1000000100000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ff712d836a3 00007ff712d836a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffccf773ea0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556bc15033 000055556bc14fb0
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556bc134a0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556bc14b0d 000055556bc14720
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055556bc23904 000055556bc23900
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0008100600000006 1006060172ec0000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 010010000fffffff ffffff0401981000 1bfffffff6080001 9b86080001000004
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 08060c010dde0190 1000408004001000 060102be04000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00001b1e08408003 0f80040000000810 0600000006100606 0172ec0000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 ffffffffffffffff d7080fd803000400
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 65686361630a3432 302e30303632203a 09097a484d207570 630a666666666666
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 30203a096469206c 616369737968700a 424b203438333631 203a09657a697320
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 63207570630a3020 3a09096469206572 6f630a34203a0973 676e696c6269730a
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6574636972747365 726e752064697076 2074706520636970 61762066746d2072
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 636d765f776f6461 6873206469762067 65725f6369706176 2074736575675f64
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6572746365707320 31765f6572746365 7073203a09097367 75620a6c6d702073
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6269652073677061 7773207373617079 625f65726f74735f 636570732032765f
info registers vcpu 2

CPU#2
RAX=ffff88802073c880 RBX=ffffffff8e3bf5c0 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8dcd20e4 RDI=ffffffff8bf482a0 RBP=0000000000000002 RSP=ffffc900016bece0
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000004 R11=00000000000060f6
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8b6cdba0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880d6bdf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00002000000011c0 CR3=0000000053fa6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000010100 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff1a3a7d70 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9411a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9411a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9411a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9411aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9411b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f95e9411c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000070 0000000000000002 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=ffffed1003a236ad RBX=ffffed1003a236ae RCX=ffffffff822c333f RDX=ffffed1003a236ae
RSI=0000000000000004 RDI=ffff88801d11b568 RBP=ffffed1003a236ad RSP=ffffc9000369f8e0
R8 =0000000000000000 R9 =ffffed1003a236ad R10=ffff88801d11b56b R11=0000000000000000
R12=ffff88801d11b520 R13=0000000000000001 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8220a6d1 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00005555923be500 ffffffff 00c00000
GS =0000 ffff8880d6cdf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fbc1fa65b1a CR3=000000005c764000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000040000400 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbc208ed6c0 00007fbc208ed6c0
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbc208ed6b0 00007fbc208ed6b0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbc1fc11a8a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbc1fc11a97
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbc1fc11a91
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbc1fc11aa5
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbc1fc11b2b
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbc1fc11c09
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6161616161616161 6161616161616161 6161616161616161 6161616161616161
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000