last executing test programs:

2m27.720060559s ago: executing program 2 (id=125):
sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, 0x0, 0x44890)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0xffffffff, @empty}, 0x1c)
listen(r0, 0x5)
syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0200", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x0, 0x0, 0x81}}}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000b00)=ANY=[@ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='P'], 0x0)

2m27.633308207s ago: executing program 2 (id=127):
socket$can_bcm(0x1d, 0x2, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0500000005000000fd09000085"], 0x50)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mknodat(r1, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
chdir(&(0x7f00000000c0)='./bus\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
renameat2(r2, &(0x7f00000001c0)='./file0\x00', r2, &(0x7f0000000200)='./bus/file0\x00', 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x60)
getdents(r3, &(0x7f0000000140)=""/194, 0xc2)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0xffffffffffffffff, 0x0, &(0x7f0000000080), &(0x7f0000000c40)="59bdd7dd1e8da6fd29e6c6d9e7433a06e8501f080c9e1d2851c866d4da366d9fae578ee50f90069f365bf35363af2b11db620639dfed4d3b62cdf02af8a0c76aa19da5b4a21114d613cc9a841bee72562760a311a0e06a4fd34916cab4d7ff0ff323fb420a6fc1c52685165e7f321a2fec04ade238e6064ce52d572ad69b7ea61b262893955c1f00729b5fab31d741d992d8f2f4629910621edf90a1bed4d65d3e1c41902ae835f82bbcbde3417dd4462bddd4c37ead5f6d4e83fc2a3bddd8ab9274", 0x803, r0}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000680), &(0x7f0000000540), 0x6c, r0}, 0x38)

2m27.287776377s ago: executing program 2 (id=131):
syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip6_flowlabel\x00')
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$inet6(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x2e, 0x0, &(0x7f00000064c0))
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r2 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x1e}, @in6=@loopback, 0x4e24, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20}, {0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x4, 0x2}, {}, 0x0, 0x6e6bb9, 0x1}, {{@in=@broadcast, 0xfffffffc, 0x32}, 0x0, @in=@multicast1, 0x0, 0x0, 0x2, 0x7, 0x200}}, 0xe8)
sendmmsg(r2, &(0x7f0000000480), 0x2e9, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r4, &(0x7f00000002c0)=[{&(0x7f0000000280)='2', 0x1}], 0x1)
getresuid(&(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000300)=<r5=>0x0)
stat(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
fstat(r2, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(r5, r6, r7)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=@newsa={0x138, 0x10, 0x633, 0x0, 0x80000008, {{@in=@multicast2, @in6=@dev, 0x0, 0x0, 0x1800, 0x0, 0xa, 0x80}, {@in=@local, 0x4d2, 0x32}, @in6=@mcast2, {0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x100}, {0x5, 0x2000000000, 0x0, 0x5}, {}, 0x2, 0x0, 0xa, 0x4}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f00000001c0)=""/179, 0xb3}], 0x1, 0x0, 0xff)
pread64(0xffffffffffffffff, &(0x7f0000000180)=""/15, 0xfffffe9c, 0x358)

2m26.533523628s ago: executing program 2 (id=134):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000200)={0x1, @win={{0x8, 0x7, 0x6, 0x1}, 0x8, 0x5, 0x0, 0xffffffff, 0x0, 0xab}})

2m26.403538527s ago: executing program 2 (id=136):
r0 = syz_io_uring_setup(0x97e, &(0x7f0000000500)={0x0, 0xa056, 0x400, 0x0, 0x272}, &(0x7f00000002c0), &(0x7f0000000340))
r1 = syz_io_uring_setup(0x10e, &(0x7f00000000c0)={0x0, 0x334e, 0x8, 0x202, 0x801, 0x0, r0}, &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000300)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000040)='./file0/file0\x00', 0x60, 0x185100})
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r4 = syz_open_dev$vbi(&(0x7f0000000000), 0x2, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r4, 0xc0f8565c, &(0x7f0000000040)={0x0, 0x0, 0x2, {0x6, @sdr}})
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = getpid()
syz_pidfd_open(r5, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r6, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000240), 0x10000, &(0x7f0000000440)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[], [{@smackfsfloor={'smackfsfloor', 0x3d, '/proc/sys/net/ipv4/vs/ignore_tunneled\x00'}}, {@context={'context', 0x3d, 'unconfined_u'}}]}})
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
mount$afs(0x0, &(0x7f0000000200)='./file1\x00', 0x0, 0x88, 0x0)
r7 = open(0x0, 0x0, 0x0)
ioctl$AUTOFS_IOC_READY(r7, 0x9360, 0x800000000000001)
io_uring_enter(r1, 0x7277, 0x0, 0x0, 0x0, 0x0) (fail_nth: 68)

2m26.209556069s ago: executing program 2 (id=139):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000280)={'gretap0\x00', &(0x7f00000001c0)={'gre0\x00', <r1=>0x0, 0x8000, 0x20, 0x2, 0xd29, {{0x5, 0x4, 0x1, 0xa, 0x14, 0x68, 0x0, 0x9, 0x29, 0x0, @multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}}}}})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
creat(&(0x7f00000002c0)='./file0\x00', 0x109)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r3, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)=[0x1], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r4 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x15)
chdir(&(0x7f0000000080)='./file0\x00')
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001240)=@deltfilter={0x30, 0x2d, 0x900, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, {0x4, 0x7}, {0x9, 0x8}, {0xb, 0x6}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x804}, 0x4000090)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setpriority(0x2, 0x0, 0x17)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000300)=ANY=[@ANYBLOB="060101000000210000000001000000050001000700000014000880100007800900120073717a32f53400000900020073797a32000000000802094000000000"], 0x44}}, 0x0)

2m10.996778267s ago: executing program 32 (id=139):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000280)={'gretap0\x00', &(0x7f00000001c0)={'gre0\x00', <r1=>0x0, 0x8000, 0x20, 0x2, 0xd29, {{0x5, 0x4, 0x1, 0xa, 0x14, 0x68, 0x0, 0x9, 0x29, 0x0, @multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}}}}})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
creat(&(0x7f00000002c0)='./file0\x00', 0x109)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r3, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)=[0x1], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r4 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x15)
chdir(&(0x7f0000000080)='./file0\x00')
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001240)=@deltfilter={0x30, 0x2d, 0x900, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, {0x4, 0x7}, {0x9, 0x8}, {0xb, 0x6}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x804}, 0x4000090)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setpriority(0x2, 0x0, 0x17)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000300)=ANY=[@ANYBLOB="060101000000210000000001000000050001000700000014000880100007800900120073717a32f53400000900020073797a32000000000802094000000000"], 0x44}}, 0x0)

45.181453635s ago: executing program 0 (id=760):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000080000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000021440011800a0001006d617463680000003400028008000240000000001c0003000afe6cbf96caa5debdad61b67ddb2fb68fcf19f7807076430a00010071756f7461"], 0xc8}, 0x1, 0x0, 0x0, 0x4000005}, 0x20000004)
socket$vsock_stream(0x28, 0x1, 0x0)
r1 = syz_io_uring_setup(0x892, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x1, 0xbfdffffc}, &(0x7f00000000c0)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x6, 0x8, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8}, [@tail_call={{0x18, 0x2, 0x1, 0x0, 0x1}}]}, &(0x7f0000000100)='GPL\x00', 0x5, 0x6d, &(0x7f00000001c0)=""/109, 0x41100, 0x31, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x0, 0x1}, 0x8, 0x10, &(0x7f00000003c0)={0x5, 0x1, 0x5, 0x7}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000400)=[0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000440)=[{0x4, 0x1, 0xb, 0x4}, {0x4, 0x4, 0x3, 0x4}, {0x2, 0x4, 0x7, 0x9}, {0x0, 0x1, 0xe, 0x1}], 0x10, 0x5, @void, @value}, 0x94)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000006c0)={'tunl0\x00', &(0x7f0000000680)={'syztnl1\x00', <r5=>0x0, 0x700, 0x80, 0x9, 0x1, {{0x6, 0x4, 0x3, 0x7, 0x18, 0x64, 0x0, 0x40, 0x4, 0x0, @rand_addr=0x64010101, @remote, {[@ra={0x94, 0x4}]}}}}})
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000800)={@map, 0x34, 0x1, 0x41a, &(0x7f0000000700)=[0x0], 0x1, 0x0, &(0x7f0000000740)=[0x0, 0x0, 0x0], &(0x7f0000000780)=[0x0], &(0x7f00000007c0)=[0x0], <r6=>0x0}, 0x40)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000840)={r4, r5, 0x25, 0x9, @val=@tcx={@void, @value, @void, @void, r6}}, 0x1c)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x40800000000000, 0x800000000000002}}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x0, @in=@broadcast, 0x2, 0x4, 0x3}]}]}, 0xfc}}, 0x0)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001100)=@migrate={0xa0, 0x21, 0x1, 0x0, 0x0, {{@in6=@private2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa}}, [@migrate={0x50, 0x11, [{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in=@loopback, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@multicast1, 0x3c, 0x4, 0x0, 0x2, 0x2, 0xa}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
syz_memcpy_off$IO_URING_METADATA_FLAGS(r2, 0x118, &(0x7f0000000000)=0x1, 0x0, 0x4)
r9 = add_key(&(0x7f0000000140)='cifs.spnego\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$KEYCTL_WATCH_KEY(0x20, r9, 0xffffffffffffffff, 0x71)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
socket$pppoe(0x18, 0x1, 0x0)
io_uring_enter(r1, 0x25a1, 0x0, 0x4, 0x0, 0x0)

45.082687641s ago: executing program 0 (id=761):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a5c000000060a09040000000000000000020000000900020073797a320000000009"], 0x84}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00008feff0)={0x0}}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0)
write$sndseq(r1, &(0x7f00000005c0)=[{0x6, 0x0, 0x0, 0x0, @time, {0x4}, {}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x5, @time={0xb, 0x8}, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"272be5806cd46d37ea9a65a0"}}, {0x0, 0x0, 0x0, 0x0, @time={0x8000, 0x8}, {}, {}, @result={0xbac, 0x28}}], 0x70)
r2 = openat$zero(0xffffff9c, &(0x7f0000000140), 0x148300, 0x0)
sendmsg$key(r2, &(0x7f0000000100)={0x4, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="020d0000100000002f3144e8edffffff03000600ff18000002004909000100000000000000001e0e080012000200010000d200000000000030006c540203009f7eae02000000adb20200000000f52c000000cdff00000001020014bb000001000000002300001300030005000020000002"], 0x80}}, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r3, &(0x7f00000000c0), 0x2c8, 0x0)

45.022193638s ago: executing program 0 (id=763):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610430000000000095000080"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x28}}, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="340000003e000900000000000008000003000000040004001c000180180010"], 0x34}}, 0x84)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x8, &(0x7f00000003c0)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x87}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r5}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r6, 0x0, 0xe, 0x0, &(0x7f0000000000)="e06921e8682d85ff9782762f86dd", 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
read$FUSE(0xffffffffffffffff, &(0x7f0000002200)={0x2020}, 0xfffffde5)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
r8 = syz_io_uring_setup(0x497, &(0x7f0000002180)={0x0, 0x787f, 0x100, 0x4, 0x3e4}, 0x0, &(0x7f0000000280)=<r9=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r8, 0x16, &(0x7f0000000040)={&(0x7f0000001000)={[{0x0, 0x0, 0x3}]}, 0x1, 0x1}, 0x1)
write$RDMA_USER_CM_CMD_GET_EVENT(0xffffffffffffffff, &(0x7f0000000380)={0xc, 0x8, 0xfa00, {&(0x7f0000001140)}}, 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xfffffffffffffe7a, 0xfa00, {0x4, &(0x7f00000000c0), 0x106, 0x1}}, 0x20)
syz_io_uring_submit(0x0, r9, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x0, r7, 0x0, 0x0, 0x0, 0x200, 0x1, {0x1}})
io_uring_enter(r8, 0x3516, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$netlbl_unlabel(0x0, r0)
sendmsg$IEEE802154_LLSEC_LIST_SECLEVEL(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)={0x14, r1, 0x72b}, 0x14}, 0x1, 0x44}, 0x0)
acct(&(0x7f0000000000)='./file0\x00')
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), r0)
fremovexattr(0xffffffffffffffff, &(0x7f0000000040)=@known='system.posix_acl_default\x00')

44.108880555s ago: executing program 0 (id=768):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0cc5605, &(0x7f00000000c0)={0x1, @pix_mp={0x0, 0x0, 0x50565559, 0x0, 0x0, [{0xfffffffd, 0xfdfdffff}]}})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f00000000c0)={[{@dyn}]})
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)

44.051560255s ago: executing program 0 (id=770):
r0 = syz_io_uring_setup(0x97e, &(0x7f0000000500)={0x0, 0xa056, 0x400, 0x0, 0x272}, &(0x7f00000002c0), &(0x7f0000000340))
r1 = syz_io_uring_setup(0x10e, &(0x7f00000000c0)={0x0, 0x334e, 0x8, 0x202, 0x801, 0x0, r0}, &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000300)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000040)='./file0/file0\x00', 0x60, 0x185100})
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r4 = syz_open_dev$vbi(&(0x7f0000000000), 0x2, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r4, 0xc0f8565c, &(0x7f0000000040)={0x0, 0x0, 0x2, {0x6, @sdr}})
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = getpid()
syz_pidfd_open(r5, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r6, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000240), 0x10000, &(0x7f0000000440)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[], [{@smackfsfloor={'smackfsfloor', 0x3d, '/proc/sys/net/ipv4/vs/ignore_tunneled\x00'}}, {@context={'context', 0x3d, 'unconfined_u'}}]}})
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
bpf$OBJ_GET_MAP(0x7, 0x0, 0x0)
mount$afs(0x0, &(0x7f0000000200)='./file1\x00', 0x0, 0x88, 0x0)
r7 = open(0x0, 0x0, 0x0)
ioctl$AUTOFS_IOC_READY(r7, 0x9360, 0x800000000000001)
io_uring_enter(r1, 0x7277, 0x0, 0x0, 0x0, 0x0) (fail_nth: 70)

43.85320824s ago: executing program 0 (id=774):
lsetxattr(&(0x7f0000000080)='./bus\x00', &(0x7f0000000100)=@known='user.syz\x00', &(0x7f0000000140)='{\x00', 0x2, 0x3)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
open(&(0x7f00000005c0)='./bus\x00', 0x66842, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x1ed37e, 0x0)

28.744391141s ago: executing program 33 (id=774):
lsetxattr(&(0x7f0000000080)='./bus\x00', &(0x7f0000000100)=@known='user.syz\x00', &(0x7f0000000140)='{\x00', 0x2, 0x3)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
open(&(0x7f00000005c0)='./bus\x00', 0x66842, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x1ed37e, 0x0)

13.712164567s ago: executing program 3 (id=902):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x101, 0xf}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
unshare(0x2040600)
syz_open_dev$usbmon(0x0, 0x3, 0x80)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r4)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r6 = creat(&(0x7f00000002c0)='./file0\x00', 0x6)
write$tun(r6, &(0x7f0000000300)=ANY=[@ANYBLOB='g'], 0x8)
r7 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r8 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r8, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x4, &(0x7f00000000c0), 0x2, 0x3}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r8, 0x0, 0x0)
mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, r7, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x53, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r9, 0x0, 0x30, 0x1, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x40000000000007], &(0x7f0000000500)=[0x2], 0x0, 0x1}}, 0x3c)
shutdown(r5, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

12.35895088s ago: executing program 3 (id=906):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000fcffffffb7020000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
socket$netlink(0x10, 0x3, 0x0)
mount$9p_unix(&(0x7f0000000180)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x10000, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=unix,debug<0x0000000000000000,access=user,a', @ANYRESDEC=0xee01, @ANYBLOB=',access=user,posixacl,loose,smackfstransmute=bridge0\x00,fsmagic=0x0000000000000007,\x00'])
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r4, &(0x7f0000000240)={&(0x7f00000002c0)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4050}, 0x84)
recvmmsg(r4, &(0x7f0000003180)=[{{0x0, 0x0, &(0x7f00000032c0)=[{&(0x7f0000000640)=""/46, 0x2e}], 0x1}, 0x400}], 0x1, 0x2002, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x17, &(0x7f0000000000)={&(0x7f0000000100)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x25dfdbfb, {0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x24}}, 0x40)
sendmsg$IPSET_CMD_SAVE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x1c}}, 0x0)
pipe2$9p(&(0x7f0000000100), 0x80000)
r6 = openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r6, 0xc0a45320, &(0x7f00000000c0)={{0x80, 0xf7}, 'port1\x00', 0x3ab, 0x2062f, 0x3, 0x7, 0x0, 0xc, 0x3fc, 0x0, 0x7, 0xfd})
readv(r6, &(0x7f0000000700)=[{&(0x7f0000000080)=""/63, 0x3f}], 0x1)

11.663917701s ago: executing program 1 (id=909):
r0 = openat$cgroup_root(0xffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={<r2=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @rand_addr=0x64010100}]}, &(0x7f0000000240)=0x10)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000040)={0x4, 0x0, 0x9, 0x4, r2}, &(0x7f0000000080)=0x10)
close_range(r0, r1, 0x0)
r3 = socket(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0xa00000000000000, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x1, 0x948, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000480], 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="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"/2376]}, 0x998)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="03c80093d49f03fff185b670e005ec9673d97a71a89b4a9b4756642bd6140cea0643364bc291a5171553bdecf1f7dae829fd31a4f1fa5d37536baee200fbe0829773688ed3e86d46446576b8ae5fd681bca609c149a9e2448f609f5a52db681a5f50bac0b079b557658ce9a1363424afa87ca9ca3a90205c191e2fdfef6e7c1d4141c0f12788a9e6d76e629ae9a001f03d98ad8cc8f4197a1c087d83c4ed2a781f5a52abe0abcb49cc1cc2dabc37b44698eaecc6568bc94daa9082e30e173fabc28b3b8191a8b57da9a5793eeb6f646933346081d29a00c7bddd845efa5eb9be937683056285196fb7c0efc1b1aa68731e58e10992cbaca3f2507455c0428ef16bb936c5fba1bbdcad"], 0x97)

10.563727612s ago: executing program 1 (id=911):
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r3=>0x0})
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r4, &(0x7f0000000080)={0x1d, r3, 0x0, {0x0, 0x0, 0x4}, 0xfe}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000090000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r3, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$packet(0x11, 0x3, 0x300)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r6, 0x107, 0xf, &(0x7f0000000100)=0x716, 0x4)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000200)={'ip6gretap0\x00', <r7=>0x0})
sendto$packet(r6, &(0x7f0000000180)="0b036800e0ff64000200475400f6a13bb1000000080086dd4803", 0xd888, 0x0, &(0x7f0000000140)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @multicast}, 0x14)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d80)={&(0x7f0000000d40)='mmap_lock_acquire_returned\x00', r8}, 0x18)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_INFO(r9, 0x29, 0x40, &(0x7f0000000040)={'nat\x00', 0x0, [0x81, 0x4000105, 0x9, 0x8001, 0x9]}, &(0x7f0000000400)=0x54)
syz_clone(0x20000, 0x0, 0x0, 0x0, 0x0, 0x0)
r10 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r10, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r10, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r11=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r10, 0xc02064b6, &(0x7f00000001c0)={r11, <r12=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r10, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000240)=[0x0, <r13=>0x0], &(0x7f0000000040), 0x2, r12})
ioctl$DRM_IOCTL_MODE_ATOMIC(r10, 0xc03864bc, &(0x7f0000000380)={0x100, 0x1, &(0x7f0000000440)=[r12], &(0x7f0000000040), &(0x7f0000000300)=[r13], &(0x7f0000000340), 0x0, 0x1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
r14 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r15 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r15, &(0x7f0000000200), 0xf000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r14, 0x0)

10.487538427s ago: executing program 3 (id=912):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005165c0f63cdc2e82818254950ee03568b8809a1ff4c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab60c1aae1314d7381fcfeb970bea672cf1e926f6a51479343144648a07a975bd89dc398712376610f6254f12495b4658319684387f6f3543205d4bc4ce05b8b961103673dff7f158052e62b20f05fd24108d8363d44fcd0f8f3647899762a17282a1914452d11f557c28f396eebdc858558db0276d14f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5de2503dab358f42a2624c7daa9ed44039aab46419496362e54cfad05a0004ac71a003d7b85d07191bed4e5a890826300214146f7ed569985439baa355c2766dd056f5d79e454f3d873095e7a237bc06d035a8d601f21746d886419f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c66b0f65021829f87d988b4e2d71753b1549fa734f0b2e56dbd21ed2e09d0cddad721971637f384eed3034597c93e1c52f42cad0ed09c395dc6e9703660fefa1c80f467367c006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0c9be9654db05fb918086cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f717f13fa7552d92c51dbd32ea50c490ecd085d2811a7555c538cffffff7f00000000dd872244bfa64779e0f43a9c277e2910b7ccdc3d6726d34ad2101033a623ca2a49ad344884289130bc71cee2b7de62bf48129ae1af052a2d46a61625735a9eea7f793946b3229e861d8ea49806b3f7d4295f6b000000000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c00000099b13ecda2a5b37de0519e974cba92ebaf0f701611a9b027ce04340bda4594cc9049c3f101629ab028145e004209ebe71a6fe84af50804000000000000004a27213354964e250a98fe357676f94b6947383e320fbb1118f586d5b9b1b977e1e1a4490ff67703a9b5900f8a6f8a805879dd91ec5ff435b219c53680c0ae04dcc4ef69b98fcb0d6b6a03a8b71a66b4e2876dc4b610444bf10000000000b046b6ae5d68156bcbd6d8793ade9a22ac8fc7857e5bbc14adc4e12b08f350c6789283b9990c72e64372a1f79769a8bdc632fc1a0b3417855d8b7d25ca4d404c23631ad3d2f55dcd385371c86170a4bca58c2b2b4eabc365f45bd10bb45b0c5bc354456a52be18d9b44014d20a3c51c8f013dade83562e73278662829e4f5a9ac00fd91178468c737f0872d97d38d11a176be5a0d7294c51eb161eddcfefa8837c7430721851ec2a107af0df6d43e732bbc01e76c66895eb85d36798d61622773591ee21ad9f6a1b73fa9cf3ffeb8a00b63af800a81d0fb8aa29df8b8ad6fbafefb5802a23cbdeeabceda5bfc5ff2fa5c1d61d04a1324794c6ed000696d9f04010c35474e690545c3d9bd836d4cef2585ba616e01c3d000000000000000000470ebc6f3453ecbf3047e4547d7632d3ad21798e730cb5d1da059b5bdb8107815dff995c0788906790406dfb4f8ee9f24ff94233e2e6e581e6e5de33a5f254c9a8b612547473c3001df3928dac9203b744619082421a8da7c00000000000000000000000000000018a73ef40cca690fb7595c6962984f8276677be6f66cbdbccf1896433808c9c84d74ac4a7c186a04a2250972f7acb156b21f9826b6acb7db32c4e3b3ec8b59fd972975edb1da872d81a35e4fda2f5cbde6b40bea20418c6e9dad30b791eea58f53e80fee4dd7fe08373ea2784fcd3a65261de71eb866458d2c22a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, r1, 0x2, 0x2, 0x0, @void, @value}, 0x10)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f00000000c0)={0x8, 0x2, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(0xffffffffffffffff, 0x40045612, &(0x7f00000012c0)=0x2)
socket$inet_udp(0x2, 0x2, 0x0)

10.421212291s ago: executing program 3 (id=914):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = open(&(0x7f0000000140)='./file0\x00', 0x800, 0x70)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')
unlink(&(0x7f0000000040)='./file1\x00')

10.379733689s ago: executing program 1 (id=915):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000fcffffffb7020000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
socket$netlink(0x10, 0x3, 0x0)
mount$9p_unix(&(0x7f0000000180)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x10000, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=unix,debug<0x0000000000000000,access=user,a', @ANYRESDEC=0xee01, @ANYBLOB=',access=user,posixacl,loose,smackfstransmute=bridge0\x00,fsmagic=0x0000000000000007,\x00'])
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r4, &(0x7f0000000240)={&(0x7f00000002c0)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4050}, 0x84)

10.168993234s ago: executing program 3 (id=919):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)={0x48, r1, 0x633d41a77d0888ff, 0x70bd26, 0x25dfdbfd, {}, [@DEVLINK_ATTR_RATE_PARENT_NODE_NAME, @handle=@nsim={{0xe}, {0x6, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_RATE_TX_SHARE={0x0, 0xa6, 0xc7}, @DEVLINK_ATTR_RATE_NODE_NAME={0x0, 0xa8, @random="89bfc864b04bb23888d7114439a46bf0a04da0b7f9ec2f6838a679441df46b25b6838245c1e1a1cb9ff13efc32e7dd06f205c762422131c3a2b0bc436ba0ba6e"}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x20048844)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x14, 0x2, [@TCA_CODEL_LIMIT={0x8}, @TCA_CODEL_TARGET={0x8, 0x1, 0xfffffffc}]}}]}, 0x44}}, 0x0)

9.452361766s ago: executing program 1 (id=922):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, 0xffffffffffffffff, 0x2, 0x2, 0x0, @void, @value}, 0x10)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r1, r2, 0x2, 0x2, 0x0, @void, @value}, 0x10)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f00000000c0)={0x8, 0x2, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(0xffffffffffffffff, 0x40045612, &(0x7f00000012c0)=0x2)
socket$inet_udp(0x2, 0x2, 0x0)

9.378826362s ago: executing program 1 (id=923):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000002c0), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_open_dev$sndpcmc(&(0x7f000000cc40), 0x1, 0x8000)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS(r2, 0xc25c4111, &(0x7f000000cc80)={0xf65, [[0x0, 0x5, 0x0, 0x5, 0x0, 0x4, 0xfffffffe, 0x5], [0x804, 0x6, 0x3, 0x3, 0x333, 0x7, 0x3000000, 0x1], [0x3, 0xb, 0x6, 0x9, 0x1, 0x6, 0x5, 0x5f1]], '\x00', [{0xa6, 0x2b, 0x1, 0x1, 0x0, 0x1}, {0x9, 0x8, 0x1, 0x1, 0x1}, {0x80, 0x1, 0x1, 0x0, 0x0, 0x1}, {0x104, 0x5, 0x0, 0x1, 0x1}, {0x401, 0xfae, 0x1, 0x1}, {0x4, 0x3, 0x0, 0x0, 0x1}, {0xdfffff05, 0xff, 0x0, 0x1, 0x1}, {0x7802e748, 0x4, 0x0, 0x1, 0x0, 0x1}, {0x3, 0x2, 0x1, 0x1, 0x1}, {0x2, 0x9, 0x1}, {0x423, 0xfff, 0x0, 0x1, 0x0, 0x1}, {0xffffff00, 0x40000, 0x1, 0x1, 0x1}], '\x00', 0xc060})
r3 = gettid()
rt_sigsuspend(&(0x7f0000000040)={[0x3]}, 0x8)
tkill(r3, 0x7)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0x3}, 0x6)
ioctl$sock_bt_hci(r4, 0x800448d5, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xe, 0x4, &(0x7f00000000c0)=ANY=[@ANYRES64=r0], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x13)
sendmsg$nl_route_sched(r1, 0x0, 0x4001)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[@ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00b15cefe550ba568b000000ecffffffffffffff0000000000000000c65da3e727994b93fa178160aa102c694ce33849a027b3134fe4d97fd0fab980f99235eec2534c471b8796508972485c535d0ca6d1af269738190d71caa317"], 0x67)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x10, &(0x7f0000000c00)=ANY=[@ANYRES32=r5, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r6, 0x0, 0xe, 0x0, &(0x7f0000000080)="00faff0f0001eeff7f6faf9a1e4d", 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r7 = io_uring_setup(0x6e33, &(0x7f0000000140)={0x0, 0x0, 0x80, 0x8000})
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000002400000024000000020000000000000001000001000000000000000002000000000000820000000000000006040000000000"], 0x0, 0x3e, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
syz_open_dev$sndmidi(&(0x7f00000001c0), 0x1, 0x258bc1)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=@newtfilter={0x24, 0x2c, 0x1}, 0x24}}, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
getpgrp(r3)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)

9.030121738s ago: executing program 4 (id=926):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001700)=ANY=[@ANYBLOB="1800000024000103000000000000000001"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x43, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
recvmmsg(r0, &(0x7f0000004ec0)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000002c0)=""/4082, 0xff2}], 0x1}, 0x5}], 0x1, 0x2000, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r2, @ANYBLOB="050000000000080000000200000008000300", @ANYRES32, @ANYBLOB="2d000e0080000000ffffffffffff080211000000080211000000000000000000000000006400000025030000000000000800"], 0x80}}, 0x0)

8.632241084s ago: executing program 1 (id=927):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'tunl0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0xffffffff, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x0, 0xb, 0xffffffff}}}}]}, 0x40}}, 0x0)

8.498720786s ago: executing program 4 (id=928):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r0, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000180)='./file0/file0\x00', 0x0, 0x0, 0x10000, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRESDEC=0xee01, @ANYBLOB=',access=user,posixacl,loose,smackfstransmute=bridge0\x00,fsmagic='])
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r4=>r3, {0x40000000}}, './file0\x00'})
futimesat(r4, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={{0x0, 0x2710}, {0x0, 0xea60}})
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x17, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000002000010300000000fbdbdf25020000b8fecf040000000008"], 0x24}}, 0x40)
sendmsg$IPSET_CMD_SAVE(0xffffffffffffffff, 0x0, 0x0)
pipe2$9p(&(0x7f0000000100), 0x80000)
r6 = openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
readv(r6, &(0x7f0000000700)=[{&(0x7f0000000080)=""/63, 0x3f}], 0x1)
openat$sequencer(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@newlink={0x48, 0x10, 0x403, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x74, 0x0, 0x800, 0x55007}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERIER={0x5, 0x19, 0x2}, @IFLA_BR_MCAST_STARTUP_QUERY_INTVL={0xc, 0x23, 0x3}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x0)

6.923576704s ago: executing program 4 (id=929):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x6}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 74)
creat(&(0x7f0000000340)='./file0\x00', 0x0)
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write(r5, &(0x7f0000000340), 0x11000)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', 0x0, 0x8, 0x0)
vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
ptrace(0x10, r3)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x4c, 0x3d, 0x107, 0x0, 0x0, {0x4, 0x7c}, [@nested={0x4, 0x8}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0x28, 0x2, 0x0, 0x1, [@typed={0x24, 0x14, 0x0, 0x0, @str='B\xa7\xed\x1a\x064!\x89(c\f\x8d\xf6\xfd\x03\xd1\xd4\xbb\xb7\x1f\xd6P\xf6\v{\x83\xea\n\xd0\x11_6'}]}]}, 0x4c}}, 0xc000)
r6 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r6, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
connect$inet6(r6, &(0x7f0000000040)={0xa, 0x4e24, 0x7f, @dev={0xfe, 0x80, '\x00', 0x41}, 0xca}, 0x1c)
sendto$inet(r6, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010012000000000000000700000a20000000000a03000000000000000000070000000900010073797a300000000044000000090a010400000000"], 0x8c}}, 0x0)
ptrace$peeksig(0x4209, r3, 0x0, &(0x7f0000000440))

6.502544619s ago: executing program 4 (id=931):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, 0xffffffffffffffff, 0x2, 0x2, 0x0, @void, @value}, 0x10)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r1, r2, 0x2, 0x2, 0x0, @void, @value}, 0x10)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f00000000c0)={0x8, 0x2, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(0xffffffffffffffff, 0x40045612, &(0x7f00000012c0)=0x2)
socket$inet_udp(0x2, 0x2, 0x0)

6.501913162s ago: executing program 4 (id=932):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000fcffffffb7020000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
socket$netlink(0x10, 0x3, 0x0)
mount$9p_unix(&(0x7f0000000180)='./file0/file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x10000, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=unix,debug<0x0000000000000000,access=user,a', @ANYRESDEC=0xee01, @ANYBLOB=',access=user,posixacl,loose,smackfstransmute=bridge0\x00,fsmagic=0x0000000000000007,\x00'])
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r4, &(0x7f0000000240)={&(0x7f00000002c0)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4050}, 0x84)
recvmmsg(r4, &(0x7f0000003180)=[{{0x0, 0x0, &(0x7f00000032c0)=[{&(0x7f0000000640)=""/46, 0x2e}], 0x1}, 0x400}], 0x1, 0x2002, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x17, &(0x7f0000000000)={&(0x7f0000000100)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x25dfdbfb, {0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x24}}, 0x40)
sendmsg$IPSET_CMD_SAVE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x1c}}, 0x0)
pipe2$9p(&(0x7f0000000100), 0x80000)
r6 = openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r6, 0xc0a45320, &(0x7f00000000c0)={{0x80, 0xf7}, 'port1\x00', 0x3ab, 0x2062f, 0x3, 0x7, 0x0, 0xc, 0x3fc, 0x0, 0x7, 0xfd})
readv(r6, &(0x7f0000000700)=[{&(0x7f0000000080)=""/63, 0x3f}], 0x1)

6.16178433s ago: executing program 4 (id=933):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x1000000, 0x0, 0x0, 0x0, 0xfffff9, 0x800005c0], 0xff00, 0x0, &(0x7f00000005c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}]}, 0xe0) (fail_nth: 4)

4.802113108s ago: executing program 5 (id=936):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x2b9, &(0x7f0000000740)={0x0, 0xaa73, 0x10100, 0x2, 0x0, 0x0, r1}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0xeba1, 0x4, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r6 = dup(r5)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
r7 = syz_io_uring_setup(0x4e3, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, r6}, &(0x7f0000000180)=<r8=>0x0, &(0x7f00000001c0)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r7, 0x708, 0x41e3, 0x0, 0x0, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, 0x0, 0x1)
close(0xffffffffffffffff)
ioctl$SNDRV_PCM_IOCTL_WRITEN_FRAMES(0xffffffffffffffff, 0x400c4152, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f00000000c0)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0xd}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x200048cc)
close(0xffffffffffffffff)
r10 = openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
fchdir(r10)
syz_open_procfs$namespace(0x0, 0x0)
mount(&(0x7f0000000000), &(0x7f0000000280)='./cgroup\x00', 0x0, 0x75809, 0x0)
mount(0x0, &(0x7f00000000c0)='./cgroup\x00', 0x0, 0x2020, 0x0)
r11 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_SET_FORCE_PACK_ID(r11, 0x227b, &(0x7f00000000c0)=0x1)
readv(r11, &(0x7f0000000000)=[{&(0x7f0000000100)=""/54, 0x36}], 0x1)

3.897347912s ago: executing program 5 (id=937):
r0 = socket$rxrpc(0x21, 0x2, 0x2)
setsockopt$RXRPC_SECURITY_KEYRING(r0, 0x110, 0x2, &(0x7f0000000540)='string\x00\xa2\xb5\xbf4\x04`P\xfb\b}\xd6\xe1\"\xf9\xae\xa4N\x10\x13!\x04\x00\x97\xb6\x94\xc2\x0f8\x997Vg\xa2\xeb\xb4RU|\x99t\xe0N\x1c\xf4-\t\x80?\x10\xf7J\',\xd1Bxq\x16R\xe4\x88\x02\xfd\x81q<5n^.izR*\xcfL\xb7Q\xb8\xf2e\xbb\xd3r>\x86\x14\x963\xc0N\x18\x1cm%\x01w\xba*\xd1\xfa\xf8\xa3\xfabP\xaf\x9a\x0e\x9fjZ\xcaX\xdaV\x88<A\r\xe6\xe5\xb8u\x10Q\x13\xef\xfe>`\xac\xe4\x86(\xfd\x0f\x96\xffd9;\xb5\xdd?\xbcc#\x17\xea\\\xc1\x12\xa2\xdcb\fB\xddk\xb3\x14=T\xcb\xe0\v\xeb\x18!_\xa6\x06\xb5*_^ns\xd7\xfe\xc1t\'\x1bJ4V\rV\xf0\xabP]\x18\x8c\xe3\xb0@\xe0A:', 0xca)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6(0xa, 0x2, 0x0)
socket$unix(0x1, 0x5, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, &(0x7f0000000140))
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000480)=@raw={'raw\x00', 0x8, 0x3, 0x408, 0x1d, 0x11, 0x148, 0x14c, 0x10, 0x374, 0x2a8, 0x2a8, 0x374, 0x2a8, 0x7fffffe, 0x0, {[{{@uncond, 0x10, 0x104, 0x14c, 0x1c, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip6gretap0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x8}}}, @common=@unspec=@limit={{0x3c}, {0x6, 0x8, 0x2, 0x12, 0x0, 0x7, 0x3}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x1ff, 0x0, 0x2, 'snmp\x00', {0xff}}}}, {{@ip={@multicast1, @rand_addr=0x64010102, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_batadv\x00'}, 0x0, 0x1c8, 0x228, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_0\x00', {0x459, 0x0, 0x48, 0x0, 0x0, 0x3, 0x2, 0x80, 0x0, 0x18}, {0x91}}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x3, [0x1, 0x3, 0x2, 0x0, 0x2, 0x1]}, {0x1, [0x3, 0x2, 0x1, 0x0, 0x3, 0x5], 0x4}}}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x464)
r5 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r5, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
close(r5)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb", 0x57}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000240)={<r6=>0x0, @initdev, @local}, &(0x7f0000000280)=0xc)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000740)=@bpf_ext={0x1c, 0x21, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000005000000000000000700000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000007d61ffff01000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000004000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000030000007b8af8ff00000000bfa200000004000007020000f8ffffffb703000000b70400006d000000850000008200000085000000c5000000ffff950000000000000039c4dd413f899918b2dce351ac1a0d982656658f8f567341dc5b33ffb0c24b2711d300d896aef4eedcb312c412606b5766d650d350da6a4246"], &(0x7f00000000c0)='GPL\x00', 0xa, 0x0, &(0x7f0000000200), 0x41100, 0x14, '\x00', r6, 0x0, r1, 0x8, &(0x7f0000000500)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x2, 0x6, 0x10, 0x5}, 0x10, 0x70e7, r1, 0x5, &(0x7f0000000680)=[r1, r3, r1, r1, r1], &(0x7f00000006c0)=[{0x1, 0x4, 0x8, 0x2}, {0x3, 0x1, 0xc, 0xa}, {0x2, 0x5, 0x0, 0xf8386d6528241d17}, {0x4, 0x5, 0x10, 0x9}, {0x0, 0x1, 0x4, 0x6}], 0x10, 0x5d, @void, @value}, 0x94)
r7 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000005340), 0x0, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r7, 0xc4c03d09, &(0x7f0000000780)={0x14})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="250a0000000000006111600000000000180000000000000000000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

3.002240847s ago: executing program 5 (id=938):
r0 = socket$inet(0x2, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_buf(r4, 0x29, 0x39, &(0x7f0000000040)="ff02040000b5ffffffffffffffff2e2be82db1af00000000", 0x18)
connect$inet6(r4, 0x0, 0x0)
sendmmsg$inet6(r4, &(0x7f0000002940)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}}], 0x62, 0x0)
lseek(0xffffffffffffffff, 0x9, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @loopback}, 0xc)
r5 = socket$netlink(0x10, 0x3, 0x0)
writev(r5, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r5, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000340), 0x10, &(0x7f0000000380)={&(0x7f0000000480)={0x2, 0x604, 0x10000, {}, {0x77359400}, {0x3, 0x1, 0x1}, 0x1, @canfd={{0x0, 0x1}, 0x4, 0x80841baa6d9b8dc6, 0x0, 0x0, "652754942db1c5b6bf255165f5609c2f954286149f628cd5ab14e2b3537a6e7dd3316d85d82f748856290cb0eaacd63d83e645584b46fabfccff81f145950d2e"}}, 0x6c}, 0x1, 0x0, 0x0, 0x24024005}, 0x40040)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a0100"], 0x57)
setsockopt$inet_mreqsrc(r0, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)

1.075662786s ago: executing program 5 (id=939):
r0 = socket$rxrpc(0x21, 0x2, 0x2)
setsockopt$RXRPC_SECURITY_KEYRING(r0, 0x110, 0x2, &(0x7f0000000540)='string\x00\xa2\xb5\xbf4\x04`P\xfb\b}\xd6\xe1\"\xf9\xae\xa4N\x10\x13!\x04\x00\x97\xb6\x94\xc2\x0f8\x997Vg\xa2\xeb\xb4RU|\x99t\xe0N\x1c\xf4-\t\x80?\x10\xf7J\',\xd1Bxq\x16R\xe4\x88\x02\xfd\x81q<5n^.izR*\xcfL\xb7Q\xb8\xf2e\xbb\xd3r>\x86\x14\x963\xc0N\x18\x1cm%\x01w\xba*\xd1\xfa\xf8\xa3\xfabP\xaf\x9a\x0e\x9fjZ\xcaX\xdaV\x88<A\r\xe6\xe5\xb8u\x10Q\x13\xef\xfe>`\xac\xe4\x86(\xfd\x0f\x96\xffd9;\xb5\xdd?\xbcc#\x17\xea\\\xc1\x12\xa2\xdcb\fB\xddk\xb3\x14=T\xcb\xe0\v\xeb\x18!_\xa6\x06\xb5*_^ns\xd7\xfe\xc1t\'\x1bJ4V\rV\xf0\xabP]\x18\x8c\xe3\xb0@\xe0A:', 0xca)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6(0xa, 0x2, 0x0)
socket$unix(0x1, 0x5, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, &(0x7f0000000140))
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000480)=@raw={'raw\x00', 0x8, 0x3, 0x408, 0x1d, 0x11, 0x148, 0x14c, 0x10, 0x374, 0x2a8, 0x2a8, 0x374, 0x2a8, 0x7fffffe, 0x0, {[{{@uncond, 0x10, 0x104, 0x14c, 0x1c, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip6gretap0\x00', {0x0, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x8}}}, @common=@unspec=@limit={{0x3c}, {0x6, 0x8, 0x2, 0x12, 0x0, 0x7, 0x3}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x1ff, 0x0, 0x2, 'snmp\x00', {0xff}}}}, {{@ip={@multicast1, @rand_addr=0x64010102, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_batadv\x00'}, 0x0, 0x1c8, 0x228, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'team_slave_0\x00', {0x459, 0x0, 0x48, 0x0, 0x0, 0x3, 0x2, 0x80, 0x0, 0x18}, {0x91}}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x3, [0x1, 0x3, 0x2, 0x0, 0x2, 0x1]}, {0x1, [0x3, 0x2, 0x1, 0x0, 0x3, 0x5], 0x4}}}}], {{'\x00', 0xc8, 0x70, 0x94}, {0x24}}}}, 0x464)
r5 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_int(r5, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
close(r5)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703410000004000000000000000040014000d000a00100000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f6", 0x5a}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000240)={<r6=>0x0, @initdev, @local}, &(0x7f0000000280)=0xc)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000740)=@bpf_ext={0x1c, 0x21, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000005000000000000000700000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000007d61ffff01000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000004000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000030000007b8af8ff00000000bfa200000004000007020000f8ffffffb703000000b70400006d000000850000008200000085000000c5000000ffff950000000000000039c4dd413f899918b2dce351ac1a0d982656658f8f567341dc5b33ffb0c24b2711d300d896aef4eedcb312c412606b5766d650d350da6a4246"], &(0x7f00000000c0)='GPL\x00', 0xa, 0x0, &(0x7f0000000200), 0x41100, 0x14, '\x00', r6, 0x0, r1, 0x8, &(0x7f0000000500)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x2, 0x6, 0x10, 0x5}, 0x10, 0x70e7, r1, 0x5, &(0x7f0000000680)=[r1, r3, r1, r1, r1], &(0x7f00000006c0)=[{0x1, 0x4, 0x8, 0x2}, {0x3, 0x1, 0xc, 0xa}, {0x2, 0x5, 0x0, 0xf8386d6528241d17}, {0x4, 0x5, 0x10, 0x9}, {0x0, 0x1, 0x4, 0x6}], 0x10, 0x5d, @void, @value}, 0x94)
r7 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000005340), 0x0, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r7, 0xc4c03d09, &(0x7f0000000780)={0x14})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="250a0000000000006111600000000000180000000000000000000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

438.403365ms ago: executing program 3 (id=919):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)={0x48, r1, 0x633d41a77d0888ff, 0x70bd26, 0x25dfdbfd, {}, [@DEVLINK_ATTR_RATE_PARENT_NODE_NAME, @handle=@nsim={{0xe}, {0x6, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_RATE_TX_SHARE={0x0, 0xa6, 0xc7}, @DEVLINK_ATTR_RATE_NODE_NAME={0x0, 0xa8, @random="89bfc864b04bb23888d7114439a46bf0a04da0b7f9ec2f6838a679441df46b25b6838245c1e1a1cb9ff13efc32e7dd06f205c762422131c3a2b0bc436ba0ba6e"}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x20048844)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x14, 0x2, [@TCA_CODEL_LIMIT={0x8}, @TCA_CODEL_TARGET={0x8, 0x1, 0xfffffffc}]}}]}, 0x44}}, 0x0)

92.426496ms ago: executing program 5 (id=940):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, 0xffffffffffffffff, 0x2, 0x2, 0x0, @void, @value}, 0x10)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r1, r2, 0x2, 0x2, 0x0, @void, @value}, 0x10)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f00000000c0)={0x8, 0x2, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(0xffffffffffffffff, 0x40045612, &(0x7f00000012c0)=0x2)
socket$inet_udp(0x2, 0x2, 0x0)

0s ago: executing program 5 (id=941):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000200)={'vxcan0\x00', <r1=>0x0})
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000380)={@private1={0xfc, 0x1, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @mcast2, 0x8, 0x6, 0x1, 0x100, 0x9, 0x8, r1}) (fail_nth: 4)

kernel console output (not intermixed with test programs):

 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  146.430979][ T7955] RSP: 002b:00000000f50de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  146.430989][ T7955] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800018c0
[  146.430995][ T7955] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  146.431000][ T7955] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  146.431005][ T7955] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  146.431011][ T7955] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  146.431023][ T7955]  </TASK>
[  146.857493][ T7973] netlink: 100 bytes leftover after parsing attributes in process `syz.4.498'.
[  146.861045][ T7973] xt_hashlimit: max too large, truncated to 1048576
[  146.863358][ T7973] Cannot find add_set index 0 as target
[  146.972467][ T7974] xt_CT: You must specify a L4 protocol and not use inversions on it
[  147.074317][ T5955] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  147.188322][ T7976] FAULT_INJECTION: forcing a failure.
[  147.188322][ T7976] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  147.192337][ T7976] CPU: 3 UID: 0 PID: 7976 Comm: syz.3.499 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  147.192352][ T7976] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  147.192359][ T7976] Call Trace:
[  147.192363][ T7976]  <TASK>
[  147.192367][ T7976]  dump_stack_lvl+0x16c/0x1f0
[  147.192384][ T7976]  should_fail_ex+0x512/0x640
[  147.192400][ T7976]  _copy_from_user+0x2e/0xd0
[  147.192415][ T7976]  get_compat_msghdr+0xa7/0x170
[  147.192426][ T7976]  ? __pfx_get_compat_msghdr+0x10/0x10
[  147.192438][ T7976]  ? __lock_acquire+0x5ca/0x1ba0
[  147.192453][ T7976]  ___sys_recvmsg+0x191/0x1a0
[  147.192465][ T7976]  ? __pfx____sys_recvmsg+0x10/0x10
[  147.192482][ T7976]  ? get_pid_task+0xb0/0x250
[  147.192498][ T7976]  do_recvmmsg+0x568/0x740
[  147.192511][ T7976]  ? __pfx_do_recvmmsg+0x10/0x10
[  147.192531][ T7976]  ? __fget_files+0x20e/0x3c0
[  147.192547][ T7976]  __sys_recvmmsg+0x21c/0x280
[  147.192559][ T7976]  ? __pfx___sys_recvmmsg+0x10/0x10
[  147.192570][ T7976]  ? __pfx_ksys_write+0x10/0x10
[  147.192582][ T7976]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  147.192594][ T7976]  ? lockdep_hardirqs_on+0x7c/0x110
[  147.192606][ T7976]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  147.192620][ T7976]  __do_fast_syscall_32+0x73/0x120
[  147.192635][ T7976]  do_fast_syscall_32+0x32/0x80
[  147.192649][ T7976]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  147.192661][ T7976] RIP: 0023:0xf706e579
[  147.192669][ T7976] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  147.192679][ T7976] RSP: 002b:00000000f505e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  147.192688][ T7976] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080003780
[  147.192694][ T7976] RDX: 0000000000000001 RSI: 0000000040000142 RDI: 0000000000000000
[  147.192700][ T7976] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  147.192705][ T7976] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  147.192710][ T7976] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  147.192722][ T7976]  </TASK>
[  147.303640][   T40] kauditd_printk_skb: 2 callbacks suppressed
[  147.303651][   T40] audit: type=1326 audit(1746819255.800:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7979 comm="syz.4.501" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  147.330451][   T40] audit: type=1326 audit(1746819255.820:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7979 comm="syz.4.501" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  147.342215][   T40] audit: type=1326 audit(1746819255.820:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7979 comm="syz.4.501" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  147.349320][   T40] audit: type=1326 audit(1746819255.820:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7979 comm="syz.4.501" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  147.356289][   T40] audit: type=1326 audit(1746819255.820:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7979 comm="syz.4.501" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  147.363121][   T40] audit: type=1326 audit(1746819255.820:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7979 comm="syz.4.501" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  147.370226][   T40] audit: type=1326 audit(1746819255.820:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7979 comm="syz.4.501" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ee598 code=0x7ffc0000
[  147.377141][   T40] audit: type=1326 audit(1746819255.820:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7979 comm="syz.4.501" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ee598 code=0x7ffc0000
[  147.384271][   T40] audit: type=1326 audit(1746819255.820:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7979 comm="syz.4.501" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ee598 code=0x7ffc0000
[  147.394203][   T40] audit: type=1326 audit(1746819255.820:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7979 comm="syz.4.501" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70ee598 code=0x7ffc0000
[  147.771423][ T7991] netlink: 'syz.1.503': attribute type 9 has an invalid length.
[  148.045629][ T8003] netlink: 4 bytes leftover after parsing attributes in process `syz.4.506'.
[  149.060128][ T7991] Set syz1 is full, maxelem 65536 reached
[  149.476131][ T8023] FAULT_INJECTION: forcing a failure.
[  149.476131][ T8023] name failslab, interval 1, probability 0, space 0, times 0
[  149.480091][ T8023] CPU: 0 UID: 0 PID: 8023 Comm: syz.4.513 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  149.480106][ T8023] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  149.480113][ T8023] Call Trace:
[  149.480116][ T8023]  <TASK>
[  149.480121][ T8023]  dump_stack_lvl+0x16c/0x1f0
[  149.480139][ T8023]  should_fail_ex+0x512/0x640
[  149.480153][ T8023]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  149.480167][ T8023]  should_failslab+0xc2/0x120
[  149.480179][ T8023]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  149.480190][ T8023]  ? getname_kernel+0x52/0x370
[  149.480203][ T8023]  getname_kernel+0x52/0x370
[  149.480214][ T8023]  kern_path+0x1d/0x50
[  149.480229][ T8023]  lookup_bdev+0xd8/0x280
[  149.480242][ T8023]  ? __pfx_lookup_bdev+0x10/0x10
[  149.480254][ T8023]  ? vfs_parse_fs_string+0xfa/0x150
[  149.480265][ T8023]  get_tree_bdev_flags+0xbe/0x620
[  149.480280][ T8023]  ? __pfx_gfs2_fill_super+0x10/0x10
[  149.480291][ T8023]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  149.480305][ T8023]  ? rcu_is_watching+0x12/0xc0
[  149.480317][ T8023]  ? apparmor_capable+0x114/0x1d0
[  149.480329][ T8023]  gfs2_get_tree+0x4e/0x280
[  149.480339][ T8023]  vfs_get_tree+0x8b/0x340
[  149.480352][ T8023]  path_mount+0x14d4/0x1f20
[  149.480363][ T8023]  ? kmem_cache_free+0x2d4/0x4d0
[  149.480373][ T8023]  ? __pfx_path_mount+0x10/0x10
[  149.480384][ T8023]  ? putname+0x154/0x1a0
[  149.480396][ T8023]  __ia32_sys_mount+0x28b/0x310
[  149.480406][ T8023]  ? __pfx___ia32_sys_mount+0x10/0x10
[  149.480418][ T8023]  ? rcu_is_watching+0x12/0xc0
[  149.480428][ T8023]  __do_fast_syscall_32+0x73/0x120
[  149.480443][ T8023]  do_fast_syscall_32+0x32/0x80
[  149.480457][ T8023]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  149.480469][ T8023] RIP: 0023:0xf70ee579
[  149.480478][ T8023] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  149.480488][ T8023] RSP: 002b:00000000f50bd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  149.480497][ T8023] RAX: ffffffffffffffda RBX: 00000000800000c0 RCX: 0000000080000340
[  149.480503][ T8023] RDX: 0000000080000380 RSI: 0000000000000000 RDI: 0000000080000980
[  149.480509][ T8023] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  149.480514][ T8023] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  149.480520][ T8023] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  149.480531][ T8023]  </TASK>
[  149.480536][ T8023] /dev/sr0: Can't lookup blockdev
[  149.554899][ T8026] Cannot find add_set index 3 as target
[  150.498082][ T8036] FAULT_INJECTION: forcing a failure.
[  150.498082][ T8036] name failslab, interval 1, probability 0, space 0, times 0
[  150.502034][ T8036] CPU: 3 UID: 0 PID: 8036 Comm: syz.1.518 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  150.502049][ T8036] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.502055][ T8036] Call Trace:
[  150.502059][ T8036]  <TASK>
[  150.502063][ T8036]  dump_stack_lvl+0x16c/0x1f0
[  150.502081][ T8036]  should_fail_ex+0x512/0x640
[  150.502094][ T8036]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  150.502112][ T8036]  should_failslab+0xc2/0x120
[  150.502124][ T8036]  __kmalloc_cache_noprof+0x6a/0x3e0
[  150.502140][ T8036]  ? bpf_prog_alloc_no_stats+0x54/0x630
[  150.502151][ T8036]  ? bpf_prog_alloc_no_stats+0x116/0x630
[  150.502162][ T8036]  ? __vmalloc_noprof+0x6d/0x90
[  150.502178][ T8036]  bpf_prog_alloc_no_stats+0x116/0x630
[  150.502191][ T8036]  bpf_prog_alloc+0x3b/0x230
[  150.502202][ T8036]  bpf_prog_create_from_user+0xb4/0x2f0
[  150.502215][ T8036]  ? __pfx_seccomp_check_filter+0x10/0x10
[  150.502231][ T8036]  do_seccomp+0x73a/0x2640
[  150.502241][ T8036]  ? __pfx___seccomp_filter+0x10/0x10
[  150.502255][ T8036]  ? __pfx_do_seccomp+0x10/0x10
[  150.502264][ T8036]  ? fput+0x70/0xf0
[  150.502276][ T8036]  ? ksys_write+0x1b9/0x240
[  150.502286][ T8036]  ? __secure_computing+0x21c/0x320
[  150.502298][ T8036]  __do_fast_syscall_32+0x73/0x120
[  150.502313][ T8036]  do_fast_syscall_32+0x32/0x80
[  150.502327][ T8036]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  150.502339][ T8036] RIP: 0023:0xf706e579
[  150.502347][ T8036] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  150.502357][ T8036] RSP: 002b:00000000f503555c EFLAGS: 00000296 ORIG_RAX: 0000000000000162
[  150.502367][ T8036] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000000007
[  150.502373][ T8036] RDX: 0000000080000100 RSI: 0000000000000000 RDI: 0000000000000000
[  150.502378][ T8036] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  150.502384][ T8036] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  150.502389][ T8036] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  150.502401][ T8036]  </TASK>
[  150.789337][ T8045] FAULT_INJECTION: forcing a failure.
[  150.789337][ T8045] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  150.796753][ T8045] CPU: 3 UID: 0 PID: 8045 Comm: syz.1.521 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  150.796776][ T8045] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.796787][ T8045] Call Trace:
[  150.796792][ T8045]  <TASK>
[  150.796798][ T8045]  dump_stack_lvl+0x16c/0x1f0
[  150.796825][ T8045]  should_fail_ex+0x512/0x640
[  150.796850][ T8045]  _copy_from_user+0x2e/0xd0
[  150.796874][ T8045]  get_compat_msghdr+0xa7/0x170
[  150.796892][ T8045]  ? __pfx_get_compat_msghdr+0x10/0x10
[  150.796910][ T8045]  ? __lock_acquire+0x5ca/0x1ba0
[  150.796932][ T8045]  ___sys_recvmsg+0x191/0x1a0
[  150.796951][ T8045]  ? __pfx____sys_recvmsg+0x10/0x10
[  150.796979][ T8045]  ? get_pid_task+0xb0/0x250
[  150.797000][ T8045]  ? __pfx___might_resched+0x10/0x10
[  150.797021][ T8045]  do_recvmmsg+0x568/0x740
[  150.797050][ T8045]  ? __pfx_do_recvmmsg+0x10/0x10
[  150.797098][ T8045]  ? __fget_files+0x20e/0x3c0
[  150.797124][ T8045]  __sys_recvmmsg+0x21c/0x280
[  150.797142][ T8045]  ? __pfx___sys_recvmmsg+0x10/0x10
[  150.797160][ T8045]  ? __pfx_ksys_write+0x10/0x10
[  150.797179][ T8045]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  150.797197][ T8045]  ? lockdep_hardirqs_on+0x7c/0x110
[  150.797216][ T8045]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  150.797237][ T8045]  __do_fast_syscall_32+0x73/0x120
[  150.797261][ T8045]  do_fast_syscall_32+0x32/0x80
[  150.797282][ T8045]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  150.797301][ T8045] RIP: 0023:0xf706e579
[  150.797313][ T8045] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  150.797327][ T8045] RSP: 002b:00000000f505e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  150.797342][ T8045] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000400
[  150.797353][ T8045] RDX: 0000000000000f00 RSI: 0000000000000000 RDI: 0000000000000000
[  150.797361][ T8045] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  150.797369][ T8045] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  150.797379][ T8045] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  150.797398][ T8045]  </TASK>
[  150.893175][    C3] vkms_vblank_simulate: vblank timer overrun
[  152.268206][ T8077] vivid-004: disconnect
[  152.270869][ T8077] FAULT_INJECTION: forcing a failure.
[  152.270869][ T8077] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  152.276719][ T8077] CPU: 2 UID: 0 PID: 8077 Comm: syz.4.529 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  152.276734][ T8077] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  152.276740][ T8077] Call Trace:
[  152.276744][ T8077]  <TASK>
[  152.276748][ T8077]  dump_stack_lvl+0x16c/0x1f0
[  152.276766][ T8077]  should_fail_ex+0x512/0x640
[  152.276783][ T8077]  _copy_to_user+0x32/0xd0
[  152.276800][ T8077]  simple_read_from_buffer+0xcb/0x170
[  152.276815][ T8077]  proc_fail_nth_read+0x197/0x270
[  152.276830][ T8077]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  152.276844][ T8077]  ? rw_verify_area+0xcf/0x680
[  152.276858][ T8077]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  152.276871][ T8077]  vfs_read+0x1de/0xc70
[  152.276882][ T8077]  ? __pfx___mutex_lock+0x10/0x10
[  152.276896][ T8077]  ? __pfx_vfs_read+0x10/0x10
[  152.276908][ T8077]  ? __fget_files+0x20e/0x3c0
[  152.276926][ T8077]  ksys_read+0x12a/0x240
[  152.276935][ T8077]  ? __pfx_ksys_read+0x10/0x10
[  152.276943][ T8077]  ? rcu_is_watching+0x12/0xc0
[  152.276953][ T8077]  ? rcu_is_watching+0x12/0xc0
[  152.276964][ T8077]  __do_fast_syscall_32+0x73/0x120
[  152.276979][ T8077]  do_fast_syscall_32+0x32/0x80
[  152.276993][ T8077]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  152.277007][ T8077] RIP: 0023:0xf70ee579
[  152.277015][ T8077] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  152.277025][ T8077] RSP: 002b:00000000f50bd590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  152.277035][ T8077] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000f50bd620
[  152.277041][ T8077] RDX: 000000000000000f RSI: 00000000f7452ff4 RDI: 0000000000000000
[  152.277047][ T8077] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  152.277052][ T8077] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  152.277058][ T8077] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  152.277070][ T8077]  </TASK>
[  152.347108][ T8076] vivid-004: reconnect
[  152.962773][ T8094] netlink: 12 bytes leftover after parsing attributes in process `syz.3.534'.
[  153.420868][ T8106] vlan2: entered allmulticast mode
[  153.422544][ T8106] bond0: entered allmulticast mode
[  153.424197][ T8106] bond_slave_0: entered allmulticast mode
[  153.426068][ T8106] bond_slave_1: entered allmulticast mode
[  153.584865][ T8112] netlink: 12 bytes leftover after parsing attributes in process `syz.4.539'.
[  153.588287][ T8112] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  153.778221][ T8129] FAULT_INJECTION: forcing a failure.
[  153.778221][ T8129] name failslab, interval 1, probability 0, space 0, times 0
[  153.785709][ T8129] CPU: 0 UID: 0 PID: 8129 Comm: syz.0.543 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  153.785735][ T8129] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  153.785747][ T8129] Call Trace:
[  153.785753][ T8129]  <TASK>
[  153.785759][ T8129]  dump_stack_lvl+0x16c/0x1f0
[  153.785809][ T8129]  should_fail_ex+0x512/0x640
[  153.785837][ T8129]  should_failslab+0xc2/0x120
[  153.785858][ T8129]  __kmalloc_cache_noprof+0x6a/0x3e0
[  153.785882][ T8129]  ? sctp_add_bind_addr+0xae/0x3f0
[  153.785897][ T8129]  sctp_add_bind_addr+0xae/0x3f0
[  153.785913][ T8129]  sctp_copy_local_addr_list+0x39d/0x5a0
[  153.785931][ T8129]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  153.785949][ T8129]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  153.785968][ T8129]  ? sctp_bind_addr_copy+0x331/0x530
[  153.785981][ T8129]  sctp_bind_addr_copy+0x331/0x530
[  153.785998][ T8129]  sctp_connect_new_asoc+0x1d7/0x790
[  153.786019][ T8129]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  153.786034][ T8129]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  153.786052][ T8129]  sctp_sendmsg+0x15f9/0x1ee0
[  153.786068][ T8129]  ? __pfx_sctp_sendmsg+0x10/0x10
[  153.786079][ T8129]  ? __pfx___might_resched+0x10/0x10
[  153.786098][ T8129]  ? __pfx_aa_sk_perm+0x10/0x10
[  153.786111][ T8129]  ? __pfx_cmsghdr_from_user_compat_to_kern+0x10/0x10
[  153.786125][ T8129]  ? __pfx_sctp_sendmsg+0x10/0x10
[  153.786136][ T8129]  inet_sendmsg+0x119/0x140
[  153.786151][ T8129]  ____sys_sendmsg+0x973/0xc70
[  153.786168][ T8129]  ? __pfx_____sys_sendmsg+0x10/0x10
[  153.786182][ T8129]  ? get_compat_msghdr+0x11a/0x170
[  153.786199][ T8129]  ___sys_sendmsg+0x134/0x1d0
[  153.786211][ T8129]  ? __pfx____sys_sendmsg+0x10/0x10
[  153.786240][ T8129]  __sys_sendmsg+0x16d/0x220
[  153.786253][ T8129]  ? __pfx___sys_sendmsg+0x10/0x10
[  153.786271][ T8129]  ? rcu_is_watching+0x12/0xc0
[  153.786283][ T8129]  __do_fast_syscall_32+0x73/0x120
[  153.786299][ T8129]  do_fast_syscall_32+0x32/0x80
[  153.786314][ T8129]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  153.786326][ T8129] RIP: 0023:0xf70fe579
[  153.786335][ T8129] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  153.786345][ T8129] RSP: 002b:00000000f50ee55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  153.786356][ T8129] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800025c0
[  153.786363][ T8129] RDX: 0000000024000080 RSI: 0000000000000000 RDI: 0000000000000000
[  153.786369][ T8129] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  153.786374][ T8129] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  153.786380][ T8129] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  153.786393][ T8129]  </TASK>
[  153.972093][ T8134] netlink: 24 bytes leftover after parsing attributes in process `syz.3.544'.
[  154.599390][ T8151] xt_CT: You must specify a L4 protocol and not use inversions on it
[  154.822385][ T8154] trusted_key: encrypted_key: insufficient parameters specified
[  154.879716][ T8157] trusted_key: encrypted_key: master key parameter 'use r:new' is invalid
[  155.261590][ T8161] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  156.325076][   T40] kauditd_printk_skb: 1102 callbacks suppressed
[  156.325087][   T40] audit: type=1326 audit(1746819264.830:1545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.1.558" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  156.325599][   T40] audit: type=1326 audit(1746819264.830:1546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.1.558" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf706e579 code=0x7ffc0000
[  156.325876][   T40] audit: type=1326 audit(1746819264.830:1547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.1.558" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  156.326114][   T40] audit: type=1326 audit(1746819264.830:1548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.1.558" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf706e579 code=0x7ffc0000
[  156.327410][   T40] audit: type=1326 audit(1746819264.830:1549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.1.558" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  156.328676][   T40] audit: type=1326 audit(1746819264.830:1550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8179 comm="syz.1.558" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  156.590704][ T8188] netlink: 4 bytes leftover after parsing attributes in process `syz.4.561'.
[  156.736756][ T8191] program syz.0.560 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  157.463280][ T8200] netlink: 'syz.1.562': attribute type 10 has an invalid length.
[  157.468885][ T8200] hsr_slave_0: left promiscuous mode
[  157.473147][ T8200] hsr_slave_1: left promiscuous mode
[  158.624306][ T8209] netlink: 12 bytes leftover after parsing attributes in process `syz.0.566'.
[  158.652537][ T8216] FAULT_INJECTION: forcing a failure.
[  158.652537][ T8216] name failslab, interval 1, probability 0, space 0, times 0
[  158.657664][ T8216] CPU: 3 UID: 0 PID: 8216 Comm: syz.3.568 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  158.657679][ T8216] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  158.657685][ T8216] Call Trace:
[  158.657688][ T8216]  <TASK>
[  158.657692][ T8216]  dump_stack_lvl+0x16c/0x1f0
[  158.657710][ T8216]  should_fail_ex+0x512/0x640
[  158.657724][ T8216]  ? __kmalloc_noprof+0xbf/0x510
[  158.657736][ T8216]  ? sock_kmalloc+0x111/0x170
[  158.657788][ T8216]  should_failslab+0xc2/0x120
[  158.657806][ T8216]  __kmalloc_noprof+0xd2/0x510
[  158.657818][ T8216]  ? do_raw_spin_lock+0x12c/0x2b0
[  158.657843][ T8216]  sock_kmalloc+0x111/0x170
[  158.657862][ T8216]  hash_alloc_result+0xd7/0x150
[  158.657878][ T8216]  hash_recvmsg+0x198/0x920
[  158.657895][ T8216]  ____sys_recvmsg+0x5f6/0x6b0
[  158.657912][ T8216]  ? __pfx_____sys_recvmsg+0x10/0x10
[  158.657924][ T8216]  ? import_iovec+0x86/0xb0
[  158.657945][ T8216]  ? __lock_acquire+0x5ca/0x1ba0
[  158.657959][ T8216]  ___sys_recvmsg+0x114/0x1a0
[  158.657971][ T8216]  ? __pfx____sys_recvmsg+0x10/0x10
[  158.657991][ T8216]  ? get_pid_task+0xb0/0x250
[  158.658004][ T8216]  ? __pfx___might_resched+0x10/0x10
[  158.658018][ T8216]  do_recvmmsg+0x568/0x740
[  158.658030][ T8216]  ? __pfx_do_recvmmsg+0x10/0x10
[  158.658050][ T8216]  ? __fget_files+0x20e/0x3c0
[  158.658067][ T8216]  __sys_recvmmsg+0x21c/0x280
[  158.658078][ T8216]  ? __pfx___sys_recvmmsg+0x10/0x10
[  158.658090][ T8216]  ? __pfx_ksys_write+0x10/0x10
[  158.658102][ T8216]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  158.658114][ T8216]  ? lockdep_hardirqs_on+0x7c/0x110
[  158.658127][ T8216]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  158.658141][ T8216]  __do_fast_syscall_32+0x73/0x120
[  158.658156][ T8216]  do_fast_syscall_32+0x32/0x80
[  158.658170][ T8216]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  158.658182][ T8216] RIP: 0023:0xf706e579
[  158.658191][ T8216] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  158.658201][ T8216] RSP: 002b:00000000f505e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  158.658211][ T8216] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080003700
[  158.658217][ T8216] RDX: 0000000000000600 RSI: 0000000000000000 RDI: 0000000000000000
[  158.658223][ T8216] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  158.658233][ T8216] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  158.658238][ T8216] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  158.658252][ T8216]  </TASK>
[  158.667021][ T8209] bond2: entered promiscuous mode
[  158.669895][ T8212] netlink: 340 bytes leftover after parsing attributes in process `syz.1.567'.
[  158.671304][ T8209] bond2: entered allmulticast mode
[  158.725730][ T8223] cgroup: Need name or subsystem set
[  158.731093][ T8209] 8021q: adding VLAN 0 to HW filter on device bond2
[  158.849139][ T8209] bond2 (unregistering): Released all slaves
[  159.014087][   T64] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  159.090098][ T8233] netlink: 4 bytes leftover after parsing attributes in process `syz.0.573'.
[  159.204169][   T64] usb 6-1: Using ep0 maxpacket: 32
[  159.208096][   T64] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  159.212254][   T64] usb 6-1: config 0 has no interfaces?
[  159.218275][   T64] usb 6-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4e
[  159.221609][ T8239] Cannot find add_set index 3 as target
[  159.221896][   T64] usb 6-1: New USB device strings: Mfr=1, Product=18, SerialNumber=3
[  159.227210][   T64] usb 6-1: Product: syz
[  159.228944][   T64] usb 6-1: Manufacturer: syz
[  159.230859][   T64] usb 6-1: SerialNumber: syz
[  159.235053][   T64] usb 6-1: config 0 descriptor??
[  159.441876][ T8225] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  159.446483][ T8225] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  159.451435][ T8225] netlink: 8 bytes leftover after parsing attributes in process `syz.1.572'.
[  159.460658][   T64] usb 6-1: USB disconnect, device number 8
[  159.596141][ T8241] xt_nat: multiple ranges no longer supported
[  159.601180][ T8241] devpts: Bad value for 'max'
[  159.797272][ T8252] netlink: 8 bytes leftover after parsing attributes in process `syz.4.577'.
[  160.970348][ T8296] netlink: 16 bytes leftover after parsing attributes in process `syz.1.587'.
[  161.072231][ T8301] netlink: 4 bytes leftover after parsing attributes in process `syz.1.589'.
[  161.236857][    C0] sr 2:0:0:0: [sr0] tag#9 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  161.240543][    C0] sr 2:0:0:0: [sr0] tag#9 CDB: Xdwrite(16) 80 36 b6 1b fa d6 49 05 8d 77 3e 1c 25 cf 9c b3
[  161.656961][ T8312] FAULT_INJECTION: forcing a failure.
[  161.656961][ T8312] name failslab, interval 1, probability 0, space 0, times 0
[  161.660909][ T8312] CPU: 1 UID: 0 PID: 8312 Comm: syz.4.592 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  161.660933][ T8312] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  161.660940][ T8312] Call Trace:
[  161.660945][ T8312]  <TASK>
[  161.660950][ T8312]  dump_stack_lvl+0x16c/0x1f0
[  161.660968][ T8312]  should_fail_ex+0x512/0x640
[  161.660986][ T8312]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  161.660999][ T8312]  should_failslab+0xc2/0x120
[  161.661012][ T8312]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  161.661022][ T8312]  ? ptlock_alloc+0x1f/0x70
[  161.661034][ T8312]  ptlock_alloc+0x1f/0x70
[  161.661043][ T8312]  pte_alloc_one+0x6d/0x380
[  161.661055][ T8312]  __pte_alloc+0x6d/0x3c0
[  161.661068][ T8312]  ? __pfx___pte_alloc+0x10/0x10
[  161.661080][ T8312]  ? __pfx___might_resched+0x10/0x10
[  161.661091][ T8312]  ? copy_page_range+0x197d/0x5fe0
[  161.661107][ T8312]  copy_page_range+0x3a29/0x5fe0
[  161.661136][ T8312]  ? __pfx_copy_page_range+0x10/0x10
[  161.661156][ T8312]  ? __pfx___might_resched+0x10/0x10
[  161.661165][ T8312]  ? __pfx_mas_store+0x10/0x10
[  161.661179][ T8312]  ? __vma_enter_locked+0x163/0x3f0
[  161.661192][ T8312]  ? copy_process+0x85dd/0x91a0
[  161.661204][ T8312]  ? down_write+0x14d/0x200
[  161.661220][ T8312]  ? up_write+0x1b2/0x520
[  161.661235][ T8312]  copy_process+0x862b/0x91a0
[  161.661257][ T8312]  ? __pfx_copy_process+0x10/0x10
[  161.661269][ T8312]  ? finish_task_switch.isra.0+0x221/0xc10
[  161.661278][ T8312]  ? lockdep_hardirqs_on+0x7c/0x110
[  161.661291][ T8312]  ? finish_task_switch.isra.0+0x221/0xc10
[  161.661303][ T8312]  ? __schedule+0x1186/0x5de0
[  161.661314][ T8312]  ? find_held_lock+0x2b/0x80
[  161.661329][ T8312]  kernel_clone+0xfc/0x960
[  161.661341][ T8312]  ? __pfx___schedule+0x10/0x10
[  161.661352][ T8312]  ? __pfx_kernel_clone+0x10/0x10
[  161.661372][ T8312]  __do_compat_sys_ia32_clone+0xcb/0x110
[  161.661387][ T8312]  ? __pfx___do_compat_sys_ia32_clone+0x10/0x10
[  161.661407][ T8312]  ? ksys_write+0x1b9/0x240
[  161.661417][ T8312]  ? __pfx_ksys_write+0x10/0x10
[  161.661427][ T8312]  ? rcu_is_watching+0x12/0xc0
[  161.661438][ T8312]  __do_fast_syscall_32+0x73/0x120
[  161.661453][ T8312]  do_fast_syscall_32+0x32/0x80
[  161.661467][ T8312]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  161.661479][ T8312] RIP: 0023:0xf70ee579
[  161.661487][ T8312] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  161.661496][ T8312] RSP: 002b:00000000f509c50c EFLAGS: 00000246 ORIG_RAX: 0000000000000078
[  161.661506][ T8312] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  161.661512][ T8312] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  161.661517][ T8312] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  161.661523][ T8312] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  161.661528][ T8312] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  161.661541][ T8312]  </TASK>
[  161.844486][ T8311] netlink: 48 bytes leftover after parsing attributes in process `syz.4.592'.
[  162.075191][ T8326] MPI: mpi too large (124808 bits)
[  162.081584][ T8326] netlink: 8 bytes leftover after parsing attributes in process `syz.0.599'.
[  163.041891][ T8346] FAULT_INJECTION: forcing a failure.
[  163.041891][ T8346] name failslab, interval 1, probability 0, space 0, times 0
[  163.046831][ T8346] CPU: 1 UID: 0 PID: 8346 Comm: syz.0.606 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  163.046846][ T8346] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.046852][ T8346] Call Trace:
[  163.046856][ T8346]  <TASK>
[  163.046859][ T8346]  dump_stack_lvl+0x16c/0x1f0
[  163.046877][ T8346]  should_fail_ex+0x512/0x640
[  163.046891][ T8346]  ? __kmalloc_node_noprof+0xc5/0x500
[  163.046905][ T8346]  should_failslab+0xc2/0x120
[  163.046917][ T8346]  __kmalloc_node_noprof+0xd8/0x500
[  163.046927][ T8346]  ? __get_vm_area_node+0x1e5/0x300
[  163.046949][ T8346]  ? __vmalloc_node_range_noprof+0x3eb/0x1540
[  163.046966][ T8346]  __vmalloc_node_range_noprof+0x3eb/0x1540
[  163.046983][ T8346]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[  163.047000][ T8346]  ? compat_do_replace+0x1af/0x7c0
[  163.047016][ T8346]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  163.047034][ T8346]  ? compat_do_replace+0x1af/0x7c0
[  163.047047][ T8346]  vmalloc_noprof+0x6b/0x90
[  163.047062][ T8346]  ? compat_do_replace+0x1af/0x7c0
[  163.047075][ T8346]  compat_do_replace+0x1af/0x7c0
[  163.047088][ T8346]  ? __pfx_compat_do_replace+0x10/0x10
[  163.047100][ T8346]  ? aa_get_newest_label+0x375/0x680
[  163.047126][ T8346]  ? __pfx_aa_get_newest_label+0x10/0x10
[  163.047142][ T8346]  ? bpf_lsm_capable+0x9/0x10
[  163.047152][ T8346]  ? security_capable+0x7e/0x260
[  163.047163][ T8346]  do_ebt_set_ctl+0x2f5/0x3c0
[  163.047177][ T8346]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  163.047192][ T8346]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  163.047211][ T8346]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  163.047225][ T8346]  nf_setsockopt+0x8a/0xf0
[  163.047238][ T8346]  ip_setsockopt+0xcb/0xf0
[  163.047252][ T8346]  raw_setsockopt+0xb7/0x2a0
[  163.047267][ T8346]  ? __pfx_raw_setsockopt+0x10/0x10
[  163.047282][ T8346]  ? sock_common_setsockopt+0x2e/0xf0
[  163.047295][ T8346]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  163.047309][ T8346]  do_sock_setsockopt+0x221/0x470
[  163.047321][ T8346]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  163.047342][ T8346]  __sys_setsockopt+0x120/0x1a0
[  163.047354][ T8346]  __ia32_sys_setsockopt+0xbc/0x160
[  163.047364][ T8346]  ? lockdep_hardirqs_on+0x7c/0x110
[  163.047377][ T8346]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  163.047391][ T8346]  __do_fast_syscall_32+0x73/0x120
[  163.047406][ T8346]  do_fast_syscall_32+0x32/0x80
[  163.047419][ T8346]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  163.047432][ T8346] RIP: 0023:0xf70fe579
[  163.047440][ T8346] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  163.047450][ T8346] RSP: 002b:00000000f50ee55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  163.047460][ T8346] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  163.047466][ T8346] RDX: 0000000000000080 RSI: 0000000080000000 RDI: 00000000000000e0
[  163.047471][ T8346] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  163.047477][ T8346] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  163.047482][ T8346] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  163.047494][ T8346]  </TASK>
[  163.047735][ T8346] syz.0.606: vmalloc error: size 4096, failed to allocated page array size 8, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  163.152464][ T8346] CPU: 0 UID: 0 PID: 8346 Comm: syz.0.606 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  163.152478][ T8346] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.152484][ T8346] Call Trace:
[  163.152489][ T8346]  <TASK>
[  163.152494][ T8346]  dump_stack_lvl+0x16c/0x1f0
[  163.152512][ T8346]  warn_alloc+0x248/0x3a0
[  163.152524][ T8346]  ? __pfx_warn_alloc+0x10/0x10
[  163.152534][ T8346]  ? dump_stack_lvl+0x1a3/0x1f0
[  163.152549][ T8346]  ? rcu_is_watching+0x12/0xc0
[  163.152559][ T8346]  ? trace_kmalloc+0x2b/0xd0
[  163.152571][ T8346]  ? __get_vm_area_node+0x1e5/0x300
[  163.152589][ T8346]  __vmalloc_node_range_noprof+0x1110/0x1540
[  163.152605][ T8346]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[  163.152622][ T8346]  ? compat_do_replace+0x1af/0x7c0
[  163.152637][ T8346]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  163.152656][ T8346]  ? compat_do_replace+0x1af/0x7c0
[  163.152669][ T8346]  vmalloc_noprof+0x6b/0x90
[  163.152684][ T8346]  ? compat_do_replace+0x1af/0x7c0
[  163.152696][ T8346]  compat_do_replace+0x1af/0x7c0
[  163.152711][ T8346]  ? __pfx_compat_do_replace+0x10/0x10
[  163.152723][ T8346]  ? aa_get_newest_label+0x375/0x680
[  163.152734][ T8346]  ? __pfx_aa_get_newest_label+0x10/0x10
[  163.152749][ T8346]  ? bpf_lsm_capable+0x9/0x10
[  163.152760][ T8346]  ? security_capable+0x7e/0x260
[  163.152771][ T8346]  do_ebt_set_ctl+0x2f5/0x3c0
[  163.152784][ T8346]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  163.152798][ T8346]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  163.152816][ T8346]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  163.152829][ T8346]  nf_setsockopt+0x8a/0xf0
[  163.152842][ T8346]  ip_setsockopt+0xcb/0xf0
[  163.152856][ T8346]  raw_setsockopt+0xb7/0x2a0
[  163.152871][ T8346]  ? __pfx_raw_setsockopt+0x10/0x10
[  163.152886][ T8346]  ? sock_common_setsockopt+0x2e/0xf0
[  163.152904][ T8346]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  163.152918][ T8346]  do_sock_setsockopt+0x221/0x470
[  163.152931][ T8346]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  163.152951][ T8346]  __sys_setsockopt+0x120/0x1a0
[  163.152963][ T8346]  __ia32_sys_setsockopt+0xbc/0x160
[  163.152973][ T8346]  ? lockdep_hardirqs_on+0x7c/0x110
[  163.152986][ T8346]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  163.153000][ T8346]  __do_fast_syscall_32+0x73/0x120
[  163.153015][ T8346]  do_fast_syscall_32+0x32/0x80
[  163.153029][ T8346]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  163.153041][ T8346] RIP: 0023:0xf70fe579
[  163.153049][ T8346] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  163.153058][ T8346] RSP: 002b:00000000f50ee55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  163.153068][ T8346] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[  163.153073][ T8346] RDX: 0000000000000080 RSI: 0000000080000000 RDI: 00000000000000e0
[  163.153079][ T8346] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  163.153085][ T8346] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  163.153090][ T8346] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  163.153102][ T8346]  </TASK>
[  163.153105][ T8346] Mem-Info:
[  163.252218][ T8346] active_anon:15455 inactive_anon:0 isolated_anon:0
[  163.252218][ T8346]  active_file:12644 inactive_file:39883 isolated_file:0
[  163.252218][ T8346]  unevictable:1768 dirty:227 writeback:0
[  163.252218][ T8346]  slab_reclaimable:10557 slab_unreclaimable:58488
[  163.252218][ T8346]  mapped:30588 shmem:11013 pagetables:990
[  163.252218][ T8346]  sec_pagetables:301 bounce:0
[  163.252218][ T8346]  kernel_misc_reclaimable:0
[  163.252218][ T8346]  free:37051 free_pcp:1760 free_cma:0
[  163.268691][ T8346] Node 0 active_anon:2044kB inactive_anon:0kB active_file:88kB inactive_file:19252kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:8184kB dirty:0kB writeback:0kB shmem:3608kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9136kB pagetables:508kB sec_pagetables:1120kB all_unreclaimable? yes Balloon:0kB
[  163.281121][ T8346] Node 1 active_anon:52376kB inactive_anon:0kB active_file:50488kB inactive_file:140280kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:102668kB dirty:908kB writeback:0kB shmem:33144kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:3440kB pagetables:3452kB sec_pagetables:84kB all_unreclaimable? no Balloon:0kB
[  163.295040][ T8346] Node 0 DMA free:3964kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:64kB local_pcp:40kB free_cma:0kB
[  163.303333][ T8346] lowmem_reserve[]: 0 293 293 293 293
[  163.305110][ T8346] Node 0 DMA32 free:29268kB boost:12288kB min:25736kB low:29096kB high:32456kB reserved_highatomic:4096KB active_anon:2044kB inactive_anon:0kB active_file:88kB inactive_file:19252kB unevictable:3536kB writepending:0kB present:1032196kB managed:300236kB mlocked:0kB bounce:0kB free_pcp:2940kB local_pcp:32kB free_cma:0kB
[  163.313833][ T8346] lowmem_reserve[]: 0 0 0 0 0
[  163.315593][ T8346] Node 1 DMA32 free:114528kB boost:0kB min:47148kB low:58932kB high:70716kB reserved_highatomic:0KB active_anon:48060kB inactive_anon:0kB active_file:50488kB inactive_file:140280kB unevictable:3536kB writepending:908kB present:1048432kB managed:948284kB mlocked:0kB bounce:0kB free_pcp:16204kB local_pcp:12648kB free_cma:0kB
[  163.324512][ T8346] lowmem_reserve[]: 0 0 0 0 0
[  163.326001][ T8346] Node 0 DMA: 81*4kB (U) 41*8kB (U) 17*16kB (U) 15*32kB (U) 10*64kB (U) 1*128kB (U) 1*256kB (U) 1*512kB (U) 1*1024kB (U) 0*2048kB 0*4096kB = 3964kB
[  163.330439][ T8346] Node 0 DMA32: 599*4kB (UMEH) 319*8kB (UMEH) 112*16kB (UMEH) 278*32kB (UMEH) 91*64kB (UMEH) 13*128kB (UMH) 6*256kB (UE) 3*512kB (U) 3*1024kB (UE) 0*2048kB 0*4096kB = 29268kB
[  163.336734][ T8346] Node 1 DMA32: 6*4kB (UME) 378*8kB (UM) 224*16kB (UME) 80*32kB (UME) 182*64kB (UME) 45*128kB (UME) 26*256kB (UM) 22*512kB (UME) 12*1024kB (ME) 6*2048kB (ME) 11*4096kB (UM) = 114152kB
[  163.342007][ T8346] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  163.345206][ T8346] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  163.348052][ T8346] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  163.350877][ T8346] Node 1 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  163.353601][ T8346] 57816 total pagecache pages
[  163.355142][ T8346] 0 pages in swap cache
[  163.356449][ T8346] Free swap  = 124996kB
[  163.357733][ T8346] Total swap = 124996kB
[  163.359029][ T8346] 524155 pages RAM
[  163.360282][ T8346] 0 pages HighMem/MovableOnly
[  163.361602][ T8346] 208185 pages reserved
[  163.362883][ T8346] 0 pages cma reserved
[  163.421358][ T8355] netlink: 'syz.0.610': attribute type 1 has an invalid length.
[  163.449943][ T8355] bond0: entered promiscuous mode
[  163.451544][ T8355] bond_slave_0: entered promiscuous mode
[  163.453460][ T8355] bond_slave_1: entered promiscuous mode
[  163.457178][ T8355] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  163.460244][ T8355] bond2: (slave macvlan2): Enslaving as a backup interface with an up link
[  163.903102][ T8367] netlink: 'syz.1.612': attribute type 4 has an invalid length.
[  163.920104][ T8367] netlink: 'syz.1.612': attribute type 4 has an invalid length.
[  163.995188][ T8369] netlink: 4 bytes leftover after parsing attributes in process `syz.0.613'.
[  164.402973][ T8375] netlink: 8 bytes leftover after parsing attributes in process `syz.4.615'.
[  164.468943][ T8376] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  164.665854][ T8387] FAULT_INJECTION: forcing a failure.
[  164.665854][ T8387] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.670850][ T8387] CPU: 2 UID: 0 PID: 8387 Comm: syz.1.619 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  164.670870][ T8387] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  164.670880][ T8387] Call Trace:
[  164.670885][ T8387]  <TASK>
[  164.670892][ T8387]  dump_stack_lvl+0x16c/0x1f0
[  164.670922][ T8387]  should_fail_ex+0x512/0x640
[  164.670942][ T8387]  _copy_from_user+0x2e/0xd0
[  164.670965][ T8387]  inet6_compat_ioctl+0xe3/0x360
[  164.670981][ T8387]  ? __pfx_inet6_compat_ioctl+0x10/0x10
[  164.671006][ T8387]  ? __pfx_inet6_compat_ioctl+0x10/0x10
[  164.671020][ T8387]  compat_sock_ioctl+0x173/0x730
[  164.671042][ T8387]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  164.671068][ T8387]  ? __fget_files+0x20e/0x3c0
[  164.671089][ T8387]  ? fput+0x20/0xf0
[  164.671111][ T8387]  ? __pfx_compat_sock_ioctl+0x10/0x10
[  164.671131][ T8387]  __ia32_compat_sys_ioctl+0x24c/0x360
[  164.671152][ T8387]  __do_fast_syscall_32+0x73/0x120
[  164.671173][ T8387]  do_fast_syscall_32+0x32/0x80
[  164.671194][ T8387]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  164.671212][ T8387] RIP: 0023:0xf706e579
[  164.671223][ T8387] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  164.671235][ T8387] RSP: 002b:00000000f505e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  164.671245][ T8387] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000890b
[  164.671255][ T8387] RDX: 0000000080000380 RSI: 0000000000000000 RDI: 0000000000000000
[  164.671264][ T8387] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  164.671273][ T8387] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  164.671281][ T8387] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  164.671300][ T8387]  </TASK>
[  165.415669][  T834] libceph: connect (1)[c::]:6789 error -101
[  165.417898][  T834] libceph: mon0 (1)[c::]:6789 connect error
[  165.551718][ T8400] ceph: No mds server is up or the cluster is laggy
[  165.599716][ T8406] syz.4.623: attempt to access beyond end of device
[  165.599716][ T8406] nbd4: rw=0, sector=16, nr_sectors = 1 limit=0
[  165.604051][ T8406] qnx6: unable to read the first superblock
[  165.610504][ T8406] syz.4.623: attempt to access beyond end of device
[  165.610504][ T8406] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  165.616505][ T8406] qnx6: unable to read the first superblock
[  165.618894][ T8406] qnx6: unable to read the first superblock
[  165.622688][   T40] audit: type=1800 audit(1746819274.120:1551): pid=8411 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.624" name="bus" dev="overlay" ino=904 res=0 errno=0
[  165.630782][   T40] audit: type=1800 audit(1746819274.130:1552): pid=8411 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.624" name="bus" dev="overlay" ino=904 res=0 errno=0
[  165.885872][ T8416] FAULT_INJECTION: forcing a failure.
[  165.885872][ T8416] name failslab, interval 1, probability 0, space 0, times 0
[  165.889956][ T8416] CPU: 2 UID: 0 PID: 8416 Comm: syz.4.626 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  165.889970][ T8416] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  165.889983][ T8416] Call Trace:
[  165.889987][ T8416]  <TASK>
[  165.889991][ T8416]  dump_stack_lvl+0x16c/0x1f0
[  165.890009][ T8416]  should_fail_ex+0x512/0x640
[  165.890023][ T8416]  ? fs_reclaim_acquire+0xae/0x150
[  165.890039][ T8416]  ? tomoyo_encode2+0x100/0x3e0
[  165.890051][ T8416]  should_failslab+0xc2/0x120
[  165.890064][ T8416]  __kmalloc_noprof+0xd2/0x510
[  165.890074][ T8416]  ? d_absolute_path+0x136/0x1a0
[  165.890089][ T8416]  tomoyo_encode2+0x100/0x3e0
[  165.890103][ T8416]  tomoyo_encode+0x29/0x50
[  165.890116][ T8416]  tomoyo_realpath_from_path+0x18f/0x6e0
[  165.890133][ T8416]  tomoyo_path_number_perm+0x245/0x580
[  165.890144][ T8416]  ? tomoyo_path_number_perm+0x237/0x580
[  165.890157][ T8416]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  165.890182][ T8416]  ? find_held_lock+0x2b/0x80
[  165.890191][ T8416]  ? hook_file_ioctl_common+0x145/0x410
[  165.890202][ T8416]  ? __fget_files+0x204/0x3c0
[  165.890219][ T8416]  ? __fget_files+0x20e/0x3c0
[  165.890233][ T8416]  ? fput+0x20/0xf0
[  165.890246][ T8416]  security_file_ioctl_compat+0x9b/0x240
[  165.890259][ T8416]  __ia32_compat_sys_ioctl+0xc3/0x360
[  165.890276][ T8416]  __do_fast_syscall_32+0x73/0x120
[  165.890292][ T8416]  do_fast_syscall_32+0x32/0x80
[  165.890305][ T8416]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  165.890318][ T8416] RIP: 0023:0xf70ee579
[  165.890326][ T8416] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  165.890336][ T8416] RSP: 002b:00000000f50de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  165.890346][ T8416] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0306201
[  165.890352][ T8416] RDX: 00000000800001c0 RSI: 0000000000000000 RDI: 0000000000000000
[  165.890357][ T8416] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  165.890363][ T8416] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  165.890368][ T8416] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  165.890380][ T8416]  </TASK>
[  165.890390][ T8416] ERROR: Out of memory at tomoyo_realpath_from_path.
[  166.270446][ T8426] hub 6-0:1.0: USB hub found
[  166.272854][ T8426] hub 6-0:1.0: 1 port detected
[  167.213551][ T8448] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !寿$ûÌÌULÙvy¸ÚØ¢
…D£øUDŒw˜}�z
[  167.522146][ T8442] /dev/sr0: Can't open blockdev
[  168.165991][ T8466] netlink: 'syz.0.638': attribute type 13 has an invalid length.
[  168.176354][ T8466] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  168.187446][ T8466] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  168.197108][ T8466] gretap1: entered promiscuous mode
[  168.198950][ T8466] gretap1: entered allmulticast mode
[  168.244756][   T40] audit: type=1800 audit(1746819276.750:1553): pid=8474 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.640" name="bus" dev="overlay" ino=544 res=0 errno=0
[  168.251675][   T40] audit: type=1800 audit(1746819276.750:1554): pid=8474 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.640" name="bus" dev="overlay" ino=544 res=0 errno=0
[  169.207369][ T8500] netlink: 8 bytes leftover after parsing attributes in process `syz.1.643'.
[  169.290382][ T8504] FAULT_INJECTION: forcing a failure.
[  169.290382][ T8504] name failslab, interval 1, probability 0, space 0, times 0
[  169.294325][ T8504] CPU: 3 UID: 0 PID: 8504 Comm: syz.4.645 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  169.294339][ T8504] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.294345][ T8504] Call Trace:
[  169.294349][ T8504]  <TASK>
[  169.294353][ T8504]  dump_stack_lvl+0x16c/0x1f0
[  169.294371][ T8504]  should_fail_ex+0x512/0x640
[  169.294385][ T8504]  ? __kmalloc_noprof+0xbf/0x510
[  169.294397][ T8504]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  169.294413][ T8504]  should_failslab+0xc2/0x120
[  169.294425][ T8504]  __kmalloc_noprof+0xd2/0x510
[  169.294435][ T8504]  ? kasan_quarantine_put+0x10a/0x240
[  169.294448][ T8504]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  169.294465][ T8504]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  169.294480][ T8504]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  169.294493][ T8504]  ? trace_cap_capable+0x18d/0x200
[  169.294507][ T8504]  ? bpf_lsm_capable+0x9/0x10
[  169.294517][ T8504]  ? security_capable+0x7e/0x260
[  169.294527][ T8504]  ? ns_capable+0xd7/0x110
[  169.294539][ T8504]  genl_rcv_msg+0x55c/0x800
[  169.294554][ T8504]  ? __pfx_genl_rcv_msg+0x10/0x10
[  169.294567][ T8504]  ? __pfx___dev_queue_xmit+0x10/0x10
[  169.294582][ T8504]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  169.294595][ T8504]  ? __pfx_nl80211_tdls_mgmt+0x10/0x10
[  169.294606][ T8504]  ? __pfx_nl80211_post_doit+0x10/0x10
[  169.294620][ T8504]  ? __lock_acquire+0xaa4/0x1ba0
[  169.294636][ T8504]  netlink_rcv_skb+0x16a/0x440
[  169.294648][ T8504]  ? __pfx_genl_rcv_msg+0x10/0x10
[  169.294662][ T8504]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  169.294681][ T8504]  ? __pfx_down_read+0x10/0x10
[  169.294696][ T8504]  ? netlink_deliver_tap+0x1ae/0xd30
[  169.294709][ T8504]  genl_rcv+0x28/0x40
[  169.294721][ T8504]  netlink_unicast+0x53a/0x7f0
[  169.294734][ T8504]  ? __pfx_netlink_unicast+0x10/0x10
[  169.294750][ T8504]  netlink_sendmsg+0x8d1/0xdd0
[  169.294764][ T8504]  ? __pfx_netlink_sendmsg+0x10/0x10
[  169.294777][ T8504]  ? __import_iovec+0x1c8/0x660
[  169.294795][ T8504]  ____sys_sendmsg+0xa95/0xc70
[  169.294811][ T8504]  ? __pfx_____sys_sendmsg+0x10/0x10
[  169.294824][ T8504]  ? get_compat_msghdr+0x11a/0x170
[  169.294851][ T8504]  ___sys_sendmsg+0x134/0x1d0
[  169.294863][ T8504]  ? __pfx____sys_sendmsg+0x10/0x10
[  169.294890][ T8504]  __sys_sendmsg+0x16d/0x220
[  169.294901][ T8504]  ? __pfx___sys_sendmsg+0x10/0x10
[  169.294916][ T8504]  ? rcu_is_watching+0x12/0xc0
[  169.294926][ T8504]  ? rcu_is_watching+0x12/0xc0
[  169.294937][ T8504]  __do_fast_syscall_32+0x73/0x120
[  169.294952][ T8504]  do_fast_syscall_32+0x32/0x80
[  169.294966][ T8504]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.294978][ T8504] RIP: 0023:0xf70ee579
[  169.294986][ T8504] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.294996][ T8504] RSP: 002b:00000000f50de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  169.295005][ T8504] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000480
[  169.295011][ T8504] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  169.295016][ T8504] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  169.295022][ T8504] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  169.295027][ T8504] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.295039][ T8504]  </TASK>
[  170.168199][ T8517] binder: BINDER_SET_CONTEXT_MGR bad uid 60928 != 0
[  170.170606][ T8517] binder: 8516:8517 ioctl 4018620d 80000040 returned -1
[  170.194084][   T66] Bluetooth: hci2: command 0x0406 tx timeout
[  170.206108][ T8519] FAULT_INJECTION: forcing a failure.
[  170.206108][ T8519] name failslab, interval 1, probability 0, space 0, times 0
[  170.213032][ T8519] CPU: 2 UID: 0 PID: 8519 Comm: syz.0.650 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  170.213049][ T8519] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  170.213055][ T8519] Call Trace:
[  170.213060][ T8519]  <TASK>
[  170.213064][ T8519]  dump_stack_lvl+0x16c/0x1f0
[  170.213088][ T8519]  should_fail_ex+0x512/0x640
[  170.213105][ T8519]  ? __kmalloc_node_track_caller_noprof+0xc3/0x510
[  170.213123][ T8519]  should_failslab+0xc2/0x120
[  170.213138][ T8519]  __kmalloc_node_track_caller_noprof+0xd6/0x510
[  170.213150][ T8519]  ? kstrdup_const+0x63/0x80
[  170.213165][ T8519]  kstrdup+0x53/0x100
[  170.213177][ T8519]  kstrdup_const+0x63/0x80
[  170.213188][ T8519]  alloc_vfsmnt+0xdf/0x6f0
[  170.213201][ T8519]  clone_mnt+0x6d/0xff0
[  170.213213][ T8519]  ? copy_tree+0x50d/0xa20
[  170.213221][ T8519]  ? copy_mnt_ns+0x1ac/0xac0
[  170.213233][ T8519]  copy_tree+0x38d/0xa20
[  170.213246][ T8519]  copy_mnt_ns+0x1ac/0xac0
[  170.213255][ T8519]  ? kmem_cache_alloc_noprof+0x21e/0x3b0
[  170.213265][ T8519]  ? trace_cap_capable+0x18d/0x200
[  170.213275][ T8519]  ? create_new_namespaces+0x30/0xad0
[  170.213288][ T8519]  create_new_namespaces+0xd3/0xad0
[  170.213298][ T8519]  ? bpf_lsm_capable+0x9/0x10
[  170.213308][ T8519]  ? security_capable+0x7e/0x260
[  170.213319][ T8519]  copy_namespaces+0x468/0x560
[  170.213330][ T8519]  copy_process+0x29ff/0x91a0
[  170.213356][ T8519]  ? __pfx_copy_process+0x10/0x10
[  170.213373][ T8519]  ? find_held_lock+0x2b/0x80
[  170.213388][ T8519]  kernel_clone+0xfc/0x960
[  170.213402][ T8519]  ? __pfx_kernel_clone+0x10/0x10
[  170.213423][ T8519]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  170.213445][ T8519]  __do_compat_sys_ia32_clone+0xcb/0x110
[  170.213467][ T8519]  ? __pfx___do_compat_sys_ia32_clone+0x10/0x10
[  170.213489][ T8519]  ? ksys_write+0x1b9/0x240
[  170.213498][ T8519]  ? __pfx_ksys_write+0x10/0x10
[  170.213508][ T8519]  ? rcu_is_watching+0x12/0xc0
[  170.213519][ T8519]  __do_fast_syscall_32+0x73/0x120
[  170.213534][ T8519]  do_fast_syscall_32+0x32/0x80
[  170.213548][ T8519]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  170.213561][ T8519] RIP: 0023:0xf70fe579
[  170.213569][ T8519] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  170.213578][ T8519] RSP: 002b:00000000f50ee50c EFLAGS: 00000246 ORIG_RAX: 0000000000000078
[  170.213588][ T8519] RAX: ffffffffffffffda RBX: 00000000000a0000 RCX: 0000000000000000
[  170.213594][ T8519] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  170.213599][ T8519] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  170.213604][ T8519] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  170.213610][ T8519] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  170.213622][ T8519]  </TASK>
[  170.306198][    C2] vkms_vblank_simulate: vblank timer overrun
[  170.377367][ T8523] netlink: 28 bytes leftover after parsing attributes in process `syz.0.652'.
[  171.344655][ T8544] netlink: 12 bytes leftover after parsing attributes in process `syz.0.657'.
[  172.124001][ T5950] Bluetooth: hci3: command 0x0406 tx timeout
[  172.401328][ T8568] netlink: 28 bytes leftover after parsing attributes in process `syz.4.666'.
[  172.540996][ T8576] Cannot find add_set index 3 as target
[  173.622618][ T8599] netlink: 28 bytes leftover after parsing attributes in process `syz.0.676'.
[  173.948814][ T8603] netfs: Couldn't get user pages (rc=-14)
[  174.445501][ T8614] Cannot find add_set index 3 as target
[  174.748656][   T40] audit: type=1800 audit(1746819283.250:1555): pid=8618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.682" name="bus" dev="overlay" ino=1014 res=0 errno=0
[  174.756041][   T40] audit: type=1800 audit(1746819283.260:1556): pid=8618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.682" name="bus" dev="overlay" ino=1014 res=0 errno=0
[  176.011136][ T8639] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(11)
[  176.014217][ T8639] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  176.027030][ T8639] vhci_hcd vhci_hcd.0: Device attached
[  176.038360][ T8641] vhci_hcd: connection closed
[  176.054851][ T1135] vhci_hcd: stop threads
[  176.059033][ T1135] vhci_hcd: release socket
[  176.061873][ T1135] vhci_hcd: disconnect device
[  176.149069][ T8645] netlink: 28 bytes leftover after parsing attributes in process `syz.0.690'.
[  176.380309][ T8655] Cannot find add_set index 3 as target
[  177.339605][ T8667] 9pnet_fd: p9_fd_create_unix (8667): problem connecting socket: ./file0/file0: -2
[  177.739333][ T8672] netlink: 8 bytes leftover after parsing attributes in process `syz.4.698'.
[  178.167921][ T8676] tipc: Started in network mode
[  178.170126][ T8676] tipc: Node identity 66e4ce45ec5a, cluster identity 4711
[  178.173135][ T8676] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  178.363586][ T8677] tipc: Disabling bearer <eth:syzkaller0>
[  178.496427][ T8695] FAULT_INJECTION: forcing a failure.
[  178.496427][ T8695] name failslab, interval 1, probability 0, space 0, times 0
[  178.501015][ T8695] CPU: 2 UID: 0 PID: 8695 Comm: syz.4.703 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  178.501029][ T8695] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.501035][ T8695] Call Trace:
[  178.501039][ T8695]  <TASK>
[  178.501043][ T8695]  dump_stack_lvl+0x16c/0x1f0
[  178.501061][ T8695]  should_fail_ex+0x512/0x640
[  178.501075][ T8695]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  178.501088][ T8695]  should_failslab+0xc2/0x120
[  178.501100][ T8695]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  178.501110][ T8695]  ? __alloc_skb+0x2b2/0x380
[  178.501123][ T8695]  __alloc_skb+0x2b2/0x380
[  178.501133][ T8695]  ? __pfx___alloc_skb+0x10/0x10
[  178.501148][ T8695]  netlink_alloc_large_skb+0x69/0x130
[  178.501161][ T8695]  netlink_sendmsg+0x6a1/0xdd0
[  178.501175][ T8695]  ? __pfx_netlink_sendmsg+0x10/0x10
[  178.501188][ T8695]  ? __import_iovec+0x1c8/0x660
[  178.501205][ T8695]  ____sys_sendmsg+0xa95/0xc70
[  178.501220][ T8695]  ? __pfx_____sys_sendmsg+0x10/0x10
[  178.501233][ T8695]  ? get_compat_msghdr+0x11a/0x170
[  178.501249][ T8695]  ___sys_sendmsg+0x134/0x1d0
[  178.501261][ T8695]  ? __pfx____sys_sendmsg+0x10/0x10
[  178.501287][ T8695]  __sys_sendmsg+0x16d/0x220
[  178.501297][ T8695]  ? __pfx___sys_sendmsg+0x10/0x10
[  178.501325][ T8695]  ? rcu_is_watching+0x12/0xc0
[  178.501336][ T8695]  ? rcu_is_watching+0x12/0xc0
[  178.501347][ T8695]  __do_fast_syscall_32+0x73/0x120
[  178.501362][ T8695]  do_fast_syscall_32+0x32/0x80
[  178.501376][ T8695]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  178.501388][ T8695] RIP: 0023:0xf70ee579
[  178.501397][ T8695] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  178.501406][ T8695] RSP: 002b:00000000f50de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  178.501416][ T8695] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100
[  178.501422][ T8695] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 0000000000000000
[  178.501428][ T8695] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  178.501433][ T8695] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  178.501438][ T8695] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  178.501450][ T8695]  </TASK>
[  178.522384][ T8697] netlink: 28 bytes leftover after parsing attributes in process `syz.3.704'.
[  178.594759][ T8699] capability: warning: `syz.4.705' uses deprecated v2 capabilities in a way that may be insecure
[  179.005504][ T8725] netlink: 28 bytes leftover after parsing attributes in process `syz.0.714'.
[  179.277137][   T40] audit: type=1800 audit(1746819287.780:1557): pid=8736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.718" name="bus" dev="overlay" ino=730 res=0 errno=0
[  179.284535][   T40] audit: type=1800 audit(1746819287.780:1558): pid=8736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.718" name="bus" dev="overlay" ino=730 res=0 errno=0
[  180.754281][   T29] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  180.885080][ T8765] lo speed is unknown, defaulting to 1000
[  180.911735][ T8766] Cannot find add_set index 3 as target
[  180.923214][ T8767] netlink: 16 bytes leftover after parsing attributes in process `syz.1.727'.
[  180.926429][ T8767] netlink: 20 bytes leftover after parsing attributes in process `syz.1.727'.
[  180.938490][ T8767] geneve2: entered allmulticast mode
[  180.941887][   T29] usb 9-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  180.946053][   T29] usb 9-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  180.950377][   T29] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  180.953653][   T29] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.992559][ T8759] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  181.029311][   T29] usb 9-1: Quirk or no altset; falling back to MIDI 1.0
[  181.865331][ T8788] Cannot find add_set index 3 as target
[  182.404790][ T8798] netfs: Couldn't get user pages (rc=-14)
[  182.722448][ T8802] tmpfs: Unknown parameter 'gipqu‡‡ôt'
[  182.722493][ T8803] tmpfs: Unknown parameter 'gipqu‡‡ôt'
[  182.828048][ T5955] Bluetooth: hci3: unexpected event for opcode 0x0c03
[  183.357730][   T24] usb 9-1: USB disconnect, device number 3
[  183.461096][ T8812] FAULT_INJECTION: forcing a failure.
[  183.461096][ T8812] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  183.466638][ T8812] CPU: 2 UID: 0 PID: 8812 Comm: syz.4.740 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  183.466653][ T8812] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  183.466659][ T8812] Call Trace:
[  183.466663][ T8812]  <TASK>
[  183.466667][ T8812]  dump_stack_lvl+0x16c/0x1f0
[  183.466685][ T8812]  should_fail_ex+0x512/0x640
[  183.466701][ T8812]  should_fail_alloc_page+0xe7/0x130
[  183.466715][ T8812]  prepare_alloc_pages+0x3c2/0x610
[  183.466730][ T8812]  ? rcu_is_watching+0x12/0xc0
[  183.466741][ T8812]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  183.466754][ T8812]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  183.466771][ T8812]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  183.466781][ T8812]  ? smp_call_function_many_cond+0xd8f/0x1290
[  183.466796][ T8812]  ? lockdep_hardirqs_on+0x7c/0x110
[  183.466810][ T8812]  ? smp_call_function_many_cond+0x349/0x1290
[  183.466823][ T8812]  ? __pfx_flush_tlb_func+0x10/0x10
[  183.466840][ T8812]  ? __lock_acquire+0x5ca/0x1ba0
[  183.466853][ T8812]  ? __lock_acquire+0x5ca/0x1ba0
[  183.466865][ T8812]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  183.466879][ T8812]  ? policy_nodemask+0xea/0x4e0
[  183.466892][ T8812]  alloc_pages_mpol+0x1fb/0x550
[  183.466904][ T8812]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  183.466920][ T8812]  folio_alloc_mpol_noprof+0x36/0x2f0
[  183.466934][ T8812]  vma_alloc_folio_noprof+0xed/0x1e0
[  183.466947][ T8812]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  183.466960][ T8812]  ? find_held_lock+0x2b/0x80
[  183.466969][ T8812]  ? do_wp_page+0x229a/0x58e0
[  183.466985][ T8812]  do_wp_page+0x1282/0x58e0
[  183.467002][ T8812]  ? __pfx_do_wp_page+0x10/0x10
[  183.467022][ T8812]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  183.467036][ T8812]  ? ___pte_offset_map+0x1bc/0x540
[  183.467052][ T8812]  __handle_mm_fault+0x1ada/0x2a40
[  183.467065][ T8812]  ? __pfx___handle_mm_fault+0x10/0x10
[  183.467082][ T8812]  ? find_vma+0xbf/0x140
[  183.467095][ T8812]  ? __pfx_find_vma+0x10/0x10
[  183.467109][ T8812]  handle_mm_fault+0x3fe/0xad0
[  183.467121][ T8812]  do_user_addr_fault+0x7a6/0x1370
[  183.467132][ T8812]  ? rcu_is_watching+0x12/0xc0
[  183.467142][ T8812]  exc_page_fault+0x5c/0xc0
[  183.467155][ T8812]  asm_exc_page_fault+0x26/0x30
[  183.467164][ T8812] RIP: 0010:_copy_to_user+0xb6/0xd0
[  183.467179][ T8812] Code: 89 ee 48 89 ef e8 3a e1 ec fc 4d 85 ff 75 a8 e8 80 e6 ec fc 89 de 4c 89 e7 e8 26 70 51 fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 80 66 2e 0f 1f 84 00 00 00 00
[  183.467188][ T8812] RSP: 0018:ffffc9000da9fa58 EFLAGS: 00050246
[  183.467197][ T8812] RAX: 0000000000000001 RBX: 0000000000005000 RCX: 0000000000002540
[  183.467203][ T8812] RDX: 0000000000000000 RSI: ffff888077762ac0 RDI: 0000000080003000
[  183.467209][ T8812] RBP: 0000000080000540 R08: 0000000000000000 R09: ffffed100eeec9ff
[  183.467215][ T8812] R10: ffff888077764fff R11: 0000000000000000 R12: ffff888077760000
[  183.467220][ T8812] R13: 0000000080005540 R14: 00007ffffffff000 R15: 0000000000000000
[  183.467233][ T8812]  ? _copy_to_user+0xaa/0xd0
[  183.467248][ T8812]  __htab_map_lookup_and_delete_batch+0x19d3/0x23d0
[  183.467276][ T8812]  ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10
[  183.467295][ T8812]  ? __pfx_htab_percpu_map_lookup_and_delete_batch+0x10/0x10
[  183.467317][ T8812]  bpf_map_do_batch+0x4af/0x670
[  183.467335][ T8812]  __sys_bpf+0x4adb/0x4d80
[  183.467359][ T8812]  ? __pfx___sys_bpf+0x10/0x10
[  183.467380][ T8812]  ? ksys_write+0x190/0x240
[  183.467400][ T8812]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  183.467436][ T8812]  ? fput+0x70/0xf0
[  183.467453][ T8812]  ? ksys_write+0x1b9/0x240
[  183.467461][ T8812]  ? __pfx_ksys_write+0x10/0x10
[  183.467473][ T8812]  __ia32_sys_bpf+0x76/0xe0
[  183.467488][ T8812]  __do_fast_syscall_32+0x73/0x120
[  183.467502][ T8812]  do_fast_syscall_32+0x32/0x80
[  183.467517][ T8812]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  183.467528][ T8812] RIP: 0023:0xf70ee579
[  183.467536][ T8812] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  183.467545][ T8812] RSP: 002b:00000000f50de55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  183.467554][ T8812] RAX: ffffffffffffffda RBX: 0000000000000019 RCX: 0000000080000800
[  183.467560][ T8812] RDX: 0000000000000038 RSI: 0000000000000000 RDI: 0000000000000000
[  183.467565][ T8812] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  183.467571][ T8812] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  183.467576][ T8812] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  183.467588][ T8812]  </TASK>
[  183.822905][ T8816] Bluetooth: MGMT ver 1.23
[  184.041191][ T8823] netlink: 4 bytes leftover after parsing attributes in process `syz.3.744'.
[  184.080144][ T8828] netlink: 28 bytes leftover after parsing attributes in process `syz.3.746'.
[  184.162523][ T8836] FAULT_INJECTION: forcing a failure.
[  184.162523][ T8836] name failslab, interval 1, probability 0, space 0, times 0
[  184.167680][ T8836] CPU: 2 UID: 0 PID: 8836 Comm: syz.0.745 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  184.167703][ T8836] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  184.167713][ T8836] Call Trace:
[  184.167718][ T8836]  <TASK>
[  184.167723][ T8836]  dump_stack_lvl+0x16c/0x1f0
[  184.167750][ T8836]  should_fail_ex+0x512/0x640
[  184.167772][ T8836]  ? fs_reclaim_acquire+0xae/0x150
[  184.167796][ T8836]  ? tomoyo_encode2+0x100/0x3e0
[  184.167815][ T8836]  should_failslab+0xc2/0x120
[  184.167834][ T8836]  __kmalloc_noprof+0xd2/0x510
[  184.167857][ T8836]  tomoyo_encode2+0x100/0x3e0
[  184.167881][ T8836]  tomoyo_encode+0x29/0x50
[  184.167901][ T8836]  tomoyo_realpath_from_path+0x18f/0x6e0
[  184.167924][ T8836]  ? tomoyo_profile+0x47/0x60
[  184.167950][ T8836]  tomoyo_path_number_perm+0x245/0x580
[  184.167968][ T8836]  ? tomoyo_path_number_perm+0x237/0x580
[  184.167991][ T8836]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  184.168039][ T8836]  ? find_held_lock+0x2b/0x80
[  184.168055][ T8836]  ? hook_file_ioctl_common+0x145/0x410
[  184.168072][ T8836]  ? __fget_files+0x204/0x3c0
[  184.168098][ T8836]  ? __fget_files+0x20e/0x3c0
[  184.168120][ T8836]  ? fput+0x20/0xf0
[  184.168141][ T8836]  security_file_ioctl_compat+0x9b/0x240
[  184.168162][ T8836]  __ia32_compat_sys_ioctl+0xc3/0x360
[  184.168185][ T8836]  __do_fast_syscall_32+0x73/0x120
[  184.168209][ T8836]  do_fast_syscall_32+0x32/0x80
[  184.168233][ T8836]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  184.168253][ T8836] RIP: 0023:0xf70fe579
[  184.168266][ T8836] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  184.168282][ T8836] RSP: 002b:00000000f50ee55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  184.168298][ T8836] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000008943
[  184.168309][ T8836] RDX: 0000000080002280 RSI: 0000000000000000 RDI: 0000000000000000
[  184.168318][ T8836] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  184.168327][ T8836] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  184.168338][ T8836] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  184.168361][ T8836]  </TASK>
[  184.168377][ T8836] ERROR: Out of memory at tomoyo_realpath_from_path.
[  184.281937][ T8842] netlink: 'syz.0.750': attribute type 6 has an invalid length.
[  184.312985][ T8844] netlink: 'syz.0.751': attribute type 10 has an invalid length.
[  184.323781][ T8844] dummy0: entered promiscuous mode
[  184.326232][ T8844] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  184.330633][ T8844] netlink: 24 bytes leftover after parsing attributes in process `syz.0.751'.
[  184.512732][ T8848] syzkaller1: entered promiscuous mode
[  184.516429][ T8848] syzkaller1: entered allmulticast mode
[  185.118518][ T8853] netlink: 8 bytes leftover after parsing attributes in process `syz.4.754'.
[  185.269014][ T8864] netlink: 28 bytes leftover after parsing attributes in process `syz.1.757'.
[  185.551555][ T8871] netlink: 4 bytes leftover after parsing attributes in process `syz.0.760'.
[  185.644741][ T8873] dlm: no local IP address has been set
[  185.647467][ T8873] dlm: cannot start dlm midcomms -107
[  185.708619][ T8877] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  185.845018][ T8885] netlink: 'syz.3.764': attribute type 10 has an invalid length.
[  185.847681][ T8885] netlink: 40 bytes leftover after parsing attributes in process `syz.3.764'.
[  185.850892][ T8885] team0: Device geneve0 is up. Set it down before adding it as a team port
[  185.854972][ T8885] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  186.100988][ T8889] ceph: No mds server is up or the cluster is laggy
[  186.582553][ T8896] Cannot find set identified by id 0 to match
[  186.738638][ T8902] FAULT_INJECTION: forcing a failure.
[  186.738638][ T8902] name failslab, interval 1, probability 0, space 0, times 0
[  186.748480][ T8902] CPU: 3 UID: 0 PID: 8902 Comm: syz.0.770 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  186.748497][ T8902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  186.748503][ T8902] Call Trace:
[  186.748507][ T8902]  <TASK>
[  186.748511][ T8902]  dump_stack_lvl+0x16c/0x1f0
[  186.748529][ T8902]  should_fail_ex+0x512/0x640
[  186.748543][ T8902]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  186.748556][ T8902]  should_failslab+0xc2/0x120
[  186.748569][ T8902]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  186.748580][ T8902]  ? security_file_alloc+0x34/0x2b0
[  186.748596][ T8902]  security_file_alloc+0x34/0x2b0
[  186.748609][ T8902]  init_file+0x93/0x4c0
[  186.748621][ T8902]  alloc_empty_file+0x73/0x1e0
[  186.748633][ T8902]  path_openat+0xe0/0x2d40
[  186.748643][ T8902]  ? stack_trace_save+0x8e/0xc0
[  186.748654][ T8902]  ? __pfx_stack_trace_save+0x10/0x10
[  186.748664][ T8902]  ? stack_depot_save_flags+0x28/0xa50
[  186.748680][ T8902]  ? __pfx_path_openat+0x10/0x10
[  186.748688][ T8902]  ? kasan_save_stack+0x42/0x60
[  186.748698][ T8902]  ? kasan_save_stack+0x33/0x60
[  186.748712][ T8902]  ? kasan_save_track+0x14/0x30
[  186.748724][ T8902]  do_filp_open+0x20b/0x470
[  186.748733][ T8902]  ? __pfx_do_filp_open+0x10/0x10
[  186.748752][ T8902]  ? alloc_fd+0x471/0x7d0
[  186.748771][ T8902]  io_openat2+0x206/0x850
[  186.748782][ T8902]  ? __pfx_io_openat2+0x10/0x10
[  186.748793][ T8902]  ? getname_flags.part.0+0x1c5/0x550
[  186.748807][ T8902]  ? build_open_how+0x6a/0xb0
[  186.748821][ T8902]  io_issue_sqe+0x4f2/0x1350
[  186.748835][ T8902]  io_submit_sqes+0x921/0x25d0
[  186.748853][ T8902]  __do_sys_io_uring_enter+0xd6a/0x1630
[  186.748867][ T8902]  ? __fget_files+0x20e/0x3c0
[  186.748883][ T8902]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  186.748896][ T8902]  ? fput+0x70/0xf0
[  186.748907][ T8902]  ? ksys_write+0x1b9/0x240
[  186.748916][ T8902]  ? __pfx_ksys_write+0x10/0x10
[  186.748926][ T8902]  ? rcu_is_watching+0x12/0xc0
[  186.748937][ T8902]  __do_fast_syscall_32+0x73/0x120
[  186.748953][ T8902]  do_fast_syscall_32+0x32/0x80
[  186.748966][ T8902]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  186.748979][ T8902] RIP: 0023:0xf70fe579
[  186.748987][ T8902] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  186.748996][ T8902] RSP: 002b:00000000f50ee55c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  186.749006][ T8902] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000007277
[  186.749012][ T8902] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  186.749018][ T8902] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  186.749023][ T8902] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  186.749029][ T8902] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  186.749040][ T8902]  </TASK>
[  187.111919][ T8917] netlink: 4 bytes leftover after parsing attributes in process `syz.3.775'.
[  187.344830][   T40] audit: type=1800 audit(1746819295.840:1559): pid=8920 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.776" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[  187.937957][ T8928] binder: 8927:8928 ioctl c0306201 800003c0 returned -14
[  187.942944][ T8928] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  188.090417][ T8931] FAULT_INJECTION: forcing a failure.
[  188.090417][ T8931] name failslab, interval 1, probability 0, space 0, times 0
[  188.097856][ T8931] CPU: 3 UID: 0 PID: 8931 Comm: syz.3.779 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  188.097880][ T8931] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  188.097890][ T8931] Call Trace:
[  188.097895][ T8931]  <TASK>
[  188.097901][ T8931]  dump_stack_lvl+0x16c/0x1f0
[  188.097931][ T8931]  should_fail_ex+0x512/0x640
[  188.097961][ T8931]  ? fs_reclaim_acquire+0xae/0x150
[  188.097987][ T8931]  ? tomoyo_encode2+0x100/0x3e0
[  188.098007][ T8931]  should_failslab+0xc2/0x120
[  188.098026][ T8931]  __kmalloc_noprof+0xd2/0x510
[  188.098043][ T8931]  ? d_absolute_path+0x136/0x1a0
[  188.098067][ T8931]  tomoyo_encode2+0x100/0x3e0
[  188.098093][ T8931]  tomoyo_encode+0x29/0x50
[  188.098113][ T8931]  tomoyo_realpath_from_path+0x18f/0x6e0
[  188.098142][ T8931]  tomoyo_path2_perm+0x36a/0x710
[  188.098162][ T8931]  ? __pfx_tomoyo_path2_perm+0x10/0x10
[  188.098210][ T8931]  ? do_raw_spin_lock+0x12c/0x2b0
[  188.098238][ T8931]  tomoyo_path_rename+0xfc/0x1a0
[  188.098261][ T8931]  ? __pfx_tomoyo_path_rename+0x10/0x10
[  188.098291][ T8931]  security_path_rename+0x18e/0x3c0
[  188.098314][ T8931]  do_renameat2+0x735/0xc90
[  188.098339][ T8931]  ? __pfx_do_renameat2+0x10/0x10
[  188.098359][ T8931]  ? find_held_lock+0x2b/0x80
[  188.098373][ T8931]  ? __might_fault+0xe3/0x190
[  188.098392][ T8931]  ? __might_fault+0x13b/0x190
[  188.098422][ T8931]  ? getname_flags.part.0+0x1c5/0x550
[  188.098449][ T8931]  __ia32_sys_rename+0x7c/0xa0
[  188.098467][ T8931]  __do_fast_syscall_32+0x73/0x120
[  188.098491][ T8931]  do_fast_syscall_32+0x32/0x80
[  188.098513][ T8931]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  188.098533][ T8931] RIP: 0023:0xf706e579
[  188.098547][ T8931] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  188.098562][ T8931] RSP: 002b:00000000f505e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000026
[  188.098578][ T8931] RAX: ffffffffffffffda RBX: 0000000080000140 RCX: 0000000080001900
[  188.098588][ T8931] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  188.098596][ T8931] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  188.098605][ T8931] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  188.098615][ T8931] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  188.098637][ T8931]  </TASK>
[  188.098657][ T8931] ERROR: Out of memory at tomoyo_realpath_from_path.
[  189.304729][ T8953] Cannot find add_set index 3 as target
[  190.328833][ T8969] netlink: 'syz.3.789': attribute type 1 has an invalid length.
[  190.657801][ T8979] Cannot find add_set index 3 as target
[  192.249599][ T9003] FAULT_INJECTION: forcing a failure.
[  192.249599][ T9003] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  192.253742][ T9003] CPU: 3 UID: 0 PID: 9003 Comm: syz.1.798 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  192.253756][ T9003] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  192.253762][ T9003] Call Trace:
[  192.253766][ T9003]  <TASK>
[  192.253770][ T9003]  dump_stack_lvl+0x16c/0x1f0
[  192.253788][ T9003]  should_fail_ex+0x512/0x640
[  192.253804][ T9003]  _copy_from_iter+0x2a4/0x15b0
[  192.253820][ T9003]  ? __alloc_skb+0x200/0x380
[  192.253831][ T9003]  ? __pfx__copy_from_iter+0x10/0x10
[  192.253847][ T9003]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  192.253863][ T9003]  netlink_sendmsg+0x829/0xdd0
[  192.253888][ T9003]  ? __pfx_netlink_sendmsg+0x10/0x10
[  192.253903][ T9003]  ? __import_iovec+0x1c8/0x660
[  192.253921][ T9003]  ____sys_sendmsg+0xa95/0xc70
[  192.253937][ T9003]  ? __pfx_____sys_sendmsg+0x10/0x10
[  192.253950][ T9003]  ? get_compat_msghdr+0x11a/0x170
[  192.253966][ T9003]  ___sys_sendmsg+0x134/0x1d0
[  192.253978][ T9003]  ? __pfx____sys_sendmsg+0x10/0x10
[  192.254004][ T9003]  __sys_sendmsg+0x16d/0x220
[  192.254015][ T9003]  ? __pfx___sys_sendmsg+0x10/0x10
[  192.254032][ T9003]  ? rcu_is_watching+0x12/0xc0
[  192.254043][ T9003]  __do_fast_syscall_32+0x73/0x120
[  192.254058][ T9003]  do_fast_syscall_32+0x32/0x80
[  192.254072][ T9003]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  192.254084][ T9003] RIP: 0023:0xf706e579
[  192.254092][ T9003] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  192.254101][ T9003] RSP: 002b:00000000f505e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  192.254111][ T9003] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000000
[  192.254117][ T9003] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  192.254122][ T9003] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  192.254128][ T9003] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  192.254133][ T9003] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  192.254145][ T9003]  </TASK>
[  193.719510][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  193.722254][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  194.551440][ T9040] vivid-007: =================  START STATUS  =================
[  194.554218][ T9040] vivid-007: Enable Output Cropping: true
[  194.556647][ T9040] vivid-007: Enable Output Composing: true
[  194.558729][ T9040] vivid-007: Enable Output Scaler: true
[  194.560523][ T9040] vivid-007: Tx RGB Quantization Range: Automatic
[  194.562623][ T9040] vivid-007: Transmit Mode: HDMI
[  194.565988][ T9040] vivid-007: Hotplug Present: 0x00000000
[  194.567973][ T9040] vivid-007: RxSense Present: 0x00000000
[  194.570037][ T9040] vivid-007: EDID Present: 0x00000000
[  194.571762][ T9040] vivid-007: ==================  END STATUS  ==================
[  195.467356][ T9053] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  195.467356][ T9053]    program syz.4.807 not setting count and/or reply_len properly
[  196.043299][ T9058] netfs: Couldn't get user pages (rc=-14)
[  196.535112][ T9066] Cannot find add_set index 3 as target
[  197.164322][   T34] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  197.304056][ T9073] random: crng reseeded on system resumption
[  197.526497][ T9077] Cannot find add_set index 3 as target
[  198.001324][ T9083] overlayfs: failed to resolve './file1': -2
[  198.507670][ T9089] Cannot find add_set index 3 as target
[  198.673336][   T34] usb 9-1: string descriptor 0 read error: -71
[  198.676821][   T34] usb 9-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  198.680427][   T34] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.687693][   T34] usb 9-1: can't set config #1, error -71
[  198.691047][   T34] usb 9-1: USB disconnect, device number 4
[  199.113180][ T9094] gretap0: entered promiscuous mode
[  199.116452][ T9094] macsec1: entered promiscuous mode
[  199.121996][ T9094] gretap0: left promiscuous mode
[  201.327288][ T9119] overlayfs: failed to resolve './file1': -2
[  202.174768][ T5950] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  202.179928][ T5950] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  202.183062][ T5950] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  202.185863][ T5950] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  202.188470][ T5950] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  202.204355][ T9135] lo speed is unknown, defaulting to 1000
[  202.272398][   T40] audit: type=1326 audit(1746819310.760:1560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9132 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  202.280930][   T40] audit: type=1326 audit(1746819310.760:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9132 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  202.289854][   T40] audit: type=1326 audit(1746819310.760:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9132 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=293 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  202.297408][   T40] audit: type=1326 audit(1746819310.760:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9132 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  202.307973][   T40] audit: type=1326 audit(1746819310.760:1564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9132 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  202.324682][   T40] audit: type=1326 audit(1746819310.760:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9132 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  202.340187][   T40] audit: type=1326 audit(1746819310.760:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9132 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  202.349383][   T40] audit: type=1326 audit(1746819310.770:1567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9132 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  202.357917][   T40] audit: type=1326 audit(1746819310.770:1568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9132 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  202.365112][   T40] audit: type=1326 audit(1746819310.770:1569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9132 comm="syz.4.830" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[  202.397447][ T9135] chnl_net:caif_netlink_parms(): no params data found
[  202.496381][ T9135] bridge0: port 1(bridge_slave_0) entered blocking state
[  202.500289][ T9135] bridge0: port 1(bridge_slave_0) entered disabled state
[  202.516131][ T9135] bridge_slave_0: entered allmulticast mode
[  202.518678][ T9135] bridge_slave_0: entered promiscuous mode
[  202.521591][ T9135] bridge0: port 2(bridge_slave_1) entered blocking state
[  202.523758][ T9135] bridge0: port 2(bridge_slave_1) entered disabled state
[  202.526793][ T9135] bridge_slave_1: entered allmulticast mode
[  202.529376][ T9135] bridge_slave_1: entered promiscuous mode
[  202.561234][ T9135] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  202.566865][ T9135] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  202.592265][ T9147] Cannot find add_set index 3 as target
[  202.607245][ T9135] team0: Port device team_slave_0 added
[  202.612713][ T9135] team0: Port device team_slave_1 added
[  202.671065][ T9135] batman_adv: batadv0: Adding interface: batadv_slave_0
[  202.673776][ T9135] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.683557][ T9135] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  202.689462][ T9135] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.692318][ T9135] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.702367][ T9135] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  202.760102][ T9135] hsr_slave_0: entered promiscuous mode
[  202.763265][ T9135] hsr_slave_1: entered promiscuous mode
[  202.769132][ T9135] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  202.772121][ T9135] Cannot create hsr debugfs directory
[  202.899655][   T63] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.923756][ T9135] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  202.928114][ T9135] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  202.932768][ T9135] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  202.938664][ T9135] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  202.951084][ T9135] bridge0: port 2(bridge_slave_1) entered blocking state
[  202.953376][ T9135] bridge0: port 2(bridge_slave_1) entered forwarding state
[  202.956348][ T9135] bridge0: port 1(bridge_slave_0) entered blocking state
[  202.958648][ T9135] bridge0: port 1(bridge_slave_0) entered forwarding state
[  202.990138][ T9135] 8021q: adding VLAN 0 to HW filter on device bond0
[  203.002793][ T9135] 8021q: adding VLAN 0 to HW filter on device team0
[  203.102827][ T9135] 8021q: adding VLAN 0 to HW filter on device batadv0
[  203.311282][ T9135] veth0_vlan: entered promiscuous mode
[  203.316734][ T9135] veth1_vlan: entered promiscuous mode
[  203.331793][ T9135] veth0_macvtap: entered promiscuous mode
[  203.336530][ T9135] veth1_macvtap: entered promiscuous mode
[  203.344842][ T9135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  203.348310][ T9135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.351676][ T9135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  203.355208][ T9135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.358413][ T9135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  203.361813][ T9135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.365396][ T9135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  203.368767][ T9135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.375886][ T9135] batman_adv: batadv0: Interface activated: batadv_slave_0
[  203.379726][ T9135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  203.383114][ T9135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.386422][ T9135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  203.389675][ T9135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.392703][ T9135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  203.396090][ T9135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.399136][ T9135] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  203.402431][ T9135] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.406703][ T9135] batman_adv: batadv0: Interface activated: batadv_slave_1
[  203.410560][ T9135] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  203.413275][ T9135] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  203.416198][ T9135] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  203.419017][ T9135] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  203.448594][ T1135] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  203.451905][ T1135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  203.468534][ T1135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  203.471697][ T1135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  203.648978][   T63] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.663527][ T9166] team0: No ports can be present during mode change
[  203.671750][ T9166] vlan0: entered promiscuous mode
[  203.693357][ T9166] team0: Port device vlan0 added
[  203.748902][   T63] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  203.785219][ T9168] netlink: 4 bytes leftover after parsing attributes in process `syz.1.832'.
[  204.118359][ T9168] team0 (unregistering): Port device team_slave_0 removed
[  204.128755][ T9168] team0 (unregistering): Port device team_slave_1 removed
[  204.136318][ T9168] team0 (unregistering): Port device vlan0 removed
[  204.169776][   T63] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.284443][ T5950] Bluetooth: hci0: command tx timeout
[  204.307439][ T9189] sch_fq: defrate 0 ignored.
[  204.400414][ T9195] 9pnet_fd: p9_fd_create_unix (9195): problem connecting socket: ./file0/file0: -2
[  204.935780][   T63] bond0 (unregistering): left promiscuous mode
[  204.938461][   T63] bond_slave_0: left promiscuous mode
[  204.941048][   T63] bond_slave_1: left promiscuous mode
[  204.943631][   T63] dummy0: left promiscuous mode
[  204.957702][   T63] bond2 (unregistering): (slave macvlan2): Releasing backup interface
[  204.968762][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  204.975189][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  204.979635][   T63] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  204.986289][   T63] bond0 (unregistering): Released all slaves
[  205.008400][   T63] bond1 (unregistering): Released all slaves
[  205.020493][   T63] bond2 (unregistering): Released all slaves
[  205.123060][ T9205] xt_CT: You must specify a L4 protocol and not use inversions on it
[  205.363310][   T63] tipc: Left network mode
[  205.605675][ T9217] Cannot find add_set index 3 as target
[  205.677689][   T63] hsr_slave_0: left promiscuous mode
[  205.681078][   T63] hsr_slave_1: left promiscuous mode
[  205.683255][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  205.686150][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  205.793108][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  205.799912][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  205.852407][   T63] veth1_macvtap: left promiscuous mode
[  205.864409][   T63] veth0_macvtap: left promiscuous mode
[  205.867486][   T63] veth1_vlan: left promiscuous mode
[  205.872392][   T63] veth0_vlan: left promiscuous mode
[  206.354128][ T5950] Bluetooth: hci0: command tx timeout
[  206.785589][ T9235] netfs: Couldn't get user pages (rc=-14)
[  207.649007][   T63] team0 (unregistering): Port device team_slave_1 removed
[  207.759803][   T63] team0 (unregistering): Port device team_slave_0 removed
[  208.136503][ T9253] 9pnet_fd: p9_fd_create_unix (9253): problem connecting socket: ./file0/file0: -2
[  208.454089][ T5950] Bluetooth: hci0: command tx timeout
[  208.571316][ T9248] random: crng reseeded on system resumption
[  208.630889][ T9260] binder: BINDER_SET_CONTEXT_MGR already set
[  208.633790][ T9260] binder: 9259:9260 ioctl 4018620d 800000c0 returned -16
[  208.638307][ T9260] binder: BINDER_SET_CONTEXT_MGR already set
[  208.640954][ T9260] binder: 9259:9260 ioctl 4018620d 80000040 returned -16
[  208.654924][ T9260] binder: 9259:9260 ioctl c0306201 800001c0 returned -22
[  209.046864][ T9273] tipc: Enabling <eth:lo> not permitted
[  209.049009][ T9273] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  209.771945][ T9315] Cannot find add_set index 3 as target
[  210.514148][ T5955] Bluetooth: hci0: command tx timeout
[  210.977312][ T9334] can0: slcan on pty30.
[  210.980230][ T9334] Bluetooth: MGMT ver 1.23
[  211.141348][ T9333] can0 (unregistered): slcan off pty30.
[  211.646536][ T9350] FAULT_INJECTION: forcing a failure.
[  211.646536][ T9350] name failslab, interval 1, probability 0, space 0, times 0
[  211.652855][ T9350] CPU: 1 UID: 0 PID: 9350 Comm: syz.4.870 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  211.652881][ T9350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  211.652887][ T9350] Call Trace:
[  211.652892][ T9350]  <TASK>
[  211.652896][ T9350]  dump_stack_lvl+0x16c/0x1f0
[  211.652914][ T9350]  should_fail_ex+0x512/0x640
[  211.652928][ T9350]  ? __kmalloc_cache_noprof+0x57/0x3e0
[  211.652946][ T9350]  should_failslab+0xc2/0x120
[  211.652959][ T9350]  __kmalloc_cache_noprof+0x6a/0x3e0
[  211.652974][ T9350]  ? alloc_super+0x52/0xbd0
[  211.652989][ T9350]  ? __pfx_super_s_dev_test+0x10/0x10
[  211.653002][ T9350]  alloc_super+0x52/0xbd0
[  211.653015][ T9350]  ? sget_fc+0xd3/0xc20
[  211.653031][ T9350]  ? __pfx_super_s_dev_test+0x10/0x10
[  211.653044][ T9350]  sget_fc+0x116/0xc20
[  211.653057][ T9350]  ? vfs_parse_fs_string+0xfa/0x150
[  211.653067][ T9350]  ? __pfx_super_s_dev_set+0x10/0x10
[  211.653080][ T9350]  get_tree_bdev_flags+0x1ba/0x620
[  211.653095][ T9350]  ? __pfx_gfs2_fill_super+0x10/0x10
[  211.653106][ T9350]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  211.653120][ T9350]  ? rcu_is_watching+0x12/0xc0
[  211.653132][ T9350]  ? apparmor_capable+0x114/0x1d0
[  211.653144][ T9350]  gfs2_get_tree+0x4e/0x280
[  211.653154][ T9350]  vfs_get_tree+0x8b/0x340
[  211.653167][ T9350]  path_mount+0x14d4/0x1f20
[  211.653178][ T9350]  ? kmem_cache_free+0x2d4/0x4d0
[  211.653188][ T9350]  ? __pfx_path_mount+0x10/0x10
[  211.653199][ T9350]  ? putname+0x154/0x1a0
[  211.653212][ T9350]  __ia32_sys_mount+0x28b/0x310
[  211.653222][ T9350]  ? __pfx___ia32_sys_mount+0x10/0x10
[  211.653234][ T9350]  ? rcu_is_watching+0x12/0xc0
[  211.653244][ T9350]  __do_fast_syscall_32+0x73/0x120
[  211.653279][ T9350]  do_fast_syscall_32+0x32/0x80
[  211.653294][ T9350]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  211.653306][ T9350] RIP: 0023:0xf70ee579
[  211.653314][ T9350] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  211.653324][ T9350] RSP: 002b:00000000f50bd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  211.653334][ T9350] RAX: ffffffffffffffda RBX: 00000000800000c0 RCX: 0000000080000340
[  211.653340][ T9350] RDX: 0000000080000380 RSI: 0000000000000000 RDI: 0000000080000980
[  211.653345][ T9350] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  211.653351][ T9350] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  211.653356][ T9350] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  211.653368][ T9350]  </TASK>
[  211.982155][ T9359] overlayfs: failed to resolve './file0': -2
[  212.931889][ T9386] Device name cannot be null; rc = [-22]
[  213.699837][ T9400] Cannot find add_set index 3 as target
[  215.447011][ T9433] netlink: 'syz.4.893': attribute type 3 has an invalid length.
[  215.449605][ T9433] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.893'.
[  215.458556][ T9437] FAULT_INJECTION: forcing a failure.
[  215.458556][ T9437] name failslab, interval 1, probability 0, space 0, times 0
[  215.462732][ T9437] CPU: 2 UID: 0 PID: 9437 Comm: syz.5.894 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  215.462747][ T9437] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  215.462753][ T9437] Call Trace:
[  215.462757][ T9437]  <TASK>
[  215.462762][ T9437]  dump_stack_lvl+0x16c/0x1f0
[  215.462784][ T9437]  should_fail_ex+0x512/0x640
[  215.462808][ T9437]  should_failslab+0xc2/0x120
[  215.462821][ T9437]  __kmalloc_cache_noprof+0x6a/0x3e0
[  215.462838][ T9437]  ? sctp_add_bind_addr+0xae/0x3f0
[  215.462854][ T9437]  sctp_add_bind_addr+0xae/0x3f0
[  215.462868][ T9437]  sctp_copy_local_addr_list+0x39d/0x5a0
[  215.462885][ T9437]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  215.462902][ T9437]  ? sctp_auth_asoc_copy_shkeys+0x2a5/0x360
[  215.462921][ T9437]  ? sctp_bind_addr_copy+0x331/0x530
[  215.462933][ T9437]  sctp_bind_addr_copy+0x331/0x530
[  215.462949][ T9437]  sctp_connect_new_asoc+0x1d7/0x790
[  215.462961][ T9437]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  215.462975][ T9437]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  215.462992][ T9437]  sctp_sendmsg+0x15f9/0x1ee0
[  215.463007][ T9437]  ? __pfx_sctp_sendmsg+0x10/0x10
[  215.463018][ T9437]  ? __pfx___might_resched+0x10/0x10
[  215.463035][ T9437]  ? __pfx_aa_sk_perm+0x10/0x10
[  215.463048][ T9437]  ? __pfx_cmsghdr_from_user_compat_to_kern+0x10/0x10
[  215.463061][ T9437]  ? __pfx_sctp_sendmsg+0x10/0x10
[  215.463072][ T9437]  inet_sendmsg+0x119/0x140
[  215.463087][ T9437]  ____sys_sendmsg+0x973/0xc70
[  215.463103][ T9437]  ? __pfx_____sys_sendmsg+0x10/0x10
[  215.463116][ T9437]  ? get_compat_msghdr+0x11a/0x170
[  215.463132][ T9437]  ___sys_sendmsg+0x134/0x1d0
[  215.463144][ T9437]  ? __pfx____sys_sendmsg+0x10/0x10
[  215.463172][ T9437]  __sys_sendmsg+0x16d/0x220
[  215.463183][ T9437]  ? __pfx___sys_sendmsg+0x10/0x10
[  215.463200][ T9437]  ? rcu_is_watching+0x12/0xc0
[  215.463211][ T9437]  __do_fast_syscall_32+0x73/0x120
[  215.463227][ T9437]  do_fast_syscall_32+0x32/0x80
[  215.463241][ T9437]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  215.463253][ T9437] RIP: 0023:0xf709e579
[  215.463262][ T9437] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  215.463272][ T9437] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  215.463282][ T9437] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800025c0
[  215.463288][ T9437] RDX: 0000000024000080 RSI: 0000000000000000 RDI: 0000000000000000
[  215.463293][ T9437] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  215.463299][ T9437] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  215.463304][ T9437] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  215.463317][ T9437]  </TASK>
[  215.611634][ T9441] Cannot find set identified by id 0 to match
[  215.743630][ T9447] Cannot find add_set index 3 as target
[  217.195847][ T9471] Cannot find add_set index 3 as target
[  218.190935][ T9477] netlink: 4 bytes leftover after parsing attributes in process `syz.4.904'.
[  218.426237][ T9486] 9pnet_fd: p9_fd_create_unix (9486): problem connecting socket: ./file0/file0: -2
[  218.765136][ T9488] netlink: 8 bytes leftover after parsing attributes in process `syz.3.906'.
[  219.170155][ T5955] Bluetooth: hci2: SCO packet for unknown connection handle 200
[  219.239859][ T9498] Cannot find add_set index 3 as target
[  220.373260][ T9512] 9pnet_fd: p9_fd_create_unix (9512): problem connecting socket: ./file0/file0: -2
[  220.385112][ T9515] xt_nat: multiple ranges no longer supported
[  220.388442][ T9515] devpts: Bad value for 'max'
[  220.397710][ T9520] netlink: 340 bytes leftover after parsing attributes in process `syz.4.917'.
[  220.643578][   T12] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.684530][   T24] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  220.694735][ T9546] 9pnet_fd: p9_fd_create_unix (9546): problem connecting socket: ./file0/file0: -2
[  220.735778][   T12] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.758635][ T5950] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  220.772442][ T5950] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  220.778341][ T5950] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  220.781443][ T5950] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  220.787268][ T5950] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  220.807974][ T9549] lo speed is unknown, defaulting to 1000
[  220.844299][   T24] usb 9-1: Using ep0 maxpacket: 32
[  220.849509][   T24] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  220.853136][   T24] usb 9-1: config 0 has no interfaces?
[  220.864195][   T24] usb 9-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4e
[  220.867801][   T24] usb 9-1: New USB device strings: Mfr=1, Product=18, SerialNumber=3
[  220.872381][   T24] usb 9-1: Product: syz
[  220.874871][   T24] usb 9-1: Manufacturer: syz
[  220.876797][   T24] usb 9-1: SerialNumber: syz
[  220.889201][   T12] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.896627][   T24] usb 9-1: config 0 descriptor??
[  220.915025][ T9556] netlink: 8 bytes leftover after parsing attributes in process `syz.5.921'.
[  221.007670][   T12] bridge0: port 3(netdevsim0) entered disabled state
[  221.025298][   T12] netdevsim netdevsim3 netdevsim0 (unregistering): left allmulticast mode
[  221.028228][   T12] netdevsim netdevsim3 netdevsim0 (unregistering): left promiscuous mode
[  221.032575][   T12] bridge0: port 3(netdevsim0) entered disabled state
[  221.054613][   T12] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.081865][ T9549] chnl_net:caif_netlink_parms(): no params data found
[  221.106689][ T9524] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  221.110334][ T9524] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  221.114009][ T9524] netlink: 8 bytes leftover after parsing attributes in process `syz.4.918'.
[  221.116839][ T9524] netlink: 12 bytes leftover after parsing attributes in process `syz.4.918'.
[  221.121403][ T2294] usb 9-1: USB disconnect, device number 5
[  221.201739][ T9549] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.205467][ T9549] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.207841][ T9549] bridge_slave_0: entered allmulticast mode
[  221.210451][ T9549] bridge_slave_0: entered promiscuous mode
[  221.217049][ T9549] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.219366][ T9549] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.221675][ T9549] bridge_slave_1: entered allmulticast mode
[  221.224397][ T9549] bridge_slave_1: entered promiscuous mode
[  221.275278][ T9549] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  221.282735][ T9549] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  221.337747][   T12] bridge_slave_1: left allmulticast mode
[  221.340078][   T12] bridge_slave_1: left promiscuous mode
[  221.342529][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.355000][   T12] bridge_slave_0: left allmulticast mode
[  221.357331][   T12] bridge_slave_0: left promiscuous mode
[  221.360837][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.586273][ T9576] Failed to get privilege flags for destination (handle=0x2:0x0)
[  221.660347][   T12] bond0 (unregistering): left promiscuous mode
[  221.662471][   T12] bond_slave_0: left promiscuous mode
[  221.664537][   T12] bond_slave_1: left promiscuous mode
[  221.693211][   T12] bond2 (unregistering): (slave macvlan2): Releasing backup interface
[  221.693770][ T9579] netlink: 4 bytes leftover after parsing attributes in process `syz.5.925'.
[  221.703434][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  221.710498][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  221.715032][   T12] bond0 (unregistering): Released all slaves
[  221.790920][ T9583] hub 6-0:1.0: USB hub found
[  221.793425][ T9583] hub 6-0:1.0: 1 port detected
[  221.800154][   T12] bond1 (unregistering): (slave veth0_to_bond): Releasing active interface
[  221.806099][   T12] bond1 (unregistering): (slave vlan2): Releasing active interface
[  221.810976][   T12] bond1 (unregistering): Released all slaves
[  221.821217][   T12] bond2 (unregistering): Released all slaves
[  221.831809][   T12] bond3 (unregistering): Released all slaves
[  221.845932][ T9549] team0: Port device team_slave_0 added
[  221.850172][ T9585] netlink: 44 bytes leftover after parsing attributes in process `syz.4.926'.
[  221.881998][ T9579] bridge_slave_1: left allmulticast mode
[  221.884445][ T9579] bridge_slave_1: left promiscuous mode
[  221.887002][ T9579] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.892079][ T9579] bridge_slave_0: left allmulticast mode
[  221.894950][ T9579] bridge_slave_0: left promiscuous mode
[  221.897899][ T9579] bridge0: port 1(bridge_slave_0) entered disabled state
[  222.053430][ T9581] netlink: 4 bytes leftover after parsing attributes in process `syz.4.926'.
[  222.071195][ T9549] team0: Port device team_slave_1 added
[  222.076587][   T12] tipc: Left network mode
[  222.177506][ T9549] batman_adv: batadv0: Adding interface: batadv_slave_0
[  222.179681][ T9549] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.187745][ T9549] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  222.191903][ T9549] batman_adv: batadv0: Adding interface: batadv_slave_1
[  222.194303][ T9549] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.202585][ T9549] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  222.348708][ T9549] hsr_slave_0: entered promiscuous mode
[  222.351690][ T9549] hsr_slave_1: entered promiscuous mode
[  222.357297][ T9549] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  222.360454][ T9549] Cannot create hsr debugfs directory
[  222.407182][ T5955] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  222.411146][ T5955] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  222.414701][ T5955] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  222.414771][   T12] hsr_slave_0: left promiscuous mode
[  222.417883][ T5955] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  222.421124][   T12] hsr_slave_1: left promiscuous mode
[  222.421655][ T5955] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  222.423409][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  222.427869][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  222.431079][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  222.433431][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  222.511162][   T12] veth1_macvtap: left promiscuous mode
[  222.517275][   T12] veth0_macvtap: left promiscuous mode
[  222.522130][   T12] veth1_vlan: left promiscuous mode
[  222.524101][   T12] veth0_vlan: left promiscuous mode
[  222.669749][ T9597] netlink: 8 bytes leftover after parsing attributes in process `syz.4.928'.
[  222.835165][ T5950] Bluetooth: hci3: command tx timeout
[  223.141956][   T12] team0 (unregistering): Port device team_slave_1 removed
[  223.222419][   T12] team0 (unregistering): Port device team_slave_0 removed
[  223.707772][   T34] lo speed is unknown, defaulting to 1000
[  223.710594][   T34] infiniband s: ib_query_port failed (-19)
[  223.720250][ T9599] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  223.915961][ T9612] Cannot find add_set index 3 as target
[  223.940511][ T9591] chnl_net:caif_netlink_parms(): no params data found
[  224.370481][ T9591] bridge0: port 1(bridge_slave_0) entered blocking state
[  224.373006][ T9591] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.376126][ T9591] bridge_slave_0: entered allmulticast mode
[  224.379537][ T9591] bridge_slave_0: entered promiscuous mode
[  224.384099][ T9591] bridge0: port 2(bridge_slave_1) entered blocking state
[  224.387344][ T9591] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.390032][ T9591] bridge_slave_1: entered allmulticast mode
[  224.392871][ T9591] bridge_slave_1: entered promiscuous mode
[  224.429830][ T9591] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  224.434305][ T9591] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  224.434524][ T5950] Bluetooth: hci2: command tx timeout
[  224.479193][ T9591] team0: Port device team_slave_0 added
[  224.482833][ T9591] team0: Port device team_slave_1 added
[  224.535508][ T9591] batman_adv: batadv0: Adding interface: batadv_slave_0
[  224.537891][ T9591] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  224.547062][ T9591] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  224.551279][ T9591] batman_adv: batadv0: Adding interface: batadv_slave_1
[  224.553463][ T9591] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  224.561582][ T9591] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  224.614499][ T9591] hsr_slave_0: entered promiscuous mode
[  224.616946][ T9591] hsr_slave_1: entered promiscuous mode
[  224.619163][ T9549] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  224.623244][ T9549] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  224.639603][ T9549] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  224.648497][ T9549] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  224.672154][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.764620][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.841225][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.901563][ T9591] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.914209][ T5950] Bluetooth: hci3: command tx timeout
[  224.946175][ T9549] 8021q: adding VLAN 0 to HW filter on device bond0
[  224.961034][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.973612][ T9549] 8021q: adding VLAN 0 to HW filter on device team0
[  224.979804][ T1239] bridge0: port 1(bridge_slave_0) entered blocking state
[  224.982121][ T1239] bridge0: port 1(bridge_slave_0) entered forwarding state
[  224.983556][ T5955] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  224.991550][ T5955] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  224.994688][ T1136] bridge0: port 2(bridge_slave_1) entered blocking state
[  224.995094][ T5955] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  224.997087][ T1136] bridge0: port 2(bridge_slave_1) entered forwarding state
[  225.000251][ T5955] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  225.010730][ T5955] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  225.098189][ T9591] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.108064][ T9636] netlink: 8 bytes leftover after parsing attributes in process `syz.5.935'.
[  225.150532][ T9549] 8021q: adding VLAN 0 to HW filter on device batadv0
[  225.169295][ T9629] chnl_net:caif_netlink_parms(): no params data found
[  225.309354][ T9549] veth0_vlan: entered promiscuous mode
[  225.316703][ T9591] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.325640][ T9629] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.328780][ T9629] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.331736][ T9629] bridge_slave_0: entered allmulticast mode
[  225.334460][ T9629] bridge_slave_0: entered promiscuous mode
[  225.338899][ T9629] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.341160][ T9629] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.343429][ T9629] bridge_slave_1: entered allmulticast mode
[  225.346411][ T9629] bridge_slave_1: entered promiscuous mode
[  225.400509][ T9629] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  225.406434][ T9629] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  225.436038][ T9591] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.457881][ T9549] veth1_vlan: entered promiscuous mode
[  225.465116][ T9629] team0: Port device team_slave_0 added
[  225.473417][ T9629] team0: Port device team_slave_1 added
[  225.508766][ T9629] batman_adv: batadv0: Adding interface: batadv_slave_0
[  225.510947][ T9629] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  225.518863][ T9629] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  225.530695][ T9629] batman_adv: batadv0: Adding interface: batadv_slave_1
[  225.532913][ T9629] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  225.542285][ T9629] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  226.113191][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  226.126575][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  226.131127][   T12] bond0 (unregistering): Released all slaves
[  226.199392][   T12] bond1 (unregistering): Released all slaves
[  226.264852][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  226.267789][   T12] bond_slave_0: left allmulticast mode
[  226.270665][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  226.273692][   T12] bond_slave_1: left allmulticast mode
[  226.276382][   T12] bond0 (unregistering): Released all slaves
[  226.322131][ T9629] hsr_slave_0: entered promiscuous mode
[  226.324443][ T9629] hsr_slave_1: entered promiscuous mode
[  226.326507][ T9629] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  226.328814][ T9629] Cannot create hsr debugfs directory
[  226.496302][ T9549] veth0_macvtap: entered promiscuous mode
[  226.514214][ T5950] Bluetooth: hci2: command tx timeout
[  226.544614][ T9591] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  226.549035][ T9591] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  226.553071][ T9591] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  226.557592][ T9549] veth1_macvtap: entered promiscuous mode
[  226.570031][ T9591] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  226.645344][ T9549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.649222][ T9549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.652320][ T9549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.658955][ T9549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.662091][ T9549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.665497][ T9549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.669543][ T9549] batman_adv: batadv0: Interface activated: batadv_slave_0
[  226.677746][ T9549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.681308][ T9549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.684478][ T9549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.687789][ T9549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.690814][ T9549] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.694741][ T9549] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.698592][ T9549] batman_adv: batadv0: Interface activated: batadv_slave_1
[  226.712886][ T9549] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  226.716527][ T9549] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  226.719276][ T9549] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  226.721989][ T9549] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  226.826233][   T12] hsr_slave_0: left promiscuous mode
[  226.836251][   T12] hsr_slave_1: left promiscuous mode
[  226.851805][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  226.854441][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  226.857213][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  226.859521][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  226.863851][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  226.867219][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  226.870270][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  226.873023][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  226.904940][   T12] veth1_macvtap: left promiscuous mode
[  226.906792][   T12] veth0_macvtap: left promiscuous mode
[  226.908576][   T12] veth1_vlan: left promiscuous mode
[  226.910293][   T12] veth0_vlan: left promiscuous mode
[  226.913146][   T12] veth1_macvtap: left promiscuous mode
[  226.915002][   T12] veth0_macvtap: left promiscuous mode
[  226.915931][ T9652] Cannot find add_set index 3 as target
[  226.917800][   T12] veth1_vlan: left promiscuous mode
[  226.994090][ T5950] Bluetooth: hci3: command tx timeout
[  227.074073][ T5950] Bluetooth: hci1: command tx timeout
[  227.821622][   T12] team0 (unregistering): Port device team_slave_1 removed
[  227.887237][   T12] team0 (unregistering): Port device team_slave_0 removed
[  228.002919][ T9657] netlink: 'syz.5.938': attribute type 4 has an invalid length.
[  228.063630][ T9658] netlink: 'syz.5.938': attribute type 4 has an invalid length.
[  228.604063][ T5950] Bluetooth: hci2: command tx timeout
[  229.074087][ T5950] Bluetooth: hci3: command tx timeout
[  229.164048][ T5950] Bluetooth: hci1: command tx timeout
[  229.532555][   T12] lo (unregistering): left allmulticast mode
[  229.542392][ T9591] 8021q: adding VLAN 0 to HW filter on device bond0
[  229.587373][   T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  229.589720][   T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  229.599276][ T9591] 8021q: adding VLAN 0 to HW filter on device team0
[  229.609646][   T63] bridge0: port 1(bridge_slave_0) entered blocking state
[  229.611980][   T63] bridge0: port 1(bridge_slave_0) entered forwarding state
[  229.619270][ T1239] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  229.622172][ T1239] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  229.627946][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  229.630167][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  229.700198][ T9663] Cannot find add_set index 3 as target
[  229.913191][ T9629] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  229.924442][ T9629] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  229.938452][ T9629] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  229.950358][ T9591] 8021q: adding VLAN 0 to HW filter on device batadv0
[  229.955255][ T9629] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  230.111668][ T9629] 8021q: adding VLAN 0 to HW filter on device bond0
[  230.132201][ T9591] veth0_vlan: entered promiscuous mode
[  230.147580][ T9629] 8021q: adding VLAN 0 to HW filter on device team0
[  230.169885][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  230.172741][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  230.187553][ T1239] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.190067][ T1239] bridge0: port 2(bridge_slave_1) entered forwarding state
[  230.222495][ T9591] veth1_vlan: entered promiscuous mode
[  230.261630][ T9629] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  230.328859][ T9591] veth0_macvtap: entered promiscuous mode
[  230.336284][ T9591] veth1_macvtap: entered promiscuous mode
[  230.349949][ T9591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  230.353845][ T9591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.358885][ T9591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  230.362662][ T9591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.370926][ T9591] batman_adv: batadv0: Interface activated: batadv_slave_0
[  230.380597][ T9591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  230.385394][ T9591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.388881][ T9591] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  230.392662][ T9591] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.398467][ T9591] batman_adv: batadv0: Interface activated: batadv_slave_1
[  230.412440][ T9591] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  230.419251][ T9591] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  230.422740][ T9591] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  230.426773][ T9591] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  230.527096][ T1142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.532577][ T1142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.574751][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.577597][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.656217][ T5955] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  230.660639][ T5955] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  230.667804][ T5955] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  230.671300][ T5955] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  230.676874][ T5955] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  230.711253][ T9629] 8021q: adding VLAN 0 to HW filter on device batadv0
[  230.804989][    C3] ==================================================================
[  230.807834][    C3] BUG: KASAN: global-out-of-bounds in __find_rr_leaf+0xbdf/0xe00
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  230.810452][    C3] Read of size 4 at addr ffffffff9af80bf0 by task kworker/3:0/34
[  230.815272][    C3] 
[  230.816315][    C3] CPU: 3 UID: 0 PID: 34 Comm: kworker/3:0 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  230.816340][    C3] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  230.816352][    C3] Workqueue: mld mld_ifc_work
[  230.816380][    C3] Call Trace:
[  230.816387][    C3]  <IRQ>
[  230.816395][    C3]  dump_stack_lvl+0x116/0x1f0
[  230.816420][    C3]  print_report+0xc3/0x670
[  230.816440][    C3]  ? __virt_addr_valid+0x5e/0x590
[  230.816462][    C3]  ? __phys_addr+0xc6/0x150
[  230.816483][    C3]  ? __find_rr_leaf+0xbdf/0xe00
[  230.816502][    C3]  kasan_report+0xe0/0x110
[  230.816522][    C3]  ? __find_rr_leaf+0xbdf/0xe00
[  230.816543][    C3]  __find_rr_leaf+0xbdf/0xe00
[  230.816565][    C3]  ? __pfx___find_rr_leaf+0x10/0x10
[  230.816586][    C3]  ? fib6_node_lookup+0x12d/0x190
[  230.816604][    C3]  ? __pfx_fib6_node_lookup+0x10/0x10
[  230.816620][    C3]  ? br_nf_post_routing+0x8e7/0x1190
[  230.816636][    C3]  ? nf_hook_slow+0xbb/0x200
[  230.816652][    C3]  ? nf_hook+0x45e/0x780
[  230.816675][    C3]  ? nf_hook+0x45e/0x780
[  230.816697][    C3]  ? __br_forward+0x1be/0x5b0
[  230.816720][    C3]  ? br_flood+0x39c/0x650
[  230.816743][    C3]  ? br_handle_frame_finish+0xe60/0x1c20
[  230.816762][    C3]  fib6_table_lookup+0x57c/0xa30
[  230.816787][    C3]  ? __pfx_fib6_table_lookup+0x10/0x10
[  230.816813][    C3]  ip6_pol_route+0x1cc/0x1230
[  230.816835][    C3]  ? __pfx_ip6_pol_route+0x10/0x10
[  230.816857][    C3]  ? __pfx_br_dev_queue_push_xmit+0x10/0x10
[  230.816883][    C3]  ? __skb_ext_del+0xf3/0x340
[  230.816909][    C3]  ? __pfx_ip6_pol_route_input+0x10/0x10
[  230.816931][    C3]  fib6_rule_lookup+0x536/0x720
[  230.816952][    C3]  ? __pfx_fib6_rule_lookup+0x10/0x10
[  230.816972][    C3]  ? __pfx_br_nf_dev_queue_xmit+0x10/0x10
[  230.816991][    C3]  ? br_nf_post_routing+0x59b/0x1190
[  230.817009][    C3]  ? find_held_lock+0x2b/0x80
[  230.817027][    C3]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  230.817051][    C3]  ip6_route_input+0x662/0xc00
[  230.817075][    C3]  ? __pfx_ip6_route_input+0x10/0x10
[  230.817124][    C3]  ? __pfx_nf_hook+0x10/0x10
[  230.817148][    C3]  ? ret_from_fork+0x45/0x80
[  230.817174][    C3]  ? ret_from_fork_asm+0x1a/0x30
[  230.817201][    C3]  ? __lock_acquire+0x5ca/0x1ba0
[  230.817225][    C3]  ip6_rcv_finish_core.constprop.0+0x1a0/0x5d0
[  230.817250][    C3]  ip6_rcv_finish+0x130/0x5b0
[  230.817272][    C3]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  230.817304][    C3]  ? __pfx_ip_sabotage_in+0x10/0x10
[  230.817320][    C3]  ip_sabotage_in+0x21b/0x290
[  230.817337][    C3]  nf_hook_slow+0xbb/0x200
[  230.817354][    C3]  nf_hook.constprop.0+0x422/0x750
[  230.817376][    C3]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  230.817399][    C3]  ? __pfx_nf_hook.constprop.0+0x10/0x10
[  230.817420][    C3]  ? ip6_rcv_core+0xbd4/0x1c30
[  230.817442][    C3]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  230.817465][    C3]  ? ip6_rcv_core+0xc70/0x1c30
[  230.817535][    C3]  ? __pfx_ipv6_rcv+0x10/0x10
[  230.817556][    C3]  ipv6_rcv+0xa4/0x680
[  230.817577][    C3]  ? __pfx_ipv6_rcv+0x10/0x10
[  230.817598][    C3]  __netif_receive_skb_one_core+0x12d/0x1e0
[  230.817616][    C3]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  230.817633][    C3]  ? lock_acquire+0x179/0x350
[  230.817657][    C3]  __netif_receive_skb+0x1d/0x160
[  230.817673][    C3]  netif_receive_skb+0x137/0x7b0
[  230.817689][    C3]  ? __pfx_netif_receive_skb+0x10/0x10
[  230.817709][    C3]  ? br_netif_receive_skb+0xff/0x200
[  230.817726][    C3]  br_pass_frame_up+0x346/0x490
[  230.817744][    C3]  br_handle_frame_finish+0xebb/0x1c20
[  230.817761][    C3]  ? __napi_poll.constprop.0+0xb7/0x550
[  230.817778][    C3]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  230.817794][    C3]  ? __local_bh_enable_ip+0x100/0x120
[  230.817813][    C3]  ? __dev_queue_xmit+0x8a3/0x43e0
[  230.817835][    C3]  ? ip6_finish_output2+0xe98/0x2020
[  230.817852][    C3]  ? ip6_fragment+0x1c50/0x27f0
[  230.817870][    C3]  ? ip6_output+0x1f9/0x540
[  230.817889][    C3]  ? mld_ifc_work+0x740/0xca0
[  230.817913][    C3]  ? process_one_work+0x9cc/0x1b70
[  230.817938][    C3]  ? worker_thread+0x6c8/0xf10
[  230.817961][    C3]  ? ret_from_fork+0x45/0x80
[  230.817985][    C3]  ? ret_from_fork_asm+0x1a/0x30
[  230.818013][    C3]  ? nf_hook_slow+0x132/0x200
[  230.818030][    C3]  br_nf_hook_thresh+0x301/0x410
[  230.818048][    C3]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  230.818066][    C3]  ? __pfx_br_nf_hook_thresh+0x10/0x10
[  230.818086][    C3]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  230.818104][    C3]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  230.818126][    C3]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  230.818149][    C3]  br_nf_pre_routing_finish_ipv6+0x76a/0xfb0
[  230.818168][    C3]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  230.818187][    C3]  br_nf_pre_routing_ipv6+0x3cd/0x8c0
[  230.818206][    C3]  ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10
[  230.818224][    C3]  ? lock_acquire+0x179/0x350
[  230.818245][    C3]  ? __pfx_br_nf_pre_routing_finish_ipv6+0x10/0x10
[  230.818264][    C3]  ? net_generic+0xea/0x2a0
[  230.818288][    C3]  br_nf_pre_routing+0x860/0x15b0
[  230.818308][    C3]  br_handle_frame+0xad5/0x14a0
[  230.818340][    C3]  ? __pfx_br_handle_frame+0x10/0x10
[  230.818358][    C3]  ? lock_acquire+0x179/0x350
[  230.818380][    C3]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  230.818400][    C3]  ? __pfx_br_handle_frame+0x10/0x10
[  230.818417][    C3]  __netif_receive_skb_core.constprop.0+0xa23/0x4a00
[  230.818436][    C3]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  230.818456][    C3]  ? is_bpf_text_address+0x94/0x1a0
[  230.818477][    C3]  ? kernel_text_address+0x8d/0x100
[  230.818502][    C3]  ? __kernel_text_address+0xd/0x40
[  230.818527][    C3]  ? unwind_get_return_address+0x59/0xa0
[  230.818547][    C3]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[  230.818578][    C3]  ? stack_trace_save+0x8e/0xc0
[  230.818595][    C3]  ? __pfx_stack_trace_save+0x10/0x10
[  230.818612][    C3]  ? stack_depot_save_flags+0x28/0xa50
[  230.818638][    C3]  ? __lock_acquire+0x5ca/0x1ba0
[  230.818665][    C3]  ? process_backlog+0x3f0/0x15e0
[  230.818680][    C3]  __netif_receive_skb_one_core+0xb0/0x1e0
[  230.818697][    C3]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  230.818715][    C3]  ? lock_acquire+0x179/0x350
[  230.818739][    C3]  ? process_backlog+0x3f0/0x15e0
[  230.818754][    C3]  __netif_receive_skb+0x1d/0x160
[  230.818771][    C3]  process_backlog+0x442/0x15e0
[  230.818791][    C3]  __napi_poll.constprop.0+0xb7/0x550
[  230.818810][    C3]  net_rx_action+0xa97/0x1010
[  230.818831][    C3]  ? __pfx_net_rx_action+0x10/0x10
[  230.818850][    C3]  ? kvm_sched_clock_read+0x11/0x20
[  230.818871][    C3]  ? sched_clock+0x38/0x60
[  230.818894][    C3]  ? sched_clock_cpu+0x6c/0x530
[  230.818913][    C3]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  230.818939][    C3]  ? mark_held_locks+0x49/0x80
[  230.818961][    C3]  handle_softirqs+0x216/0x8e0
[  230.818982][    C3]  ? __pfx_handle_softirqs+0x10/0x10
[  230.819002][    C3]  ? __dev_queue_xmit+0x896/0x43e0
[  230.819028][    C3]  do_softirq+0xb2/0xf0
[  230.819046][    C3]  </IRQ>
[  230.819052][    C3]  <TASK>
[  230.819058][    C3]  __local_bh_enable_ip+0x100/0x120
[  230.819077][    C3]  ? __dev_queue_xmit+0x896/0x43e0
[  230.819102][    C3]  __dev_queue_xmit+0x8ab/0x43e0
[  230.819132][    C3]  ? ip6mr_fib_lookup+0x136/0x1a0
[  230.819153][    C3]  ? __pfx___dev_queue_xmit+0x10/0x10
[  230.819177][    C3]  ? register_lock_class+0x41/0x4c0
[  230.819195][    C3]  ? __lock_acquire+0x5ca/0x1ba0
[  230.819217][    C3]  ? __lock_acquire+0xaa4/0x1ba0
[  230.819245][    C3]  ? find_held_lock+0x2b/0x80
[  230.819264][    C3]  ip6_finish_output2+0xe98/0x2020
[  230.819296][    C3]  ip6_finish_output+0x3f9/0x1360
[  230.819318][    C3]  ip6_output+0x1f9/0x540
[  230.819340][    C3]  mld_sendpack+0x9e9/0x1220
[  230.819364][    C3]  ? __pfx_mld_sendpack+0x10/0x10
[  230.819393][    C3]  mld_ifc_work+0x740/0xca0
[  230.819419][    C3]  process_one_work+0x9cc/0x1b70
[  230.819447][    C3]  ? __pfx_mld_ifc_work+0x10/0x10
[  230.819471][    C3]  ? __pfx_process_one_work+0x10/0x10
[  230.819496][    C3]  ? assign_work+0x1a0/0x250
[  230.819519][    C3]  worker_thread+0x6c8/0xf10
[  230.819547][    C3]  ? __pfx_worker_thread+0x10/0x10
[  230.819571][    C3]  kthread+0x3c2/0x780
[  230.819594][    C3]  ? __pfx_kthread+0x10/0x10
[  230.819616][    C3]  ? __pfx_kthread+0x10/0x10
[  230.819638][    C3]  ? __pfx_kthread+0x10/0x10
[  230.819659][    C3]  ? __pfx_kthread+0x10/0x10
[  230.819681][    C3]  ? rcu_is_watching+0x12/0xc0
[  230.819698][    C3]  ? __pfx_kthread+0x10/0x10
[  230.819719][    C3]  ret_from_fork+0x45/0x80
[  230.819744][    C3]  ? __pfx_kthread+0x10/0x10
[  230.819766][    C3]  ret_from_fork_asm+0x1a/0x30
[  230.819795][    C3]  </TASK>
[  230.819801][    C3] 
[  230.820389][    C2] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000018: 0000 [#1] SMP KASAN NOPTI
[  230.824477][    C3] The buggy address belongs to the variable:
[  230.827993][    C2] KASAN: null-ptr-deref in range [0x00000000000000c0-0x00000000000000c7]
[  230.829943][    C3]  __key.0+0x10/0x40
[  230.831173][    C2] CPU: 2 UID: 0 PID: 13 Comm: kworker/u32:1 Not tainted 6.15.0-rc5-syzkaller-00136-g9c69f8884904 #0 PREEMPT(full) 
[  230.832377][    C3] 
[  230.834017][    C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  230.834027][    C2] Workqueue: ipv6_addrconf addrconf_dad_work
[  230.835812][    C3] The buggy address belongs to the physical page:
[  230.837331][    C2] 
[  230.837337][    C2] RIP: 0010:find_match+0x136/0x15d0
[  230.839205][    C3] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1af80
[  230.840655][    C2] Code: 48 c1 ea 03 80 3c 02 00 0f 85 ac 11 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b 7d 00 49 8d bf c0 00 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 93 11 00 00 4d 8b bf c0 00 00 00 e8 d4 14 50 01
[  230.842491][    C3] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  230.843955][    C2] RSP: 0018:ffffc900005383c0 EFLAGS: 00010206
[  230.845905][    C3] raw: 00fff00000002000 ffffea00006be008 ffffea00006be008 0000000000000000
[  230.847835][    C2] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 0000000000000000
[  230.849961][    C3] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  230.851583][    C2] RDX: 0000000000000018 RSI: 0000000000000008 RDI: 00000000000000c0
[  230.851592][    C2] RBP: ffffc900005384c8 R08: 0000000000000001 R09: 0000000000000000
[  230.853716][    C3] page dumped because: kasan: bad access detected
[  230.855077][    C2] R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff9af80c2f
[  230.855086][    C2] R13: ffffffff9af80c18 R14: 1ffff920000a7087 R15: 0000000000000000
[  230.856799][    C3] page_owner info is not present (never set?)
[  230.858076][    C2] FS:  0000000000000000(0000) GS:ffff8880979ec000(0000) knlGS:0000000000000000
[  230.860015][    C3] 
[  230.860021][    C3] Memory state around the buggy address:
[  230.861503][    C2] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  230.863939][    C3]  ffffffff9af80a80: f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9 00 f9 f9 f9
[  230.865587][    C2] CR2: 00000000f7f56e40 CR3: 000000004c9ee000 CR4: 0000000000352ef0
[  230.867919][    C3]  ffffffff9af80b00: f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9 00 f9 f9 f9
[  230.869419][    C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  230.871515][    C3] >ffffffff9af80b80: f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9 00 00 f9 f9
[  230.873354][    C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  230.873364][    C2] Call Trace:
[  230.875298][    C3]                                                              ^
[  230.877155][    C2]  <IRQ>
[  230.877164][    C2]  ? tcp_v4_rcv+0xf5c/0x4640
[  230.879157][    C3]  ffffffff9af80c00: f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9 00 00 00 00
[  230.880759][    C2]  ? __pfx_find_match+0x10/0x10
[  230.883089][    C3]  ffffffff9af80c80: 00 00 00 00 00 00 00 00 00 00 00 f9 f9 f9 f9 f9
[  230.884689][    C2]  __find_rr_leaf+0x140/0xe00
[  230.886669][    C3] ==================================================================
[  230.889005][    C2]  ? __pfx___find_rr_leaf+0x10/0x10
[  230.891058][    C3] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  231.222423][    C3] Kernel Offset: disabled
[  231.223836][    C3] Rebooting in 86400 seconds..

VM DIAGNOSIS:
19:35:39  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000001 RCX=0000000079837022 RDX=0000000000000000
RSI=ffffffff8dbb62d4 RDI=ffffffff8bf46ce0 RBP=ffffc9000346ee88 RSP=ffffc9000346edc0
R8 =5cac86f79569ca22 R9 =0000000000000000 R10=0000000000000002 R11=0000000000000000
R12=ffffffff81a67c80 R13=ffffc9000346ee40 R14=0000000000000000 R15=ffff8880229f8000
RIP=ffffffff8b693660 RFL=00000296 [--S-AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977ec000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7314f7b CR3=000000006169c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000ff00 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000848f2d RBX=0000000000000001 RCX=ffffffff8b6943e9 RDX=0000000000000000
RSI=ffffffff8dbdb861 RDI=ffffffff8bf46ce0 RBP=ffffed1003ad9488 RSP=ffffc9000046fdf8
R8 =0000000000000001 R9 =ffffed10056665bd R10=ffff88802b332deb R11=0000000000000000
R12=0000000000000001 R13=ffff88801d6ca440 R14=ffffffff90850f10 R15=0000000000000000
RIP=ffffffff8b692c7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880978ec000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f72e6744 CR3=000000006169c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d092bd9ca643fa33 6edff1ce7e2de9c8
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 eb9dd36073aa0431 00f54974cdc3fd59
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1cd2a2a5f6bae3f2 f2f1f086ad2b064e
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f9b174875bb4a887 8f0edd30591d05c4
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000004c80
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 dec67630dfbc412a 0000008c0000008c
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000e117999a 6e975906e251f512
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000008c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000008c 0104aa990000008c
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0923219ec7f9e7c2 4dfe2da5f4dbcbb0
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a21e7c9574e0934b 7758a52ede6eb2c4
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=ffffea00014c70c0 RBX=ffffea0001638a48 RCX=ffffffff82051a4d RDX=ffff888023d68000
RSI=ffffffff8205337b RDI=0000000000000000 RBP=0000000000000867 RSP=ffffc9000358f828
R8 =0000000000000006 R9 =0000000000013a73 R10=00000000000531c3 R11=0000000000000000
R12=0000000000000001 R13=ffff88804b806420 R14=dffffc0000000000 R15=000000000000017c
RIP=ffffffff820533a1 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979ec000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f56e40 CR3=000000004ae17000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f73f2ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000006f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854c1db5 RDI=ffffffff9addfbc0 RBP=ffffffff9addfb80 RSP=ffffc900005e7460
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=20666f2064616552
R12=0000000000000000 R13=000000000000006f R14=ffffffff9addfb80 R15=ffffffff854c1d50
RIP=ffffffff854c1ddf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097aec000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f93b5404a10 CR3=000000006d00d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 637062696c2f3436 62696c2f7273752f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000570 0000000000060a90
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffff000000000000 ffffffffffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001da0 0000000000033260
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000