last executing test programs:

8.071087942s ago: executing program 3 (id=3208):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$SEG6(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$SEG6_CMD_GET_TUNSRC(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x14, r1, 0x1}, 0x14}}, 0x4000000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="1400000024000900000000000000000009"], 0x14}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=ANY=[@ANYBLOB="380000001000090c00"/20, @ANYRES32=0x0, @ANYBLOB="0000000200000000180012800e000100776972656775617264"], 0x38}}, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)}], 0x1}, 0x0)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_PRI(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x68, r6, 0x1, 0x0, 0x0, {{}, {0x0, 0x410c}, {0x4c, 0x14, {0xfffffff0, @link='broadcast-link\x00'}}}}, 0x68}}, 0x0)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r0, 0x0, 0x24014010)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r8 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r9=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000200)={0x0, 0x2, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="480000001c00110c0000001400000f0007000000", @ANYRES32=r9, @ANYBLOB="800202000a000200577f0000aabb000020000e80050001008f000000050001000100000004000200050001"], 0x48}}, 0x0)
r10 = openat$cdrom(0xffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$CDROMREADAUDIO(r10, 0x530e, &(0x7f0000000380)={@msf={0x0, 0x0, 0x2}, 0x1, 0x42, &(0x7f0000000400)=""/66})
sendto$inet6(r7, 0x0, 0x0, 0x20010004, 0x0, 0x0)
connect$inet6(r7, &(0x7f0000000080)={0xa, 0xffff, 0xfffffffd, @ipv4={'\x00', '\xff\xff', @broadcast}, 0xfffffffc}, 0x1c)
r11 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_mr_cache\x00')
read(r11, &(0x7f00000000c0)=""/181, 0xb5)
r12 = syz_usb_connect(0x2, 0x3f, &(0x7f0000001b80)=ANY=[@ANYRESDEC=r9, @ANYBLOB="612f5554c7e7ce3cbad8af52d6de3cb35f28d97ee04f2d39dfa04cf06e61f9b1982f97657bb058997d5128d41a8e98e75eb20a464b062a3af8d7d980499d6779fc104d1f8d173ae8d9ea92199eefb6246755b0e51d0522e829ea302b964b5a3d56cd9ab10c31c826467d936e6275be40515858bf46d7f4f05edfc2c4b6450e00044d4fef2d3bb3f713f704a64dc57e09e9081a2d6ae05e65e3ef308370765452bacbbf2074e246f140bf9f2c1252838385b67d645f406d95539404d2fe640a2a9542755e74331b501ce52243ffce94e1c2999a845e44f4da674ef36f79dbe5dbc0001426de60cdf537743edf0151aaf79c31425a3f5ea38d305cbfa95cda7e0b1cc7af9b65c005093bc4ee53e69f86e343b6f90065be258894fcc72d816e1fead9ff3a3e272c00473c016b9f81a9ee12829fa77c768ef492bccbc5d94029c1c94394a680df085b305ff1ab6c8c9014acee27cbbb72f8e5ae51af7615c7b58f762d58e061bc3c13e3b4720b74cd7f89c25dab91383935b696e30c5b0d55ac4d2c84cb3f7a7157a00a36ae57ca208bcd8d29445abe6d7dd4dc1eac4a23edaed472b9f378766f2d9982e2c3a6362b5c9f64cf108125cc2cd535ca58cd6031a4f5cbd571b63b89c5408a4039e6852e9a0c0fc84ea1e5a5087562faaca50f110e1d008c9b45d1b7624939e798fa6384291f7ef2393bc9df60933418a4c101a17be41f3e88a46897bb090cd31672145fe938db99d46ecf6191df32aaa4cdd0f85895286c8583c7ec25c1b22a46d6d8cd205dad74ecbe7a85ff7260f8c96200fa9f262e66997fe3b5a4478247ecdf2187b50e73e99a48be4e6145206e414ae1c5a07575db437b92a341349f8700024cf30368ee9f07d7c1b1e976f384016279d6c73021f1f5100de892cf34e80be1759bee94abdf8f128a809c9198e20f2ea0688705ca9e7764e7d5a765adc6b1c6e912a4d33bc869d9957b9115c36c13ee3c818599f6316ac18d5794531cb35dc72fd5f0e447232e31fc137db69f6902fd9dcb7f28115d183ecf215900885afe52f2d490170709a6c9b0b2151cc982120c62ef15c72d28181c6bd9d87cd949b259b0ab2651d4f4b7d0d35324fe6ad5bbed04a904505ca0d8e970786a13cd1e0f32e2037ce1fc18cce7cd9f8c3957c2060ae10ce10029001db550b4b2fb1dae89139ddb52f4aad536a86351a497c360a9f3bf41593278de06963cfc06c02b3b9935ad7f536a80e45c9431804b83b82cd544e151c8c9c99c4e2d83bb12ed42edd946ffedb130b2f4efa0e422c4d9b2c19971869bdd258b00ade5229e5cb7d840850ff193dbccf08a8e7cbb317c33f3f16932d7e0bb55b65d3dc68d9ea21a0194a9cb95d28f74ca357887bcbb0a48f6a1c3a2fbc30e2b36290e6a1cdc231d691362a8a353b388ec4dc0cd1d28980c5255b7d6ab4cf5351f34a52240a1a803d0fb811c38dd4b98aaf0ce4e47c7793c4beacbd826dc815c1b2dc118027849efd4dc8bf776c9e98f9095875d180a8579dc1cc0f4d8eb78dfdba9bddcf9dbbd8dc6f307d8c243551ae8c2fb803979d331ee57e953f3fd6f860d4f963749df36c3d54c05118b7a4a65068f511bf62534e25a00a968973e5f861524b22d8d891674ef3eb09d3107137bf40f7327faa319c0622fac54cbfe6012297b56ef9a8349f3404c417c272be25f6c78e0ce6cd7add0a17388445d53d9fc3b32d46f415ba6f20f366dfbd518155bdcb65f8aba910790ba086b6a7c7f4882f8cb97f15e84ec2c39ebb1d08b8e934213410b84060b71cffcf825ed283fe54c6afc7c6035a52d63aac9b99fab53b1a3fcd0fb8e35e474e3cb3ad41798c9f30e04bdde0bd0cd606f6eb6ab592fbb2f9e0f79f4f1eef25d9113020d880bf38088f893932428973396d7f45b8f1531ec003adafcafb089f2c4966cbdb88bd70b834200de665a12f6ad7ba0b19afe194e437ac420698b6ddea098913909ba90cba706de78c1936039020069338c6c141f5c9ee20c7fcc19c26d36f64991a912073c7b11c4c3dbad9e376eec4249301ef30ae75f23ba413f1b0c53e94000be805d5b3d730e1dca7398d80b3aa935c3b1bd5ae197c705f08ddf5f1fe47b4e4d9ee2def82be3e245cc7f4a7e944e6b572daffb76e76c7b13225d9feed35d376b68b31f43c0272d2363c24a0f82071780040cd5d6f9783792b2d9215414fc917f67a868003997882cd7ff757874056aea273ebd447d459bc7db1557103158a71d3de665c71ee311cd1110c6a475abb0dbbf7c6dd6b961b14dc1a486eb8eca06dc0b660c35dffc3c50598cc3bf1889f695d76fb573114f262dd44e41974678d87780766a713cdc23e2d55cb27c2489afd3a41f5b3c8d3c90cc18d9151fc05e0b78e4f3fb055bbe055a89a788613ecf0bd5ff2cf0fe7792fe3dafde8d8e583f36479fa5015a7d976c9a7703f05958fbcb7b08e564ea8f8e0543ff55f2d8b5a340732337d37f93c4548f0601cf9ecf82ac566019d6ed6b52de865e8de2792ae91a6ab83fd976cdd707ff5d159eec2f4f84634ec71f97238f9305d03364bd97c6656a5a004707ab68ba9338a5e958c110d2aa94c2851e5fc4511a3468b97ee3df81e933aa3789dc6ea31fb4084f42c202e435b07ffaa7d2a2e91c3fe00cbfca63d4f0c10be669521997567a244f50a52e76598eae63dd306d3221c53d58fd943021c088e67473521d1ff38e43bdf843a0a794a61e86e3662dcb163f666fb48aac95a3532d17efd0b16428ffafb10a7a50733c64e52dd5010a6f8f4d4d3df51ff65be2e0826ff0dcddec10335c592d40f23e4f96e31fc57ae723da78189c829261b55c46afeb42625022657c02565c0b410f54937fd5b58b12916e517438c6e7612bbe5d9c95e8b22e2d8c2595fbcebc7419395dc327389a8819461a6969882c300e05c0a90593a64059079da83f9f66cd8a1628b4e2dfcfb058487398c4ced3105d718c72bbb10242091e997ee64dcd4e36af992e211ff55782c67d53f622a0fa6d4ce8d0c3bace00c54ddf89ef8ec6e1e4d8fc96e1dfe28aac49309c78634d36adde02f6af9d74b99a09213ab5cc02ff1a49fe462af1b8ede4fb09e554ef50eabde57a0ce5a5c778fbdc26060ae5603b88541fc103d05081fe25cc869a40d5812c7fa3701b0cd23e5bc81b100d567f158c325295f6813f030bc05f75f4a0a61969bec600555ba29dc9f8362a94c00c42355a7ba2ec797ef31d3b3f912116ba17b9f4488f843173916d1a15dad67796f2362aeb4d9b0c7ab16cdd6ab224530ef2bbb9de5f1da4d0072290490bc3c183f8ac16eb25939422ab83585c9080f442a741ad4efc3475a3233f5f4a423694507f66bd8b63602603e1c968ab7bf81136e8b8eeef72a5eef6fc57dfdb1b3f2672255dbb140868e64962059680444687552c4c3ed9439e8c489d1de5ee19f43a731fe042a188150f61c5d3ce72dbb999ab84e84ef335cf06605b0c9803582816f1341f6d6575b4b847b1953abc32c5d448342b4960062a56eae7d7794a1bd6406e4bdabb2d074d4b79045f2005730ea286a0d51518c708489e5ff69a041d6d37404ead10dd4ce4bb896db3085ea6df1f6da2e588879291bd2be31b1deaf09b9b672e531eda7564853ce320ba6852d0f56ef1d517ad5a3e78ea67c19f39c4e065464c42519cfd24988bf3e19aa8e58e55233954f3c6d767f6e54411005bb2ec8c3652fbd42c2482091df57b3ec45a204b1255316deffea64ab485502116b116ab3f770f43724945a36c56802a1e651a9b0e27a369a33ec0e3ad55df4375f3bb226d3da0e6907db3e7c74bd1906db55c3918526be46d4d592886e7e233827c1554c55ee2218aecfa7bc9105e81083d283083b90dfe74c4abc18bb62c0c27e042e50de096300815c37f23761b2addb1dda4c205140e805bbb4011a1a1ead35c42b9c136835a0080590cbe21fd33281dc3f1ab338449d90e698c3f5af6f704498b63e23e2a09e8a38530701d94adf78ff58236c397ab3cca76a94f0afa2327ada3db7d7bf62821152d64877eb00b0852f159c73555ec18c43da69b975893d096b350e6e9028050917cc9a6a3f0474363b0552551f54fa66ca9fa9f102ba62912f52dc6c3c10ed8a222fa58a74109ff75cfba7c4699a08c7d0c07276503971543f8afbdbaabfcc633bfb42654968d91712731c6907dff30d3b4473747b28f1cd115823df91bd38fe9466a5f6fa0d122f422044bc2b5c2fda52b20eeee6e1a9610a50f7ae6bfa37fb80a3317b8036be66b7ece2dabfd7b1f2109fef343575dcb66c7ec0687d8e2805b1454ec958aefde092b49191d431c5e58a870fdf3416b989dd17b395dc8bf060cd33ed573853f570a74e14ec916a353037ac59ebcf74fdbffdc41fc3b23b7b1b0d9182ff0df103befb6ec7add72902c3e8264a5d62bc0e85537ade235e95d4abea45d133d7de11b6227707bca051f6b402d1831d4f70e21b9c836910872afb7f93c9e6890e5425484506d182d8561489d828741a5e993a5fd9a67466f283449720c622a60baf65eecabef9402cbab57781f4beb794f6bb9b623e8b9fb220fd3b2ddd13cb38577e93c1d28d86e670bd23633fbf0af90b78339a0617b5b05280b424997776e188c7fb0acb4361d4f62e23f9bb888f6fb795ea28eeb0cce918ef9d209d149c4d4c513279fe03e716c4630d9849b3ccfc90c6cf35ef1a7fb3ecd0858d472815c744aa9c1cd5535475b3d83b2ce5ff50280ad2099f082c1e4fa1eb917839e3cbae7d501b8a39e461049a4126cf1eabad0dab36c7ea87722fd377210864a4186a20953deab47e2e1677fc36cb44be3b70934822ba6c60aafa5d3edc3f0719e35c581ef9d173cfffa29b3ae7a2da28ca963b30df0f760cee80e55a67675010a06f1b0f2e59756629d9b5b40f98718a7fa83f48a8c123d91d997831b3dd342c5efdbc093cf6a0c4839ae4bc97c7cac7ce2685aae89df6ae3eb997d40adf4308ca231b98f2d52f31ca815fb92a6184970fd7a062ecf785f6a6fe21a1695a1f3c20c1f838cea86d3547c89cec162ad194118fc53f09728aadcd95a45fb2f7743e40adca0ec018ef7a9b35dbe3c723379c260ef770a5a4ed0473bf4ebdaf68ee5e517f86d67189e681e2ebf601a40c31576e19418b23bc9a4aa261ff3c90027c0dd7f44c0b9bc98c8c194661996cab9f64834c80da2f1b027813faa2685d040f220573c498c8ca08714d4c54927f13db6105b2d155cee7a58383a1de0655f5346d27c8973effca6e4daac5b9f82e5f9daa6e031b299481c45399786f9a6ff9de42be577650fedb482b95cdeb7ef5c6bec7399e6e9e24d97a09e50ac5e02c2b81b150dc7abae33da4c821071fbc5dd2f7c71318cc45f8dc8ba3a8cd04a4504b27a74d1b771641b7a67f46d3a8d718fb4edde3b5c8a3d430d6e8d509f99a1743f7f55f59d733d2db450834b41651731637233949b942425a1f07305b985c97fbccbf131797bf6bb070307658b56ce1992466edc1272cc09a68a74edbf4d5aec49945f3bb55a2bdadba9e31b926524a284c3fcad48512dad1a896fbdd33321ef9f2c77a4a912b663be055cc99be8a9379ea0e723d8ea69267d2349f9cfe3033e74dbf3ca4202161592199f4983c2f3d1503d00a2573cdf6ea41d07d7e4cdb0082f3a6149ea85904590ff26a1164a655a4a819b351af991b5b3be325e30cc7ae0ce0a21381bd687f989979bc7045bd8306545c578c0d49ba693a935916517713bdf3a8363e27faaf6e42a57d5e81043cc1c5a75f8", @ANYRESDEC=r4], 0x0)
syz_usb_control_io(r12, 0x0, &(0x7f0000000300)={0x44, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r13 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r13, 0x80015b1b, 0x0)

5.00816356s ago: executing program 3 (id=3225):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd0301000009210000000122010009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x14, 0x0, &(0x7f0000000000)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x813}}, 0x0, 0x0}, 0x0)
ioctl$HIDIOCSREPORT(r1, 0x81044804, &(0x7f0000000400)={0x4, 0x0, 0xfffffffe}) (fail_nth: 1)

4.752477124s ago: executing program 1 (id=3226):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(r1, 0x114, 0x7, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYRES64=r1, @ANYRES64=r0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYRES64=r1, @ANYRES64=r0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r3}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a300000000070000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021340011800a0001"], 0xf4}}, 0x0) (async)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a300000000070000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021340011800a0001"], 0xf4}}, 0x0)

4.581826036s ago: executing program 1 (id=3228):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRESDEC, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f00000003c0)=ANY=[@ANYRES8=<r1=>r0, @ANYRES16=r0], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000500)={&(0x7f0000000200)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYRESHEX=r1], 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x801)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/kexec_crash_size', 0x149a02, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000020000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xc, &(0x7f0000000140)=@assoc_value, &(0x7f0000000500)=0x8)
r4 = socket$inet(0x2, 0x4000000805, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r5 = userfaultfd(0x1)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(0xffffffffffffffff, 0x4080aebf, 0x0)
r7 = io_uring_setup(0x4d63, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
ioctl$UFFDIO_REGISTER(r5, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
getpid()
openat$vimc1(0xffffff9c, 0x0, 0x2, 0x0)
openat$vnet(0xffffff9c, 0x0, 0x2, 0x0)
ioctl$UFFDIO_COPY(r5, 0xc028aa05, &(0x7f0000000080)={&(0x7f0000c15000/0x1000)=nil, &(0x7f0000508000/0x4000)=nil, 0x1000})
sendto$inet(r4, &(0x7f0000000280)='V', 0x1, 0x0, &(0x7f0000000380)={0x2, 0x0, @private=0xa010101}, 0x10)

4.363276228s ago: executing program 1 (id=3229):
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
timer_create(0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$ttys(0xc, 0x2, 0x1)
syz_emit_ethernet(0x2e, &(0x7f00000001c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0008004500002000000000002f9078ac1e0001e00000013f0088be000c9078566944d2d1e75509543afcce10c01c9ea41c26c0a3765780"], 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000001b40)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000580)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000002c0)={'ip_vti0\x00', &(0x7f00000003c0)={'erspan0\x00', <r4=>0x0, 0x80, 0x700, 0x0, 0x3, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x66, 0x0, 0x8, 0x2f, 0x0, @broadcast, @empty}}}})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x1f00, 0x40, '\x00', r4, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = io_uring_setup(0x253d, &(0x7f0000000080))
r6 = openat$sndseq(0xffffff9c, &(0x7f0000001240), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r6, 0xc0a45320, &(0x7f00000001c0)={0x80, 0x0, 'client0\x00', 0x0, "706283c421ca447c", "b437067509007708e18f85bb3d22ac7a6568af9ebb8891fdffa0225452869ac0"})
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r6, 0xc0a45320, &(0x7f00000000c0)={{0x80, 0x24}, 'port1\x00'})
close_range(r5, 0xffffffffffffffff, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r9, 0x4008ae90, &(0x7f0000000500)=ANY=[@ANYBLOB="01000000000000000100000000000000000000000000000000000000ff"])
ioctl$KVM_SET_MSRS(r9, 0x4008ae89, &(0x7f00000001c0)=ANY=[])
preadv2(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x2b)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYRESHEX=r6, @ANYRESDEC=r1], 0x0, 0x27, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)

3.40002733s ago: executing program 1 (id=3235):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
setreuid(0xee01, 0xee01)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000280)=ANY=[@ANYBLOB="01"])
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_CPUID(r4, 0x4008ae8a, &(0x7f0000000500)={0x4, 0x0, [{0xa, 0x0, 0xd, 0x6, 0x8}, {0x80000001, 0xfffffffd, 0x6, 0xffffffff}, {0xd, 0xda, 0x1, 0x8000, 0x6}, {0x7, 0x80000000, 0xb70, 0x9, 0x9}]})
r5 = syz_io_uring_setup(0x129, &(0x7f0000000340)={0x0, 0xa89, 0x1, 0x200, 0x314}, &(0x7f0000000100), &(0x7f0000000280))
r6 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r6, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r6, 0xc01064b5, &(0x7f0000000440)={&(0x7f0000000400)=[0x0, 0x0, 0x0], 0x3})
io_uring_register$IORING_REGISTER_ENABLE_RINGS(r5, 0xc, 0x0, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x103a42, 0x0)
ftruncate(r7, 0x6000000)
pread64(r7, 0x0, 0x0, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_SET_MACPARAMS(r8, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000180)=ANY=[@ANYRES32=r1, @ANYRES16, @ANYBLOB="01000002000000000022230000000a0001007770616e30000000"], 0x20}}, 0x0)
getpeername$netlink(r1, &(0x7f0000000000), &(0x7f0000000040)=0xc)
writev(r0, &(0x7f0000000080)=[{&(0x7f00000000c0)="580000001400192340834b80040d8c560a067fbc45ff620500000000070058000b480400945f640094272dfdffff7f00f0fffeffe809000000ffd9dd000000100001000a0808004149004006040800000000000000000000298c814acba8c5cb51e203eef2acdc5ad04e5413decbbb3ecfdf1e8a49dc39d4fc55a5b1813a5da1b7285f2d961d69f337827d770caf5456f60af0e0a5ba9f1b65d77a97e695bdc6000b1620f130f16cd9c59766f495da2fc06346bd1b79791a3b98079db59b49", 0xbf}], 0x1)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000088}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="080027bd7000fbdbdf255c0000000c009900000001007d00000008006b006801000008006b006801000008006b00b400000008006b007800000008016b00280000"], 0x48}, 0x1, 0x0, 0x0, 0x24000010}, 0x1)
openat$null(0xffffff9c, &(0x7f0000000480), 0x14040, 0x0)
ioctl$FS_IOC_MEASURE_VERITY(r1, 0xc0046686, &(0x7f00000003c0)={0x3, 0x9, "9179ce717cfe2c9c3b"})

3.286648068s ago: executing program 1 (id=3236):
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x169a82, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/fib_triestat\x00')
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r2 = socket(0x1d, 0x2, 0x6)
bind$can_j1939(r2, &(0x7f0000000000)={0x1d, 0x0, 0x3}, 0x18)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r2, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
sendmsg$TIPC_NL_MON_GET(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400d0}, 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffff9}, 0xa)
execve(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x400)
pread64(r0, &(0x7f0000000340)=""/169, 0xa9, 0x7fff)

2.648811985s ago: executing program 1 (id=3239):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000ac0)={0x14, r1, 0xc4fc9e906872378b, 0x0, 0x0, {{0x5}, {@void, @void}}}, 0x14}}, 0x0)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x169802, 0x0)
r3 = dup(r2)
ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000180)={@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, 0x66})
setxattr$incfs_size(0x0, 0x0, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100800001)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = openat$drirender128(0xffffff9c, 0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_TRANSFER(r4, 0xc02064cc, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r7, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r8 = userfaultfd(0x801)
r9 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x7, 0x0, &(0x7f0000001fc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, @void, @value}, 0x90)
setsockopt$sock_attach_bpf(r9, 0x1, 0x32, &(0x7f0000000040)=r10, 0x4)
ioctl$UFFDIO_API(r8, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x30})
ioctl$UFFDIO_REGISTER(r8, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r8, 0xc028aa05, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000330000/0x1000)=nil, 0x400000, 0x3, 0x2})
r11 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r11, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000140)={0x0, 0x11}, &(0x7f0000001400))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

2.546182606s ago: executing program 0 (id=3240):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x1a003})
r1 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(0xffffffffffffffff, 0x0, 0x485, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
ioctl$VIDIOC_EXPBUF(r2, 0xc0405610, &(0x7f0000000240)={0x7, 0x2, 0x4, 0x4000, <r3=>0xffffffffffffffff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)={0x5c, r5, 0x1, 0x0, 0x0, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0x27, 0xa8, @random="5c0b868d6e04047482fb3ac2cf825a5a5e95eedb785311d6614a436cc64dbd576ee500"}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x5c}}, 0x0)
write$binfmt_script(r3, &(0x7f00000003c0)={'#! ', './file0', [{0x20, '$[*'}, {}, {}], 0xa, "e1611f2000cb41c806ceb8c413e10776b5eb35953184cef9ee053f98fe701b82196d7f95cb9146f9eeb653db63b1f3e928"}, 0x42)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002120702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
r6 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCGPTLCK(r6, 0x80045439, &(0x7f0000000200))
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r9, &(0x7f0000000800)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00000002c0)=ANY=[@ANYRES16=r8, @ANYRES32, @ANYRESDEC=r3, @ANYRESHEX, @ANYRES16], 0x40}}, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$key(r9, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0)
r10 = fsopen(&(0x7f0000000280)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r10, 0x1, &(0x7f0000000040)='source', &(0x7f0000002280)='//\xf2b\x06\b\xba\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b//\\\x00\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x97\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8DD\x9bp\x01\xcc:\xa6\xc5n\x9f\xfb\x81 \x10\x0fQ\x90}Zd\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3V\x9c\x8c\xf8\xf7\xe2\xd5\x8bE\xee5\x00\xaa\xd5\xfc\x1b$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\xec\xac\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xec\x9es\xee\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o\x00\x00\x00\x00\x00\x00\x00\x00_\tN\xfd\xa2\xc2SPu\xe7\xc0+SL\xa1', 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c000000030800000000000000000000000000000900010073797a31000000081d00048008000340000000000800054008000000080007"], 0x3c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

2.343776889s ago: executing program 0 (id=3241):
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r0 = getpid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000700000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={r2, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000000), 0x0, 0xfa, 0x2000000, 0x0, 0x0, &(0x7f0000000440), &(0x7f0000000080), 0x4}, 0x4c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r1}, 0x10)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="b7020000ff0d0000bfa30000000000000703000000feffff7a0af0fff8ffff1971a4f0ff00000000b7060000080000006f6400000000000045040400010000001704000001000a00b7040000ff0100006a0a00fe0000000085000000bd000000b70000000000000095000000000000009e17f199a68b06d83298a8cdc21ce784909b849d5550ad857d0454d8877a6db61d69f2ffcaa10350e11cb97c8adf1bc9a0c4eeceb9971e43405d621ffbc9ce000000d8ca56b50d0c010d631f6dde53a9a53608c10556e5734eb84049761451ce540c772e2d9f8004e26f7fcc059c062234d5595f6fbaa187b81d1106000000000fd60000fd9ac3d09e29a9d542ca9d85a5c9c88474895d679838def0a83a733dc6a39b63a5ed69d32394c53361d7e43c5cbd80450f859ce8122a79c3e40000b59b0fc46d6cec3c0802882add4e3179bd4a44f231b6d753a7be428ba953df4aece69311687f4122073a236c3a32efa04137d4524847d2638da3261c8162bb7c7824be6195a66d2e17e122040e1100000000928612a29fc691e4f1f7bd053abb885f39381f1759410b1059f05684261f332d606834669b49ec99320ca7712d7e79bd5bf5ed818ecc7640917f6a559a47db608fcf9f6c131b84e41c354c66838f72b9e12d36e996f316f0812ca83efb30c7f6c6d57c4a64590401eec22523dd712c680013e87f649a1ede7142ca9d5d8a8c9f9b440fe4331ad5532c74d9a31a5d737537f7a2caa30581253d14dd3e92af7dc836686365ae01bdec561c0402b67801267a8df97d2f85426a5963d4fa3e26cc05972c162f223f000000d999e80de00fcbcc02d0aed7bb8f7ba337d59c14f39dcd4aad4139ef6425a9367f1bd1467fc6b95a4df7669839771ce9d5788029901e5a79d8b9990ace8f74087f25ad50c46088000000008000"/686], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x3a, 0x10, &(0x7f0000000340), 0xd58495bc, 0x0, 0xffffffffffffffff, 0xffffffffffffff5b, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x42)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000c80)={r3, 0x2000012, 0x100e, 0x2, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0x7ffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (fail_nth: 9)

2.162882981s ago: executing program 3 (id=3244):
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1e000000070000000000000009000000c8000000", @ANYRES32=0x1, @ANYBLOB="0300"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000003000000000000000000000000000000000000001fc8fcc0a6902f0604d50f481474fae4ef80cd36b0f3ef4ffbc1d2b340d438dbcaaa68c6369b1d2e2ec5aded3735d08b07580817a8b1f2e13616279253c54dc539b2babdc9f306f90180149ac84939b1562eac483c34be5442778da2d9506590b99fb3703e1918de615e75c0a854d6c9ee4b56eb473bdcb49052ed984935d8f7577eccce86cf2f972733efe66d16a38d4fc9af873bc6aecde9099872c90e9521d5602d2abbf2b2ca47c9e5c77957621b4f9bc139668b94e1fb82b2bced816da06cb2556e006172409925aea5f8190b7470d03336c2c3cd52d92edec2ed0df23c292df522e6a7ea2c7497ebdfd56a70d585674cf593ca0605c674bf97d32c5eb7e16e9a6dd138383b99b1e4e448837e613c306ff06d35e8f7ed01f6da571d24940d442bbe5259dd9f631550ad1d21e5ae721d38a020d3b8a2b9a9150bff5e2665543eecbe069b"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x169a82, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/fib_triestat\x00')
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r2 = socket(0x1d, 0x2, 0x6)
bind$can_j1939(r2, &(0x7f0000000000)={0x1d, 0x0, 0x3}, 0x18)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r2, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
sendmsg$TIPC_NL_MON_GET(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400d0}, 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffff9}, 0xa)
execve(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x400)
pread64(r0, &(0x7f0000000340)=""/169, 0xa9, 0x7fff)

2.086258112s ago: executing program 0 (id=3245):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[], 0x1c}}, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r3, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x3, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="180000000000000000000000000000de850000006100000085000000a00000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'veth1_to_bridge\x00', <r5=>0x0})
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_inet6_SIOCSIFADDR(r6, 0x8916, &(0x7f0000000100)={@local, 0x0, r5})
socket$unix(0x1, 0x0, 0x0)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCADDRT(r7, 0x890b, &(0x7f0000000140)={@mcast2, @mcast1, @private2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0022})
ioctl$sock_inet6_SIOCADDRT(r7, 0x890b, &(0x7f0000000240)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @remote, @private0={0xfc, 0x0, '\x00', 0x1}, 0xffffffff, 0x0, 0x2, 0x0, 0x0, 0x4400046, r5})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, 0x0)
r9 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', <r10=>0x0})
r11 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_inet6_SIOCADDRT(r11, 0x890b, &(0x7f0000000540)={@remote, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x0, 0xa, 0x6, r10})
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_inet_SIOCSIFFLAGS(r6, 0x8914, &(0x7f0000000100)={'veth1_to_bridge\x00', 0x8000})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r12=>0xffffffffffffffff})
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
splice(r12, 0x0, r1, 0x0, 0xf3a, 0x0)
vmsplice(r0, &(0x7f00000001c0)=[{&(0x7f0000000640)="ec", 0x1}], 0x100000000000029d, 0xf)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000008, 0x10010, r13, 0xa4197000)

1.636287743s ago: executing program 3 (id=3248):
r0 = mq_open(&(0x7f00000001c0)='eth0\xd2', 0x42, 0x0, 0x0)
r1 = dup2(r0, r0)
mq_notify(r1, &(0x7f0000000040)={0x20000000, 0x2e, 0x1, @thr={0x0, 0x0}})
read$FUSE(r1, 0x0, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'essiv-cbc-aes-sha256-ce\x00'}, 0x58)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000000)='inet_sock_set_state\x00', r3}, 0x10)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
r4 = getpid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="160000bf7693721440fda73529554bf6000000000004000000ff00000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
unshare(0x8000000)
r7 = mq_open(&(0x7f00000000c0)='${$\x00', 0x8c1, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]})
socket$pppoe(0x18, 0x1, 0x0)
close_range(r7, 0xffffffffffffffff, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040), 0x68804)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x58, 0x2, 0x6, 0x5, 0x0, 0x2000000, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x34000}]}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x58}}, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s\x92ync_\x00le\xf4H.\xab%nN\xd4\xa2\x88\x00\xd1l,\x00'}, 0x30)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r8)

1.530625897s ago: executing program 2 (id=3249):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x1a003})
r1 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(0xffffffffffffffff, 0x0, 0x485, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
ioctl$VIDIOC_EXPBUF(r2, 0xc0405610, &(0x7f0000000240)={0x7, 0x2, 0x4, 0x4000, <r3=>0xffffffffffffffff})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)={0x5c, r5, 0x1, 0x0, 0x0, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0x27, 0xa8, @random="5c0b868d6e04047482fb3ac2cf825a5a5e95eedb785311d6614a436cc64dbd576ee500"}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x5c}}, 0x0)
write$binfmt_script(r3, &(0x7f00000003c0)={'#! ', './file0', [{0x20, '$[*'}, {}, {}], 0xa, "e1611f2000cb41c806ceb8c413e10776b5eb35953184cef9ee053f98fe701b82196d7f95cb9146f9eeb653db63b1f3e928"}, 0x42)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002120702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
r6 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCGPTLCK(r6, 0x80045439, &(0x7f0000000200))
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r9, &(0x7f0000000800)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00000002c0)=ANY=[@ANYRES16=r8, @ANYRES32, @ANYRESDEC=r3, @ANYRESHEX, @ANYRES16], 0x40}}, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$key(r9, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0)
r10 = fsopen(&(0x7f0000000280)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r10, 0x1, &(0x7f0000000040)='source', &(0x7f0000002280)='//\xf2b\x06\b\xba\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b//\\\x00\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x97\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8DD\x9bp\x01\xcc:\xa6\xc5n\x9f\xfb\x81 \x10\x0fQ\x90}Zd\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3V\x9c\x8c\xf8\xf7\xe2\xd5\x8bE\xee5\x00\xaa\xd5\xfc\x1b$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\xec\xac\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xec\x9es\xee\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o\x00\x00\x00\x00\x00\x00\x00\x00_\tN\xfd\xa2\xc2SPu\xe7\xc0+SL\xa1', 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c000000030800000000000000000000000000000900010073797a31000000081d00048008000340000000000800054008000000080007"], 0x3c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

1.381866326s ago: executing program 2 (id=3250):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
sendmmsg$inet(r1, &(0x7f0000002e40)=[{{&(0x7f0000000080)={0x2, 0x4e23, @multicast2}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000100)="a6e34e85d90bcefa6fc4e8e4375f661d8464e3706dd02093a52b89058ab7726bbfce03c6e07970adc1473641c9bbbe317b222f32d092b13b9f1fce3160383384bd1a0199de4aca51ffad15d3b4c623ac615aa857a845a534413c2799059b514b04123ab3892440d85ad27fd5bcddb460dc20c86a59678c88e1d6a3de55f6dc8323344700aaa84f069a3ac8714564e6486d3d3c0d767cbdad085bcb6df192a3d3b379f526523da856054ce9d7f8", 0xad}, {&(0x7f00000001c0)="1789ca46fda266870f19c50b5cacd3dde3c67afd0bc864da18a3d3fc0cd3c48df2c42e573f4319225b3c6cb585c375b9763ec5f7fe96fba4821e65c9339af99988b25cc118a0679a335752ff0d5b361677a3549eaf95c9a790d1f7953b0ba95ceb0ca4fcc6148cef6b203a0be9230df871a5b8145c8160cb7b6d304707fc2333968c4e77f04b205890fecd748b63a2940b2f2142b6ca913f2a36", 0x9a}, {&(0x7f00000002c0)="ed606881b57cc82f44eb1621ac394c164d008be8270a6c23cca7a173b7346ca557b00ee13f10ae3275c5039963cec7f5d0ccd79a757eea757670563f6f61b741aa0ef140d36474d8da21f002e904d2b57931717d89eb1ea9ce9b2b3ad14873e6c0425c1785524d2e31129c442f25583343f4539f8c9f0c96bfc0379c73e132e186902ffa2efc9e5365d9e10319f903051e8533c14d2fe5a20c2957a84e6f061dee21806acb15aa214deee5a79a86f1f0dd6f88a0315c5489110274", 0xbb}, {&(0x7f0000000380)="018397be61e68a6612832560", 0xc}], 0x4}}, {{&(0x7f0000000400)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x3d}}, 0x10, &(0x7f0000000580)=[{&(0x7f0000000440)="b75c61bc67d497e93bab12bd16660f92fb52d71f04c07288d8b2b3ef0bed19c2915a3438792df139497b3bdca6475f0888329b074ccf", 0x36}, {&(0x7f0000000480)="fd3e5ada099170ab7c6a85efcc97783c44604dccfdbcbf2418c270dce405f027a223864bcfa59882b30148fac9a84f7d27b110750da1c1ef752fcb0c416c42bea22c209d18bdb899d92593cc26e193634f02dd67626b4d0e370b476e5139dc716f096c6fc304e236e8a3d07367f6f8732248a10e3f523628bd0ab464422ea647a26b731bcc8b3f68eb67f270fe5aa56160ba31b374bc6198c0c1d5f95ff168e8c9a4f43291717f42977886116b7759f6f098118e6bfd69ae5774a127618771dae700798ac857a76052d91009becb9ccd00a6327e", 0xd4}], 0x2, 0xfffffffffffffffe}}, {{&(0x7f00000005c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2a}}, 0x10, &(0x7f0000000840)=[{&(0x7f0000000600)="28404de7465eed271dc870abdccecba0ce1322ccad9ddc9a13318e8613f1cc006a61ecaa7b15157a93b874db2aa8e0f4f99d10dbbafd45c4bb474c59fc2a5cf63c48fbb484194331fc25470c771b0c5e190e67dc460f035cae4fdeb080890a9b86a9b94dcdd664d30699640ebad79305600bf175949ccf10a4be46ed867e006b523773a3d03d8afab202c0", 0x8b}, {&(0x7f00000006c0)="526c6fe47987116ff794e136af4a87c8b6078068936d5c209e41b8995de57c5b1c0473fc8bf503fbe7a221db1dd85b4cac1f99fa66e82357e9a5c236ea1712b1770d18b6273485709ddef03e876fd023ffdad6b4c8049284cb5dc6e5859b5d38a36da9f6584e81ed433e5b1bad80a310d8ede26d1cf72f636d201f9c7d8c902db50b9c2bb5f3d9535f71bedc29573642e04fc62ffa1727492a6ae731761ffa707ab48441a3bc15634bccd6f575dcb0c2911b9f0c5b2641c99040169366501a6fb235a9ef3706a19edbd58b305dc13a685556d954ea0e23a6178b8f49562a80bbdfdf99c50394575e46104f711f54da514fcf", 0xf2}, {&(0x7f00000007c0)="bd72515bf429672e22d18c6f270e75bdbe7276d60dadb34bba07ee41cf9321f4ef94b230e6091002bb8cf40a74aaac89318619d9371bdd2d290b5eef805375daf2586e49f5da2d228b2a94291e8ea367d5ab273a208e6506", 0x58}], 0x3, &(0x7f0000000880)=[@ip_tos_u8={{0xd, 0x0, 0x1, 0x9}}, @ip_retopts={{0x118, 0x0, 0x7, {[@lsrr={0x83, 0x13, 0x82, [@rand_addr=0x64010100, @multicast1, @dev={0xac, 0x14, 0x14, 0x3d}, @empty]}, @noop, @generic={0x83, 0x11, "fe1df1a6df9479c0b786614e89a1e2"}, @cipso={0x86, 0x53, 0xffffffffffffffff, [{0x7, 0x4, "5ed7"}, {0x5, 0x11, "bdb4bb37c7a885df7ef18bbcc04180"}, {0x5, 0x6, "21f936d0"}, {0x7, 0x12, "571152f0a137a2710bbd3602f338b19c"}, {0x7, 0x7, "3a8f060923"}, {0x2, 0x5, "2bbd1d"}, {0x2, 0x6, "866f7fa9"}, {0x7, 0xe, "fcbb46486d599c12bbb81517"}]}, @timestamp_addr={0x44, 0x2c, 0x2c, 0x1, 0x6, [{@local, 0x3ff}, {@loopback, 0x6}, {@private=0xa010100, 0x3ff}, {@multicast2, 0x401}, {@broadcast, 0x3}]}, @timestamp={0x44, 0x18, 0xac, 0x0, 0x5, [0x60eb, 0x3, 0x7, 0xfffffffe, 0x5]}, @cipso={0x86, 0x17, 0x3, [{0x6, 0xc, "af84046e607ccda61355"}, {0x7, 0x5, "2c07aa"}]}, @timestamp={0x44, 0x18, 0x21, 0x0, 0xf, [0xe, 0x4, 0x0, 0x101, 0xffff5c2d]}, @ra={0x94, 0x4, 0x1}, @timestamp_prespec={0x44, 0x1c, 0xaf, 0x3, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0xffffffff}, {@empty, 0x1}, {@loopback, 0x80}]}]}}}, @ip_ttl={{0x10, 0x0, 0x2, 0x51}}], 0x138}}, {{&(0x7f00000009c0)={0x2, 0x4e22, @rand_addr=0x64010100}, 0x10, &(0x7f0000002e00)=[{&(0x7f0000000a00)="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", 0x1000}, {&(0x7f0000001a00)="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", 0x1000}, {&(0x7f0000002a00)="01245148d09a6f09ddd0c90cd843cda941b4aebe252563273c7109217c43df50bfe01f880c3c9578073b50bdc84f35a80dfab3e8dd1f87154cec8a5bad332199d2ff5452b0464d2e6d949c01db4c665791967d248a43d4ea16ab42dd763c03859b6c1438723e92714f441ee01bb3ab3bd33f8a48747b48e23e12f7d815b5c028c10fe652cf5ef9ba36a670500308d5fc5f6fe9159614e5da161f03fab57f4eb2d7c34b07b75059beb40b03139586415c4ed3e6231439b70e359b1aec55f5294c5136d03b761d1d74a8e615fc2dc421b0890d05a5ca93aaf792eebbf24ff6", 0xde}, {&(0x7f0000002b00)="d63f6b3e79e0efa5c8725f1e28b174ef2303905e6578fe62dce83a210794bb466d894b5dea66ec85680d7f05a62c49dddb8dbc522f3e876abb1c30a8c6dfa280013079db96fc3ce196a5765e773a468298684bcfd79a62ad76f82f5c841624701faa6dd1a1757b1f00be3e92", 0x6c}, {&(0x7f0000002b80)="102ba6fa889369a6b860de5faef81b48bad966a1221c7ffd8d32ed69fda3d60285f0da738618600829c34f886c1da2de34041576006468fe610ce5ce49276d85d0d5587acbbe30671dc158a6915c2f41e202fff162cbe93276b30c03c5a993c8244a97c449ac8b6172f3f3dc4748225956d1bd5a81c7a54adcd6c60f9cd01fa5004b3a5a77a010a692f7178dcf5a43d71be16245f109791942158b5d53e87e3d6ddad43cbeef0a58be414d897d40c72dbd", 0xb1}, {&(0x7f0000002c40)="f5bd5b31e82e37371de78771f7fa454f008a288447563d149b233e049d7d56f402147faff346c4e4a8d8fe6017f88fbd56df45744a490de013087e990d1f42fa28e1ae6359bb76b6004fc2ed41055d614649974aed1d66d4beb4cd3ad661747695f79d4677816cb7a37ca15dfd69988bc78643bc6e975369addcf496e2a479e6af1c9067437a8017d7a2c5b0d9e8ecf3968879b5eaeb6792026ac13f84242808c019ed9dfbbac234f2f8b3c1d760268a3436b600deb8918240c92f2f3538820a03dc1ddba591d40e8ff384f599e01a32", 0xd0}, {&(0x7f0000002d40)="e35dd3aedcc45df9e1b5e79d09b9705b474d03481b96a457a34605f7f859d6e48f39451041dda19a5501b8e18c8c17adbe63c154e30fbf9d1601a3962809adcb90cc021a8d2d4633d8a7c736bb6c1effd06b5c526bd8bcd3c712a2222188ac0c129eae3913daefc06b365664ce3637cfea3cbda82c08c57c6dbc10afa05fa1df103f41f698bd940a085aca50ba4bac351cb3fa9c6b7beafdab16631ec6a6d37f080193b1157d821e215f", 0xaa}], 0x7}}], 0x4, 0x2000880c)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000040)={@val, @void, @eth={@broadcast, @dev, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2f, 0x0, @remote, @multicast1}, {0xa000, 0x6558, 0x8}}}}}}, 0x2e)

1.248309322s ago: executing program 0 (id=3251):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000001c0)="d80000001e0081054e81f782060000000000000006007c095dd2466518000e800a00142603600e1208000f0000000406a80016c00800094014000000035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791433a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad909d5e1cace81ed0bffece0b42a9eca02", 0xbd}], 0x1}, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r1, 0xc0cc5605, 0x0)

1.247984795s ago: executing program 2 (id=3252):
socket(0x2, 0x3, 0x9)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_open_dev$vcsa(&(0x7f0000000100), 0xffe, 0x10da00)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x2d)
r3 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@get={0x118, 0x13, 0x4, 0x70bd29, 0x25dfdbfd, {{'hmac(tgr128)\x00'}, '\x00', '\x00', 0x2000}, [{0x8, 0x1, 0x40}, {0x8, 0x1, 0x80}, {0x8, 0x1, 0x100}, {0x8, 0x1, 0x3}, {0x8, 0x1, 0x1}, {0x8, 0x1, 0x10000}, {0x8, 0x1, 0x4}]}, 0x118}, 0x1, 0x0, 0x0, 0x4004010}, 0x0)
sendmsg$nl_crypto(r3, &(0x7f00000001c0)={0x0, 0x48, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}}, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r4)
ioctl$UFFDIO_WRITEPROTECT(r4, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f0000ff4000/0xb000)=nil, 0xb000}, 0x2})
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
ioctl$VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, 0x0)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0x1)

1.200877707s ago: executing program 0 (id=3253):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x20000000002)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000000300)=""/102400, 0x19000)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x81c0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x0, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RELDISP(r1, 0x5605)
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x20, &(0x7f0000001240)=[@in={0x2, 0x4e24, @loopback}, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}]}, &(0x7f0000000180)=0x10)
getsockopt$bt_hci(r2, 0x84, 0x6d, &(0x7f0000000000)=""/4102, &(0x7f0000001040)=0x1006)

1.086362022s ago: executing program 2 (id=3254):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000002240)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000040), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={r1, 0xe0, &(0x7f0000000580)={0x0, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
r3 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000840)={r2}, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r3, 0x2f00020b, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x7515, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

638.523257ms ago: executing program 2 (id=3255):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000040)={0x1b, 0x0, 0x0, 0xfffffffb, 0x0, 0x1, 0xfffffffa, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x10, 0x27, &(0x7f0000000100)=@raw=[@map_fd={0x18, 0x2, 0x1, 0x0, r0}, @alu={0x4, 0x0, 0x9, 0x3, 0x3, 0x6, 0x4}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8000}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @printk={@s, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x845}}, @generic={0x20, 0x1, 0x2, 0xffff, 0x5263}, @alu={0x4, 0x0, 0x1, 0x6, 0x9, 0x8, 0x4}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffc}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @map_idx={0x18, 0xa, 0x5, 0x0, 0x7}], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KVM_CAP_X86_BUS_LOCK_EXIT(r0, 0x4068aea3, &(0x7f0000000240)={0xc1, 0x0, 0x1})

637.838108ms ago: executing program 2 (id=3256):
r0 = getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe55, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c000000020603000000000000000000ffea000005000100070000000900020073797a300000000014000780080012401b0000000800084000000000050005000000001005000400000000000d"], 0x5c}}, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000001500)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="d74d4156a221296a665e18aa4c7a0acfd92aa9fb57dbd7cb2c9a9d1cd00b40d432e82bebeb0c176990de4eceb7f41b16a0543f95240979fdcd68b7db60965ca8232034538be7d93df76fead7bddf574c70e3a9724a6614c371b405d4a8126f90990422f978e5e7eb2eb9448d419377df69a9d9635429f06fabcb6655d5dda77848c25b97f87151d9c21709000257580be9edd4f3041fcf2473042c8f55c0aa71ef035f5b89b0d2e4b322ec9787a321450d1c164e8cfaacca90a9773e6b877e38e4237eb5da067a85c2c25a89aeeea93c278cab807f725d6b2077c101c709797a9fa0a0d082797a", @ANYBLOB="0000000000000000b7080000000000007b8a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xb, 0x2, 0x400, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000008c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000009c0)=ANY=[@ANYBLOB="bc0000000906010400000000000000000200000444000880100007800c0016800800010100010000000000800800084000000000100007800900120073797a3200000000140007800f001a002f6465762f617564696f0000180007800800064000000db30c001b4000000000000000030c00078005000300040000004000078008000840000000400a001100aaaaaaaaaabb00000a001100aaaaaaaaaa3200000c00028008000140e0000002050003000000000006001d400000000038ea1de2afce873254e740262f693d6f8c5fbb7819d9a083245215f411d19dcc"], 0xbc}, 0x1, 0x0, 0x0, 0x40}, 0xd4)
r4 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
close(r4)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f000000c400)={0x2020, 0x0, <r6=>0x0}, 0x2020)
utimes(&(0x7f0000000000)='./file0\x00', 0x0)
write$FUSE_INIT(r4, &(0x7f00000002c0)={0x50, 0x0, r6, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r4, &(0x7f000000a3c0)="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", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000940)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_NOTIFY_RETRIEVE(r5, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x1, 0x0, 0xffffff38}}, 0x30)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x0, 0x1)
mount(&(0x7f0000000100)=@nullb, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='hfs\x00', 0x0, &(0x7f0000000340))
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x12080, 0x0)
r7 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r7, 0xc0045006, &(0x7f0000000100))
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000000400)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
socket$inet6_sctp(0xa, 0x1, 0x84)
r8 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r8, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1}, 0x1c)
socket$alg(0x26, 0x5, 0x0)

551.784029ms ago: executing program 3 (id=3257):
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x169a82, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/fib_triestat\x00')
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r2 = socket(0x1d, 0x2, 0x6)
bind$can_j1939(r2, &(0x7f0000000000)={0x1d, 0x0, 0x3}, 0x18)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r2, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
sendmsg$TIPC_NL_MON_GET(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x400d0}, 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffff9}, 0xa)
execve(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x400)
pread64(r0, &(0x7f0000000340)=""/169, 0xa9, 0x7fff)

152.354286ms ago: executing program 0 (id=3258):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x1a003})
r1 = socket(0xa, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(0xffffffffffffffff, 0x0, 0x485, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = getpid()
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
ioctl$VIDIOC_EXPBUF(r3, 0xc0405610, &(0x7f0000000240)={0x7, 0x2, 0x4, 0x4000, <r4=>0xffffffffffffffff})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)={0x5c, r6, 0x1, 0x0, 0x0, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0x27, 0xa8, @random="5c0b868d6e04047482fb3ac2cf825a5a5e95eedb785311d6614a436cc64dbd576ee500"}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x5c}}, 0x0)
write$binfmt_script(r4, &(0x7f00000003c0)={'#! ', './file0', [{0x20, '$[*'}, {}, {}], 0xa, "e1611f2000cb41c806ceb8c413e10776b5eb35953184cef9ee053f98fe701b82196d7f95cb9146f9eeb653db63b1f3e928"}, 0x42)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002120702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
r7 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCGPTLCK(r7, 0x80045439, &(0x7f0000000200))
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r9 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
r10 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r10, &(0x7f0000000800)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f00000002c0)=ANY=[@ANYRES16=r9, @ANYRES32, @ANYRESDEC=r4, @ANYRESHEX, @ANYRES16=r2], 0x40}}, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$key(r10, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0)
r11 = fsopen(&(0x7f0000000280)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r11, 0x1, &(0x7f0000000040)='source', &(0x7f0000002280)='//\xf2b\x06\b\xba\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b//\\\x00\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x97\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8DD\x9bp\x01\xcc:\xa6\xc5n\x9f\xfb\x81 \x10\x0fQ\x90}Zd\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3V\x9c\x8c\xf8\xf7\xe2\xd5\x8bE\xee5\x00\xaa\xd5\xfc\x1b$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\xec\xac\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xec\x9es\xee\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o\x00\x00\x00\x00\x00\x00\x00\x00_\tN\xfd\xa2\xc2SPu\xe7\xc0+SL\xa1', 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c000000030800000000000000000000000000000900010073797a31000000081d00048008000340000000000800054008000000080007"], 0x3c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

0s ago: executing program 3 (id=3259):
socket$kcm(0x10, 0x3, 0x10)
r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x68)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r1, &(0x7f00000001c0)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x0, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
socket(0x0, 0x2, 0x0)
r2 = userfaultfd(0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mremap(&(0x7f00002d7000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000a88000/0x2000)=nil, 0x3)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000400)={&(0x7f0000b36000/0x12000)=nil, &(0x7f0000841000/0x4000)=nil, 0x12000})
r3 = fcntl$dupfd(r2, 0x0, r2)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, 0x0, 0x44c04)
ioctl$UFFDIO_CONTINUE(r3, 0xc018aa06, 0x0)
syz_io_uring_setup(0x686a, 0x0, &(0x7f0000000080), 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x11}, @printk={@lu, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x9b}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (fail_nth: 7)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

tap: entered promiscuous mode
[  461.278407][T13750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.283405][T13750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.290763][T13750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.295759][T13750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.299502][T13750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.304579][T13750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.308352][T13750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.314718][T13750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.320701][T13750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.324632][T13750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.331355][T13750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  461.335710][T13750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.344497][T13750] batman_adv: batadv0: Interface activated: batadv_slave_0
[  461.356387][T13750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.361637][T13750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.365434][T13750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.370829][T13750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.374569][T13750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.380052][T13750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.386066][T13750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.393252][T13750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.399371][T13750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.405624][T13750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.422050][T13750] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  461.433186][T13750] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  461.455100][T13809] input: syz0 as /devices/virtual/input/input27
[  461.472089][T13750] batman_adv: batadv0: Interface activated: batadv_slave_1
[  461.477670][T13750] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  461.480463][T13750] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  461.482970][T13750] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  461.485378][T13750] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  461.554633][   T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  461.558213][   T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  461.602293][T12325] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  461.604361][T12325] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  461.716620][T13815] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.2474'.
[  462.405248][ T5364] Bluetooth: hci2: command tx timeout
[  462.706181][T13830] syz.1.2477: vmalloc error: size 1986356271, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[  462.710376][T13830] CPU: 1 UID: 0 PID: 13830 Comm: syz.1.2477 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  462.713463][T13830] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  462.716324][T13830] Call Trace:
[  462.717263][T13830]  <TASK>
[  462.718074][T13830]  dump_stack_lvl+0x16c/0x1f0
[  462.719361][T13830]  warn_alloc+0x24d/0x3a0
[  462.720542][T13830]  ? __pfx_warn_alloc+0x10/0x10
[  462.721870][T13830]  ? __lock_acquire+0xbdd/0x3cb0
[  462.723220][T13830]  __vmalloc_node_range_noprof+0x10a3/0x14e0
[  462.724844][T13830]  ? find_held_lock+0x2d/0x110
[  462.726225][T13830]  ? ip_set_sockfn_get+0x185/0xc50
[  462.727612][T13830]  ? __pfx_aa_get_newest_label+0x10/0x10
[  462.729153][T13830]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  462.730951][T13830]  ? apparmor_capable+0x114/0x1d0
[  462.732325][T13830]  ? ip_set_sockfn_get+0x185/0xc50
[  462.733724][T13830]  vmalloc_noprof+0x6b/0x90
[  462.735031][T13830]  ? ip_set_sockfn_get+0x185/0xc50
[  462.736512][T13830]  ip_set_sockfn_get+0x185/0xc50
[  462.737867][T13830]  ? __pfx_lock_release+0x10/0x10
[  462.739228][T13830]  ? __pfx_ip_set_sockfn_get+0x10/0x10
[  462.740798][T13830]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  462.742583][T13830]  nf_getsockopt+0x79/0xe0
[  462.743788][T13830]  ip_getsockopt+0x18e/0x1e0
[  462.745050][T13830]  ? __pfx_ip_getsockopt+0x10/0x10
[  462.746592][T13830]  tcp_getsockopt+0x9e/0x100
[  462.747855][T13830]  smc_getsockopt+0x163/0x360
[  462.749138][T13830]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  462.750732][T13830]  ? __pfx_smc_getsockopt+0x10/0x10
[  462.752140][T13830]  ? bpf_lsm_socket_getsockopt+0x9/0x10
[  462.753732][T13830]  ? __pfx_smc_getsockopt+0x10/0x10
[  462.755128][T13830]  do_sock_getsockopt+0x3fe/0x870
[  462.756503][T13830]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  462.758071][T13830]  ? __fget_files+0x256/0x400
[  462.759353][T13830]  ? __fget_light+0x173/0x210
[  462.760632][T13830]  __sys_getsockopt+0x1a1/0x270
[  462.762006][T13830]  ? __pfx___sys_getsockopt+0x10/0x10
[  462.763453][T13830]  ? xfd_validate_state+0x5d/0x180
[  462.764857][T13830]  __ia32_sys_getsockopt+0xbc/0x160
[  462.766240][T13830]  ? lockdep_hardirqs_on+0x7c/0x110
[  462.767629][T13830]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  462.769562][T13830]  __do_fast_syscall_32+0x73/0x120
[  462.770981][T13830]  do_fast_syscall_32+0x32/0x80
[  462.772277][T13830]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  462.774017][T13830] RIP: 0023:0xf741e579
[  462.775120][T13830] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  462.780251][T13830] RSP: 002b:00000000f570656c EFLAGS: 00000296 ORIG_RAX: 000000000000016d
[  462.782478][T13830] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000000000000
[  462.784590][T13830] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000020000040
[  462.786722][T13830] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  462.788889][T13830] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  462.791064][T13830] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  462.794972][T13830]  </TASK>
[  462.801053][T13830] Mem-Info:
[  462.801935][T13830] active_anon:9261 inactive_anon:21 isolated_anon:0
[  462.801935][T13830]  active_file:12523 inactive_file:39435 isolated_file:0
[  462.801935][T13830]  unevictable:768 dirty:291 writeback:0
[  462.801935][T13830]  slab_reclaimable:6693 slab_unreclaimable:65007
[  462.801935][T13830]  mapped:17564 shmem:3097 pagetables:671
[  462.801935][T13830]  sec_pagetables:326 bounce:0
[  462.801935][T13830]  kernel_misc_reclaimable:0
[  462.801935][T13830]  free:50748 free_pcp:11196 free_cma:0
[  462.814777][T13830] Node 0 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:12kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9104kB pagetables:948kB sec_pagetables:1196kB all_unreclaimable? no
[  462.822886][T13830] Node 1 active_anon:37444kB inactive_anon:84kB active_file:50092kB inactive_file:157736kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:70244kB dirty:1164kB writeback:0kB shmem:10852kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2656kB pagetables:1736kB sec_pagetables:108kB all_unreclaimable? no
[  462.833373][T13830] Node 0 DMA free:920kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:268kB local_pcp:120kB free_cma:0kB
[  462.840732][T13830] lowmem_reserve[]: 0 275 0 0 0
[  462.842139][T13830] Node 0 DMA32 free:21124kB boost:0kB min:14004kB low:17504kB high:21004kB reserved_highatomic:4096KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB writepending:0kB present:1032192kB managed:308896kB mlocked:0kB bounce:0kB free_pcp:4268kB local_pcp:68kB free_cma:0kB
[  462.849877][T13830] lowmem_reserve[]: 0 0 0 0 0
[  462.851244][T13830] Node 1 DMA32 free:180740kB boost:0kB min:47044kB low:58804kB high:70564kB reserved_highatomic:0KB active_anon:37944kB inactive_anon:84kB active_file:50092kB inactive_file:157736kB unevictable:1536kB writepending:1164kB present:1048436kB managed:946208kB mlocked:0kB bounce:0kB free_pcp:39636kB local_pcp:14056kB free_cma:0kB
[  462.859120][T13830] lowmem_reserve[]: 0 0 0 0 0
[  462.860419][T13830] Node 0 DMA: 40*4kB (U) 29*8kB (U) 9*16kB (U) 12*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 920kB
[  462.864237][T13830] Node 0 DMA32: 503*4kB (UH) 271*8kB (UMEH) 23*16kB (UEH) 92*32kB (UEH) 37*64kB (UMEH) 16*128kB (UMEH) 6*256kB (UM) 11*512kB (UM) 2*1024kB (UM) 0*2048kB 0*4096kB = 21124kB
[  462.868722][T13830] Node 1 DMA32: 254*4kB (UE) 131*8kB (UE) 28*16kB (UME) 182*32kB (UME) 240*64kB (UME) 82*128kB (UME) 40*256kB (UME) 48*512kB (UME) 71*1024kB (UM) 9*2048kB (UM) 5*4096kB (UM) = 180624kB
[  462.873705][T13830] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  462.876174][T13830] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  462.878565][T13830] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  462.881326][T13830] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  462.883864][T13830] 55357 total pagecache pages
[  462.885138][T13830] 306 pages in swap cache
[  462.886318][T13830] Free swap  = 118632kB
[  462.887463][T13830] Total swap = 124996kB
[  462.888568][T13830] 524155 pages RAM
[  462.889523][T13830] 0 pages HighMem/MovableOnly
[  462.891421][T13830] 206539 pages reserved
[  462.892561][T13830] 0 pages cma reserved
[  462.931499][T13836] netlink: 'syz.0.2479': attribute type 11 has an invalid length.
[  463.129223][T13848] loop7: detected capacity change from 0 to 16384
[  464.388610][ T5364] Bluetooth: hci2: command tx timeout
[  464.589422][T13879] macvlan0: entered allmulticast mode
[  464.590974][T13879] veth1_vlan: entered allmulticast mode
[  464.649916][T13883] netlink: 'syz.2.2488': attribute type 72 has an invalid length.
[  464.944228][T13883] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  466.377022][ T5364] Bluetooth: hci2: command tx timeout
[  466.558443][   T10] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  466.751471][   T10] usb 7-1: Using ep0 maxpacket: 32
[  466.762616][   T10] usb 7-1: config 0 has no interfaces?
[  466.771403][   T10] usb 7-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  466.774626][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  466.794836][   T10] usb 7-1: Product: syz
[  466.798997][   T10] usb 7-1: Manufacturer: syz
[  466.804697][   T10] usb 7-1: SerialNumber: syz
[  466.823959][   T10] usb 7-1: config 0 descriptor??
[  467.268171][   T10] usb 7-1: USB disconnect, device number 11
[  467.927238][T13941] overlayfs: missing 'lowerdir'
[  467.973116][    C2] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  468.016254][T13944] FAULT_INJECTION: forcing a failure.
[  468.016254][T13944] name failslab, interval 1, probability 0, space 0, times 0
[  468.021258][T13944] CPU: 2 UID: 0 PID: 13944 Comm: syz.2.2506 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  468.025160][T13944] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  468.028997][T13944] Call Trace:
[  468.030208][T13944]  <TASK>
[  468.031256][T13944]  dump_stack_lvl+0x16c/0x1f0
[  468.032937][T13944]  should_fail_ex+0x497/0x5b0
[  468.034607][T13944]  ? fs_reclaim_acquire+0xae/0x160
[  468.036423][T13944]  should_failslab+0xc2/0x120
[  468.038084][T13944]  __kmalloc_noprof+0xcb/0x410
[  468.039773][T13944]  tomoyo_encode2+0x100/0x3e0
[  468.041428][T13944]  tomoyo_realpath_from_path+0x1a7/0x710
[  468.043390][T13944]  ? tomoyo_profile+0x47/0x60
[  468.045072][T13944]  tomoyo_path_number_perm+0x245/0x5b0
[  468.047089][T13944]  ? tomoyo_path_number_perm+0x232/0x5b0
[  468.049130][T13944]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  468.051278][T13944]  ? __pfx_lock_release+0x10/0x10
[  468.053089][T13944]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  468.055251][T13944]  ? __fget_files+0x256/0x400
[  468.056976][T13944]  security_file_ioctl_compat+0x75/0xc0
[  468.058888][T13944]  __do_compat_sys_ioctl+0x5d/0x330
[  468.060719][T13944]  __do_fast_syscall_32+0x73/0x120
[  468.062500][T13944]  do_fast_syscall_32+0x32/0x80
[  468.064205][T13944]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  468.066397][T13944] RIP: 0023:0xf7fb6579
[  468.067823][T13944] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  468.074443][T13944] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  468.077449][T13944] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000004008ae89
[  468.080217][T13944] RDX: 0000000020000300 RSI: 0000000000000000 RDI: 0000000000000000
[  468.082955][T13944] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  468.085570][T13944] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  468.087720][T13944] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  468.089895][T13944]  </TASK>
[  468.091230][    C2] hpet: Lost 4 RTC interrupts
[  468.097664][T13944] ERROR: Out of memory at tomoyo_realpath_from_path.
[  468.282030][T13948] netdevsim netdevsim3: Direct firmware load for ng failed with error -2
[  468.285369][T13948] netdevsim netdevsim3: Falling back to sysfs fallback for: ng
[  468.880379][T13954] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  469.104505][T13966] usb usb1: usbfs: process 13966 (syz.3.2511) did not claim interface 0 before use
[  469.396733][   T25] hid-generic 0000:0000:0000.0020: item fetching failed at offset 0/2
[  469.400364][   T25] hid-generic 0000:0000:0000.0020: probe with driver hid-generic failed with error -22
[  469.412772][   T39] audit: type=1800 audit(1726529523.895:213): pid=13972 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2514" name="bus" dev="overlay" ino=96 res=0 errno=0
[  469.422834][T13972] FAULT_INJECTION: forcing a failure.
[  469.422834][T13972] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  469.427131][T13972] CPU: 2 UID: 0 PID: 13972 Comm: syz.0.2514 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  469.429918][T13972] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  469.432730][T13972] Call Trace:
[  469.433626][T13972]  <TASK>
[  469.434416][T13972]  dump_stack_lvl+0x16c/0x1f0
[  469.435683][T13972]  should_fail_ex+0x497/0x5b0
[  469.436984][T13972]  _copy_to_user+0x30/0xc0
[  469.438169][T13972]  simple_read_from_buffer+0xd0/0x160
[  469.439582][T13972]  proc_fail_nth_read+0x19e/0x280
[  469.440925][T13972]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  469.442389][T13972]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  469.443846][T13972]  vfs_read+0x1d4/0xbd0
[  469.444967][T13972]  ? __fdget_pos+0xeb/0x180
[  469.446169][T13972]  ? __pfx_vfs_read+0x10/0x10
[  469.447409][T13972]  ? __pfx___mutex_lock+0x10/0x10
[  469.448749][T13972]  ? __fget_files+0x256/0x400
[  469.450003][T13972]  ksys_read+0x12f/0x260
[  469.451140][T13972]  ? __pfx_ksys_read+0x10/0x10
[  469.452415][T13972]  __do_fast_syscall_32+0x73/0x120
[  469.453784][T13972]  do_fast_syscall_32+0x32/0x80
[  469.455070][T13972]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  469.456754][T13972] RIP: 0023:0xf7fa1579
[  469.457837][T13972] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  469.462866][T13972] RSP: 002b:00000000f57265a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  469.465054][T13972] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5726620
[  469.467129][T13972] RDX: 000000000000000f RSI: 00000000f742bff4 RDI: 0000000000000000
[  469.469208][T13972] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  469.471298][T13972] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  469.473379][T13972] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  469.475459][T13972]  </TASK>
[  469.476616][    C2] hpet: Lost 3 RTC interrupts
[  469.511947][T13974] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2513'.
[  470.217691][T13985] FAULT_INJECTION: forcing a failure.
[  470.217691][T13985] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  470.221344][T13985] CPU: 2 UID: 0 PID: 13985 Comm: syz.1.2518 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  470.224118][T13985] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  470.226956][T13985] Call Trace:
[  470.227840][T13985]  <TASK>
[  470.228627][T13985]  dump_stack_lvl+0x16c/0x1f0
[  470.229865][T13985]  should_fail_ex+0x497/0x5b0
[  470.231074][T13985]  _copy_from_iter+0x27a/0xfc0
[  470.232339][T13985]  ? _copy_from_iter+0x149/0xfc0
[  470.233684][T13985]  ? __pfx__copy_from_iter+0x10/0x10
[  470.235058][T13985]  ? sock_alloc_send_pskb+0x750/0x980
[  470.236467][T13985]  ? __pfx__copy_from_iter+0x10/0x10
[  470.237884][T13985]  copy_page_from_iter+0xa5/0x120
[  470.239206][T13985]  skb_copy_datagram_from_iter+0x29b/0x710
[  470.240751][T13985]  tun_get_user+0x1964/0x3d70
[  470.242004][T13985]  ? __pfx_tun_get_user+0x10/0x10
[  470.243325][T13985]  ? find_held_lock+0x2d/0x110
[  470.244617][T13985]  ? __pfx_lock_release+0x10/0x10
[  470.245939][T13985]  tun_chr_write_iter+0xe8/0x210
[  470.247244][T13985]  vfs_write+0x6b6/0x1140
[  470.248383][T13985]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  470.249834][T13985]  ? __pfx_vfs_write+0x10/0x10
[  470.251088][T13985]  ? __fget_files+0x256/0x400
[  470.252333][T13985]  ? __fget_light+0x173/0x210
[  470.253649][T13985]  ksys_write+0x12f/0x260
[  470.254846][T13985]  ? __pfx_ksys_write+0x10/0x10
[  470.256135][T13985]  __do_fast_syscall_32+0x73/0x120
[  470.257498][T13985]  do_fast_syscall_32+0x32/0x80
[  470.258770][T13985]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  470.260415][T13985] RIP: 0023:0xf741e579
[  470.261534][T13985] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  470.266546][T13985] RSP: 002b:00000000f570656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  470.268694][T13985] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000240
[  470.270761][T13985] RDX: 000000000000fdef RSI: 0000000000000000 RDI: 0000000000000000
[  470.272807][T13985] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  470.274879][T13985] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  470.276948][T13985] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  470.279013][T13985]  </TASK>
[  470.280257][    C2] hpet: Lost 3 RTC interrupts
[  471.176368][T14001] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2524'.
[  471.200223][T14001] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2524'.
[  471.299519][T14001] block nbd0: Unsupported socket: shutdown callout must be supported.
[  473.855850][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  473.871105][   T45] bridge_slave_0: left allmulticast mode
[  473.874842][   T45] bridge_slave_0: left promiscuous mode
[  473.878786][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  474.250176][   T45] bridge0 (unregistering): left promiscuous mode
[  474.686348][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  474.693582][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  474.700904][   T45] bond0 (unregistering): (slave team0): Releasing backup interface
[  474.723720][   T45] bond0 (unregistering): Released all slaves
[  474.835980][   T45] tipc: Left network mode
[  474.917317][   T45] IPVS: stopping master sync thread 9862 ...
[  475.174021][T14059] syz.3.2540: attempt to access beyond end of device
[  475.174021][T14059] nbd3: rw=0, sector=0, nr_sectors = 8 limit=0
[  475.482113][   T45] batadv_slave_1: left promiscuous mode
[  475.523229][   T45] hsr_slave_0: left promiscuous mode
[  475.525988][   T45] hsr_slave_1: left promiscuous mode
[  475.553301][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  475.555604][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[  475.558195][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  475.560298][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[  475.611805][   T45] veth1_macvtap: left promiscuous mode
[  475.613546][   T45] veth0_macvtap: left promiscuous mode
[  475.615335][   T45] veth1_vlan: left promiscuous mode
[  475.622276][   T45] veth0_vlan: left promiscuous mode
[  477.402041][   T45] team0 (unregistering): Port device team_slave_1 removed
[  477.611837][   T45] team0 (unregistering): Port device team_slave_0 removed
[  478.858695][T14097] No control pipe specified
[  479.005736][T14103] tmpfs: Bad value for 'mpol'
[  479.236638][T14108] netlink: 'syz.2.2551': attribute type 11 has an invalid length.
[  479.328919][T14111] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2552'.
[  480.038554][T14131] usb usb1: usbfs: process 14131 (syz.1.2554) did not claim interface 0 before use
[  480.371087][   T39] audit: type=1326 audit(1726529535.401:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14117 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7fc00000
[  480.382297][   T39] audit: type=1326 audit(1726529535.401:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14117 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fb6579 code=0x7fc00000
[  480.394446][   T39] audit: type=1326 audit(1726529535.401:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14117 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7fc00000
[  480.408421][   T39] audit: type=1326 audit(1726529535.401:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14117 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7fc00000
[  480.425770][   T39] audit: type=1326 audit(1726529535.401:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14117 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7fc00000
[  480.435617][   T39] audit: type=1326 audit(1726529535.401:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14117 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7fc00000
[  480.457255][   T39] audit: type=1326 audit(1726529535.401:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14117 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7fc00000
[  480.470179][   T39] audit: type=1326 audit(1726529535.401:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14117 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7fc00000
[  480.482047][   T39] audit: type=1326 audit(1726529535.401:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14117 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7fc00000
[  480.494251][   T39] audit: type=1326 audit(1726529535.401:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14117 comm="syz.2.2553" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x7fc00000
[  481.324851][T14157] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2561'.
[  481.328449][T14157] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  481.331594][T14157] batman_adv: batadv0: Removing interface: batadv_slave_0
[  481.337381][T14157] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  481.339349][T14157] batman_adv: batadv0: Removing interface: batadv_slave_1
[  481.944690][T14162] netlink: 'syz.2.2562': attribute type 4 has an invalid length.
[  482.635762][T14178] usb usb1: usbfs: process 14178 (syz.2.2567) did not claim interface 0 before use
[  482.981302][T14191] FAULT_INJECTION: forcing a failure.
[  482.981302][T14191] name failslab, interval 1, probability 0, space 0, times 0
[  482.984972][T14191] CPU: 0 UID: 0 PID: 14191 Comm: syz.0.2570 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  482.987687][T14191] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  482.990503][T14191] Call Trace:
[  482.991426][T14191]  <TASK>
[  482.992217][T14191]  dump_stack_lvl+0x16c/0x1f0
[  482.993487][T14191]  should_fail_ex+0x497/0x5b0
[  482.994735][T14191]  should_failslab+0xc2/0x120
[  482.995981][T14191]  __kmalloc_cache_noprof+0x6b/0x310
[  482.997391][T14191]  ? update_or_create_fnhe+0xdfd/0x15b0
[  482.998845][T14191]  update_or_create_fnhe+0xdfd/0x15b0
[  483.000255][T14191]  __ip_rt_update_pmtu+0x594/0x6d0
[  483.001654][T14191]  ? __pfx___ip_rt_update_pmtu+0x10/0x10
[  483.003113][T14191]  ? ip_route_output_key_hash+0x16c/0x2e0
[  483.004611][T14191]  ipv4_sk_update_pmtu+0x446/0xe30
[  483.005959][T14191]  ? __pfx_ipv4_sk_update_pmtu+0x10/0x10
[  483.007463][T14191]  ? lock_acquire+0x1b1/0x560
[  483.008713][T14191]  ? irqentry_exit+0x3b/0x90
[  483.009931][T14191]  ? raw_v4_match+0x5d/0x2a0
[  483.011150][T14191]  raw_icmp_error+0x6e8/0xbf0
[  483.012399][T14191]  icmp_socket_deliver+0x137/0x380
[  483.013769][T14191]  icmp_unreach+0x35d/0xe50
[  483.014967][T14191]  icmp_rcv+0xa92/0x1010
[  483.016085][T14191]  ? __pfx_icmp_rcv+0x10/0x10
[  483.017345][T14191]  ip_protocol_deliver_rcu+0x441/0x4c0
[  483.018773][T14191]  ip_local_deliver_finish+0x316/0x570
[  483.020197][T14191]  ip_local_deliver+0x18e/0x1f0
[  483.021530][T14191]  ? __pfx_ip_local_deliver+0x10/0x10
[  483.022974][T14191]  ip_rcv+0x2c3/0x5d0
[  483.024038][T14191]  ? __pfx_ip_rcv+0x10/0x10
[  483.025259][T14191]  __netif_receive_skb_one_core+0x199/0x1e0
[  483.026820][T14191]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  483.028506][T14191]  ? timekeeping_debug_get_ns+0x334/0x5b0
[  483.029998][T14191]  __netif_receive_skb+0x1d/0x160
[  483.031344][T14191]  netif_receive_skb+0x13f/0x7b0
[  483.032653][T14191]  ? __pfx_netif_receive_skb+0x10/0x10
[  483.034082][T14191]  ? __pfx___lock_acquire+0x10/0x10
[  483.035452][T14191]  ? __pfx_tun_build_skb.constprop.0+0x10/0x10
[  483.037077][T14191]  tun_rx_batched+0x429/0x780
[  483.038358][T14191]  ? __pfx_tun_rx_batched+0x10/0x10
[  483.039739][T14191]  ? tun_get_user+0x1d4d/0x3d70
[  483.041075][T14191]  tun_get_user+0x2a3c/0x3d70
[  483.042327][T14191]  ? __pfx_tun_get_user+0x10/0x10
[  483.043639][T14191]  ? find_held_lock+0x2d/0x110
[  483.044900][T14191]  ? __pfx_lock_release+0x10/0x10
[  483.046220][T14191]  tun_chr_write_iter+0xe8/0x210
[  483.047532][T14191]  vfs_write+0x6b6/0x1140
[  483.048687][T14191]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  483.050141][T14191]  ? __pfx_vfs_write+0x10/0x10
[  483.051407][T14191]  ? __fget_files+0x256/0x400
[  483.052657][T14191]  ? __fget_light+0x173/0x210
[  483.053903][T14191]  ksys_write+0x12f/0x260
[  483.055054][T14191]  ? __pfx_ksys_write+0x10/0x10
[  483.056344][T14191]  __do_fast_syscall_32+0x73/0x120
[  483.057648][T14191]  do_fast_syscall_32+0x32/0x80
[  483.058915][T14191]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  483.060625][T14191] RIP: 0023:0xf7fa1579
[  483.061707][T14191] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  483.066482][T14191] RSP: 002b:00000000f5726530 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  483.068624][T14191] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000020000000
[  483.070695][T14191] RDX: 0000000000000046 RSI: 00000000f742bff4 RDI: 0000000000000000
[  483.072745][T14191] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  483.074783][T14191] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  483.076839][T14191] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  483.078884][T14191]  </TASK>
[  483.402685][T14198] netlink: 232 bytes leftover after parsing attributes in process `syz.1.2573'.
[  483.405089][T14198] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2573'.
[  484.089278][T14211] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2576'.
[  484.242267][T14211] cdrom: dropping to single frame dma
[  484.322498][T14218] usb usb1: usbfs: process 14218 (syz.1.2577) did not claim interface 0 before use
[  484.333478][T14217] block device autoloading is deprecated and will be removed.
[  484.341208][T14217] syz.0.2576: attempt to access beyond end of device
[  484.341208][T14217] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  484.780547][ T5393] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  484.971082][ T5393] usb 5-1: Using ep0 maxpacket: 16
[  484.975557][ T5393] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  484.980797][ T5393] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  484.988632][ T5393] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  484.991421][ T5393] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  484.997270][ T5393] usb 5-1: config 0 descriptor??
[  485.002023][ T5393] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  486.717664][T14270] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2592'.
[  486.965709][T14273] fuse: Unknown parameter 'fĪ0x000000000000000b'
[  487.020605][T14277] FAULT_INJECTION: forcing a failure.
[  487.020605][T14277] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  487.024953][T14277] CPU: 2 UID: 0 PID: 14277 Comm: syz.1.2594 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  487.027638][T14277] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  487.030348][T14277] Call Trace:
[  487.031206][T14277]  <TASK>
[  487.031954][T14277]  dump_stack_lvl+0x16c/0x1f0
[  487.033154][T14277]  should_fail_ex+0x497/0x5b0
[  487.034343][T14277]  ? fs_reclaim_acquire+0xae/0x160
[  487.035852][T14277]  should_fail_alloc_page+0xe7/0x130
[  487.037697][T14277]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  487.039530][T14277]  ? __lock_acquire+0xbdd/0x3cb0
[  487.040784][T14277]  __alloc_pages_noprof+0x194/0x2460
[  487.042055][T14277]  ? hlock_class+0x4e/0x130
[  487.043184][T14277]  ? __pfx___lock_acquire+0x10/0x10
[  487.044539][T14277]  ? hlock_class+0x4e/0x130
[  487.045767][T14277]  ? __lock_acquire+0xbdd/0x3cb0
[  487.047067][T14277]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  487.048591][T14277]  ? __pfx___lock_acquire+0x10/0x10
[  487.049959][T14277]  ? mark_lock+0xb5/0xc60
[  487.051105][T14277]  ? page_ext_put+0x3e/0xd0
[  487.052308][T14277]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  487.053868][T14277]  ? policy_nodemask+0xea/0x4e0
[  487.055580][T14277]  alloc_pages_mpol_noprof+0x275/0x610
[  487.057586][T14277]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  487.059152][T14277]  ? hlock_class+0x4e/0x130
[  487.060343][T14277]  ? find_held_lock+0x2d/0x110
[  487.061601][T14277]  folio_alloc_mpol_noprof+0x36/0xd0
[  487.062985][T14277]  vma_alloc_folio_noprof+0xee/0x1b0
[  487.064399][T14277]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  487.065931][T14277]  __handle_mm_fault+0x2d33/0x5480
[  487.067267][T14277]  ? __pfx_mt_find+0x10/0x10
[  487.068492][T14277]  ? __pfx___handle_mm_fault+0x10/0x10
[  487.070117][T14277]  ? find_vma+0xc0/0x140
[  487.071235][T14277]  ? __pfx_find_vma+0x10/0x10
[  487.072483][T14277]  handle_mm_fault+0x498/0xa60
[  487.073873][T14277]  ? spurious_kernel_fault+0x361/0x3c0
[  487.075295][T14277]  do_user_addr_fault+0x7a3/0x13f0
[  487.076596][T14277]  exc_page_fault+0x5c/0xc0
[  487.077798][T14277]  asm_exc_page_fault+0x26/0x30
[  487.079073][T14277] RIP: 0010:_copy_to_user+0xa7/0xc0
[  487.080447][T14277] Code: 89 ee 48 89 ef e8 19 61 0a fd 4d 85 f6 75 b5 e8 5f 5f 0a fd 89 de 4c 89 e7 e8 c5 00 69 fd 0f 01 cb 48 89 d9 48 89 ef 4c 89 e6 <f3> a4 0f 1f 00 0f 01 ca 48 89 cb eb 8d 66 66 2e 0f 1f 84 00 00 00
[  487.085475][T14277] RSP: 0018:ffffc9000d7dfcf8 EFLAGS: 00050246
[  487.087058][T14277] RAX: 0000000000000001 RBX: 00000000007ae000 RCX: 000000000079e000
[  487.089098][T14277] RDX: 0000000000000000 RSI: ffffc9002b400000 RDI: 000000002001f000
[  487.091148][T14277] RBP: 000000002000f000 R08: 0000000000000000 R09: fffff52005773bff
[  487.093281][T14277] R10: ffffc9002bb9dfff R11: 0000000000000000 R12: ffffc9002b3f0000
[  487.095396][T14277] R13: 00000000207bd000 R14: 0000000000000000 R15: 00000000007ae000
[  487.097537][T14277]  ? _copy_to_user+0x9b/0xc0
[  487.098782][T14277]  kvm_get_dirty_log_protect+0x35e/0x790
[  487.100304][T14277]  kvm_vm_compat_ioctl+0x37c/0x400
[  487.101739][T14277]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  487.103280][T14277]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  487.104914][T14277]  ? __fget_files+0x256/0x400
[  487.106175][T14277]  ? bpf_lsm_file_ioctl_compat+0x9/0x10
[  487.107707][T14277]  ? __pfx_kvm_vm_compat_ioctl+0x10/0x10
[  487.109237][T14277]  __do_compat_sys_ioctl+0x2c3/0x330
[  487.110636][T14277]  __do_fast_syscall_32+0x73/0x120
[  487.112045][T14277]  do_fast_syscall_32+0x32/0x80
[  487.113351][T14277]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  487.115055][T14277] RIP: 0023:0xf741e579
[  487.116158][T14277] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  487.121203][T14277] RSP: 002b:00000000f56e556c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  487.123336][T14277] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000004010ae42
[  487.125138][T14277] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000000000000
[  487.127163][T14277] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  487.129206][T14277] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  487.131240][T14277] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  487.133297][T14277]  </TASK>
[  487.134736][    C2] hpet_rtc_timer_reinit: 53 callbacks suppressed
[  487.134744][    C2] hpet: Lost 6 RTC interrupts
[  487.348460][   T25] usb 5-1: USB disconnect, device number 21
[  488.144755][T14297] FAULT_INJECTION: forcing a failure.
[  488.144755][T14297] name failslab, interval 1, probability 0, space 0, times 0
[  488.148581][T14297] CPU: 3 UID: 0 PID: 14297 Comm: syz.2.2598 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  488.151289][T14297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  488.154094][T14297] Call Trace:
[  488.154971][T14297]  <TASK>
[  488.155755][T14297]  dump_stack_lvl+0x16c/0x1f0
[  488.157023][T14297]  should_fail_ex+0x497/0x5b0
[  488.158266][T14297]  ? fs_reclaim_acquire+0xae/0x160
[  488.159620][T14297]  should_failslab+0xc2/0x120
[  488.160859][T14297]  __kmalloc_cache_noprof+0x6b/0x310
[  488.162255][T14297]  ? ip_set_create+0x33e/0x1400
[  488.163602][T14297]  ip_set_create+0x33e/0x1400
[  488.164857][T14297]  ? __pfx___lock_acquire+0x10/0x10
[  488.166229][T14297]  ? __pfx_ip_set_create+0x10/0x10
[  488.167543][T14297]  ? rcu_is_watching+0x12/0xc0
[  488.168837][T14297]  nfnetlink_rcv_msg+0x9c3/0x11e0
[  488.170177][T14297]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  488.171612][T14297]  ? kfree_skbmem+0x1a4/0x1f0
[  488.172866][T14297]  ? find_held_lock+0x2d/0x110
[  488.174163][T14297]  netlink_rcv_skb+0x165/0x410
[  488.175429][T14297]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  488.176873][T14297]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  488.178266][T14297]  ? bpf_lsm_capable+0x9/0x10
[  488.179598][T14297]  ? security_capable+0x98/0xd0
[  488.180930][T14297]  ? ns_capable+0xd7/0x110
[  488.182110][T14297]  nfnetlink_rcv+0x1b4/0x430
[  488.183333][T14297]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  488.184689][T14297]  ? netlink_deliver_tap+0x1ae/0xcf0
[  488.186079][T14297]  netlink_unicast+0x53c/0x7f0
[  488.187364][T14297]  ? __pfx_netlink_unicast+0x10/0x10
[  488.188767][T14297]  ? __phys_addr_symbol+0x30/0x80
[  488.190092][T14297]  ? __check_object_size+0x497/0x720
[  488.191480][T14297]  netlink_sendmsg+0x8b8/0xd70
[  488.192751][T14297]  ? __pfx_netlink_sendmsg+0x10/0x10
[  488.194151][T14297]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  488.195613][T14297]  ____sys_sendmsg+0x9b4/0xb50
[  488.196913][T14297]  ? __pfx_____sys_sendmsg+0x10/0x10
[  488.198305][T14297]  ? get_compat_msghdr+0x11b/0x170
[  488.199654][T14297]  ? __pfx___lock_acquire+0x10/0x10
[  488.201037][T14297]  ___sys_sendmsg+0x135/0x1e0
[  488.202292][T14297]  ? __pfx____sys_sendmsg+0x10/0x10
[  488.203666][T14297]  ? ksys_write+0x21c/0x260
[  488.204882][T14297]  ? __fget_light+0x173/0x210
[  488.206122][T14297]  __sys_sendmsg+0x117/0x1f0
[  488.207330][T14297]  ? __pfx___sys_sendmsg+0x10/0x10
[  488.208703][T14297]  __do_fast_syscall_32+0x73/0x120
[  488.210082][T14297]  do_fast_syscall_32+0x32/0x80
[  488.211387][T14297]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  488.213053][T14297] RIP: 0023:0xf7fb6579
[  488.214105][T14297] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  488.219257][T14297] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  488.221451][T14297] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000040
[  488.223525][T14297] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  488.225586][T14297] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  488.227687][T14297] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  488.229760][T14297] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  488.231830][T14297]  </TASK>
[  488.535680][T14304] netlink: 84 bytes leftover after parsing attributes in process `syz.1.2601'.
[  488.756393][T14313] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2602'.
[  490.167160][T14340] FAULT_INJECTION: forcing a failure.
[  490.167160][T14340] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  490.170575][T14340] CPU: 2 UID: 0 PID: 14340 Comm: syz.3.2610 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  490.173307][T14340] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  490.176102][T14340] Call Trace:
[  490.176999][T14340]  <TASK>
[  490.177795][T14340]  dump_stack_lvl+0x16c/0x1f0
[  490.179091][T14340]  should_fail_ex+0x497/0x5b0
[  490.180390][T14340]  _copy_to_user+0x30/0xc0
[  490.181670][T14340]  simple_read_from_buffer+0xd0/0x160
[  490.183094][T14340]  proc_fail_nth_read+0x19e/0x280
[  490.184431][T14340]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  490.185887][T14340]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  490.187350][T14340]  vfs_read+0x1d4/0xbd0
[  490.188468][T14340]  ? __fdget_pos+0xeb/0x180
[  490.189666][T14340]  ? __pfx_vfs_read+0x10/0x10
[  490.190905][T14340]  ? __pfx___mutex_lock+0x10/0x10
[  490.192230][T14340]  ? __fget_files+0x256/0x400
[  490.193472][T14340]  ksys_read+0x12f/0x260
[  490.194589][T14340]  ? __pfx_ksys_read+0x10/0x10
[  490.195864][T14340]  __do_fast_syscall_32+0x73/0x120
[  490.197248][T14340]  do_fast_syscall_32+0x32/0x80
[  490.198532][T14340]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  490.200195][T14340] RIP: 0023:0xf7ff7579
[  490.201331][T14340] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  490.206564][T14340] RSP: 002b:00000000f57555a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  490.208757][T14340] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f5755620
[  490.210816][T14340] RDX: 000000000000000f RSI: 00000000f747bff4 RDI: 0000000000000000
[  490.212911][T14340] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  490.214995][T14340] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  490.216957][T14340] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  490.219039][T14340]  </TASK>
[  490.220201][    C2] hpet: Lost 2 RTC interrupts
[  490.349359][T14345] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2612'.
[  491.839218][T14372] io-wq is not configured for unbound workers
[  491.943343][T14374] usb usb8: usbfs: process 14374 (syz.3.2621) did not claim interface 0 before use
[  492.308189][T14388] netlink: 'syz.3.2622': attribute type 10 has an invalid length.
[  492.340597][T14388] bond0: (slave netdevsim0): Releasing backup interface
[  492.377580][T14388] team0: Port device netdevsim0 added
[  492.379522][T14391] netlink: 'syz.3.2622': attribute type 10 has an invalid length.
[  492.416206][T14391] team0: Port device netdevsim0 removed
[  492.441811][T14391] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  493.308853][T14414] usb usb1: usbfs: process 14414 (syz.2.2632) did not claim interface 0 before use
[  493.346335][ T1376] ieee802154 phy0 wpan0: encryption failed: -22
[  493.407021][T14413] input: syz1 as /devices/virtual/input/input30
[  495.549198][T14438] FAULT_INJECTION: forcing a failure.
[  495.549198][T14438] name failslab, interval 1, probability 0, space 0, times 0
[  495.552936][T14438] CPU: 0 UID: 0 PID: 14438 Comm: syz.2.2639 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  495.555768][T14438] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  495.558677][T14438] Call Trace:
[  495.559591][T14438]  <TASK>
[  495.560398][T14438]  dump_stack_lvl+0x16c/0x1f0
[  495.561655][T14438]  should_fail_ex+0x497/0x5b0
[  495.562893][T14438]  ? fs_reclaim_acquire+0xae/0x160
[  495.564235][T14438]  should_failslab+0xc2/0x120
[  495.565477][T14438]  __kmalloc_noprof+0xcb/0x410
[  495.566729][T14438]  ? __pfx_ovl_encode_real_fh+0x10/0x10
[  495.568165][T14438]  ovl_get_index_name_fh+0x55/0x180
[  495.569581][T14438]  ovl_lookup_index+0xec/0x830
[  495.570837][T14438]  ? __pfx_ovl_lookup_index+0x10/0x10
[  495.572235][T14438]  ? __kmalloc_noprof+0x207/0x410
[  495.573632][T14438]  ovl_lookup+0xbf5/0x21f0
[  495.574831][T14438]  ? __pfx_ovl_lookup+0x10/0x10
[  495.576185][T14438]  ? lookup_open.isra.0+0x236/0x13c0
[  495.577573][T14438]  ? __pfx_lock_release+0x10/0x10
[  495.578921][T14438]  ? __pfx_d_alloc_parallel+0x10/0x10
[  495.580307][T14438]  ? __d_lookup+0x266/0x4a0
[  495.581509][T14438]  ? __pfx_ovl_lookup+0x10/0x10
[  495.582822][T14438]  lookup_open.isra.0+0x928/0x13c0
[  495.584205][T14438]  ? __pfx_lookup_open.isra.0+0x10/0x10
[  495.585703][T14438]  ? __startup_64+0x120/0x2a0
[  495.586956][T14438]  ? __startup_64+0x120/0x2a0
[  495.588197][T14438]  ? mnt_get_write_access+0x20c/0x300
[  495.589614][T14438]  path_openat+0xa3b/0x2d20
[  495.590816][T14438]  ? __pfx_path_openat+0x10/0x10
[  495.592112][T14438]  ? __pfx___lock_acquire+0x10/0x10
[  495.593642][T14438]  ? find_held_lock+0x2d/0x110
[  495.595038][T14438]  do_filp_open+0x1dc/0x430
[  495.596312][T14438]  ? __pfx_do_filp_open+0x10/0x10
[  495.597694][T14438]  ? find_held_lock+0x2d/0x110
[  495.598989][T14438]  ? _raw_spin_unlock+0x28/0x50
[  495.600298][T14438]  ? alloc_fd+0x2d7/0x6c0
[  495.601528][T14438]  do_sys_openat2+0x17a/0x1e0
[  495.602870][T14438]  ? __pfx_do_sys_openat2+0x10/0x10
[  495.604304][T14438]  __ia32_compat_sys_openat+0x16e/0x210
[  495.605904][T14438]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  495.607606][T14438]  ? ksys_write+0x1ab/0x260
[  495.608848][T14438]  __do_fast_syscall_32+0x73/0x120
[  495.610215][T14438]  do_fast_syscall_32+0x32/0x80
[  495.611517][T14438]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  495.613326][T14438] RIP: 0023:0xf7fb6579
[  495.614479][T14438] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  495.619888][T14438] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  495.622152][T14438] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000180
[  495.624226][T14438] RDX: 0000000000024c01 RSI: 0000000000000000 RDI: 0000000000000000
[  495.626304][T14438] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  495.628373][T14438] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  495.630444][T14438] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  495.632638][T14438]  </TASK>
[  496.066508][T14449] usb usb1: usbfs: process 14449 (syz.3.2642) did not claim interface 0 before use
[  496.235573][T14456] usb 2-1: USB disconnect, device number 9
[  496.282728][T14443] input: syz1 as /devices/virtual/input/input31
[  496.297092][T14457] hub 2-0:1.0: USB hub found
[  496.307538][T14457] hub 2-0:1.0: 6 ports detected
[  496.497083][ T5391] usb 2-1: new high-speed USB device number 10 using ehci-pci
[  496.723993][ T5391] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  496.726919][ T5391] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  496.729095][ T5391] usb 2-1: Product: QEMU USB Tablet
[  496.730487][ T5391] usb 2-1: Manufacturer: QEMU
[  496.731882][ T5391] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[  496.764567][ T5391] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0021/input/input32
[  496.830250][T14459] bridge0: port 3(syz_tun) entered blocking state
[  496.832454][T14459] bridge0: port 3(syz_tun) entered disabled state
[  496.842233][ T5391] hid-generic 0003:0627:0001.0021: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  496.931497][T14465] FAULT_INJECTION: forcing a failure.
[  496.931497][T14465] name failslab, interval 1, probability 0, space 0, times 0
[  496.940485][T14465] CPU: 0 UID: 0 PID: 14465 Comm: syz.3.2646 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  496.943145][T14465] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  496.945954][T14465] Call Trace:
[  496.946805][T14465]  <TASK>
[  496.947537][T14465]  dump_stack_lvl+0x16c/0x1f0
[  496.948758][T14465]  should_fail_ex+0x497/0x5b0
[  496.949961][T14465]  ? fs_reclaim_acquire+0xae/0x160
[  496.951229][T14465]  should_failslab+0xc2/0x120
[  496.952383][T14465]  __kmalloc_noprof+0xcb/0x410
[  496.953574][T14465]  tomoyo_encode2+0x100/0x3e0
[  496.955153][T14465]  tomoyo_realpath_from_path+0x1a7/0x710
[  496.957057][T14465]  ? tomoyo_profile+0x47/0x60
[  496.958627][T14465]  tomoyo_path_number_perm+0x245/0x5b0
[  496.960479][T14465]  ? tomoyo_path_number_perm+0x232/0x5b0
[  496.962165][T14465]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  496.963862][T14465]  ? __pfx_lock_release+0x10/0x10
[  496.965443][T14465]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  496.967010][T14465]  ? __fget_files+0x256/0x400
[  496.968196][T14465]  security_file_ioctl_compat+0x75/0xc0
[  496.969604][T14465]  __do_compat_sys_ioctl+0x5d/0x330
[  496.970921][T14465]  __do_fast_syscall_32+0x73/0x120
[  496.972190][T14465]  do_fast_syscall_32+0x32/0x80
[  496.973486][T14465]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  496.975372][T14465] RIP: 0023:0xf7ff7579
[  496.976453][T14465] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  496.981824][T14465] RSP: 002b:00000000f575556c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  496.984233][T14465] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000000541b
[  496.986224][T14465] RDX: 0000000020000ec0 RSI: 0000000000000000 RDI: 0000000000000000
[  496.988268][T14465] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  496.990265][T14465] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  496.992312][T14465] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  496.994305][T14465]  </TASK>
[  497.008183][T14465] ERROR: Out of memory at tomoyo_realpath_from_path.
[  498.705933][T14488] usb usb1: usbfs: process 14488 (syz.1.2653) did not claim interface 0 before use
[  498.878639][T14491] usb 2-1: USB disconnect, device number 10
[  499.031058][T14499] hub 2-0:1.0: USB hub found
[  499.033776][T14499] hub 2-0:1.0: 6 ports detected
[  499.212254][ T5393] usb 2-1: new high-speed USB device number 11 using ehci-pci
[  499.293042][T14509] FAULT_INJECTION: forcing a failure.
[  499.293042][T14509] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  499.296448][T14509] CPU: 2 UID: 0 PID: 14509 Comm: syz.0.2658 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  499.299158][T14509] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  499.301959][T14509] Call Trace:
[  499.302844][T14509]  <TASK>
[  499.303674][T14509]  dump_stack_lvl+0x16c/0x1f0
[  499.304932][T14509]  should_fail_ex+0x497/0x5b0
[  499.306177][T14509]  _copy_to_user+0x30/0xc0
[  499.307355][T14509]  bpf_test_finish.isra.0+0x52b/0x680
[  499.308768][T14509]  ? __pfx_bpf_test_finish.isra.0+0x10/0x10
[  499.310318][T14509]  ? krealloc_noprof+0xa7/0x100
[  499.311603][T14509]  bpf_prog_test_run_skb+0x11bb/0x2140
[  499.313050][T14509]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  499.314583][T14509]  ? fput+0x32/0x390
[  499.315631][T14509]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  499.317181][T14509]  __sys_bpf+0x1af6/0x55e0
[  499.318366][T14509]  ? __pfx___sys_bpf+0x10/0x10
[  499.319628][T14509]  ? ksys_write+0x12f/0x260
[  499.320838][T14509]  ? find_held_lock+0x2d/0x110
[  499.322157][T14509]  ? ksys_write+0x21c/0x260
[  499.323357][T14509]  ? __pfx_lock_release+0x10/0x10
[  499.324695][T14509]  ? vfs_write+0x14d/0x1140
[  499.325903][T14509]  ? __mutex_unlock_slowpath+0x164/0x650
[  499.327374][T14509]  ? fput+0x32/0x390
[  499.328422][T14509]  ? ksys_write+0x1ab/0x260
[  499.329623][T14509]  ? __pfx_ksys_write+0x10/0x10
[  499.330910][T14509]  __ia32_sys_bpf+0x76/0xe0
[  499.332109][T14509]  __do_fast_syscall_32+0x73/0x120
[  499.333468][T14509]  do_fast_syscall_32+0x32/0x80
[  499.334746][T14509]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  499.336417][T14509] RIP: 0023:0xf7fa1579
[  499.337465][T14509] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  499.342390][T14509] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  499.344539][T14509] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000000
[  499.346584][T14509] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  499.348637][T14509] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  499.350690][T14509] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  499.352754][T14509] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  499.354808][T14509]  </TASK>
[  499.355967][    C2] hpet: Lost 3 RTC interrupts
[  499.445300][ T5393] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[  499.449053][ T5393] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[  499.456848][ T5393] usb 2-1: Product: QEMU USB Tablet
[  499.460042][ T5393] usb 2-1: Manufacturer: QEMU
[  499.464693][ T5393] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[  499.535557][ T5393] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0022/input/input33
[  499.577193][ T5393] hid-generic 0003:0627:0001.0022: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[  499.688332][ T5844] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  499.831499][ T5844] usb 5-1: device descriptor read/64, error -71
[  500.003035][T14524] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2662'.
[  500.128526][ T5844] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  500.133401][   T39] audit: type=1804 audit(2000000005.154:277): pid=14527 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2663" name="/newroot/180/bus/bus" dev="overlay" ino=1006 res=1 errno=0
[  500.288374][ T5844] usb 5-1: device descriptor read/64, error -71
[  500.404091][ T5844] usb usb5-port1: attempt power cycle
[  500.564884][ T5415] kernel write not supported for file /input/event2 (pid: 5415 comm: kworker/1:3)
[  500.813570][ T5844] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  500.851389][ T5844] usb 5-1: device descriptor read/8, error -71
[  501.144729][ T5844] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  501.145270][T14551] overlayfs: failed to resolve './file0': -2
[  501.203169][ T5844] usb 5-1: device descriptor read/8, error -71
[  501.328112][ T5844] usb usb5-port1: unable to enumerate USB device
[  501.760826][T14559] random: crng reseeded on system resumption
[  501.916630][T14561] netlink: 'syz.1.2674': attribute type 11 has an invalid length.
[  502.706848][T14585] netlink: 'syz.2.2683': attribute type 11 has an invalid length.
[  503.536048][T14608] sctp: [Deprecated]: syz.3.2690 (pid 14608) Use of int in maxseg socket option.
[  503.536048][T14608] Use struct sctp_assoc_value instead
[  503.869858][   T56] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[  504.100047][   T56] usb 8-1: config 0 has an invalid interface number: 230 but max is 0
[  504.102261][   T56] usb 8-1: config 0 has an invalid interface number: 48 but max is 0
[  504.104375][   T56] usb 8-1: config 0 contains an unexpected descriptor of type 0x1, skipping
[  504.106686][   T56] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  504.109662][   T56] usb 8-1: config 0 has 2 interfaces, different from the descriptor's value: 1
[  504.113323][   T56] usb 8-1: config 0 has no interface number 0
[  504.115320][   T56] usb 8-1: config 0 has no interface number 1
[  504.117147][   T56] usb 8-1: config 0 interface 230 altsetting 0 endpoint 0x4 has invalid maxpacket 1023, setting to 64
[  504.120759][   T56] usb 8-1: config 0 interface 230 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 14
[  504.124344][   T56] usb 8-1: too many endpoints for config 0 interface 48 altsetting 31: 64, using maximum allowed: 30
[  504.127519][   T56] usb 8-1: config 0 interface 48 altsetting 31 bulk endpoint 0xB has invalid maxpacket 1024
[  504.130321][   T56] usb 8-1: config 0 interface 48 altsetting 31 has a duplicate endpoint with address 0x4, skipping
[  504.133411][   T56] usb 8-1: config 0 interface 48 altsetting 31 has an invalid descriptor for endpoint zero, skipping
[  504.136252][   T56] usb 8-1: config 0 interface 48 altsetting 31 has a duplicate endpoint with address 0x6, skipping
[  504.150822][   T56] usb 8-1: config 0 interface 48 altsetting 31 has 8 endpoint descriptors, different from the interface descriptor's value: 64
[  504.154259][   T56] usb 8-1: config 0 interface 48 has no altsetting 0
[  504.175462][   T56] usb 8-1: New USB device found, idVendor=0c52, idProduct=2832, bcdDevice=fb.70
[  504.177906][   T56] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  504.180147][   T56] usb 8-1: Product: syz
[  504.181290][   T56] usb 8-1: Manufacturer: syz
[  504.182550][   T56] usb 8-1: SerialNumber: syz
[  504.194351][   T56] usb 8-1: config 0 descriptor??
[  504.245083][   T56] ftdi_sio 8-1:0.230: FTDI USB Serial Device converter detected
[  504.250282][   T56] ftdi_sio ttyUSB0: unknown device type: 0xfb70
[  504.497864][   T56] ftdi_sio 8-1:0.48: FTDI USB Serial Device converter detected
[  504.510406][   T56] ftdi_sio ttyUSB1: unknown device type: 0xfb70
[  504.518493][   T56] usb 8-1: USB disconnect, device number 23
[  504.524953][   T56] ftdi_sio 8-1:0.230: device disconnected
[  504.539996][   T56] ftdi_sio 8-1:0.48: device disconnected
[  504.956365][    T8] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  505.141565][    T8] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  505.144324][    T8] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  505.147040][    T8] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  505.156225][    T8] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  505.161151][T14627] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  505.166758][    T8] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  505.216472][T14633] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2698'.
[  505.728504][T14647] usb usb1: usbfs: process 14647 (syz.1.2703) did not claim interface 0 before use
[  505.810765][  T831] usb 7-1: USB disconnect, device number 12
[  506.444916][T14663] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2710'.
[  506.503962][T14678] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2712'.
[  506.680058][T14691] FAULT_INJECTION: forcing a failure.
[  506.680058][T14691] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  506.690878][T14691] CPU: 1 UID: 0 PID: 14691 Comm: syz.0.2717 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  506.693723][T14691] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  506.696469][T14691] Call Trace:
[  506.697300][T14691]  <TASK>
[  506.698067][T14691]  dump_stack_lvl+0x16c/0x1f0
[  506.699275][T14691]  should_fail_ex+0x497/0x5b0
[  506.700696][T14691]  _copy_to_user+0x30/0xc0
[  506.702143][T14691]  simple_read_from_buffer+0xd0/0x160
[  506.703960][T14691]  proc_fail_nth_read+0x19e/0x280
[  506.705360][T14691]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  506.706747][T14691]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  506.708116][T14691]  vfs_read+0x1d4/0xbd0
[  506.709213][T14691]  ? __fdget_pos+0xeb/0x180
[  506.710489][T14691]  ? __pfx_vfs_read+0x10/0x10
[  506.711702][T14691]  ? __pfx___mutex_lock+0x10/0x10
[  506.712978][T14691]  ? __fget_files+0x256/0x400
[  506.714162][T14691]  ksys_read+0x12f/0x260
[  506.715229][T14691]  ? __pfx_ksys_read+0x10/0x10
[  506.716463][T14691]  __do_fast_syscall_32+0x73/0x120
[  506.717789][T14691]  do_fast_syscall_32+0x32/0x80
[  506.719056][T14691]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  506.720652][T14691] RIP: 0023:0xf7fa1579
[  506.721684][T14691] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  506.726396][T14691] RSP: 002b:00000000f57265a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  506.728450][T14691] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5726620
[  506.730359][T14691] RDX: 000000000000000f RSI: 00000000f742bff4 RDI: 0000000000000000
[  506.732337][T14691] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  506.734317][T14691] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  506.736378][T14691] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  506.738417][T14691]  </TASK>
[  507.183653][T14702] usb usb1: usbfs: process 14702 (syz.0.2720) did not claim interface 0 before use
[  507.216716][T14704] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2721'.
[  507.269825][T14708] vlan0: entered promiscuous mode
[  507.271380][T14708] vlan0: entered allmulticast mode
[  507.272781][T14708] veth0_vlan: entered allmulticast mode
[  507.434956][T14721] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2725'.
[  507.770023][T14725] usb usb1: usbfs: process 14725 (syz.2.2729) did not claim interface 0 before use
[  507.813518][T14729] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2731'.
[  507.883365][   T39] audit: type=1326 audit(2000000013.290:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14730 comm="syz.2.2732" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb6579 code=0x0
[  509.372675][T14761] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2741'.
[  509.409644][T14760] usb usb1: usbfs: process 14760 (syz.1.2740) did not claim interface 0 before use
[  509.969705][   T39] audit: type=1326 audit(2000000015.484:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14779 comm="syz.1.2747" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf741e579 code=0x0
[  510.162377][T14782] netlink: 1264 bytes leftover after parsing attributes in process `syz.1.2747'.
[  510.446401][T14785] binder: 14784:14785 ioctl c0306201 200002c0 returned -14
[  510.449071][T14785] binder: 14784:14785 ioctl 941c 0 returned -22
[  510.462846][T14785] binder: 14784:14785 ioctl 4b40 20000640 returned -22
[  510.664819][T14790] usb usb1: usbfs: process 14790 (syz.3.2751) did not claim interface 0 before use
[  511.461403][T14815] usb usb1: usbfs: process 14815 (syz.0.2760) did not claim interface 0 before use
[  511.775482][   T39] audit: type=1326 audit(2000000017.363:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14836 comm="syz.3.2767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  511.785217][   T39] audit: type=1326 audit(2000000017.374:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14836 comm="syz.3.2767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  511.795357][   T39] audit: type=1326 audit(2000000017.374:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14836 comm="syz.3.2767" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  511.806318][   T39] audit: type=1326 audit(2000000017.374:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14836 comm="syz.3.2767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  511.822262][   T39] audit: type=1326 audit(2000000017.374:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14836 comm="syz.3.2767" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  511.827971][   T39] audit: type=1326 audit(2000000017.374:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14836 comm="syz.3.2767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  511.834114][   T39] audit: type=1326 audit(2000000017.374:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14836 comm="syz.3.2767" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  511.840235][   T39] audit: type=1326 audit(2000000017.374:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14836 comm="syz.3.2767" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  511.854314][T14838] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  512.126394][T14846] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2769'.
[  512.214402][ T5391] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  512.246876][T14846] Invalid ELF header magic: != ELF
[  512.343278][T14848] usb usb1: usbfs: process 14848 (syz.1.2770) did not claim interface 0 before use
[  512.390186][ T5391] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  512.392760][ T5391] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  512.395336][ T5391] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  512.405032][ T5391] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  512.424481][ T5391] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  512.426761][ T5391] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  512.429349][ T5391] usb 8-1: Product: syz
[  512.430414][ T5391] usb 8-1: Manufacturer: syz
[  512.439277][ T5391] cdc_wdm 8-1:1.0: skipping garbage
[  512.440645][ T5391] cdc_wdm 8-1:1.0: skipping garbage
[  512.446456][ T5391] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  512.448173][ T5391] cdc_wdm 8-1:1.0: Unknown control protocol
[  512.676581][   T56] usb 8-1: USB disconnect, device number 24
[  513.519006][T14887] usb usb1: usbfs: process 14887 (syz.1.2779) did not claim interface 0 before use
[  515.675773][T14931] usb usb1: usbfs: process 14931 (syz.2.2794) did not claim interface 0 before use
[  516.124386][   T39] kauditd_printk_skb: 63 callbacks suppressed
[  516.124398][   T39] audit: type=1326 audit(2000000021.940:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14941 comm="syz.3.2798" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x0
[  516.418832][T14954] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2801'.
[  516.465920][ T5364] Bluetooth: hci2: ACL packet for unknown connection handle 1993
[  516.507932][T14963] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2804'.
[  516.701423][T14965] fuse: root generation should be zero
[  516.712267][T14965] syzkaller1: entered promiscuous mode
[  516.713806][T14965] syzkaller1: entered allmulticast mode
[  516.868990][T14976] usb usb1: usbfs: process 14976 (syz.2.2808) did not claim interface 0 before use
[  516.882407][T14979] netlink: 'syz.1.2809': attribute type 9 has an invalid length.
[  516.884627][T14979] netlink: 134660 bytes leftover after parsing attributes in process `syz.1.2809'.
[  516.961622][T14987] lo speed is unknown, defaulting to 1000
[  516.979496][   T39] audit: type=1804 audit(2000000022.843:352): pid=14984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.2811" name="/newroot/208/file0/bus" dev="hugetlbfs" ino=53558 res=1 errno=0
[  516.996167][    T8] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  517.039744][T14987] lo speed is unknown, defaulting to 1000
[  517.103024][   T39] audit: type=1326 audit(2000000022.969:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14994 comm="syz.3.2815" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x0
[  517.168076][    T8] usb 5-1: Using ep0 maxpacket: 16
[  517.171182][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  517.174152][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  517.176700][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  517.180647][    T8] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  517.182996][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  517.186298][    T8] usb 5-1: config 0 descriptor??
[  517.270952][   T39] audit: type=1326 audit(2000000023.148:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14994 comm="syz.3.2815" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  517.286782][   T39] audit: type=1326 audit(2000000023.148:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14994 comm="syz.3.2815" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  517.301445][   T39] audit: type=1326 audit(2000000023.148:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14994 comm="syz.3.2815" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  517.320212][   T39] audit: type=1326 audit(2000000023.148:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14994 comm="syz.3.2815" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  517.330500][   T39] audit: type=1326 audit(2000000023.148:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14994 comm="syz.3.2815" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  517.345080][   T39] audit: type=1326 audit(2000000023.148:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14994 comm="syz.3.2815" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  517.358264][   T39] audit: type=1326 audit(2000000023.148:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14994 comm="syz.3.2815" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff7579 code=0x7ffc0000
[  517.615036][    T8] usbhid 5-1:0.0: can't add hid device: -71
[  517.623753][    T8] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  517.638825][    T8] usb 5-1: USB disconnect, device number 26
[  518.927659][T15024] usb usb1: usbfs: process 15024 (syz.0.2824) did not claim interface 0 before use
[  518.984467][    T8] IPVS: starting estimator thread 0...
[  519.092250][T15027] IPVS: using max 34 ests per chain, 81600 per kthread
[  519.104670][ T5844] usb 7-1: new low-speed USB device number 13 using dummy_hcd
[  519.277459][ T5844] usb 7-1: unable to read config index 0 descriptor/start: -61
[  519.279476][ T5844] usb 7-1: can't read configurations, error -61
[  519.435138][ T5844] usb 7-1: new low-speed USB device number 14 using dummy_hcd
[  519.627060][ T5844] usb 7-1: unable to read config index 0 descriptor/start: -61
[  519.629109][ T5844] usb 7-1: can't read configurations, error -61
[  519.635376][ T5844] usb usb7-port1: attempt power cycle
[  520.044407][ T5844] usb 7-1: new low-speed USB device number 15 using dummy_hcd
[  520.077782][ T5844] usb 7-1: unable to read config index 0 descriptor/start: -61
[  520.079962][ T5844] usb 7-1: can't read configurations, error -61
[  520.225767][ T5844] usb 7-1: new low-speed USB device number 16 using dummy_hcd
[  520.275595][ T5844] usb 7-1: unable to read config index 0 descriptor/start: -61
[  520.277638][ T5844] usb 7-1: can't read configurations, error -61
[  520.279547][ T5844] usb usb7-port1: unable to enumerate USB device
[  520.762469][T15057] usb usb1: usbfs: process 15057 (syz.0.2833) did not claim interface 0 before use
[  521.177825][    T8] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  521.187708][    T8] hid-generic 0000:0000:0000.0023: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  522.308422][T15095] usb usb1: usbfs: process 15095 (syz.0.2842) did not claim interface 0 before use
[  522.313120][T15101] tipc: Failed to obtain node identity
[  522.314592][T15101] tipc: Enabling of bearer <ib:veth1_to_hsr> rejected, failed to enable media
[  522.322190][T15101] bridge0: entered promiscuous mode
[  522.323584][T15101] bridge0: entered allmulticast mode
[  522.329503][T15101] openvswitch: netlink: Unexpected mask (mask=200040, allowed=10048)
[  522.653370][T15120] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2852'.
[  523.135343][T15134] usb usb1: usbfs: process 15134 (syz.0.2856) did not claim interface 0 before use
[  523.802921][T15153] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2862'.
[  523.829948][T15153] bond0: (slave netdevsim0): Releasing backup interface
[  523.840156][T15153] batman_adv: batadv1: Adding interface: netdevsim0
[  523.842161][T15153] batman_adv: batadv1: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  523.848977][T15153] batman_adv: batadv1: Not using interface netdevsim0 (retrying later): interface not active
[  525.427596][T15181] random: crng reseeded on system resumption
[  525.457086][T15187] FAULT_INJECTION: forcing a failure.
[  525.457086][T15187] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  525.464840][T15187] CPU: 3 UID: 0 PID: 15187 Comm: syz.2.2872 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  525.467611][T15187] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  525.470451][T15187] Call Trace:
[  525.471351][T15187]  <TASK>
[  525.472153][T15187]  dump_stack_lvl+0x16c/0x1f0
[  525.473409][T15187]  should_fail_ex+0x497/0x5b0
[  525.474683][T15187]  _copy_from_user+0x30/0xf0
[  525.476011][T15187]  get_compat_msghdr+0xa8/0x170
[  525.477350][T15187]  ? __pfx_get_compat_msghdr+0x10/0x10
[  525.478782][T15187]  ? kfree+0x245/0x3b0
[  525.479871][T15187]  ___sys_sendmsg+0x1b0/0x1e0
[  525.481151][T15187]  ? __pfx____sys_sendmsg+0x10/0x10
[  525.482539][T15187]  ? __pfx_lock_release+0x10/0x10
[  525.483875][T15187]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  525.485395][T15187]  ? __pfx___might_resched+0x10/0x10
[  525.486788][T15187]  ? __fget_light+0x173/0x210
[  525.488047][T15187]  __sys_sendmmsg+0x2a5/0x450
[  525.489304][T15187]  ? __pfx___sys_sendmmsg+0x10/0x10
[  525.490677][T15187]  ? vfs_write+0x14d/0x1140
[  525.491978][T15187]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  525.493578][T15187]  ? fput+0x32/0x390
[  525.494625][T15187]  ? ksys_write+0x1ab/0x260
[  525.495864][T15187]  ? __pfx_ksys_write+0x10/0x10
[  525.497175][T15187]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  525.498653][T15187]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  525.500383][T15187]  __do_fast_syscall_32+0x73/0x120
[  525.501734][T15187]  do_fast_syscall_32+0x32/0x80
[  525.503021][T15187]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  525.504688][T15187] RIP: 0023:0xf7fb6579
[  525.505769][T15187] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  525.510820][T15187] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  525.513010][T15187] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020005400
[  525.515075][T15187] RDX: 00000000000001ee RSI: 0000000000000000 RDI: 0000000000000000
[  525.517161][T15187] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  525.519234][T15187] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  525.521312][T15187] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  525.523422][T15187]  </TASK>
[  525.572629][T15190] FAULT_INJECTION: forcing a failure.
[  525.572629][T15190] name failslab, interval 1, probability 0, space 0, times 0
[  525.576097][T15190] CPU: 2 UID: 0 PID: 15190 Comm: syz.2.2873 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  525.578835][T15190] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  525.581694][T15190] Call Trace:
[  525.582600][T15190]  <TASK>
[  525.583394][T15190]  dump_stack_lvl+0x16c/0x1f0
[  525.584664][T15190]  should_fail_ex+0x497/0x5b0
[  525.585913][T15190]  should_failslab+0xc2/0x120
[  525.587153][T15190]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  525.588650][T15190]  ? skb_clone+0x190/0x3f0
[  525.589840][T15190]  skb_clone+0x190/0x3f0
[  525.590975][T15190]  netlink_deliver_tap+0xb26/0xcf0
[  525.592349][T15190]  netlink_unicast+0x5e1/0x7f0
[  525.593631][T15190]  ? __pfx_netlink_unicast+0x10/0x10
[  525.595073][T15190]  ? __phys_addr_symbol+0x30/0x80
[  525.596448][T15190]  ? __check_object_size+0x497/0x720
[  525.597852][T15190]  netlink_sendmsg+0x8b8/0xd70
[  525.599121][T15190]  ? __pfx_netlink_sendmsg+0x10/0x10
[  525.600535][T15190]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  525.601949][T15190]  ____sys_sendmsg+0x9b4/0xb50
[  525.603226][T15190]  ? __pfx_____sys_sendmsg+0x10/0x10
[  525.604621][T15190]  ? get_compat_msghdr+0x11b/0x170
[  525.605997][T15190]  ? __pfx___lock_acquire+0x10/0x10
[  525.607370][T15190]  ___sys_sendmsg+0x135/0x1e0
[  525.608649][T15190]  ? __pfx____sys_sendmsg+0x10/0x10
[  525.610028][T15190]  ? ksys_write+0x21c/0x260
[  525.611258][T15190]  ? __fget_light+0x173/0x210
[  525.612545][T15190]  __sys_sendmsg+0x117/0x1f0
[  525.613790][T15190]  ? __pfx___sys_sendmsg+0x10/0x10
[  525.615176][T15190]  __do_fast_syscall_32+0x73/0x120
[  525.616572][T15190]  do_fast_syscall_32+0x32/0x80
[  525.617881][T15190]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  525.619545][T15190] RIP: 0023:0xf7fb6579
[  525.620643][T15190] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  525.625652][T15190] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  525.627853][T15190] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000100
[  525.629949][T15190] RDX: 0000000004000080 RSI: 0000000000000000 RDI: 0000000000000000
[  525.632020][T15190] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  525.634097][T15190] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  525.636183][T15190] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  525.638331][T15190]  </TASK>
[  525.639591][    C2] hpet_rtc_timer_reinit: 38 callbacks suppressed
[  525.639600][    C2] hpet: Lost 3 RTC interrupts
[  525.640480][T15191] usb usb1: usbfs: process 15191 (syz.0.2871) did not claim interface 0 before use
[  526.639262][T15210] netlink: 'syz.0.2879': attribute type 11 has an invalid length.
[  528.107234][T15234] usb usb1: usbfs: process 15234 (syz.2.2886) did not claim interface 0 before use
[  528.253844][T15238] netlink: 'syz.1.2888': attribute type 11 has an invalid length.
[  529.878002][T15271] netlink: 'syz.3.2897': attribute type 11 has an invalid length.
[  530.763906][T15282] usb usb1: usbfs: process 15282 (syz.0.2899) did not claim interface 0 before use
[  532.277270][T15304] netlink: 'syz.2.2906': attribute type 11 has an invalid length.
[  533.229357][T15319] usb usb1: usbfs: process 15319 (syz.0.2909) did not claim interface 0 before use
[  534.793716][T15345] netlink: 'syz.3.2917': attribute type 11 has an invalid length.
[  535.705669][T15352] usb usb1: usbfs: process 15352 (syz.3.2919) did not claim interface 0 before use
[  537.426734][T15378] netlink: 'syz.0.2926': attribute type 11 has an invalid length.
[  537.815863][T15387] usb usb1: usbfs: process 15387 (syz.3.2928) did not claim interface 0 before use
[  538.893104][T15410] netlink: 'syz.3.2935': attribute type 11 has an invalid length.
[  540.460953][T15424] usb usb1: usbfs: process 15424 (syz.3.2938) did not claim interface 0 before use
[  541.233869][T15441] netlink: 'syz.0.2944': attribute type 11 has an invalid length.
[  542.246307][   T45] bridge_slave_1: left allmulticast mode
[  542.247813][   T45] bridge_slave_1: left promiscuous mode
[  542.256516][   T45] bridge0: port 2(bridge_slave_1) entered disabled state
[  542.269396][   T45] bridge_slave_0: left allmulticast mode
[  542.270930][   T45] bridge_slave_0: left promiscuous mode
[  542.272557][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  542.463462][T15460] usb usb1: usbfs: process 15460 (syz.2.2949) did not claim interface 0 before use
[  542.518963][   T45] dvmrp1 (unregistering): left allmulticast mode
[  543.048902][   T45] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  543.102601][   T45] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  543.111975][   T45] bond0 (unregistering): Released all slaves
[  543.177728][   T45] tipc: Left network mode
[  543.428031][T15477] netlink: 'syz.1.2953': attribute type 11 has an invalid length.
[  543.612710][   T45] hsr_slave_0: left promiscuous mode
[  543.718450][   T45] hsr_slave_1: left promiscuous mode
[  543.723635][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  543.726075][   T45] batman_adv: batadv0: Removing interface: batadv_slave_0
[  543.730563][   T45] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  543.732588][   T45] batman_adv: batadv0: Removing interface: batadv_slave_1
[  543.784864][   T45] veth1_macvtap: left promiscuous mode
[  543.786492][   T45] veth0_macvtap: left promiscuous mode
[  543.788498][   T45] veth1_vlan: left promiscuous mode
[  543.790043][   T45] veth0_vlan: left promiscuous mode
[  544.770182][T15494] usb usb1: usbfs: process 15494 (syz.2.2958) did not claim interface 0 before use
[  545.983926][T15514] netlink: 'syz.1.2963': attribute type 11 has an invalid length.
[  546.203080][   T45] team0 (unregistering): Port device team_slave_1 removed
[  546.337659][   T45] team0 (unregistering): Port device team_slave_0 removed
[  548.865079][T15554] netlink: 'syz.3.2976': attribute type 11 has an invalid length.
[  549.210364][   T45] IPVS: stop unused estimator thread 0...
[  549.394638][T15563] usb usb1: usbfs: process 15563 (syz.2.2978) did not claim interface 0 before use
[  550.871172][T15586] netlink: 'syz.0.2985': attribute type 11 has an invalid length.
[  551.099382][T15592] usb usb1: usbfs: process 15592 (syz.0.2987) did not claim interface 0 before use
[  551.871685][ T1376] ieee802154 phy0 wpan0: encryption failed: -22
[  551.985862][ T4778] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  551.990613][ T4778] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  551.995495][ T4778] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  551.998221][ T4778] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  552.001611][ T4778] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  552.010096][ T4778] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  552.034892][T15605] lo speed is unknown, defaulting to 1000
[  552.208828][T12364] syz_tun (unregistering): left allmulticast mode
[  552.230785][T15605] lo speed is unknown, defaulting to 1000
[  552.467004][T15605] chnl_net:caif_netlink_parms(): no params data found
[  552.730759][ T6851] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  552.765195][T15605] bridge0: port 1(bridge_slave_0) entered blocking state
[  552.767119][T15605] bridge0: port 1(bridge_slave_0) entered disabled state
[  552.769026][T15605] bridge_slave_0: entered allmulticast mode
[  552.776367][T15605] bridge_slave_0: entered promiscuous mode
[  552.783186][T15605] bridge0: port 2(bridge_slave_1) entered blocking state
[  552.788793][T15605] bridge0: port 2(bridge_slave_1) entered disabled state
[  552.793148][T15605] bridge_slave_1: entered allmulticast mode
[  552.798895][T15605] bridge_slave_1: entered promiscuous mode
[  552.877610][ T6851] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  552.904151][T15605] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  552.909424][T15605] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  553.019615][ T6851] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  553.063160][T15605] team0: Port device team_slave_0 added
[  553.067690][T15605] team0: Port device team_slave_1 added
[  553.153092][ T6851] batman_adv: batadv1: Removing interface: netdevsim0
[  553.158515][ T6851] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  553.163837][T15605] batman_adv: batadv0: Adding interface: batadv_slave_0
[  553.166050][T15605] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  553.172624][T15605] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  553.176751][T15605] batman_adv: batadv0: Adding interface: batadv_slave_1
[  553.178918][T15605] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  553.190383][T15605] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  553.234573][T15605] hsr_slave_0: entered promiscuous mode
[  553.237230][T15605] hsr_slave_1: entered promiscuous mode
[  553.239405][T15605] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  553.243781][T15605] Cannot create hsr debugfs directory
[  553.447744][ T6851] bridge0: port 2(bridge_slave_1) entered disabled state
[  553.470527][ T6851] bridge_slave_0: left allmulticast mode
[  553.472435][ T6851] bridge_slave_0: left promiscuous mode
[  553.474066][ T6851] bridge0: port 1(bridge_slave_0) entered disabled state
[  553.595150][T15638] netlink: 'syz.1.2996': attribute type 11 has an invalid length.
[  553.883119][ T6851] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  553.887252][ T6851] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  553.892825][ T6851] bond0 (unregistering): Released all slaves
[  553.953448][ T6851] tipc: Left network mode
[  553.994645][ T6851] IPVS: stopping master sync thread 9730 ...
[  554.003772][ T5364] Bluetooth: hci3: command tx timeout
[  554.419467][ T6851] hsr_slave_0: left promiscuous mode
[  554.428476][ T6851] hsr_slave_1: left promiscuous mode
[  554.437997][ T6851] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  554.439921][ T6851] batman_adv: batadv0: Removing interface: batadv_slave_0
[  554.442466][ T6851] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  554.444442][ T6851] batman_adv: batadv0: Removing interface: batadv_slave_1
[  554.535921][ T6851] veth1_macvtap: left promiscuous mode
[  554.542601][ T6851] veth0_macvtap: left promiscuous mode
[  554.550857][ T6851] veth1_vlan: left promiscuous mode
[  554.554520][ T6851] veth0_vlan: left promiscuous mode
[  554.650036][ T6851] infiniband syz1: set down
[  554.677173][T15663] usb usb1: usbfs: process 15663 (syz.0.3001) did not claim interface 0 before use
[  555.771423][ T6851] team0 (unregistering): Port device team_slave_1 removed
[  555.888860][ T6851] team0 (unregistering): Port device team_slave_0 removed
[  555.994467][ T5364] Bluetooth: hci3: command tx timeout
[  556.000188][T15684] netlink: 'syz.1.3006': attribute type 11 has an invalid length.
[  556.793148][T12325] smc: removing ib device syz1
[  556.800936][   T10] lo speed is unknown, defaulting to 1000
[  556.802731][ T5393] lo speed is unknown, defaulting to 1000
[  556.951790][T15605] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  556.961606][T15605] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  556.996643][T15605] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  557.006794][T15605] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  557.148049][T15605] 8021q: adding VLAN 0 to HW filter on device bond0
[  557.183586][T15605] 8021q: adding VLAN 0 to HW filter on device team0
[  557.195923][ T1102] bridge0: port 1(bridge_slave_0) entered blocking state
[  557.197822][ T1102] bridge0: port 1(bridge_slave_0) entered forwarding state
[  557.201779][ T1102] bridge0: port 2(bridge_slave_1) entered blocking state
[  557.203684][ T1102] bridge0: port 2(bridge_slave_1) entered forwarding state
[  557.249449][T15692] usb usb1: usbfs: process 15692 (syz.0.3010) did not claim interface 0 before use
[  557.259283][T15605] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  557.263425][T15605] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  557.418737][T15605] 8021q: adding VLAN 0 to HW filter on device batadv0
[  557.466283][T15605] veth0_vlan: entered promiscuous mode
[  557.477038][T15605] veth1_vlan: entered promiscuous mode
[  557.501222][T15605] veth0_macvtap: entered promiscuous mode
[  557.501854][ T6851] IPVS: stop unused estimator thread 0...
[  557.505225][T15605] veth1_macvtap: entered promiscuous mode
[  557.515730][T15605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  557.518378][T15605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.524149][T15605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  557.526755][T15605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.530544][T15605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  557.533188][T15605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.536732][T15605] batman_adv: batadv0: Interface activated: batadv_slave_0
[  557.540951][T15605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  557.543613][T15605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.546303][T15605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  557.548975][T15605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.551447][T15605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  557.554100][T15605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  557.560066][T15605] batman_adv: batadv0: Interface activated: batadv_slave_1
[  557.568256][T15605] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  557.570655][T15605] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  557.574364][T15605] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  557.581133][T15605] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  557.651332][T12325] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  557.659817][T12325] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  557.674707][ T6851] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  557.676803][ T6851] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  557.700922][  T112] EXT4-fs warning (device sda1): es_reclaim_extents:1827: forced shrink of precached extents
[  557.975906][ T5364] Bluetooth: hci3: command tx timeout
[  558.789728][T15724] netlink: 'syz.1.3016': attribute type 11 has an invalid length.
[  559.947612][ T5364] Bluetooth: hci3: command tx timeout
[  560.720089][T15771] netlink: 'syz.3.3029': attribute type 11 has an invalid length.
[  561.882542][T15804] netlink: 'syz.1.3039': attribute type 11 has an invalid length.
[  562.176753][T15808] usb usb1: usbfs: process 15808 (syz.1.3040) did not claim interface 0 before use
[  563.462891][T15836] netlink: 'syz.1.3048': attribute type 11 has an invalid length.
[  563.706525][T15840] usb usb1: usbfs: process 15840 (syz.0.3049) did not claim interface 0 before use
[  565.272659][T15868] netlink: 'syz.2.3058': attribute type 11 has an invalid length.
[  566.886162][T15901] netlink: 'syz.1.3067': attribute type 11 has an invalid length.
[  567.582824][T15923] usb usb1: usbfs: process 15923 (syz.3.3073) did not claim interface 0 before use
[  568.979693][T15956] usb usb1: usbfs: process 15956 (syz.0.3082) did not claim interface 0 before use
[  570.136046][T15977] netem: unknown loss type 0
[  570.138194][T15977] netem: change failed
[  570.360706][T15986] netlink: 'syz.1.3087': attribute type 11 has an invalid length.
[  570.496967][T15995] usb usb1: usbfs: process 15995 (syz.3.3093) did not claim interface 0 before use
[  570.992075][T16011] FAULT_INJECTION: forcing a failure.
[  570.992075][T16011] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  570.995503][T16011] CPU: 2 UID: 0 PID: 16011 Comm: syz.2.3099 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  570.998192][T16011] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  571.000989][T16011] Call Trace:
[  571.001869][T16011]  <TASK>
[  571.002655][T16011]  dump_stack_lvl+0x16c/0x1f0
[  571.003904][T16011]  should_fail_ex+0x497/0x5b0
[  571.005144][T16011]  _copy_from_user+0x30/0xf0
[  571.006407][T16011]  get_compat_msghdr+0xa8/0x170
[  571.007871][T16011]  ? __pfx_get_compat_msghdr+0x10/0x10
[  571.009700][T16011]  ? find_held_lock+0x2d/0x110
[  571.011321][T16011]  ___sys_recvmsg+0x193/0x1a0
[  571.012926][T16011]  ? __pfx____sys_recvmsg+0x10/0x10
[  571.014681][T16011]  ? __fget_light+0x173/0x210
[  571.016286][T16011]  __sys_recvmsg+0x114/0x1e0
[  571.017844][T16011]  ? __pfx___sys_recvmsg+0x10/0x10
[  571.019571][T16011]  __do_fast_syscall_32+0x73/0x120
[  571.021308][T16011]  do_fast_syscall_32+0x32/0x80
[  571.022943][T16011]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  571.025077][T16011] RIP: 0023:0xf7fb6579
[  571.026446][T16011] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  571.032851][T16011] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000174
[  571.035541][T16011] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000380
[  571.038108][T16011] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000000
[  571.040697][T16011] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  571.043288][T16011] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  571.045375][T16011] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  571.047436][T16011]  </TASK>
[  571.048642][    C2] hpet: Lost 2 RTC interrupts
[  571.692246][ T5364] Bluetooth: hci2: unexpected event 0x06 length: 23 > 3
[  572.160198][T16055] FAULT_INJECTION: forcing a failure.
[  572.160198][T16055] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  572.166892][T16055] CPU: 2 UID: 0 PID: 16055 Comm: syz.2.3113 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  572.170390][T16055] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  572.174049][T16055] Call Trace:
[  572.175099][T16055]  <TASK>
[  572.176113][T16055]  dump_stack_lvl+0x16c/0x1f0
[  572.177682][T16055]  should_fail_ex+0x497/0x5b0
[  572.179284][T16055]  _copy_from_user+0x30/0xf0
[  572.180875][T16055]  get_compat_msghdr+0xa8/0x170
[  572.182515][T16055]  ? __pfx_get_compat_msghdr+0x10/0x10
[  572.184372][T16055]  ? __pfx___lock_acquire+0x10/0x10
[  572.186133][T16055]  ___sys_sendmsg+0x1b0/0x1e0
[  572.187742][T16055]  ? __pfx____sys_sendmsg+0x10/0x10
[  572.189505][T16055]  ? ksys_write+0x21c/0x260
[  572.191063][T16055]  ? __fget_light+0x173/0x210
[  572.192674][T16055]  __sys_sendmsg+0x117/0x1f0
[  572.194251][T16055]  ? __pfx___sys_sendmsg+0x10/0x10
[  572.196010][T16055]  __do_fast_syscall_32+0x73/0x120
[  572.197757][T16055]  do_fast_syscall_32+0x32/0x80
[  572.199420][T16055]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  572.201582][T16055] RIP: 0023:0xf7fb6579
[  572.202961][T16055] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  572.209485][T16055] RSP: 002b:00000000f573656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  572.212307][T16055] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000040
[  572.214976][T16055] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  572.217643][T16055] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  572.220302][T16055] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  572.222839][T16055] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  572.225483][T16055]  </TASK>
[  572.227051][    C2] hpet: Lost 3 RTC interrupts
[  573.447033][T16100] FAULT_INJECTION: forcing a failure.
[  573.447033][T16100] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  573.451039][T16100] CPU: 3 UID: 0 PID: 16100 Comm: syz.0.3125 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  573.454283][T16100] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  573.457136][T16100] Call Trace:
[  573.458032][T16100]  <TASK>
[  573.458825][T16100]  dump_stack_lvl+0x16c/0x1f0
[  573.460101][T16100]  should_fail_ex+0x497/0x5b0
[  573.461358][T16100]  _copy_from_user+0x30/0xf0
[  573.462589][T16100]  __sys_bpf+0x239/0x55e0
[  573.463766][T16100]  ? __pfx___sys_bpf+0x10/0x10
[  573.465144][T16100]  ? ksys_write+0x12f/0x260
[  573.466372][T16100]  ? __pfx_lock_release+0x10/0x10
[  573.467715][T16100]  ? proc_fail_nth_write+0xa0/0x260
[  573.469084][T16100]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  573.470561][T16100]  ? vfs_write+0x14d/0x1140
[  573.471780][T16100]  ? do_user_addr_fault+0xdc7/0x13f0
[  573.473060][T16100]  ? reacquire_held_locks+0x20b/0x4c0
[  573.474484][T16100]  ? do_user_addr_fault+0xdc7/0x13f0
[  573.475916][T16100]  ? __pfx_vfs_write+0x10/0x10
[  573.477212][T16100]  ? ksys_write+0x1ab/0x260
[  573.478440][T16100]  ? __pfx_ksys_write+0x10/0x10
[  573.479782][T16100]  __ia32_sys_bpf+0x76/0xe0
[  573.481018][T16100]  __do_fast_syscall_32+0x73/0x120
[  573.482389][T16100]  do_fast_syscall_32+0x32/0x80
[  573.483711][T16100]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  573.485397][T16100] RIP: 0023:0xf7fa1579
[  573.486492][T16100] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  573.491541][T16100] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  573.493821][T16100] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000020000080
[  573.496178][T16100] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[  573.498248][T16100] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  573.500347][T16100] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  573.502415][T16100] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  573.504510][T16100]  </TASK>
[  573.567465][T16102] netlink: 'syz.0.3126': attribute type 11 has an invalid length.
[  573.742640][   T39] audit: type=1326 audit(2000000082.430:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16106 comm="syz.0.3128" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa1579 code=0x10000
[  575.403792][T16130] netlink: 'syz.2.3135': attribute type 11 has an invalid length.
[  576.652238][   T39] audit: type=1804 audit(2000000085.485:400): pid=16158 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3143" name="/newroot/184/file0/bus" dev="hugetlbfs" ino=56971 res=1 errno=0
[  576.880153][T16163] FAULT_INJECTION: forcing a failure.
[  576.880153][T16163] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  576.889530][T16163] CPU: 3 UID: 0 PID: 16163 Comm: syz.3.3145 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  576.892258][T16163] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  576.895039][T16163] Call Trace:
[  576.895947][T16163]  <TASK>
[  576.896727][T16163]  dump_stack_lvl+0x16c/0x1f0
[  576.897967][T16163]  should_fail_ex+0x497/0x5b0
[  576.899211][T16163]  _copy_to_user+0x30/0xc0
[  576.900393][T16163]  simple_read_from_buffer+0xd0/0x160
[  576.901854][T16163]  proc_fail_nth_read+0x19e/0x280
[  576.903225][T16163]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  576.904683][T16163]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  576.906128][T16163]  vfs_read+0x1d4/0xbd0
[  576.907223][T16163]  ? __fdget_pos+0xeb/0x180
[  576.908429][T16163]  ? __pfx_vfs_read+0x10/0x10
[  576.909676][T16163]  ? __pfx___mutex_lock+0x10/0x10
[  576.910996][T16163]  ? __fget_files+0x256/0x400
[  576.912240][T16163]  ksys_read+0x12f/0x260
[  576.913353][T16163]  ? __pfx_ksys_read+0x10/0x10
[  576.914615][T16163]  __do_fast_syscall_32+0x73/0x120
[  576.915979][T16163]  do_fast_syscall_32+0x32/0x80
[  576.917308][T16163]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  576.919000][T16163] RIP: 0023:0xf7f78579
[  576.920077][T16163] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  576.925057][T16163] RSP: 002b:00000000f56f65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  576.927211][T16163] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f56f6620
[  576.929262][T16163] RDX: 000000000000000f RSI: 00000000f73fbff4 RDI: 0000000000000000
[  576.931311][T16163] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  576.933442][T16163] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  576.935496][T16163] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  576.937557][T16163]  </TASK>
[  577.074765][  T831] psmouse serio4: Failed to reset mouse on : -5
[  577.239326][T16177] FAULT_INJECTION: forcing a failure.
[  577.239326][T16177] name failslab, interval 1, probability 0, space 0, times 0
[  577.244647][T16177] CPU: 2 UID: 0 PID: 16177 Comm: syz.0.3148 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  577.247691][T16177] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  577.250500][T16177] Call Trace:
[  577.251379][T16177]  <TASK>
[  577.252176][T16177]  dump_stack_lvl+0x16c/0x1f0
[  577.253411][T16177]  should_fail_ex+0x497/0x5b0
[  577.254642][T16177]  ? fs_reclaim_acquire+0xae/0x160
[  577.256069][T16177]  should_failslab+0xc2/0x120
[  577.257304][T16177]  __kmalloc_noprof+0xcb/0x410
[  577.258561][T16177]  copy_splice_read+0x1a8/0xb80
[  577.259855][T16177]  ? aa_file_perm+0x4db/0xff0
[  577.261082][T16177]  ? __pfx_copy_splice_read+0x10/0x10
[  577.262474][T16177]  ? __mutex_lock+0x1a6/0x9c0
[  577.263715][T16177]  ? find_held_lock+0x2d/0x110
[  577.264954][T16177]  ? __pfx___mutex_lock+0x10/0x10
[  577.266289][T16177]  sock_splice_read+0xef/0x110
[  577.267538][T16177]  ? __pfx_sock_splice_read+0x10/0x10
[  577.268943][T16177]  do_splice_read+0x294/0x380
[  577.270179][T16177]  splice_file_to_pipe+0x109/0x120
[  577.271516][T16177]  do_splice+0x118c/0x1f90
[  577.272698][T16177]  ? find_held_lock+0x2d/0x110
[  577.273949][T16177]  ? __pfx_do_splice+0x10/0x10
[  577.275205][T16177]  ? __pfx_pipe_clear_nowait+0x10/0x10
[  577.276698][T16177]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  577.278260][T16177]  __do_splice+0x159/0x360
[  577.279428][T16177]  ? __pfx___do_splice+0x10/0x10
[  577.280747][T16177]  __ia32_sys_splice+0x1d0/0x260
[  577.282045][T16177]  __do_fast_syscall_32+0x73/0x120
[  577.283388][T16177]  do_fast_syscall_32+0x32/0x80
[  577.284649][T16177]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  577.286333][T16177] RIP: 0023:0xf7fa1579
[  577.287401][T16177] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  577.292327][T16177] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000139
[  577.294637][T16177] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000000
[  577.296811][T16177] RDX: 0000000000000007 RSI: 0000000000000000 RDI: 0000000020000008
[  577.298878][T16177] RBP: 000000000000000d R08: 0000000000000000 R09: 0000000000000000
[  577.300996][T16177] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  577.303729][T16177] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  577.306274][T16177]  </TASK>
[  577.307521][    C2] hpet: Lost 3 RTC interrupts
[  578.246457][ T4778] Bluetooth: hci2: command 0x0406 tx timeout
[  578.592531][T16205] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3157'.
[  579.927747][T16214] netlink: 'syz.2.3161': attribute type 11 has an invalid length.
[  580.054631][T16219] FAULT_INJECTION: forcing a failure.
[  580.054631][T16219] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  580.075795][T16219] CPU: 2 UID: 0 PID: 16219 Comm: syz.0.3163 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  580.078553][T16219] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  580.081239][T16219] Call Trace:
[  580.082134][T16219]  <TASK>
[  580.082936][T16219]  dump_stack_lvl+0x16c/0x1f0
[  580.084217][T16219]  should_fail_ex+0x497/0x5b0
[  580.085502][T16219]  _copy_from_user+0x30/0xf0
[  580.086713][T16219]  do_tcp_setsockopt+0x1ca/0x2820
[  580.088077][T16219]  ? __pfx_do_tcp_setsockopt+0x10/0x10
[  580.089553][T16219]  ? __pfx___might_resched+0x10/0x10
[  580.090961][T16219]  ? __pfx_lock_release+0x10/0x10
[  580.092329][T16219]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  580.093817][T16219]  ? aa_sk_perm+0x2f5/0xb20
[  580.095044][T16219]  ? __pfx_aa_sk_perm+0x10/0x10
[  580.096273][T16219]  tcp_setsockopt+0xe2/0x100
[  580.097509][T16219]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  580.098981][T16219]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  580.100565][T16219]  do_sock_setsockopt+0x222/0x480
[  580.101901][T16219]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  580.103381][T16219]  ? __fget_light+0x173/0x210
[  580.104656][T16219]  __sys_setsockopt+0x1a4/0x270
[  580.105954][T16219]  ? __pfx___sys_setsockopt+0x10/0x10
[  580.107381][T16219]  ? fput+0x32/0x390
[  580.108450][T16219]  ? ksys_write+0x1ab/0x260
[  580.109664][T16219]  ? __pfx_ksys_write+0x10/0x10
[  580.110977][T16219]  __ia32_sys_setsockopt+0xbc/0x160
[  580.112373][T16219]  ? lockdep_hardirqs_on+0x7c/0x110
[  580.113764][T16219]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  580.115504][T16219]  __do_fast_syscall_32+0x73/0x120
[  580.116875][T16219]  do_fast_syscall_32+0x32/0x80
[  580.118166][T16219]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  580.119849][T16219] RIP: 0023:0xf7fa1579
[  580.120934][T16219] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  580.126008][T16219] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  580.128215][T16219] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000006
[  580.130298][T16219] RDX: 0000000000000013 RSI: 0000000020000140 RDI: 0000000000000004
[  580.132415][T16219] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  580.134527][T16219] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  580.136666][T16219] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  580.138783][T16219]  </TASK>
[  580.139974][    C2] hpet: Lost 3 RTC interrupts
[  580.522511][  T831] misc userio: Buffer overflowed, userio client isn't keeping up
[  581.736472][  T831] input: PS/2 Generic Mouse as /devices/serio4/input/input35
[  581.951485][  T831] psmouse serio4: Failed to enable mouse on 
[  582.336804][T16263] block nbd3: NBD_DISCONNECT
[  582.338699][T16263] block nbd3: Disconnected due to user request.
[  582.340769][T16263] block nbd3: shutting down sockets
[  582.385059][T16265] FAULT_INJECTION: forcing a failure.
[  582.385059][T16265] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  582.388531][T16265] CPU: 3 UID: 0 PID: 16265 Comm: syz.3.3177 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  582.391229][T16265] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  582.394039][T16265] Call Trace:
[  582.394915][T16265]  <TASK>
[  582.395726][T16265]  dump_stack_lvl+0x16c/0x1f0
[  582.396975][T16265]  should_fail_ex+0x497/0x5b0
[  582.398214][T16265]  ? page_copy_sane+0xcd/0x2d0
[  582.399480][T16265]  copy_page_from_iter_atomic+0x24c/0xfe0
[  582.401028][T16265]  ? fault_in_readable+0x123/0x230
[  582.402438][T16265]  ? __pfx_copy_page_from_iter_atomic+0x10/0x10
[  582.404037][T16265]  ? shmem_write_begin+0x16f/0x360
[  582.405379][T16265]  ? __pfx_fault_in_readable+0x10/0x10
[  582.406810][T16265]  ? __pfx_shmem_write_begin+0x10/0x10
[  582.408252][T16265]  generic_perform_write+0x53d/0xaa0
[  582.409649][T16265]  ? __pfx_generic_perform_write+0x10/0x10
[  582.411172][T16265]  ? __pfx_generic_write_checks+0x10/0x10
[  582.412676][T16265]  shmem_file_write_iter+0x114/0x140
[  582.414068][T16265]  vfs_write+0x6b6/0x1140
[  582.415224][T16265]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  582.416777][T16265]  ? __pfx_vfs_write+0x10/0x10
[  582.418097][T16265]  ? __pfx___mutex_lock+0x10/0x10
[  582.419555][T16265]  ? __fget_files+0x256/0x400
[  582.420886][T16265]  ksys_write+0x12f/0x260
[  582.422023][T16265]  ? __pfx_ksys_write+0x10/0x10
[  582.423308][T16265]  __do_fast_syscall_32+0x73/0x120
[  582.424661][T16265]  do_fast_syscall_32+0x32/0x80
[  582.425947][T16265]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  582.427599][T16265] RIP: 0023:0xf7f78579
[  582.428700][T16265] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  582.434336][T16265] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  582.436562][T16265] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000100
[  582.438586][T16265] RDX: 000000003af4701e RSI: 0000000000000000 RDI: 0000000000000000
[  582.441237][T16265] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  582.443887][T16265] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  582.445959][T16265] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  582.448046][T16265]  </TASK>
[  585.614863][ T4778] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  585.622733][ T4778] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  585.625869][ T4778] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  585.628541][ T4778] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  585.631947][ T4778] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  585.633946][ T4778] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  585.838890][T16323] chnl_net:caif_netlink_parms(): no params data found
[  585.852169][T16334] overlayfs: failed to resolve './file0': -2
[  585.976409][T16323] bridge0: port 1(bridge_slave_0) entered blocking state
[  585.978352][T16323] bridge0: port 1(bridge_slave_0) entered disabled state
[  585.983243][T16323] bridge_slave_0: entered allmulticast mode
[  585.985588][T16323] bridge_slave_0: entered promiscuous mode
[  585.988759][T16323] bridge0: port 2(bridge_slave_1) entered blocking state
[  585.991851][T16323] bridge0: port 2(bridge_slave_1) entered disabled state
[  585.993764][T16323] bridge_slave_1: entered allmulticast mode
[  585.996466][T16323] bridge_slave_1: entered promiscuous mode
[  586.045097][T16323] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  586.052698][T16323] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  586.107677][T16323] team0: Port device team_slave_0 added
[  586.111527][T16323] team0: Port device team_slave_1 added
[  586.156040][T16323] batman_adv: batadv0: Adding interface: batadv_slave_0
[  586.157892][T16323] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  586.165347][T16323] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  586.177501][T16323] batman_adv: batadv0: Adding interface: batadv_slave_1
[  586.179354][T16323] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  586.188433][T16323] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  586.272507][T16323] hsr_slave_0: entered promiscuous mode
[  586.277198][T16323] hsr_slave_1: entered promiscuous mode
[  586.279600][T16323] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  586.281630][T16323] Cannot create hsr debugfs directory
[  586.344523][T16343] cgroup: No subsys list or none specified
[  586.479691][T16323] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  586.572432][T16323] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  586.665999][T16323] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  586.781788][T16323] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  586.940218][T16323] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  586.949412][T16323] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  586.963471][T16323] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  586.974227][T16323] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  587.058376][T16323] 8021q: adding VLAN 0 to HW filter on device bond0
[  587.077265][T16323] 8021q: adding VLAN 0 to HW filter on device team0
[  587.089946][T12325] bridge0: port 1(bridge_slave_0) entered blocking state
[  587.091856][T12325] bridge0: port 1(bridge_slave_0) entered forwarding state
[  587.105389][ T6851] bridge0: port 2(bridge_slave_1) entered blocking state
[  587.107289][ T6851] bridge0: port 2(bridge_slave_1) entered forwarding state
[  587.297382][T16323] 8021q: adding VLAN 0 to HW filter on device batadv0
[  587.325426][T16323] veth0_vlan: entered promiscuous mode
[  587.337924][T16323] veth1_vlan: entered promiscuous mode
[  587.359687][T16323] veth0_macvtap: entered promiscuous mode
[  587.368933][T16323] veth1_macvtap: entered promiscuous mode
[  587.382757][T16323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  587.385522][T16323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.392810][T16323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  587.395525][T16323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.398044][T16323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  587.406517][T16323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.409480][T16323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  587.415822][T16323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.430953][T16323] batman_adv: batadv0: Interface activated: batadv_slave_0
[  587.438866][T16364] usb usb1: usbfs: process 16364 (syz.2.3204) did not claim interface 0 before use
[  587.440295][T16323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  587.447703][T16323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.450471][T16323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  587.454087][T16323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.456649][T16323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  587.459620][T16323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.462230][T16323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  587.465371][T16323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  587.469477][T16323] batman_adv: batadv0: Interface activated: batadv_slave_1
[  587.485506][T16323] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  587.488743][T16323] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  587.495772][T16323] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  587.498088][T16323] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  587.563480][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  587.565692][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  587.601446][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  587.603523][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  587.609917][ T4778] Bluetooth: hci4: command tx timeout
[  587.881328][T16380] overlayfs: failed to resolve './file0': -2
[  588.161974][T16383] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3208'.
[  588.541622][T16386] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3209'.
[  588.735049][ T1291] usb 8-1: new full-speed USB device number 25 using dummy_hcd
[  588.754932][T16389] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3210'.
[  588.876854][ T1291] usb 8-1: device descriptor read/64, error -71
[  589.143918][ T1291] usb 8-1: new full-speed USB device number 26 using dummy_hcd
[  589.273257][T16406] netlink: 'syz.1.3217': attribute type 11 has an invalid length.
[  589.298073][ T1291] usb 8-1: device descriptor read/64, error -71
[  589.413525][ T1291] usb usb8-port1: attempt power cycle
[  589.424299][T16412] overlayfs: failed to resolve './file0': -2
[  589.667651][ T4778] Bluetooth: hci4: command tx timeout
[  589.800991][ T1291] usb 8-1: new full-speed USB device number 27 using dummy_hcd
[  589.822222][T16413] overlayfs: failed to resolve './file0': -2
[  589.849926][ T1291] usb 8-1: device descriptor read/8, error -71
[  590.115221][ T1291] usb 8-1: new full-speed USB device number 28 using dummy_hcd
[  590.144207][ T1291] usb 8-1: device descriptor read/8, error -71
[  590.258416][ T1291] usb usb8-port1: unable to enumerate USB device
[  591.251852][T16433] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3226'.
[  591.255923][T16434] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3226'.
[  591.288948][T16433] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3226'.
[  591.299040][T16434] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3226'.
[  591.341733][T16433] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3226'.
[  591.398794][T16434] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3226'.
[  591.458300][  T831] usb 8-1: new high-speed USB device number 29 using dummy_hcd
[  591.639433][   T35] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  591.643591][  T831] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  591.646397][  T831] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  591.648977][ T4778] Bluetooth: hci4: command tx timeout
[  591.650509][  T831] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  591.652939][  T831] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  591.658921][  T831] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  591.661144][  T831] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  591.663223][  T831] usb 8-1: Manufacturer: syz
[  591.673389][  T831] usb 8-1: config 0 descriptor??
[  591.841423][   T35] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  591.844266][   T35] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  591.847068][   T35] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  591.855146][   T35] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  591.859993][   T35] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  591.862392][   T35] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  591.864453][   T35] usb 5-1: Manufacturer: syz
[  591.867170][   T35] usb 5-1: config 0 descriptor??
[  591.888816][T16451] binder: 16449:16451 ioctl 400c620e 20001380 returned -22
[  592.066711][  T831] appleir 0003:05AC:8243.0024: unknown main item tag 0x0
[  592.069939][  T831] appleir 0003:05AC:8243.0024: No inputs registered, leaving
[  592.074912][  T831] appleir 0003:05AC:8243.0024: hiddev0,hidraw1: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0
[  592.348285][   T35] usbhid 5-1:0.0: can't add hid device: -71
[  592.349915][   T35] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  592.357017][   T35] usb 5-1: USB disconnect, device number 27
[  592.537385][T16430] FAULT_INJECTION: forcing a failure.
[  592.537385][T16430] name failslab, interval 1, probability 0, space 0, times 0
[  592.540833][T16430] CPU: 1 UID: 0 PID: 16430 Comm: syz.3.3225 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  592.543657][T16430] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  592.547865][T16430] Call Trace:
[  592.548755][T16430]  <TASK>
[  592.549545][T16430]  dump_stack_lvl+0x16c/0x1f0
[  592.551174][T16430]  should_fail_ex+0x497/0x5b0
[  592.552709][T16430]  ? fs_reclaim_acquire+0xae/0x160
[  592.554073][T16430]  should_failslab+0xc2/0x120
[  592.555355][T16430]  __kmalloc_noprof+0xcb/0x410
[  592.556708][T16430]  ? __pfx_lock_acquire+0x10/0x10
[  592.558120][T16430]  tomoyo_realpath_from_path+0xbf/0x710
[  592.559593][T16430]  ? tomoyo_profile+0x47/0x60
[  592.560854][T16430]  tomoyo_path_number_perm+0x245/0x5b0
[  592.562291][T16430]  ? tomoyo_path_number_perm+0x232/0x5b0
[  592.563886][T16430]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  592.565499][T16430]  ? __pfx_lock_release+0x10/0x10
[  592.566827][T16430]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  592.568407][T16430]  ? __fget_files+0x256/0x400
[  592.569642][T16430]  security_file_ioctl_compat+0x75/0xc0
[  592.571081][T16430]  __do_compat_sys_ioctl+0x5d/0x330
[  592.572440][T16430]  __do_fast_syscall_32+0x73/0x120
[  592.573840][T16430]  do_fast_syscall_32+0x32/0x80
[  592.575104][T16430]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  592.576769][T16430] RIP: 0023:0xf7f78579
[  592.577844][T16430] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  592.582827][T16430] RSP: 002b:00000000f56f656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  592.585010][T16430] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000081044804
[  592.587054][T16430] RDX: 0000000020000400 RSI: 0000000000000000 RDI: 0000000000000000
[  592.589064][T16430] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  592.591145][T16430] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  592.593189][T16430] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  592.595258][T16430]  </TASK>
[  592.600819][T16430] ERROR: Out of memory at tomoyo_realpath_from_path.
[  593.630308][ T4778] Bluetooth: hci4: command tx timeout
[  593.743652][T16496] FAULT_INJECTION: forcing a failure.
[  593.743652][T16496] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  593.747278][T16496] CPU: 0 UID: 0 PID: 16496 Comm: syz.0.3241 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  593.749961][T16496] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  593.752734][T16496] Call Trace:
[  593.753621][T16496]  <TASK>
[  593.754414][T16496]  dump_stack_lvl+0x16c/0x1f0
[  593.755850][T16496]  should_fail_ex+0x497/0x5b0
[  593.757081][T16496]  _copy_to_user+0x30/0xc0
[  593.758245][T16496]  simple_read_from_buffer+0xd0/0x160
[  593.759638][T16496]  proc_fail_nth_read+0x19e/0x280
[  593.760973][T16496]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  593.762418][T16496]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  593.763858][T16496]  vfs_read+0x1d4/0xbd0
[  593.764958][T16496]  ? __fdget_pos+0xeb/0x180
[  593.766139][T16496]  ? __pfx_vfs_read+0x10/0x10
[  593.767359][T16496]  ? __pfx___mutex_lock+0x10/0x10
[  593.768655][T16496]  ? __fget_files+0x256/0x400
[  593.769881][T16496]  ksys_read+0x12f/0x260
[  593.770994][T16496]  ? __pfx_ksys_read+0x10/0x10
[  593.772270][T16496]  __do_fast_syscall_32+0x73/0x120
[  593.773610][T16496]  do_fast_syscall_32+0x32/0x80
[  593.774875][T16496]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  593.776582][T16496] RIP: 0023:0xf73fe579
[  593.777604][T16496] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  593.782187][T16496] RSP: 002b:00000000f56c55a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  593.784164][T16496] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f56c5620
[  593.786071][T16496] RDX: 000000000000000f RSI: 00000000f73ebff4 RDI: 0000000000000000
[  593.788042][T16496] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  593.789948][T16496] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  593.791916][T16496] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  593.793902][T16496]  </TASK>
[  594.116730][ T5391] usb 8-1: USB disconnect, device number 29
[  594.148984][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  594.451492][   T39] audit: type=1326 audit(2000000104.171:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16515 comm="syz.3.3248" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x0
[  594.821793][T16532] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3252'.
[  596.138187][T16553] FAULT_INJECTION: forcing a failure.
[  596.138187][T16553] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  596.138240][T16553] 
[  596.138243][T16553] ======================================================
[  596.138246][T16553] WARNING: possible circular locking dependency detected
[  596.138250][T16553] 6.11.0-syzkaller-01726-g114143a59589 #0 Not tainted
[  596.138255][T16553] ------------------------------------------------------
[  596.138258][T16553] syz.3.3259/16553 is trying to acquire lock:
[  596.138263][T16553] ffffffff8dda7698 ((console_sem).lock){-.-.}-{2:2}, at: down_trylock+0x12/0x70
[  596.138286][T16553] 
[  596.138286][T16553] but task is already holding lock:
[  596.138288][T16553] ffff88802b83eb98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  596.138310][T16553] 
[  596.138310][T16553] which lock already depends on the new lock.
[  596.138310][T16553] 
[  596.138312][T16553] 
[  596.138312][T16553] the existing dependency chain (in reverse order) is:
[  596.138315][T16553] 
[  596.138315][T16553] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  596.138325][T16553]        _raw_spin_lock_nested+0x31/0x40
[  596.138338][T16553]        raw_spin_rq_lock_nested+0x29/0x130
[  596.138349][T16553]        task_fork_fair+0x73/0x250
[  596.138358][T16553]        sched_cgroup_fork+0x3cf/0x510
[  596.138366][T16553]        copy_process+0x4710/0x6f50
[  596.138376][T16553]        kernel_clone+0xfd/0x960
[  596.138384][T16553]        user_mode_thread+0xb4/0xf0
[  596.138393][T16553]        rest_init+0x23/0x2b0
[  596.138402][T16553]        start_kernel+0x3df/0x4c0
[  596.138414][T16553]        x86_64_start_reservations+0x18/0x30
[  596.138425][T16553]        x86_64_start_kernel+0xb2/0xc0
[  596.138436][T16553]        common_startup_64+0x13e/0x148
[  596.138445][T16553] 
[  596.138445][T16553] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  596.138455][T16553]        _raw_spin_lock_irqsave+0x3a/0x60
[  596.138471][T16553]        try_to_wake_up+0x9a/0x13e0
[  596.138481][T16553]        up+0x79/0xb0
[  596.138488][T16553]        console_unlock+0x23e/0x290
[  596.138502][T16553]        vga_remove_vgacon+0x90/0xd0
[  596.138514][T16553]        aperture_remove_conflicting_pci_devices+0x16a/0x1e0
[  596.138526][T16553]        bochs_pci_probe+0x101/0x1150
[  596.138536][T16553]        local_pci_probe+0xde/0x1b0
[  596.138545][T16553]        pci_device_probe+0x29d/0x7b0
[  596.138554][T16553]        really_probe+0x23e/0xa90
[  596.138564][T16553]        __driver_probe_device+0x1de/0x440
[  596.138575][T16553]        driver_probe_device+0x4c/0x1b0
[  596.138584][T16553]        __driver_attach+0x283/0x580
[  596.138594][T16553]        bus_for_each_dev+0x13c/0x1d0
[  596.138602][T16553]        bus_add_driver+0x2e9/0x690
[  596.138611][T16553]        driver_register+0x15c/0x4b0
[  596.138622][T16553]        bochs_pci_driver_init+0x67/0x80
[  596.138634][T16553]        do_one_initcall+0x128/0x630
[  596.138645][T16553]        kernel_init_freeable+0x660/0xc50
[  596.138656][T16553]        kernel_init+0x1c/0x2b0
[  596.138665][T16553]        ret_from_fork+0x45/0x80
[  596.138677][T16553]        ret_from_fork_asm+0x1a/0x30
[  596.138689][T16553] 
[  596.138689][T16553] -> #0 ((console_sem).lock){-.-.}-{2:2}:
[  596.138699][T16553]        __lock_acquire+0x24ed/0x3cb0
[  596.138710][T16553]        lock_acquire+0x1b1/0x560
[  596.138720][T16553]        _raw_spin_lock_irqsave+0x3a/0x60
[  596.138731][T16553]        down_trylock+0x12/0x70
[  596.138739][T16553]        __down_trylock_console_sem+0x40/0x140
[  596.138750][T16553]        vprintk_emit+0x3d3/0x600
[  596.138757][T16553]        vprintk+0x7f/0xa0
[  596.138765][T16553]        _printk+0xc8/0x100
[  596.138774][T16553]        should_fail_ex+0x46c/0x5b0
[  596.138786][T16553]        strncpy_from_user+0x38/0x320
[  596.138797][T16553]        strncpy_from_user_nofault+0x7f/0x180
[  596.138808][T16553]        bpf_probe_read_compat_str+0x131/0x170
[  596.138818][T16553]        bpf_prog_91495be721449216+0x3d/0x3f
[  596.138824][T16553]        bpf_trace_run4+0x245/0x5a0
[  596.138834][T16553]        __traceiter_sched_switch+0x6c/0xc0
[  596.138845][T16553]        __schedule+0x17cf/0x5490
[  596.138856][T16553]        preempt_schedule_common+0x44/0xc0
[  596.138868][T16553]        preempt_schedule_thunk+0x1a/0x30
[  596.138876][T16553]        __local_bh_enable_ip+0x107/0x120
[  596.138885][T16553]        bpf_test_run+0x3a9/0xa90
[  596.138898][T16553]        bpf_prog_test_run_skb+0xb8b/0x2140
[  596.138906][T16553]        __sys_bpf+0x1af6/0x55e0
[  596.138917][T16553]        __ia32_sys_bpf+0x76/0xe0
[  596.138927][T16553]        __do_fast_syscall_32+0x73/0x120
[  596.138936][T16553]        do_fast_syscall_32+0x32/0x80
[  596.138944][T16553]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  596.138956][T16553] 
[  596.138956][T16553] other info that might help us debug this:
[  596.138956][T16553] 
[  596.138959][T16553] Chain exists of:
[  596.138959][T16553]   (console_sem).lock --> &p->pi_lock --> &rq->__lock
[  596.138959][T16553] 
[  596.138970][T16553]  Possible unsafe locking scenario:
[  596.138970][T16553] 
[  596.138972][T16553]        CPU0                    CPU1
[  596.138974][T16553]        ----                    ----
[  596.138976][T16553]   lock(&rq->__lock);
[  596.138980][T16553]                                lock(&p->pi_lock);
[  596.138985][T16553]                                lock(&rq->__lock);
[  596.138990][T16553]   lock((console_sem).lock);
[  596.138995][T16553] 
[  596.138995][T16553]  *** DEADLOCK ***
[  596.138995][T16553] 
[  596.138996][T16553] 3 locks held by syz.3.3259/16553:
[  596.139002][T16553]  #0: ffffffff8ddb9560 (rcu_read_lock){....}-{1:2}, at: bpf_test_timer_enter+0x30/0x180
[  596.139024][T16553]  #1: ffff88802b83eb98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130
[  596.139045][T16553]  #2: ffffffff8ddb9560 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run4+0x1d6/0x5a0
[  596.139064][T16553] 
[  596.139064][T16553] stack backtrace:
[  596.139067][T16553] CPU: 2 UID: 0 PID: 16553 Comm: syz.3.3259 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  596.139077][T16553] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  596.139083][T16553] Call Trace:
[  596.139087][T16553]  <TASK>
[  596.139091][T16553]  dump_stack_lvl+0x116/0x1f0
[  596.139103][T16553]  check_noncircular+0x31a/0x400
[  596.139115][T16553]  ? __pfx_check_noncircular+0x10/0x10
[  596.139126][T16553]  ? __pfx__prb_read_valid+0x10/0x10
[  596.139135][T16553]  ? __pfx_format_decode+0x10/0x10
[  596.139146][T16553]  ? lockdep_lock+0xc6/0x200
[  596.139154][T16553]  ? __pfx_lockdep_lock+0x10/0x10
[  596.139163][T16553]  ? vsnprintf+0x40f/0x1870
[  596.139174][T16553]  __lock_acquire+0x24ed/0x3cb0
[  596.139188][T16553]  ? __pfx___lock_acquire+0x10/0x10
[  596.139199][T16553]  ? vprintk_store+0x222/0xbb0
[  596.139212][T16553]  lock_acquire+0x1b1/0x560
[  596.139224][T16553]  ? down_trylock+0x12/0x70
[  596.139233][T16553]  ? __pfx_lock_acquire+0x10/0x10
[  596.139244][T16553]  ? lockdep_hardirqs_on+0x7c/0x110
[  596.139257][T16553]  ? __pfx_mark_lock+0x10/0x10
[  596.139270][T16553]  ? vprintk+0x7f/0xa0
[  596.139278][T16553]  _raw_spin_lock_irqsave+0x3a/0x60
[  596.139290][T16553]  ? down_trylock+0x12/0x70
[  596.139299][T16553]  down_trylock+0x12/0x70
[  596.139308][T16553]  __down_trylock_console_sem+0x40/0x140
[  596.139321][T16553]  vprintk_emit+0x3d3/0x600
[  596.139330][T16553]  vprintk+0x7f/0xa0
[  596.139338][T16553]  _printk+0xc8/0x100
[  596.139349][T16553]  ? __pfx__printk+0x10/0x10
[  596.139360][T16553]  ? ___ratelimit+0x24c/0x580
[  596.139370][T16553]  ? __pfx___lock_acquire+0x10/0x10
[  596.139381][T16553]  ? __pfx____ratelimit+0x10/0x10
[  596.139392][T16553]  should_fail_ex+0x46c/0x5b0
[  596.139424][T16553]  strncpy_from_user+0x38/0x320
[  596.139446][T16553]  strncpy_from_user_nofault+0x7f/0x180
[  596.139458][T16553]  bpf_probe_read_compat_str+0x131/0x170
[  596.139473][T16553]  bpf_prog_91495be721449216+0x3d/0x3f
[  596.139480][T16553]  bpf_trace_run4+0x245/0x5a0
[  596.139490][T16553]  ? __pfx_bpf_trace_run4+0x10/0x10
[  596.139502][T16553]  ? tracing_record_taskinfo_sched_switch+0x54/0x400
[  596.139515][T16553]  __traceiter_sched_switch+0x6c/0xc0
[  596.139528][T16553]  __schedule+0x17cf/0x5490
[  596.139543][T16553]  ? __pfx___schedule+0x10/0x10
[  596.139558][T16553]  ? irqentry_exit+0x3b/0x90
[  596.139566][T16553]  ? lockdep_hardirqs_on+0x7c/0x110
[  596.139579][T16553]  ? preempt_schedule_thunk+0x1a/0x30
[  596.139588][T16553]  preempt_schedule_common+0x44/0xc0
[  596.139601][T16553]  preempt_schedule_thunk+0x1a/0x30
[  596.139611][T16553]  ? bpf_test_run+0x3a4/0xa90
[  596.139623][T16553]  __local_bh_enable_ip+0x107/0x120
[  596.139632][T16553]  bpf_test_run+0x3a9/0xa90
[  596.139647][T16553]  ? __pfx_bpf_test_run+0x10/0x10
[  596.139665][T16553]  ? krealloc_noprof+0xa7/0x100
[  596.139679][T16553]  bpf_prog_test_run_skb+0xb8b/0x2140
[  596.139690][T16553]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  596.139700][T16553]  ? fput+0x32/0x390
[  596.139714][T16553]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  596.139724][T16553]  __sys_bpf+0x1af6/0x55e0
[  596.139736][T16553]  ? __pfx___sys_bpf+0x10/0x10
[  596.139747][T16553]  ? ksys_write+0x12f/0x260
[  596.139758][T16553]  ? find_held_lock+0x2d/0x110
[  596.139768][T16553]  ? ksys_write+0x21c/0x260
[  596.139778][T16553]  ? __pfx_lock_release+0x10/0x10
[  596.139789][T16553]  ? vfs_write+0x14d/0x1140
[  596.139801][T16553]  ? __mutex_unlock_slowpath+0x164/0x650
[  596.139813][T16553]  ? fput+0x32/0x390
[  596.139826][T16553]  ? ksys_write+0x1ab/0x260
[  596.139836][T16553]  ? __pfx_ksys_write+0x10/0x10
[  596.139848][T16553]  __ia32_sys_bpf+0x76/0xe0
[  596.139860][T16553]  __do_fast_syscall_32+0x73/0x120
[  596.139869][T16553]  do_fast_syscall_32+0x32/0x80
[  596.139878][T16553]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  596.139891][T16553] RIP: 0023:0xf7f78579
[  596.139898][T16553] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  596.139906][T16553] RSP: 002b:00000000f56d556c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  596.139915][T16553] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000200002c0
[  596.139921][T16553] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  596.139927][T16553] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  596.139932][T16553] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  596.139938][T16553] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  596.139946][T16553]  </TASK>
[  596.398773][T16553] CPU: 2 UID: 0 PID: 16553 Comm: syz.3.3259 Not tainted 6.11.0-syzkaller-01726-g114143a59589 #0
[  596.401474][T16553] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  596.404259][T16553] Call Trace:
[  596.405143][T16553]  <TASK>
[  596.405929][T16553]  dump_stack_lvl+0x116/0x1f0
[  596.407171][T16553]  should_fail_ex+0x497/0x5b0
[  596.408428][T16553]  strncpy_from_user+0x38/0x320
[  596.409704][T16553]  strncpy_from_user_nofault+0x7f/0x180
[  596.411109][T16553]  bpf_probe_read_compat_str+0x131/0x170
[  596.412591][T16553]  bpf_prog_91495be721449216+0x3d/0x3f
[  596.414017][T16553]  bpf_trace_run4+0x245/0x5a0
[  596.415273][T16553]  ? __pfx_bpf_trace_run4+0x10/0x10
[  596.416648][T16553]  ? tracing_record_taskinfo_sched_switch+0x54/0x400
[  596.418389][T16553]  __traceiter_sched_switch+0x6c/0xc0
[  596.419804][T16553]  __schedule+0x17cf/0x5490
[  596.421006][T16553]  ? __pfx___schedule+0x10/0x10
[  596.422297][T16553]  ? irqentry_exit+0x3b/0x90
[  596.423509][T16553]  ? lockdep_hardirqs_on+0x7c/0x110
[  596.424818][T16553]  ? preempt_schedule_thunk+0x1a/0x30
[  596.426193][T16553]  preempt_schedule_common+0x44/0xc0
[  596.427549][T16553]  preempt_schedule_thunk+0x1a/0x30
[  596.428905][T16553]  ? bpf_test_run+0x3a4/0xa90
[  596.430155][T16553]  __local_bh_enable_ip+0x107/0x120
[  596.431532][T16553]  bpf_test_run+0x3a9/0xa90
[  596.432729][T16553]  ? __pfx_bpf_test_run+0x10/0x10
[  596.434057][T16553]  ? krealloc_noprof+0xa7/0x100
[  596.435318][T16553]  bpf_prog_test_run_skb+0xb8b/0x2140
[  596.436713][T16553]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  596.438247][T16553]  ? fput+0x32/0x390
[  596.439290][T16553]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  596.440835][T16553]  __sys_bpf+0x1af6/0x55e0
[  596.442016][T16553]  ? __pfx___sys_bpf+0x10/0x10
[  596.443278][T16553]  ? ksys_write+0x12f/0x260
[  596.444491][T16553]  ? find_held_lock+0x2d/0x110
[  596.445748][T16553]  ? ksys_write+0x21c/0x260
[  596.446954][T16553]  ? __pfx_lock_release+0x10/0x10
[  596.448281][T16553]  ? vfs_write+0x14d/0x1140
[  596.449462][T16553]  ? __mutex_unlock_slowpath+0x164/0x650
[  596.450905][T16553]  ? fput+0x32/0x390
[  596.451909][T16553]  ? ksys_write+0x1ab/0x260
[  596.453113][T16553]  ? __pfx_ksys_write+0x10/0x10
[  596.454395][T16553]  __ia32_sys_bpf+0x76/0xe0
[  596.455621][T16553]  __do_fast_syscall_32+0x73/0x120
[  596.456970][T16553]  do_fast_syscall_32+0x32/0x80
[  596.458256][T16553]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  596.459938][T16553] RIP: 0023:0xf7f78579
[  596.461019][T16553] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  596.466009][T16553] RSP: 002b:00000000f56d556c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  596.468194][T16553] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000200002c0
[  596.470258][T16553] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[  596.472292][T16553] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  596.474349][T16553] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  596.476427][T16553] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  596.478464][T16553]  </TASK>
[  596.480503][    C2] hpet: Lost 21 RTC interrupts
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  596.903011][ T1105] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  596.958628][ T1105] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  597.071093][ T1105] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  597.131205][ T1105] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  597.328419][ T1105] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  597.331957][ T1105] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  597.335089][ T1105] bond0 (unregistering): Released all slaves
[  597.469661][ T1105] IPVS: stopping backup sync thread 13395 ...
[  597.938286][ T1105] hsr_slave_0: left promiscuous mode
[  597.940122][ T1105] hsr_slave_1: left promiscuous mode
[  597.942845][ T1105] veth1_macvtap: left promiscuous mode
[  597.944322][ T1105] veth0_macvtap: left promiscuous mode
[  597.946020][ T1105] veth1_vlan: left promiscuous mode
[  597.947453][ T1105] veth0_vlan: left promiscuous mode
[  598.318287][ T1105] team0 (unregistering): Port device team_slave_1 removed
[  598.384993][ T1105] team0 (unregistering): Port device team_slave_0 removed
[  599.051807][ T1105] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.140730][ T1105] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.302176][ T1105] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.351157][ T1105] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.458499][ T1105] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.524225][ T1105] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.609016][ T1105] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.666793][ T1105] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.783247][ T1105] bridge_slave_1: left allmulticast mode
[  599.784904][ T1105] bridge_slave_1: left promiscuous mode
[  599.786452][ T1105] bridge0: port 2(bridge_slave_1) entered disabled state
[  599.789431][ T1105] bridge_slave_0: left allmulticast mode
[  599.790908][ T1105] bridge_slave_0: left promiscuous mode
[  599.792812][ T1105] bridge0: port 1(bridge_slave_0) entered disabled state
[  599.797337][ T1105] bridge_slave_1: left allmulticast mode
[  599.798861][ T1105] bridge_slave_1: left promiscuous mode
[  599.800418][ T1105] bridge0: port 2(bridge_slave_1) entered disabled state
[  599.805326][ T1105] bridge_slave_0: left allmulticast mode
[  599.807404][ T1105] bridge_slave_0: left promiscuous mode
[  599.809672][ T1105] bridge0: port 1(bridge_slave_0) entered disabled state
[  600.075357][ T1105] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  600.078864][ T1105] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  600.082921][ T1105] bond0 (unregistering): Released all slaves
[  600.090571][ T1105] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  600.094199][ T1105] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  600.097509][ T1105] bond0 (unregistering): Released all slaves
[  600.582247][ T1105] hsr_slave_0: left promiscuous mode
[  600.584311][ T1105] hsr_slave_1: left promiscuous mode
[  600.593994][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  600.596001][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_0
[  600.598402][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  600.600355][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_1
[  600.605566][ T1105] hsr_slave_0: left promiscuous mode
[  600.607422][ T1105] hsr_slave_1: left promiscuous mode
[  600.609255][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  600.611192][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_0
[  600.613686][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  600.615667][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_1
[  600.619665][ T1105] veth1_macvtap: left promiscuous mode
[  600.621525][ T1105] veth0_macvtap: left promiscuous mode
[  600.623255][ T1105] veth1_vlan: left promiscuous mode
[  600.624689][ T1105] veth0_vlan: left promiscuous mode
[  600.626735][ T1105] veth1_macvtap: left promiscuous mode
[  600.628208][ T1105] veth0_macvtap: left promiscuous mode
[  600.629693][ T1105] veth1_vlan: left promiscuous mode
[  600.631099][ T1105] veth0_vlan: left promiscuous mode
[  600.958158][ T1105] team0 (unregistering): Port device team_slave_1 removed
[  601.013020][ T1105] team0 (unregistering): Port device team_slave_0 removed
[  601.594348][ T1105] team0 (unregistering): Port device team_slave_1 removed
[  601.658290][ T1105] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
23:34:04  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080000000 RBX=00000000000000cc RCX=ffffffff81da481b RDX=ffff8880202b2440
RSI=0000000000000100 RDI=0000000000000005 RBP=ffff88801ac6ab40 RSP=ffffc90000e6f6c8
R8 =0000000000000005 R9 =0000000000000100 R10=00000000000000cc R11=0000000044368be4
R12=0000000000000000 R13=ffff88801ac69810 R14=dffffc0000000000 R15=0000000000000006
RIP=ffffffff818b2a68 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000071c8c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=fffff52000c13e7a RCX=ffffffff81695339 RDX=0000000000000000
RSI=ffffffff8bb07100 RDI=0000000000000000 RBP=ffffffff9011af38 RSP=ffffc9000609f3c0
R8 =0000000000000000 R9 =fffffbfff2022f8b R10=ffffffff90117c5f R11=dffffc0000000000
R12=ffffffff8ddb9560 R13=0000000000000cc0 R14=000000000003d8cc R15=ffffc9000609f720
RIP=ffffffff8169567f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000207e8000 CR3=000000005df8c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004c00000000 0000000100000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004c00000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000002d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff84faf4a5 RDI=ffffffff9a50a620 RBP=ffffffff9a50a5e0 RSP=ffffc9000362eff8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=000000000000002d R14=ffffffff84faf440 R15=0000000000000000
RIP=ffffffff84faf4cf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b800000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000046c86000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=0000000000000003 RCX=ffffffff813bf4ae RDX=ffff888026078000
RSI=ffffffff813bf4cb RDI=0000000000000000 RBP=ffff88802b83eb80 RSP=ffffc9000437f250
R8 =0000000000000000 R9 =0000000000000003 R10=0000000000000003 R11=0000000000000000
R12=0000000000000003 R13=0000000000000003 R14=ffff88802b93fa40 R15=ffffed1005707d70
RIP=ffffffff813bf4cc RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000046c86000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000