last executing test programs:

10.283491594s ago: executing program 1 (id=1327):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x2b0000)
r1 = syz_open_dev$dri(&(0x7f00000008c0), 0x20000d21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[0x0], 0x0, 0x0, 0x0, 0x1})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$TIOCSLCKTRMIOS(r2, 0x5457, &(0x7f0000000280))
r3 = syz_open_dev$dri(&(0x7f0000000080), 0xf2, 0x294401)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r3, 0x4010640d, &(0x7f0000000000)={0x2, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r3, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r4=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r3, 0xc02064b6, &(0x7f00000001c0)={r4, <r5=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
readv(r3, &(0x7f0000000480)=[{&(0x7f0000000180)=""/19, 0x13}], 0x1)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r3, 0xc01064c8, &(0x7f0000000280)={0x1, 0x0, &(0x7f0000000200)=[0x0]})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r3, 0xc02064b9, &(0x7f0000000700)={&(0x7f0000000240)=[<r6=>0x0], &(0x7f0000000680)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1, r5, 0xe0e0e0e0})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f0000000580)={&(0x7f0000000340), &(0x7f00000004c0)=[<r7=>0x0, 0x0], &(0x7f0000000340)=[0x0], &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x2, 0x1, 0xb})
ioctl$DRM_IOCTL_MODE_RMFB(r1, 0xc00464af, &(0x7f00000005c0))
ioctl$DRM_IOCTL_MODE_SETPROPERTY(0xffffffffffffffff, 0xc01064ab, &(0x7f00000003c0)={0x8})
ioctl$DRM_IOCTL_MODE_ATOMIC(r3, 0xc03864bc, &(0x7f0000000380)={0x401, 0x1, &(0x7f00000000c0)=[r5], &(0x7f0000000200), &(0x7f0000000300)=[r6], &(0x7f0000000580)})
ioctl$DRM_IOCTL_MODE_GETCRTC(0xffffffffffffffff, 0xc06864a1, &(0x7f0000000280)={0x0, 0x17, 0x0, <r8=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000440)={r8, 0x0, 0x0, 0x0, 0x0, [<r9=>0x0], [], [0x0, 0x401, 0x8], [0x0, 0x0, 0x1]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000140)={0x40000, 0x800007, 0xb9})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000040)={r9, 0x80000})
r10 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f0000000740), 0x0, 0x0, 0xfffffe93, 0x0, 0x0, 0x58})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f0000000780)={0x0, 0x64, r7, <r11=>0x0})
r12 = dup(0xffffffffffffffff)
ioctl$TIOCL_SETSEL(r12, 0x541c, &(0x7f0000001200)={0x2, {0xc, 0xa03, 0x100}})
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x80000)
r13 = syz_io_uring_setup(0x236, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f00000001c0))
io_uring_enter(r13, 0x2def, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r12, 0xb, &(0x7f0000000200)=[@ioring_restriction_sqe_op={0x1, 0xf}, @ioring_restriction_sqe_flags_allowed={0x2, 0x11}, @ioring_restriction_sqe_flags_allowed={0x2, 0x9}, @ioring_restriction_sqe_flags_required={0x3, 0xd}, @ioring_restriction_sqe_flags_allowed, @ioring_restriction_sqe_flags_allowed={0x2, 0x2}], 0x6)
ioctl$DRM_IOCTL_MODE_GETFB2(r10, 0xc06864ce, &(0x7f0000000600)={r11, 0x0, 0x0, 0x1000000, 0x1000001, [], [0xfffffffe], [0x4, 0x0, 0x1, 0x1], [0x0, 0x3, 0x0, 0xf9af]})

10.213889872s ago: executing program 1 (id=1328):
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008009776b7040000000000008500000033"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="580000001000010400f0ffff0000000000000000", @ANYRES32=r2, @ANYBLOB="0000000000800200380012800b0001006272696467650000280002800c002300fbffffffffffffff05002400000000010500240001000000060027"], 0x58}}, 0x0)

10.213723181s ago: executing program 1 (id=1329):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000780)=@raw={'raw\x00', 0x3c1, 0x3, 0x370, 0x1bc, 0x2b8, 0x0, 0x1bc, 0xf5000000, 0x2a8, 0x3a8, 0x3a8, 0x2a8, 0x3a8, 0x3, 0x0, {[{{@ipv6={@dev, @private2, [], [], 'veth1_to_hsr\x00', 'wg2\x00'}, 0x0, 0x154, 0x1bc, 0x0, {}, [@common=@srh1={{0x8c}, {0x0, 0x0, 0x0, 0x0, 0x0, @private1, @loopback, @empty, [], [], [], 0x0, 0x6359d960a6776be9}}, @common=@inet=@ecn={{0x24}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0xa4, 0xec}, @unspec=@CT0={0x48}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x3cc)

10.135151975s ago: executing program 1 (id=1330):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0xb, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x5, 0x9, 0x3, 0x100006}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000340)=[{0x4, 0x2, 0x4, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000640)=0x6) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000640)=0x6)
r0 = syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB="0213000002000000000000000000000053a02aaf6be44eaa417a0eea1d92f19f6302cb54209c71defc2d5969e7cd1ab14995feefe02eca89729fd459994ea456a2ec0b290a602c032db9d7850bad937551e11a726025671d7184950de8d6365b5a5e06e0e4774837241cfffe5b6403f8e26353d0c779d972c6df9ddc34afe121560165f8437c9bbd88ee117bbd3ffa8cd9acf530de3f1f78de7669da4b6c51f266c86abc4be61e15cd00ef002e"], 0x10}}, 0x0)
r6 = syz_open_dev$vim2m(&(0x7f0000000380), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r6, 0xc0cc5605, &(0x7f00000000c0)={0x2, @pix_mp={0x0, 0x0, 0x34343459, 0x0, 0x0, [{}, {}, {}, {}, {}, {}, {0xfffffffd}], 0x0, 0x0, 0x6}})
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)
r7 = syz_open_dev$vim2m(&(0x7f0000000040), 0x2400006, 0x2)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
r8 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$WPAN_WANTLQI(r8, 0x0, 0x3, 0x0, &(0x7f00000001c0))
ioctl$vim2m_VIDIOC_REQBUFS(r7, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_QBUF(r7, 0xc044560f, &(0x7f00000001c0)=@mmap={0xfff, 0x0, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x81, 0x0, 0x0, 0x0, "f6ffffff"}}) (async)
ioctl$vim2m_VIDIOC_QBUF(r7, 0xc044560f, &(0x7f00000001c0)=@mmap={0xfff, 0x0, 0x4, 0x0, 0x0, {0x77359400}, {0x0, 0x0, 0x81, 0x0, 0x0, 0x0, "f6ffffff"}})
close_range(r5, 0xffffffffffffffff, 0x0)

9.697887263s ago: executing program 1 (id=1336):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000100)=0x3)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000200)={0x60ff, @bt={0xb43, 0x870, 0x1, 0x1, 0xd59f80, 0x19f2, 0x403, 0x19ef, 0x3, 0x3, 0x2800, 0x2800, 0x43e, 0xd1, 0xc, 0x1, {0x8, 0xfffffffb}, 0xd0, 0x9}})

9.697707614s ago: executing program 1 (id=1337):
r0 = syz_create_resource$binfmt(&(0x7f0000000180)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
execveat$binfmt(0xffffffffffffff9c, r0, 0x0, 0x0, 0x0)
r1 = gettid()
prlimit64(r1, 0x3, 0x0, 0x0)
getpgrp(0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bind$unix(0xffffffffffffffff, 0x0, 0x0)
sync_file_range(0xffffffffffffffff, 0x0, 0x0, 0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}], 0x1, 0x100, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000240009000000000000000e0006"], 0x14}}, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r5, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r6=>0x0], 0x1})
r7 = syz_open_dev$dri(&(0x7f0000000000), 0xab, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000002c0)=[<r8=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f0000000200)={r6, <r9=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r10 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r10, 0x10e, 0xc, &(0x7f0000000040)={0x5}, 0x10)
r11 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r11, 0x29, 0x40, &(0x7f0000000200)=@security={'security\x00', 0x44, 0x4, 0x424, 0xffffffff, 0xc8, 0x294, 0xc8, 0xffffffff, 0xffffffff, 0x35c, 0x35c, 0x35c, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@private0, @mcast1, [0x0, 0x0, 0xffffffff], [], 'nr0\x00', 'veth0_vlan\x00'}, 0x203, 0xa4, 0xc8, 0x8502}, @common=@unspec=@CONNSECMARK={0x24, 'CONNSECMARK\x00', 0x0, {0x1}}}, {{@uncond, 0x0, 0xa4, 0x1cc}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:object_r:modem_device_t:s0\x00'}}}, {{@uncond, 0x0, 0xa4, 0xc8}, @common=@unspec=@AUDIT={0x24}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x480)
sendmsg$nl_route(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB="300000001a00010000000000000000000a00e5"], 0x30}}, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r4, 0xc06864a2, &(0x7f0000000400)={&(0x7f0000000280)=[r8], 0x1, r9, 0x0, 0x0, 0x0, 0x0, 0x800, {0x4, 0x1, 0x3, 0x69, 0x200, 0x0, 0x2, 0x5, 0x4cab, 0xe154, 0x1000, 0x0, 0x10, 0xf9, "fe1d00003413000000000000000caa000000090000000000000004b427180010"}})
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000600))
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0100000004000000e27f00000100000005000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000fdb1360c9ba983f304dc80c3e9894b0332c70d73d1368ab56c2383211b095dfaedf26fbff820af3c1332429c574e57ee2e1822807606c75b0991f4fda5bbfefb1894ab89e55c142395aec35a5b3c8c1363a9", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r12, &(0x7f0000000300)="60b06c", 0x20000000}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)

1.581715243s ago: executing program 0 (id=1400):
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000500)={0xa, 0x2, 0x0, @empty}, 0x1c)
shutdown(0xffffffffffffffff, 0x1)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000300), r1)
sendmsg$NLBL_MGMT_C_ADDDEF(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001180)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="01000000000000000000040000000c0002"], 0x2c}}, 0x0)
listen(0xffffffffffffffff, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000340)={0x0, {{0xa, 0x0, 0x1, @mcast2, 0x1}}, {{0xa, 0x4, 0x6, @mcast1}}}, 0x108)
sendto$inet6(r4, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)

1.581459727s ago: executing program 3 (id=1401):
dup2(0xffffffffffffffff, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$radio(&(0x7f0000000000), 0x3, 0x2)
syz_io_uring_setup(0x23b, 0x0, &(0x7f0000000480)=<r1=>0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x6, 0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10042})
ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, 0x0)
socketpair(0x1, 0x3, 0x80000, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_open_dev$dri(&(0x7f00000005c0), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[<r3=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r2, 0xc05064a7, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x0, 0x20000})

1.580980022s ago: executing program 0 (id=1402):
close(0x3)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x41, 0x8000000}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r1}, 0x10)
r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8)
close(r3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$PROG_LOAD(0x1c, &(0x7f00000003c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0x1c, &(0x7f00000003c0)={r0, 0x0, 0x0}, 0x10)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x1c, &(0x7f00000003c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
close(r4)

1.48322711s ago: executing program 0 (id=1403):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001200)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140))
ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 3)

1.483003935s ago: executing program 3 (id=1404):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000080)={0x0, 0x80fe, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x25, 0x1, 0x0, 0x0, "", [@nested={0x103, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@dev}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8c"]}]}, 0x114}], 0x1}, 0x0)

1.482319098s ago: executing program 3 (id=1405):
syz_open_dev$usbfs(&(0x7f0000000100), 0x10, 0x121b01)
r0 = syz_open_dev$vcsa(&(0x7f0000000240), 0x2000003, 0x44980)
r1 = getpid()
r2 = socket(0x10, 0x3, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r4, 0x4068aea3, &(0x7f00000001c0))
r5 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1)
ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, &(0x7f0000001100)=ANY=[@ANYBLOB="0100000000000000ff00000002", @ANYRES32=r2, @ANYRES8=r5])
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000040)={0x1})
r6 = syz_pidfd_open(r1, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0a000000050000000400000006"], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000011c0)=ANY=[@ANYBLOB="02000008000000141000000100000001000000009c0451c91669ed24aaa36827bad8fa4943b03216405e39e9e0a9ab8422ac071a1f491a906939f398d818da2de6519f2f5c13b2d9ff8e6d6462f86df66e7a64263d40080ffeed8641d94ecfcf6f1ad67eb46b2c9e83d139c16be2a7cbb122b5f43f39298e00", @ANYRES16=r7, @ANYBLOB='\x00'/20, @ANYRES32=r3, @ANYRES32=r0, @ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa10000000000000701"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x0, 0x4, &(0x7f00000010c0)=ANY=[@ANYBLOB="180200000000000000000000000000008500000075001000950000000040561b0a3b4bd2a9680000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r8}, 0x10)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$KVM_GET_NR_MMU_PAGES(0xffffffffffffffff, 0xae45, 0x8)
sendmsg$OSF_MSG_ADD(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000b40)={0x268, 0x0, 0x5, 0x401, 0x0, 0x0, {}, [{{0x254, 0x1, {{}, 0x0, 0x0, 0x0, 0x0, 0xffff, 'syz0\x00', "b7411bd57b00b03cffb7437cdda2f487fdb1869db0669865b50427c59853678c", "3c8097bd14f735197114ccd7cbc7a177a83da33a65aecc1ba79b66b12eeb5500", [{}, {}, {}, {}, {0x100}, {}, {0x0, 0x0, {0x3}}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, {0x49946a349f2937f2}}, {}, {}, {}, {}, {}, {}, {0xf000}]}}}]}, 0x268}, 0x1, 0x0, 0x0, 0xc060}, 0x0)
syz_usb_connect(0x0, 0xb, &(0x7f00000010c0)=ANY=[], 0x0)
ioctl$BTRFS_IOC_ADD_DEV(r6, 0xc0085508, &(0x7f00000000c0)={{r6}, "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"})
r10 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
r11 = syz_open_dev$sndctrl(&(0x7f0000000180), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r11, 0xc008551c, &(0x7f00000001c0))
sendmsg$TIPC_NL_NET_GET(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="000229bd7000fddbdf000008000100f8000000080001000400000008000200ed4b00000c00040000010000000000000c0004000600000000000000140002800c000380080001000600000004000400"], 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x10)
setsockopt$WPAN_SECURITY_LEVEL(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000280)=0xffffffffffffffff, 0x4)

1.265080637s ago: executing program 0 (id=1406):
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x2)
mkdir(&(0x7f0000000240)='./file0\x00', 0x100)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='rpc_pipefs\x00', 0x0, 0x0)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000380), 0x102, 0x5a4181)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000002c0)={'ip_vti0\x00', &(0x7f0000000300)={'sit0\x00', <r0=>0x0, 0x8000, 0x1, 0x2, 0x3, {{0x11, 0x4, 0x2, 0x9, 0x44, 0x63, 0x0, 0x7f, 0x29, 0x0, @multicast1, @rand_addr, {[@lsrr={0x83, 0x1f, 0xab, [@initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @private=0xa010102, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010101, @rand_addr=0x64010100]}, @timestamp={0x44, 0x10, 0xcc, 0x0, 0xf, [0x0, 0x6, 0x0]}]}}}}})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000400)=ANY=[@ANYBLOB="bf16000000000000b707000000ff00004870000000000000400000000000000095000000000000002ba728041598fbd30cb599e83d24a3aa81d36bb3019c13bd23212fb56fa54f2641d8b02c3815e79c1414eb07eae6f0711e6bd917487960717142fa9ea4318123f602000000000080de89e661168c1886d0d4d94f204e345c65c26e278ef5b915395b19284a1a4bc72fbc1626e3a2a2ad358061d0ae0209e62f51ee988e6ea604ce974a22a550d6f97080980400003e05df3ceb9f1feae5737eca"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f406005b", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32, @ANYRES8=r1], 0x6f4}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000001c0)={'sit0\x00', &(0x7f0000000240)={'sit0\x00', r0, 0x0, 0x700, 0x19, 0x1, {{0x7, 0x4, 0x3, 0x37, 0x1c, 0x67, 0x0, 0xc, 0x29, 0x0, @rand_addr=0x64010102, @broadcast, {[@ssrr={0x89, 0x7, 0x5, [@rand_addr=0x64010102]}, @end]}}}}})
sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(0xffffffffffffffff, &(0x7f0000002480)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
getpid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_GET_TARGET(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x14, 0x0, 0x200, 0xfffffffc}, 0x14}, 0x1, 0x0, 0x0, 0x14000070}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r4)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, &(0x7f0000000580)=ANY=[], 0x0, 0xffffff00, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
process_vm_readv(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000640)=""/124, 0x7c}], 0x1, 0x0)
r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_SEQ_CTRLRATE(r5, 0xc0045103, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280))
socket$kcm(0x10, 0x3, 0x4)
r6 = socket$kcm(0x2b, 0x3, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
ioprio_get$uid(0x3, 0x0)
shutdown(r6, 0x1)
mount(&(0x7f0000000580)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540)='tmpfs\x00', 0x0, 0x0)

1.264573586s ago: executing program 2 (id=1407):
syz_open_dev$usbfs(&(0x7f0000000100), 0x10, 0x121b01)
r0 = syz_open_dev$vcsa(&(0x7f0000000240), 0x2000003, 0x44980)
r1 = getpid()
r2 = socket(0x10, 0x3, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r4, 0x4068aea3, &(0x7f00000001c0))
r5 = openat$sysctl(0xffffffffffffff9c, 0x0, 0x1, 0x0)
writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1)
ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, &(0x7f0000001100)=ANY=[@ANYBLOB="0100000000000000ff00000002", @ANYRES32=r2, @ANYRES8=r5])
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000040)={0x1})
r6 = syz_pidfd_open(r1, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0a000000050000000400000006"], 0x50)
close(0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa10000000000000701"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x0, 0x4, &(0x7f00000010c0)=ANY=[@ANYBLOB="180200000000000000000000000000008500000075001000950000000040561b0a3b4bd2a9680000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r8}, 0x10)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$KVM_GET_NR_MMU_PAGES(0xffffffffffffffff, 0xae45, 0x8)
sendmsg$OSF_MSG_ADD(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000b40)={0x268, 0x0, 0x5, 0x401, 0x0, 0x0, {}, [{{0x254, 0x1, {{}, 0x0, 0x0, 0x0, 0x0, 0xffff, 'syz0\x00', "b7411bd57b00b03cffb7437cdda2f487fdb1869db0669865b50427c59853678c", "3c8097bd14f735197114ccd7cbc7a177a83da33a65aecc1ba79b66b12eeb5500", [{}, {}, {}, {}, {0x100}, {}, {0x0, 0x0, {0x3}}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, {0x49946a349f2937f2}}, {}, {}, {}, {}, {}, {}, {0xf000}]}}}]}, 0x268}, 0x1, 0x0, 0x0, 0xc060}, 0x0)
syz_usb_connect(0x0, 0xb, &(0x7f00000010c0)=ANY=[], 0x0)
ioctl$BTRFS_IOC_ADD_DEV(r6, 0xc0085508, &(0x7f00000000c0)={{r6}, "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"})
r10 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
r11 = syz_open_dev$sndctrl(&(0x7f0000000180), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r11, 0xc008551c, &(0x7f00000001c0))
sendmsg$TIPC_NL_NET_GET(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="000229bd7000fddbdf000008000100f8000000080001000400000008000200ed4b00000c00040000010000000000000c0004000600000000000000140002800c000380080001000600000004000400"], 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x10)
setsockopt$WPAN_SECURITY_LEVEL(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000280)=0xffffffffffffffff, 0x4)

1.264210724s ago: executing program 0 (id=1408):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000ac0)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000340)=[{0x5, 0x5, 0x0, 0x9}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x3, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f00000007c0)={0x400000000000000, 0x0, 0x0}, 0x20004808)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x2)
socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
bind$netlink(r4, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x3, 0x1)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback={0x48}}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000340)={{{@in=@local, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, {}, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x33}, 0xfffffffd, 0x33}, 0x0, @in6=@dev={0xfe, 0x80, '\x00', 0x2}, 0x0, 0x0, 0x0, 0xfd}}, 0xe8)
sendmmsg(r5, &(0x7f0000000480), 0x21, 0x0)

856.482431ms ago: executing program 3 (id=1409):
socket$nl_route(0x10, 0x3, 0x0)
openat$autofs(0xffffff9c, &(0x7f0000000000), 0x101000, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
timer_create(0x7, &(0x7f0000000040)={0x0, 0x0, 0x6, @thr={&(0x7f0000000200), &(0x7f0000000400)="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"}}, &(0x7f0000000100))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x19)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000000)={&(0x7f000067d000/0x2000)=nil, &(0x7f000053d000/0x1000)=nil, 0x2000})
ioctl$UFFDIO_COPY(r1, 0xc028aa05, &(0x7f0000000180)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00003ab000/0x2000)=nil, 0x400000, 0x2, 0x2})
r2 = syz_io_uring_setup(0x4766, &(0x7f0000000140)={0x0, 0xa83d, 0x2000, 0x0, 0x400}, &(0x7f0000000340)=<r3=>0x0, &(0x7f00000000c0)=<r4=>0x0)
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x20001, 0x0)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r5, 0x3312, 0x3ff)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x9})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x5, 0x0)
futex(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0, 0x100)
r7 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r6, 0x8982, &(0x7f0000000280)={0x0, 'team0\x00', {0x2}, 0x3daa})
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000040)=0x1)
ioctl$TCFLSH(r7, 0x89f0, 0x20000000)
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
shutdown(r8, 0x0)
setsockopt$sock_int(r6, 0x1, 0x2e, &(0x7f0000000040)=0x5, 0x4)
recvmmsg(r6, &(0x7f0000008880), 0x45b, 0x0, 0x0)

616.730881ms ago: executing program 2 (id=1410):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001200)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

516.7912ms ago: executing program 2 (id=1411):
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000500)={0xa, 0x2, 0x0, @empty}, 0x1c)
shutdown(0xffffffffffffffff, 0x1)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000300), r1)
sendmsg$NLBL_MGMT_C_ADDDEF(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001180)=ANY=[@ANYBLOB=',\x00', @ANYRES16=r3, @ANYBLOB="01000000000000000000040000000c0002"], 0x2c}}, 0x0)
listen(0xffffffffffffffff, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2e, &(0x7f0000000340)={0x0, {{0xa, 0x0, 0x1, @mcast2, 0x1}}, {{0xa, 0x4, 0x6, @mcast1}}}, 0x108)
sendto$inet6(r4, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)

448.032092ms ago: executing program 2 (id=1412):
socket$netlink(0x10, 0x3, 0x13)
r0 = socket(0x25, 0xa, 0x800)
r1 = socket$pppoe(0x18, 0x1, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x109002, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
r5 = eventfd(0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$VHOST_SET_VRING_BASE(r4, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000540)={0x0, 0x0, 0x0, &(0x7f00000002c0)=""/138, 0x0})
ioctl$VHOST_SET_LOG_FD(r4, 0x4004af07, &(0x7f0000000740)=r5)
ioctl$VHOST_SET_VRING_KICK(r4, 0x4008af20, &(0x7f0000000040)={0x1, r5})
ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f00000005c0)={0x1, 0x0, [{0x100000, 0xdd, &(0x7f000001ac80)=""/221}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000000)=0x20000)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r6=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r6, 0xee00)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r2, 0x401870cb, 0x0)
r7 = syz_open_dev$MSR(&(0x7f00000000c0), 0xff, 0x0)
read$msr(r7, &(0x7f0000000100)=""/204, 0xcc)
tee(r1, r0, 0x702dcd68, 0x2)
r8 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240), r0)
sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2088410}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r8, 0x20, 0x70bd2b, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10000004}, 0x4000004)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
write(r0, &(0x7f0000000040)="240000001e005f031400ff01000000f80700b3586ff606c2e553797c080008e467dc0000", 0x24)
recvmmsg(r0, &(0x7f0000005180), 0x400000000000166, 0x1a000, 0x0)
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r1, 0x8008f512, &(0x7f0000000080))

447.828365ms ago: executing program 2 (id=1413):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001200)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, '\x00', 0x9})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_GET_NESTED_STATE(r2, 0xc080aebe, &(0x7f0000001240)={{0x0, 0x0, 0x80}})

358.087151ms ago: executing program 0 (id=1414):
r0 = socket$inet6(0x10, 0x3, 0x0)
r1 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x101005)
r2 = socket$inet_sctp(0x2, 0x400000000001, 0x84)
sendto$inet(r2, &(0x7f0000000080)="e3", 0x1, 0x0, &(0x7f0000000040)={0x2, 0x4e24, @rand_addr=0x64010100}, 0x10)
listen(r2, 0xda8c)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r5, 0x0, 0x0)
syz_pidfd_open(0x0, 0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}, 0x0, 0x0)
accept4(r2, &(0x7f0000000100)=@nfc, 0x0, 0x0)
writev(r1, &(0x7f0000000400)=[{&(0x7f0000000000)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000040)="aa1d484e240003000000f7c08b0e278ad10ab08ba900b92d276d720984d211fbdf23ea32", 0x24}], 0x2)
sendto$inet6(r0, &(0x7f0000000180)="900000001c001f4d154a817393278bff0a80a578020000004004840014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000766436c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

269.143989ms ago: executing program 2 (id=1415):
socket$netlink(0x10, 0x3, 0x9)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_LINK_CREATE(0xa, &(0x7f0000000600)={r0, 0xffffffffffffffff, 0x32, 0x7, @val=@uprobe_multi={&(0x7f00000001c0)='./file0\x00', 0x0, 0x0, 0x7, 0x0, 0xf1a78add0439488a}}, 0x3c)
r1 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = socket(0x11, 0x3, 0x0)
r5 = epoll_create1(0x0)
connect$inet(r5, &(0x7f0000000040)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10)
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000000)={0xe000202b})
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000f20000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000007f1600850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r8}, 0x10)
epoll_pwait(r6, &(0x7f00008c9fc4)=[{}], 0x1, 0xfffffffffffffff7, 0x0, 0x0)
r9 = dup3(r4, r6, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r9, 0x0)
r10 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x181005)
r11 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x25, 0x1, 0x0, 0x0, "", [@nested={0x103, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@dev}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8c"]}]}, 0x114}], 0x1}, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r10, 0x2275, &(0x7f0000000080)=0x8000)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r12, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r12, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_VMA(0x23, 0x0, &(0x7f000098b000/0x2000)=nil, 0x2000, 0x0)
r13 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r13, &(0x7f0000000000)={0x0, 0x1a, &(0x7f0000000540)={&(0x7f0000000340)=ANY=[@ANYBLOB="10000004000000f22cbd7000fedbdf25ae113d745171b74a5d862fe5facd919ce5b7a18999c39c91ee48ea3b25865c97b0c985b5c17f246e83084245381a3df1a74d9362ad954d35260dcb43a2553c6ee889baf73bc38201000100f547d9656c1619171d0f30811e41716ae291f11dd20000"], 0x10}, 0x1, 0x0, 0x0, 0x4040851}, 0x4040800)

333.82µs ago: executing program 3 (id=1416):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0}) (async)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff000000001c0012800b00010067726574617000000c000280080001"], 0x44}}, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="4400000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="81ffffff000000001c0012800b00010067726574617000000c000280080001"], 0x44}}, 0x0)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0000000000000000000017000000080001007063690011000200303030303a30303a31302e300000000008"], 0x50}}, 0x0) (async)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0000000000000000000017000000080001007063690011000200303030303a30303a31302e300000000008"], 0x50}}, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f30000000170a00170000000004003700090003", 0x27}], 0x1) (async)
writev(0xffffffffffffffff, &(0x7f0000000400)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f30000000170a00170000000004003700090003", 0x27}], 0x1)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000080)=@newtaction={0x60, 0x30, 0x0, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_skbedit={0x48, 0x1, 0x0, 0x0, {{0xc}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc}, {0xc, 0x9}}}]}]}, 0x60}}, 0x0)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02003c000b05d25a806f8c6394f90324fc602f00001550000100053582c137153e370248018088a8170088a8", 0x33fe0}], 0x1}, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000180)=ANY=[], 0x118)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x20, 0x1411, 0x1, 0x0, 0x0, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x4}]}, 0x20}}, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
ioctl$IOCTL_VMCI_NOTIFICATIONS_RECEIVE(r0, 0x7a6, &(0x7f0000000040)={0x20001100, 0x4fa5, 0x0, 0x1})

0s ago: executing program 3 (id=1417):
syz_open_dev$usbfs(&(0x7f0000000100), 0x10, 0x121b01)
r0 = syz_open_dev$vcsa(&(0x7f0000000240), 0x2000003, 0x44980)
r1 = getpid()
r2 = socket(0x10, 0x3, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r4, 0x4068aea3, &(0x7f00000001c0))
r5 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1)
ioctl$KVM_SET_GSI_ROUTING(r4, 0x4008ae6a, &(0x7f0000001100)=ANY=[@ANYBLOB="0100000000000000ff00000002", @ANYRES32=r2, @ANYRES8=r5])
ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000040)={0x1})
r6 = syz_pidfd_open(r1, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0a000000050000000400000006"], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000011c0)=ANY=[@ANYBLOB="02000008000000141000000100000001000000009c0451c91669ed24aaa36827bad8fa4943b03216405e39e9e0a9ab8422ac071a1f491a906939f398d818da2de6519f2f5c13b2d9ff8e6d6462f86df66e7a64263d40080ffeed8641d94ecfcf6f1ad67eb46b2c9e83d139c16be2a7cbb122b5f43f39298e00", @ANYRES16=r7, @ANYBLOB='\x00'/20, @ANYRES32=r3, @ANYRES32=r0, @ANYBLOB], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa10000000000000701"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x0, 0x4, &(0x7f00000010c0)=ANY=[@ANYBLOB="180200000000000000000000000000008500000075001000950000000040561b0a3b4bd2a9680000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r8}, 0x10)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$KVM_GET_NR_MMU_PAGES(0xffffffffffffffff, 0xae45, 0x8)
sendmsg$OSF_MSG_ADD(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000b40)={0x268, 0x0, 0x5, 0x401, 0x0, 0x0, {}, [{{0x254, 0x1, {{}, 0x0, 0x0, 0x0, 0x0, 0xffff, 'syz0\x00', "b7411bd57b00b03cffb7437cdda2f487fdb1869db0669865b50427c59853678c", "3c8097bd14f735197114ccd7cbc7a177a83da33a65aecc1ba79b66b12eeb5500", [{}, {}, {}, {}, {0x100}, {}, {0x0, 0x0, {0x3}}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, {0x49946a349f2937f2}}, {}, {}, {}, {}, {}, {}, {0xf000}]}}}]}, 0x268}, 0x1, 0x0, 0x0, 0xc060}, 0x0)
syz_usb_connect(0x0, 0xb, &(0x7f00000010c0)=ANY=[], 0x0)
ioctl$BTRFS_IOC_ADD_DEV(r6, 0xc0085508, &(0x7f00000000c0)={{r6}, "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"})
r10 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
r11 = syz_open_dev$sndctrl(&(0x7f0000000180), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r11, 0xc008551c, &(0x7f00000001c0))
sendmsg$TIPC_NL_NET_GET(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="000229bd7000fddbdf000008000100f8000000080001000400000008000200ed4b00000c00040000010000000000000c0004000600000000000000140002800c000380080001000600000004000400"], 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x10)
setsockopt$WPAN_SECURITY_LEVEL(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000280)=0xffffffffffffffff, 0x4)

kernel console output (not intermixed with test programs):

71006][ T8914] Call Trace:
[  151.171880][ T8914]  <TASK>
[  151.172678][ T8914]  dump_stack_lvl+0x16c/0x1f0
[  151.173968][ T8914]  should_fail_ex+0x497/0x5b0
[  151.175250][ T8914]  ? fs_reclaim_acquire+0xae/0x150
[  151.176942][ T8914]  should_failslab+0xc2/0x120
[  151.178687][ T8914]  kmem_cache_alloc_node_noprof+0x71/0x310
[  151.180399][ T8914]  ? __alloc_skb+0x2b3/0x380
[  151.181619][ T8914]  __alloc_skb+0x2b3/0x380
[  151.182797][ T8914]  ? __pfx___alloc_skb+0x10/0x10
[  151.184391][ T8914]  ? lock_acquire+0x2f/0xb0
[  151.185592][ T8914]  netlink_alloc_large_skb+0x69/0x130
[  151.187378][ T8914]  netlink_sendmsg+0x689/0xd70
[  151.188756][ T8914]  ? __pfx_netlink_sendmsg+0x10/0x10
[  151.190192][ T8914]  ? lock_acquire+0x2f/0xb0
[  151.191385][ T8914]  ____sys_sendmsg+0x9ae/0xb40
[  151.192630][ T8914]  ? __pfx_____sys_sendmsg+0x10/0x10
[  151.194160][ T8914]  ? get_compat_msghdr+0x11b/0x170
[  151.195532][ T8914]  ? __pfx___lock_acquire+0x10/0x10
[  151.196889][ T8914]  ___sys_sendmsg+0x135/0x1e0
[  151.198130][ T8914]  ? __pfx____sys_sendmsg+0x10/0x10
[  151.199478][ T8914]  ? lock_acquire+0x2f/0xb0
[  151.200616][ T8914]  ? __fget_files+0x40/0x3f0
[  151.201839][ T8914]  ? fdget+0x176/0x210
[  151.202937][ T8914]  __sys_sendmsg+0x117/0x1f0
[  151.204184][ T8914]  ? __pfx___sys_sendmsg+0x10/0x10
[  151.205535][ T8914]  ? __fget_files+0x244/0x3f0
[  151.206814][ T8914]  __do_fast_syscall_32+0x73/0x120
[  151.208150][ T8914]  do_fast_syscall_32+0x32/0x80
[  151.209421][ T8914]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  151.211100][ T8914] RIP: 0023:0xf73ee579
[  151.212094][ T8914] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  151.216889][ T8914] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  151.218962][ T8914] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000400
[  151.220836][ T8914] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  151.222755][ T8914] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  151.224662][ T8914] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  151.226695][ T8914] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  151.228668][ T8914]  </TASK>
[  151.312482][ T8923] syz.3.977: vmalloc error: size 2038794240, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  151.315942][ T8923] CPU: 3 UID: 0 PID: 8923 Comm: syz.3.977 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  151.318562][ T8923] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.321209][ T8923] Call Trace:
[  151.322013][ T8923]  <TASK>
[  151.322734][ T8923]  dump_stack_lvl+0x16c/0x1f0
[  151.323908][ T8923]  warn_alloc+0x24d/0x3a0
[  151.324997][ T8923]  ? __pfx_warn_alloc+0x10/0x10
[  151.326212][ T8923]  ? __pfx___lock_acquire+0x10/0x10
[  151.327459][ T8923]  ? get_ctrl+0x394/0x4f0
[  151.328491][ T8923]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  151.329841][ T8923]  __vmalloc_node_range_noprof+0x11a7/0x15a0
[  151.331310][ T8923]  ? __mutex_trylock_common+0xea/0x250
[  151.332622][ T8923]  ? __pfx___mutex_trylock_common+0x10/0x10
[  151.334030][ T8923]  ? __v4l2_ctrl_modify_dimensions+0x1c7/0x650
[  151.335503][ T8923]  ? rcu_is_watching+0x12/0xc0
[  151.336659][ T8923]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  151.338122][ T8923]  ? rcu_is_watching+0x12/0xc0
[  151.339636][ T8923]  ? rcu_is_watching+0x12/0xc0
[  151.340783][ T8923]  ? trace_kmalloc+0x2d/0xe0
[  151.341934][ T8923]  ? __kmalloc_node_noprof.cold+0x5a/0x5f
[  151.343218][ T8923]  ? __v4l2_ctrl_modify_dimensions+0x1c7/0x650
[  151.344618][ T8923]  __kvmalloc_node_noprof+0x14f/0x1a0
[  151.345906][ T8923]  ? __v4l2_ctrl_modify_dimensions+0x1c7/0x650
[  151.347354][ T8923]  __v4l2_ctrl_modify_dimensions+0x1c7/0x650
[  151.348748][ T8923]  vivid_update_format_cap+0x127b/0x2530
[  151.350068][ T8923]  ? __pfx_vivid_update_format_cap+0x10/0x10
[  151.351472][ T8923]  ? v4l2_match_dv_timings+0x1df/0x1010
[  151.352748][ T8923]  vivid_vid_cap_s_dv_timings+0xc0f/0xfb0
[  151.354062][ T8923]  vidioc_s_dv_timings+0xa5/0xc0
[  151.355341][ T8923]  ? v4l_stub_s_dv_timings+0x1b/0x60
[  151.356683][ T8923]  __video_do_ioctl+0xaf0/0xf00
[  151.357837][ T8923]  ? __pfx___video_do_ioctl+0x10/0x10
[  151.359140][ T8923]  video_usercopy+0x426/0x1500
[  151.360272][ T8923]  ? __pfx___video_do_ioctl+0x10/0x10
[  151.361504][ T8923]  ? __pfx_video_usercopy+0x10/0x10
[  151.362772][ T8923]  v4l2_ioctl+0x1ba/0x250
[  151.363784][ T8923]  v4l2_compat_ioctl32+0x214/0x2c0
[  151.364978][ T8923]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  151.366727][ T8923]  __do_compat_sys_ioctl+0x259/0x2b0
[  151.367982][ T8923]  __do_fast_syscall_32+0x73/0x120
[  151.369209][ T8923]  do_fast_syscall_32+0x32/0x80
[  151.370382][ T8923]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  151.371987][ T8923] RIP: 0023:0xf743e579
[  151.373000][ T8923] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  151.377748][ T8923] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  151.379903][ T8923] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0845657
[  151.382206][ T8923] RDX: 0000000020000200 RSI: 0000000000000000 RDI: 0000000000000000
[  151.384038][ T8923] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  151.385871][ T8923] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  151.387713][ T8923] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  151.389537][ T8923]  </TASK>
[  151.391721][ T8923] Mem-Info:
[  151.392503][ T8923] active_anon:4865 inactive_anon:377 isolated_anon:0
[  151.392503][ T8923]  active_file:5335 inactive_file:33251 isolated_file:0
[  151.392503][ T8923]  unevictable:768 dirty:432 writeback:0
[  151.392503][ T8923]  slab_reclaimable:4708 slab_unreclaimable:58161
[  151.392503][ T8923]  mapped:18115 shmem:1297 pagetables:618
[  151.392503][ T8923]  sec_pagetables:307 bounce:0
[  151.392503][ T8923]  kernel_misc_reclaimable:0
[  151.392503][ T8923]  free:87635 free_pcp:2644 free_cma:0
[  151.403508][ T8923] Node 0 active_anon:7120kB inactive_anon:1508kB active_file:11532kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:4956kB dirty:84kB writeback:0kB shmem:2872kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9212kB pagetables:1252kB sec_pagetables:1176kB all_unreclaimable? yes
[  151.411095][ T8923] Node 1 active_anon:12340kB inactive_anon:0kB active_file:9808kB inactive_file:133004kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:67504kB dirty:1644kB writeback:0kB shmem:2316kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2252kB pagetables:1220kB sec_pagetables:52kB all_unreclaimable? no
[  151.418702][ T8923] Node 0 DMA free:2984kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:1784kB inactive_anon:256kB active_file:352kB inactive_file:0kB unevictable:0kB writepending:36kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:612kB local_pcp:148kB free_cma:0kB
[  151.425879][ T8923] lowmem_reserve[]: 0 273 0 0 0
[  151.427116][ T8923] Node 0 DMA32 free:27596kB boost:6144kB min:20048kB low:23524kB high:27000kB reserved_highatomic:4096KB active_anon:5392kB inactive_anon:1252kB active_file:11180kB inactive_file:0kB unevictable:1536kB writepending:48kB present:1032196kB managed:306288kB mlocked:0kB bounce:0kB free_pcp:1872kB local_pcp:488kB free_cma:0kB
[  151.434327][ T8923] lowmem_reserve[]: 0 0 0 0 0
[  151.435557][ T8923] Node 1 DMA32 free:319416kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:12340kB inactive_anon:0kB active_file:9808kB inactive_file:133004kB unevictable:1536kB writepending:1644kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:8636kB local_pcp:512kB free_cma:0kB
[  151.442513][ T8923] lowmem_reserve[]: 0 0 0 0 0
[  151.443736][ T8923] Node 0 DMA: 56*4kB (UM) 31*8kB (UM) 104*16kB (UM) 26*32kB (UM) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2968kB
[  151.447081][ T8923] Node 0 DMA32: 488*4kB (UMEH) 241*8kB (UEH) 24*16kB (UMEH) 142*32kB (UMEH) 108*64kB (UME) 34*128kB (UMEH) 7*256kB (UME) 5*512kB (UM) 1*1024kB (U) 1*2048kB (M) 0*4096kB = 27496kB
[  151.452301][ T8923] Node 1 DMA32: 241*4kB (UE) 326*8kB (UE) 354*16kB (UME) 145*32kB (UME) 198*64kB (UME) 91*128kB (UME) 46*256kB (UME) 14*512kB (UM) 6*1024kB (UM) 9*2048kB (UM) 58*4096kB (M) = 319284kB
[  151.456657][ T8923] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  151.456668][ T8923] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  151.456676][ T8923] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  151.456684][ T8923] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  151.456692][ T8923] 39883 total pagecache pages
[  151.456696][ T8923] 0 pages in swap cache
[  151.456699][ T8923] Free swap  = 124516kB
[  151.456703][ T8923] Total swap = 124996kB
[  151.456708][ T8923] 524155 pages RAM
[  151.456711][ T8923] 0 pages HighMem/MovableOnly
[  151.456715][ T8923] 206680 pages reserved
[  151.456719][ T8923] 0 pages cma reserved
[  151.550798][ T8932] netlink: 'syz.3.980': attribute type 1 has an invalid length.
[  151.553592][ T8932] netlink: 224 bytes leftover after parsing attributes in process `syz.3.980'.
[  151.682457][ T8936] netlink: 'syz.3.982': attribute type 1 has an invalid length.
[  151.684747][ T8936] netlink: 224 bytes leftover after parsing attributes in process `syz.3.982'.
[  151.886512][ T8950] netlink: 'syz.3.985': attribute type 1 has an invalid length.
[  151.888511][ T8950] netlink: 224 bytes leftover after parsing attributes in process `syz.3.985'.
[  152.051021][   T57] libceph: connect (1)[c::]:6789 error -22
[  152.052667][   T57] libceph: mon0 (1)[c::]:6789 connect error
[  152.061429][ T8961] random: crng reseeded on system resumption
[  152.091419][ T8962] ceph: No mds server is up or the cluster is laggy
[  152.412851][ T8970] netlink: 16 bytes leftover after parsing attributes in process `syz.2.991'.
[  152.419723][   T39] kauditd_printk_skb: 16 callbacks suppressed
[  152.419738][   T39] audit: type=1326 audit(1729681300.371:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8967 comm="syz.2.991" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  152.529032][   T39] audit: type=1326 audit(1729681300.371:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8967 comm="syz.2.991" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  152.534397][   T39] audit: type=1326 audit(1729681300.391:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8967 comm="syz.2.991" exe="/syz-executor" sig=0 arch=40000003 syscall=290 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  152.539904][   T39] audit: type=1326 audit(1729681300.391:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8967 comm="syz.2.991" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  152.545392][   T39] audit: type=1326 audit(1729681300.391:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8967 comm="syz.2.991" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  152.551171][   T39] audit: type=1326 audit(1729681300.391:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8967 comm="syz.2.991" exe="/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  152.556572][   T39] audit: type=1326 audit(1729681300.391:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8967 comm="syz.2.991" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  152.561850][   T39] audit: type=1326 audit(1729681300.391:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8967 comm="syz.2.991" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  152.567187][   T39] audit: type=1326 audit(1729681300.391:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8967 comm="syz.2.991" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  152.620715][   T39] audit: type=1326 audit(1729681300.391:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8967 comm="syz.2.991" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x7ffc0000
[  152.781616][ T8982] netlink: 'syz.0.994': attribute type 1 has an invalid length.
[  152.783729][ T8982] netlink: 224 bytes leftover after parsing attributes in process `syz.0.994'.
[  153.418112][ T9000] kvm: pic: single mode not supported
[  153.418758][ T9000] kvm: pic: non byte write
[  153.422384][ T9000] kvm: pic: single mode not supported
[  153.423396][ T9000] kvm: pic: non byte write
[  153.428187][ T9000] kvm: pic: non byte write
[  153.429576][ T9000] kvm: pic: single mode not supported
[  153.430082][ T9000] kvm: pic: non byte write
[  153.433818][ T9000] kvm: pic: single mode not supported
[  153.437370][ T9000] kvm: pic: single mode not supported
[  153.440217][ T9000] kvm: pic: single mode not supported
[  153.446859][ T9000] kvm: pic: non byte write
[  153.451021][ T9000] kvm: pic: single mode not supported
[  153.451383][ T9000] kvm: pic: non byte read
[  153.454754][ T9000] kvm: pic: non byte write
[  153.456172][ T9000] kvm: pic: single mode not supported
[  153.456609][ T9000] kvm: pic: non byte read
[  153.459374][ T9000] kvm: pic: non byte write
[  153.461673][ T9000] kvm: pic: single mode not supported
[  153.462187][ T9000] kvm: pic: non byte read
[  153.465902][ T9000] kvm: pic: non byte write
[  153.467670][ T9000] kvm: pic: single mode not supported
[  153.468119][ T9000] kvm: pic: non byte read
[  153.471306][ T9000] kvm: pic: non byte write
[  153.473120][ T9000] kvm: pic: level sensitive irq not supported
[  153.474740][ T9000] kvm: pic: level sensitive irq not supported
[  153.477892][ T9000] kvm: pic: non byte write
[  153.481844][ T9000] kvm: pic: level sensitive irq not supported
[  153.482503][ T9000] kvm: pic: level sensitive irq not supported
[  153.484947][ T9000] kvm: pic: level sensitive irq not supported
[  153.487461][ T9000] kvm: pic: level sensitive irq not supported
[  153.489823][ T9000] kvm: pic: level sensitive irq not supported
[  153.492604][ T9000] kvm: pic: level sensitive irq not supported
[  153.502523][ T9000] kvm: pic: level sensitive irq not supported
[  153.505622][ T9000] kvm: pic: level sensitive irq not supported
[  153.648420][ T9009] netlink: 'syz.2.1003': attribute type 1 has an invalid length.
[  153.653575][ T9009] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1003'.
[  153.702555][ T9011] syz.1.1004 (9011): drop_caches: 2
[  153.830708][ T9018] can0: slcan on ptm0.
[  154.409125][    C3] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  154.409868][ T9036] netlink: 'syz.1.1010': attribute type 10 has an invalid length.
[  154.414669][ T9036] netlink: 210880 bytes leftover after parsing attributes in process `syz.1.1010'.
[  154.622553][ T9013] can0 (unregistered): slcan off ptm0.
[  154.896880][ T9062] netlink: 'syz.0.1015': attribute type 1 has an invalid length.
[  154.899674][ T9062] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1015'.
[  154.921744][ T9063] netlink: 'syz.3.1013': attribute type 1 has an invalid length.
[  154.923821][ T9063] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1013'.
[  154.955274][ T9059] kvm: pic: non byte read
[  154.957471][ T9059] kvm: pic: non byte read
[  154.959261][ T9059] kvm: pic: non byte read
[  154.961275][ T9059] kvm: pic: non byte read
[  154.991811][ T9071] FAULT_INJECTION: forcing a failure.
[  154.991811][ T9071] name failslab, interval 1, probability 0, space 0, times 0
[  154.995029][ T9071] CPU: 3 UID: 0 PID: 9071 Comm: syz.3.1019 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  154.997757][ T9071] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.000497][ T9071] Call Trace:
[  155.001368][ T9071]  <TASK>
[  155.002140][ T9071]  dump_stack_lvl+0x16c/0x1f0
[  155.003379][ T9071]  should_fail_ex+0x497/0x5b0
[  155.004614][ T9071]  ? fs_reclaim_acquire+0xae/0x150
[  155.005937][ T9071]  should_failslab+0xc2/0x120
[  155.007170][ T9071]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  155.008560][ T9071]  ? alloc_empty_file+0x73/0x1e0
[  155.009854][ T9071]  alloc_empty_file+0x73/0x1e0
[  155.011111][ T9071]  path_openat+0xe1/0x2d60
[  155.012265][ T9071]  ? hlock_class+0x4e/0x130
[  155.013430][ T9071]  ? __lock_acquire+0x163e/0x3ce0
[  155.014694][ T9071]  ? __pfx_path_openat+0x10/0x10
[  155.015930][ T9071]  ? __pfx___lock_acquire+0x10/0x10
[  155.017237][ T9071]  do_filp_open+0x1dc/0x430
[  155.018385][ T9071]  ? __pfx_do_filp_open+0x10/0x10
[  155.019626][ T9071]  ? find_held_lock+0x2d/0x110
[  155.020825][ T9071]  ? _raw_spin_unlock+0x28/0x50
[  155.022053][ T9071]  ? alloc_fd+0x2d7/0x6c0
[  155.023157][ T9071]  do_sys_openat2+0x17a/0x1e0
[  155.024338][ T9071]  ? __pfx_do_sys_openat2+0x10/0x10
[  155.025629][ T9071]  ? __fget_files+0x244/0x3f0
[  155.026829][ T9071]  __ia32_compat_sys_openat+0x16e/0x210
[  155.028217][ T9071]  ? __pfx___ia32_compat_sys_openat+0x10/0x10
[  155.029743][ T9071]  ? ksys_write+0x1ad/0x260
[  155.030893][ T9071]  __do_fast_syscall_32+0x73/0x120
[  155.032164][ T9071]  do_fast_syscall_32+0x32/0x80
[  155.033394][ T9071]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  155.034907][ T9071] RIP: 0023:0xf743e579
[  155.035918][ T9071] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  155.040541][ T9071] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000127
[  155.042611][ T9071] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 000000002000c380
[  155.044609][ T9071] RDX: 0000000000161842 RSI: 0000000000000000 RDI: 0000000000000000
[  155.046608][ T9071] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  155.048624][ T9071] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  155.050664][ T9071] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  155.052689][ T9071]  </TASK>
[  155.744409][ T9097] netlink: 'syz.2.1027': attribute type 1 has an invalid length.
[  155.746560][ T9097] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1027'.
[  155.750636][   T57] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  155.899559][   T57] usb 6-1: Using ep0 maxpacket: 8
[  155.903079][   T57] usb 6-1: config 0 has an invalid interface number: 52 but max is 0
[  155.909624][   T57] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  155.912745][   T57] usb 6-1: config 0 has no interface number 0
[  155.914350][   T57] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  155.917150][   T57] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  155.919650][   T57] usb 6-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  155.923053][   T57] usb 6-1: config 0 interface 52 has no altsetting 0
[  155.931327][   T57] usb 6-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00
[  155.933561][   T57] usb 6-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35
[  155.935697][   T57] usb 6-1: Product: syz
[  155.936776][   T57] usb 6-1: SerialNumber: syz
[  155.939892][   T57] usb 6-1: config 0 descriptor??
[  155.985011][ T9105] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  155.998233][ T9107] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1032'.
[  156.016925][ T9105] netlink: 5300 bytes leftover after parsing attributes in process `syz.2.1031'.
[  156.106809][ T9115] syzkaller1: entered promiscuous mode
[  156.108306][ T9115] syzkaller1: entered allmulticast mode
[  156.112449][ T9115] tipc: Started in network mode
[  156.113740][ T9115] tipc: Node identity 4, cluster identity 4711
[  156.115308][ T9115] tipc: Node number set to 4
[  156.134876][ T9116] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1035'.
[  156.136765][ T9117] netlink: 'syz.0.1036': attribute type 1 has an invalid length.
[  156.140267][ T9117] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1036'.
[  156.209532][   T57] input: syz (Stick) as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.52/input/input12
[  156.214757][ T4827] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  156.221221][ T4827] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  156.223731][ T4827] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  156.229227][ T4827] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  156.241215][ T4827] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  156.255696][ T4827] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  156.259753][ T8897] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  156.269825][ T4827] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  156.272656][ T4827] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  156.415147][ T9090] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  156.710966][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.714210][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.717134][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.720382][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.724038][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.724289][ T5351] usb 6-1: USB disconnect, device number 8
[  156.727027][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.732825][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.736051][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.738985][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.742153][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.745215][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.748409][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.751507][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.754935][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.757969][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.760945][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.764193][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.767185][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.770397][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.773900][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.776834][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.779759][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.783969][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.786937][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.789889][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.793328][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.796263][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.799031][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.801946][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.805096][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.808021][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.810972][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.814985][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.817956][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.821131][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.824224][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.827255][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.830426][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.833682][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.837543][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.841524][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.845776][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.849994][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.854373][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.858517][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.862844][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.867017][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.870447][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.873553][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.877426][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.880345][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.883557][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.886589][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.889558][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.892875][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.896023][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.898929][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.902034][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.906202][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.909229][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.912671][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.915818][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.918934][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.922883][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  156.927029][ T9137] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  157.387774][ T9148] random: crng reseeded on system resumption
[  157.947573][ T9165] EXT4-fs (sda1): shut down requested (1)
[  157.957589][ T9165] Aborting journal on device sda1-8.
[  158.730761][ T9175] syz.3.1052 (9175): drop_caches: 2
[  159.250537][ T9184] syz.2.1054 (9184): drop_caches: 2
[  159.886711][ T9206] syz.2.1062 (9206): drop_caches: 2
[  160.535256][ T9231] syz.2.1067 (9231): drop_caches: 2
[  160.595239][ T9238] nbd: couldn't find a device at index 1296764928
[  160.615831][ T9238] input: syz1 as /devices/virtual/input/input13
[  160.734881][ T9239] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1070'.
[  160.958247][ T9268] can0: slcan on ptm0.
[  160.968398][ T9262] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1072'.
[  160.977921][   T39] kauditd_printk_skb: 7 callbacks suppressed
[  160.977967][   T39] audit: type=1326 audit(1729681309.006:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9256 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[  160.986281][   T39] audit: type=1326 audit(1729681309.006:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9256 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[  160.992461][   T39] audit: type=1326 audit(1729681309.006:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9256 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=290 compat=1 ip=0xf7f48579 code=0x7ffc0000
[  160.998717][   T39] audit: type=1326 audit(1729681309.006:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9256 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[  161.005238][   T39] audit: type=1326 audit(1729681309.006:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9256 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf7f48579 code=0x7ffc0000
[  161.011203][   T39] audit: type=1326 audit(1729681309.006:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9256 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[  161.017258][   T39] audit: type=1326 audit(1729681309.006:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9256 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[  161.023188][   T39] audit: type=1326 audit(1729681309.016:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9256 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf7f48579 code=0x7ffc0000
[  161.029472][   T39] audit: type=1326 audit(1729681309.016:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9256 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[  161.035908][   T39] audit: type=1326 audit(1729681309.016:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9256 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[  161.200940][ T9273] netlink: 'syz.2.1077': attribute type 1 has an invalid length.
[  161.802337][ T9265] can0 (unregistered): slcan off ptm0.
[  162.447916][ T9301] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1085'.
[  162.562472][ T9310] netlink: 'syz.1.1088': attribute type 1 has an invalid length.
[  162.564585][ T9310] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1088'.
[  162.599475][ T9307] Cannot find del_set index 4 as target
[  163.099615][ T9335] can0: slcan on ptm0.
[  163.151982][ T9339] netlink: 'syz.2.1097': attribute type 1 has an invalid length.
[  163.155644][ T9339] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1097'.
[  163.197546][ T9344] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1098'.
[  163.249283][ T9346] syz.2.1099 (9346): drop_caches: 2
[  163.322656][ T9349] syz_tun: entered promiscuous mode
[  163.325501][ T9349] batadv_slave_0: entered promiscuous mode
[  163.327996][ T9349] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  163.330047][ T9349] Cannot create hsr debugfs directory
[  163.331518][ T9349] hsr1: Slave B (batadv_slave_0) is not up; please bring it up to get a fully working HSR network
[  163.426134][ T9353] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1103'.
[  163.434010][ T9353] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1103'.
[  163.481694][ T9355] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1100'.
[  163.551803][ T9357] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1100'.
[  163.909187][ T9361] 9pnet: Could not find request transport: fL
[  163.940003][ T9365] FAULT_INJECTION: forcing a failure.
[  163.940003][ T9365] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.943587][ T9365] CPU: 1 UID: 0 PID: 9365 Comm: syz.2.1105 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  163.946468][ T9365] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.949436][ T9365] Call Trace:
[  163.949897][ T9331] can0 (unregistered): slcan off ptm0.
[  163.950370][ T9365]  <TASK>
[  163.950378][ T9365]  dump_stack_lvl+0x16c/0x1f0
[  163.954362][ T9365]  should_fail_ex+0x497/0x5b0
[  163.955631][ T9365]  _copy_from_iter+0x29b/0x13e0
[  163.956926][ T9365]  ? __pfx__copy_from_iter+0x10/0x10
[  163.958537][ T9365]  ? __virt_addr_valid+0x1a4/0x590
[  163.960115][ T9365]  ? __virt_addr_valid+0x5e/0x590
[  163.961451][ T9365]  ? __phys_addr_symbol+0x30/0x80
[  163.962799][ T9365]  ? __check_object_size+0x488/0x710
[  163.964187][ T9365]  skb_copy_datagram_from_iter+0x124/0x710
[  163.965712][ T9365]  ? lock_acquire+0x2f/0xb0
[  163.966924][ T9365]  packet_sendmsg+0x2135/0x54c0
[  163.968214][ T9365]  ? __pfx___might_resched+0x10/0x10
[  163.969595][ T9365]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  163.971430][ T9365]  ? aa_sk_perm+0x2f5/0xb20
[  163.972782][ T9365]  ? __pfx_packet_sendmsg+0x10/0x10
[  163.974364][ T9365]  ? __pfx_aa_sk_perm+0x10/0x10
[  163.975724][ T9365]  __sys_sendto+0x479/0x4d0
[  163.976975][ T9365]  ? __pfx___sys_sendto+0x10/0x10
[  163.978441][ T9365]  ? ksys_write+0x1ad/0x260
[  163.979658][ T9365]  ? __pfx_ksys_write+0x10/0x10
[  163.980947][ T9365]  __ia32_sys_sendto+0xdd/0x1b0
[  163.982290][ T9365]  ? lockdep_hardirqs_on+0x7c/0x110
[  163.983725][ T9365]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  163.985586][ T9365]  __do_fast_syscall_32+0x73/0x120
[  163.987009][ T9365]  do_fast_syscall_32+0x32/0x80
[  163.988429][ T9365]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  163.990137][ T9365] RIP: 0023:0xf7f36579
[  163.991225][ T9365] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  163.996248][ T9365] RSP: 002b:00000000f56b656c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  163.998430][ T9365] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000180
[  164.000508][ T9365] RDX: 0000000000000028 RSI: 0000000000000000 RDI: 0000000020000140
[  164.002595][ T9365] RBP: 0000000000000014 R08: 0000000000000000 R09: 0000000000000000
[  164.004774][ T9365] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  164.006856][ T9365] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  164.008929][ T9365]  </TASK>
[  164.037416][ T9367] netlink: 'syz.2.1106': attribute type 1 has an invalid length.
[  164.045813][ T9367] 8021q: adding VLAN 0 to HW filter on device bond3
[  164.060238][ T9367] 8021q: adding VLAN 0 to HW filter on device bond3
[  164.062105][ T9367] bond3: (slave vti0): The slave device specified does not support setting the MAC address
[  164.065248][ T9367] bond3: (slave vti0): Error -95 calling set_mac_address
[  164.335862][ T9384] syz.1.1112 (9384): drop_caches: 2
[  164.621208][ T9395] can0: slcan on ptm0.
[  164.696023][ T9398] FAULT_INJECTION: forcing a failure.
[  164.696023][ T9398] name failslab, interval 1, probability 0, space 0, times 0
[  164.699308][ T9398] CPU: 1 UID: 0 PID: 9398 Comm: syz.0.1114 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  164.701955][ T9398] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  164.704701][ T9398] Call Trace:
[  164.705610][ T9398]  <TASK>
[  164.706544][ T9398]  dump_stack_lvl+0x16c/0x1f0
[  164.707748][ T9398]  should_fail_ex+0x497/0x5b0
[  164.708985][ T9398]  ? fs_reclaim_acquire+0xae/0x150
[  164.710341][ T9398]  should_failslab+0xc2/0x120
[  164.711529][ T9398]  __kmalloc_noprof+0xcb/0x410
[  164.712713][ T9398]  ? bpf_lsm_capable+0x9/0x10
[  164.713883][ T9398]  ? security_capable+0x7e/0x260
[  164.715153][ T9398]  io_alloc_async_data+0x9d/0x150
[  164.716391][ T9398]  io_prep_rw+0x30d/0xb70
[  164.717463][ T9398]  io_submit_sqes+0x8aa/0x2530
[  164.718677][ T9398]  __do_sys_io_uring_enter+0xc0f/0x1170
[  164.720038][ T9398]  ? __pfx___schedule+0x10/0x10
[  164.721275][ T9398]  ? __fget_files+0x244/0x3f0
[  164.722505][ T9398]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  164.723998][ T9398]  ? fput+0x30/0x390
[  164.725013][ T9398]  ? ksys_write+0x1ad/0x260
[  164.726185][ T9398]  __do_fast_syscall_32+0x73/0x120
[  164.727478][ T9398]  do_fast_syscall_32+0x32/0x80
[  164.728743][ T9398]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  164.730337][ T9398] RIP: 0023:0xf7f48579
[  164.731313][ T9398] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  164.736071][ T9398] RSP: 002b:00000000f568456c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  164.738143][ T9398] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000000047f6
[  164.740230][ T9398] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  164.742315][ T9398] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  164.744387][ T9398] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  164.746466][ T9398] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  164.748683][ T9398]  </TASK>
[  164.969089][ T9400] syz.1.1116 (9400): drop_caches: 2
[  165.375058][ T5415] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  165.433892][ T9392] can0 (unregistered): slcan off ptm0.
[  165.529857][ T5415] usb 8-1: Using ep0 maxpacket: 16
[  165.531771][ T5415] usb 8-1: no configurations
[  165.533000][ T5415] usb 8-1: can't read configurations, error -22
[  165.593110][ T9417] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.597192][ T9417] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.655746][ T5415] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  165.801228][ T5415] usb 8-1: Using ep0 maxpacket: 16
[  165.803449][ T5415] usb 8-1: no configurations
[  165.804705][ T5415] usb 8-1: can't read configurations, error -22
[  165.809062][ T5415] usb usb8-port1: attempt power cycle
[  165.885439][ T9424] random: crng reseeded on system resumption
[  166.160200][ T5415] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  166.189971][ T5415] usb 8-1: Using ep0 maxpacket: 16
[  166.193255][ T5415] usb 8-1: no configurations
[  166.194680][ T5415] usb 8-1: can't read configurations, error -22
[  166.335107][ T5415] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  166.354940][ T5415] usb 8-1: Using ep0 maxpacket: 16
[  166.360601][ T5415] usb 8-1: no configurations
[  166.361927][ T5415] usb 8-1: can't read configurations, error -22
[  166.364981][ T5415] usb usb8-port1: unable to enumerate USB device
[  166.969934][ T9444] IPv6: addrconf: prefix option has invalid lifetime
[  166.972416][ T9444] FAULT_INJECTION: forcing a failure.
[  166.972416][ T9444] name failslab, interval 1, probability 0, space 0, times 0
[  166.977370][ T9444] CPU: 2 UID: 0 PID: 9444 Comm: syz.2.1130 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  166.981358][ T9444] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  166.985258][ T9444] Call Trace:
[  166.986520][ T9444]  <TASK>
[  166.987607][ T9444]  dump_stack_lvl+0x16c/0x1f0
[  166.989341][ T9444]  should_fail_ex+0x497/0x5b0
[  166.991105][ T9444]  should_failslab+0xc2/0x120
[  166.992823][ T9444]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  166.994768][ T9444]  ? fib6_add_1+0x36d/0x1810
[  166.996585][ T9444]  fib6_add_1+0x36d/0x1810
[  166.998206][ T9444]  fib6_add+0x1e7/0x4b50
[  166.999312][ T9444]  ? __kmalloc_noprof+0x207/0x410
[  167.000636][ T9444]  ? __pfx_fib6_add+0x10/0x10
[  167.001870][ T9444]  ? do_raw_spin_lock+0x12d/0x2c0
[  167.003219][ T9444]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  167.004623][ T9444]  ? lock_acquire+0x2f/0xb0
[  167.005822][ T9444]  ? ip6_route_add+0x7b/0x1c0
[  167.007075][ T9444]  ? ip6_route_add+0x8d/0x1c0
[  167.008305][ T9444]  ip6_route_add+0x8d/0x1c0
[  167.009495][ T9444]  addrconf_prefix_route+0x2fe/0x510
[  167.011034][ T9444]  ? __pfx_addrconf_prefix_route+0x10/0x10
[  167.012572][ T9444]  ? __pfx_lock_release+0x10/0x10
[  167.013915][ T9444]  ? __pfx_lock_release+0x10/0x10
[  167.015373][ T9444]  ? trace_lock_acquire+0x14a/0x1d0
[  167.016833][ T9444]  ? __pfx_addrconf_get_prefix_route+0x10/0x10
[  167.018461][ T9444]  addrconf_prefix_rcv+0x183d/0x2080
[  167.019852][ T9444]  ? __pfx_addrconf_prefix_rcv+0x10/0x10
[  167.021325][ T9444]  ? ndisc_router_discovery+0x1cda/0x3600
[  167.022839][ T9444]  ndisc_router_discovery+0x1cda/0x3600
[  167.024297][ T9444]  ? __pfx_ndisc_router_discovery+0x10/0x10
[  167.025851][ T9444]  ? do_csum+0x280/0x2e0
[  167.027005][ T9444]  ndisc_rcv+0x3fa/0x620
[  167.028138][ T9444]  icmpv6_rcv+0x11d8/0x1930
[  167.029344][ T9444]  ? __pfx_icmpv6_rcv+0x10/0x10
[  167.030658][ T9444]  ip6_protocol_deliver_rcu+0xf70/0x1510
[  167.032138][ T9444]  ip6_input_finish+0x14f/0x2f0
[  167.033423][ T9444]  ip6_input+0xa1/0xd0
[  167.034535][ T9444]  ip6_mc_input+0x48b/0xfd0
[  167.035747][ T9444]  ? __pfx_ip6_mc_input+0x10/0x10
[  167.037072][ T9444]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  167.038550][ T9444]  ? __pfx_ip6_mc_input+0x10/0x10
[  167.039884][ T9444]  ipv6_rcv+0x45a/0x680
[  167.040996][ T9444]  ? __pfx_ipv6_rcv+0x10/0x10
[  167.042284][ T9444]  __netif_receive_skb_one_core+0x12e/0x1e0
[  167.043845][ T9444]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  167.045527][ T9444]  ? trace_lock_acquire+0x14a/0x1d0
[  167.046923][ T9444]  ? netif_receive_skb+0x109/0x7b0
[  167.048274][ T9444]  __netif_receive_skb+0x1d/0x160
[  167.049597][ T9444]  netif_receive_skb+0x13f/0x7b0
[  167.050942][ T9444]  ? __pfx_netif_receive_skb+0x10/0x10
[  167.052372][ T9444]  ? __pfx___lock_acquire+0x10/0x10
[  167.053847][ T9444]  tun_rx_batched+0x429/0x780
[  167.055252][ T9444]  ? __pfx_tun_rx_batched+0x10/0x10
[  167.056626][ T9444]  ? lock_acquire+0x2f/0xb0
[  167.057834][ T9444]  ? tun_get_user+0x13ae/0x3d70
[  167.059216][ T9444]  tun_get_user+0x2a3c/0x3d70
[  167.060449][ T9444]  ? find_held_lock+0x2d/0x110
[  167.061711][ T9444]  ? __pfx_tun_get_user+0x10/0x10
[  167.063055][ T9444]  ? find_held_lock+0x2d/0x110
[  167.064315][ T9444]  ? __pfx_lock_release+0x10/0x10
[  167.065519][ T9444]  tun_chr_write_iter+0xdc/0x210
[  167.066797][ T9444]  vfs_write+0x6b5/0x1140
[  167.067936][ T9444]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  167.069334][ T9444]  ? trace_lock_acquire+0x14a/0x1d0
[  167.070718][ T9444]  ? __pfx_vfs_write+0x10/0x10
[  167.071964][ T9444]  ? __fget_files+0x40/0x3f0
[  167.073178][ T9444]  ksys_write+0x12f/0x260
[  167.074416][ T9444]  ? __pfx_ksys_write+0x10/0x10
[  167.075707][ T9444]  __do_fast_syscall_32+0x73/0x120
[  167.077067][ T9444]  do_fast_syscall_32+0x32/0x80
[  167.078383][ T9444]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  167.080037][ T9444] RIP: 0023:0xf7f36579
[  167.081113][ T9444] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  167.086115][ T9444] RSP: 002b:00000000f56b6530 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  167.088274][ T9444] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 00000000200009c0
[  167.090316][ T9444] RDX: 00000000000003b6 RSI: 00000000f73bbff4 RDI: 0000000000000000
[  167.092257][ T9444] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  167.094323][ T9444] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  167.096360][ T9444] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.098435][ T9444]  </TASK>
[  167.229511][ T9447] can0: slcan on ptm0.
[  168.049884][ T9445] can0 (unregistered): slcan off ptm0.
[  168.250477][ T9468] random: crng reseeded on system resumption
[  168.589833][ T9486] __nla_validate_parse: 3 callbacks suppressed
[  168.589845][ T9486] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1143'.
[  168.685767][ T9495] syz.2.1147 (9495): drop_caches: 2
[  169.091035][ T9506] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  169.094516][ T9506] Error parsing options; rc = [-22]
[  169.121074][ T9508] FAULT_INJECTION: forcing a failure.
[  169.121074][ T9508] name failslab, interval 1, probability 0, space 0, times 0
[  169.124566][ T9508] CPU: 1 UID: 0 PID: 9508 Comm: syz.3.1153 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  169.127345][ T9508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.130184][ T9508] Call Trace:
[  169.131098][ T9508]  <TASK>
[  169.131868][ T9508]  dump_stack_lvl+0x16c/0x1f0
[  169.133098][ T9508]  should_fail_ex+0x497/0x5b0
[  169.134346][ T9508]  ? fs_reclaim_acquire+0xae/0x150
[  169.135655][ T9508]  should_failslab+0xc2/0x120
[  169.136885][ T9508]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  169.138315][ T9508]  ? security_inode_alloc+0x3b/0x2b0
[  169.139687][ T9508]  security_inode_alloc+0x3b/0x2b0
[  169.141052][ T9508]  inode_init_always_gfp+0xc5f/0xfb0
[  169.142441][ T9508]  alloc_inode+0x82/0x230
[  169.143596][ T9508]  new_inode+0x22/0x210
[  169.144697][ T9508]  ? start_creating.part.0+0x25d/0x3a0
[  169.146166][ T9508]  __debugfs_create_file+0x11a/0x660
[  169.147545][ T9508]  kvm_dev_ioctl+0x14b9/0x1ab0
[  169.148813][ T9508]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  169.150212][ T9508]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[  169.151575][ T9508]  __do_compat_sys_ioctl+0x259/0x2b0
[  169.152961][ T9508]  __do_fast_syscall_32+0x73/0x120
[  169.154336][ T9508]  do_fast_syscall_32+0x32/0x80
[  169.155660][ T9508]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.157314][ T9508] RIP: 0023:0xf743e579
[  169.158437][ T9508] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.163405][ T9508] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  169.165609][ T9508] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000000ae01
[  169.167651][ T9508] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  169.170076][ T9508] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  169.172487][ T9508] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  169.174572][ T9508] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.176633][ T9508]  </TASK>
[  169.178088][ T9508] debugfs: out of free dentries, can not create file 'pages_4k'
[  169.386568][   T45] Bluetooth: hci4: Frame reassembly failed (-84)
[  169.443236][ T9517] random: crng reseeded on system resumption
[  169.529013][ T9523] FAULT_INJECTION: forcing a failure.
[  169.529013][ T9523] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  169.533785][ T9523] CPU: 2 UID: 0 PID: 9523 Comm: syz.0.1158 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  169.537213][ T9523] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  169.540777][ T9523] Call Trace:
[  169.541906][ T9523]  <TASK>
[  169.542917][ T9523]  dump_stack_lvl+0x16c/0x1f0
[  169.544513][ T9523]  should_fail_ex+0x497/0x5b0
[  169.546113][ T9523]  ? fs_reclaim_acquire+0xae/0x150
[  169.547838][ T9523]  should_fail_alloc_page+0xe7/0x130
[  169.549629][ T9523]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  169.551371][ T9523]  __alloc_pages_noprof+0x190/0x25a0
[  169.552743][ T9523]  ? lock_acquire.part.0+0x11b/0x380
[  169.554120][ T9523]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  169.555585][ T9523]  ? __dquot_alloc_space+0x92d/0xde0
[  169.556945][ T9523]  ? __pfx_lock_release+0x10/0x10
[  169.558271][ T9523]  ? do_raw_spin_unlock+0x172/0x230
[  169.559609][ T9523]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  169.561136][ T9523]  ? policy_nodemask+0xea/0x4e0
[  169.562403][ T9523]  alloc_pages_mpol_noprof+0x2c9/0x610
[  169.563809][ T9523]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  169.565351][ T9523]  ? __pfx___might_resched+0x10/0x10
[  169.566713][ T9523]  folio_alloc_mpol_noprof+0x36/0xd0
[  169.568082][ T9523]  shmem_alloc_folio+0x135/0x160
[  169.569358][ T9523]  shmem_mfill_atomic_pte+0x4ec/0x8d0
[  169.570785][ T9523]  mfill_atomic_zeropage+0xd53/0x1630
[  169.572177][ T9523]  ? __pfx_mfill_atomic_zeropage+0x10/0x10
[  169.573676][ T9523]  ? __might_fault+0xe3/0x190
[  169.574910][ T9523]  userfaultfd_ioctl+0x2f56/0x3830
[  169.576232][ T9523]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  169.577530][ T9523]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  169.578954][ T9523]  ? __fget_files+0x244/0x3f0
[  169.580160][ T9523]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[  169.581556][ T9523]  ? compat_ptr_ioctl+0x6b/0xa0
[  169.582822][ T9523]  compat_ptr_ioctl+0x6b/0xa0
[  169.584040][ T9523]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[  169.585408][ T9523]  __do_compat_sys_ioctl+0x259/0x2b0
[  169.586773][ T9523]  __do_fast_syscall_32+0x73/0x120
[  169.588095][ T9523]  do_fast_syscall_32+0x32/0x80
[  169.589351][ T9523]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  169.590990][ T9523] RIP: 0023:0xf7f48579
[  169.592043][ T9523] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  169.596920][ T9523] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  169.599094][ T9523] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000c020aa04
[  169.601102][ T9523] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000000
[  169.603126][ T9523] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  169.605143][ T9523] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  169.607166][ T9523] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  169.609182][ T9523]  </TASK>
[  169.671619][   T39] kauditd_printk_skb: 7 callbacks suppressed
[  169.671635][   T39] audit: type=1800 audit(1729681317.848:145): pid=9525 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1159" name="file2" dev="overlay" ino=1640 res=0 errno=0
[  170.083131][ T9536] FAULT_INJECTION: forcing a failure.
[  170.083131][ T9536] name failslab, interval 1, probability 0, space 0, times 0
[  170.086495][ T9536] CPU: 1 UID: 0 PID: 9536 Comm: syz.0.1162 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  170.089237][ T9536] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  170.092016][ T9536] Call Trace:
[  170.092892][ T9536]  <TASK>
[  170.093666][ T9536]  dump_stack_lvl+0x16c/0x1f0
[  170.094910][ T9536]  should_fail_ex+0x497/0x5b0
[  170.096339][ T9536]  ? fs_reclaim_acquire+0xae/0x150
[  170.097711][ T9536]  should_failslab+0xc2/0x120
[  170.098958][ T9536]  __kmalloc_noprof+0xcb/0x410
[  170.100213][ T9536]  ? bpf_lsm_capable+0x9/0x10
[  170.101446][ T9536]  ? security_capable+0x7e/0x260
[  170.102745][ T9536]  io_alloc_async_data+0x9d/0x150
[  170.104062][ T9536]  io_prep_rw+0x30d/0xb70
[  170.105207][ T9536]  io_submit_sqes+0x8aa/0x2530
[  170.106472][ T9536]  __do_sys_io_uring_enter+0xc0f/0x1170
[  170.107918][ T9536]  ? __pfx___schedule+0x10/0x10
[  170.109191][ T9536]  ? __fget_files+0x244/0x3f0
[  170.110436][ T9536]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  170.111998][ T9536]  ? fput+0x30/0x390
[  170.113030][ T9536]  ? ksys_write+0x1ad/0x260
[  170.114225][ T9536]  __do_fast_syscall_32+0x73/0x120
[  170.115577][ T9536]  do_fast_syscall_32+0x32/0x80
[  170.116838][ T9536]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  170.118495][ T9536] RIP: 0023:0xf7f48579
[  170.119563][ T9536] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  170.124507][ T9536] RSP: 002b:00000000f568456c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  170.124523][ T9536] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000000047f6
[  170.124529][ T9536] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  170.124535][ T9536] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  170.124541][ T9536] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  170.124547][ T9536] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  170.124559][ T9536]  </TASK>
[  170.647149][   T39] audit: type=1326 audit(1729681318.841:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9538 comm="syz.1.1164" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x0
[  170.744553][ T9540] FAULT_INJECTION: forcing a failure.
[  170.744553][ T9540] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  170.748729][ T9540] CPU: 2 UID: 0 PID: 9540 Comm: syz.1.1164 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  170.751524][ T9540] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  170.755090][ T9540] Call Trace:
[  170.756175][ T9540]  <TASK>
[  170.756937][ T9540]  dump_stack_lvl+0x16c/0x1f0
[  170.758143][ T9540]  should_fail_ex+0x497/0x5b0
[  170.759391][ T9540]  _copy_to_user+0x30/0xc0
[  170.760565][ T9540]  simple_read_from_buffer+0xd0/0x160
[  170.761991][ T9540]  proc_fail_nth_read+0x198/0x270
[  170.763320][ T9540]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  170.764776][ T9540]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  170.766247][ T9540]  vfs_read+0x1ce/0xbd0
[  170.767343][ T9540]  ? __fget_files+0x23a/0x3f0
[  170.768574][ T9540]  ? fdget_pos+0x24c/0x360
[  170.769760][ T9540]  ? __pfx_lock_release+0x10/0x10
[  170.771150][ T9540]  ? trace_lock_acquire+0x14a/0x1d0
[  170.772461][ T9540]  ? __pfx_vfs_read+0x10/0x10
[  170.773658][ T9540]  ? __pfx___mutex_lock+0x10/0x10
[  170.775003][ T9540]  ? __fget_files+0x244/0x3f0
[  170.776239][ T9540]  ksys_read+0x12f/0x260
[  170.777358][ T9540]  ? __pfx_ksys_read+0x10/0x10
[  170.778635][ T9540]  __do_fast_syscall_32+0x73/0x120
[  170.779978][ T9540]  do_fast_syscall_32+0x32/0x80
[  170.781262][ T9540]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  170.782927][ T9540] RIP: 0023:0xf73ee579
[  170.783996][ T9540] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  170.788981][ T9540] RSP: 002b:00000000f56b55a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  170.791139][ T9540] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f56b5620
[  170.793170][ T9540] RDX: 000000000000000f RSI: 00000000f73dbff4 RDI: 0000000000000000
[  170.795232][ T9540] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  170.797270][ T9540] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  170.799310][ T9540] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  170.801442][ T9540]  </TASK>
[  170.802990][ T9544] syz.0.1165 (9544): drop_caches: 2
[  170.823088][   T39] audit: type=1326 audit(1729681319.025:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9545 comm="syz.1.1166" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x0
[  171.027787][ T9551] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 4, id = 0
[  171.030382][ T9550] IPVS: stopping master sync thread 9551 ...
[  171.034144][ T9550] ./file0: Can't lookup blockdev
[  171.169747][   T39] audit: type=1326 audit(1729681319.373:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9552 comm="syz.2.1168" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f36579 code=0x0
[  171.356522][   T65] Bluetooth: hci4: command 0x1003 tx timeout
[  171.356544][ T5349] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  171.411105][ T9556] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1169'.
[  171.568520][ T9562] can0: slcan on ptm0.
[  172.011699][ T9574] FAULT_INJECTION: forcing a failure.
[  172.011699][ T9574] name failslab, interval 1, probability 0, space 0, times 0
[  172.016689][ T9574] CPU: 1 UID: 0 PID: 9574 Comm: syz.2.1174 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  172.019424][ T9574] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  172.022234][ T9574] Call Trace:
[  172.023124][ T9574]  <TASK>
[  172.023907][ T9574]  dump_stack_lvl+0x16c/0x1f0
[  172.025156][ T9574]  should_fail_ex+0x497/0x5b0
[  172.026408][ T9574]  ? fs_reclaim_acquire+0xae/0x150
[  172.027755][ T9574]  should_failslab+0xc2/0x120
[  172.028998][ T9574]  __kmalloc_cache_noprof+0x6b/0x310
[  172.030410][ T9574]  ? tcp_sendmsg_fastopen+0x23a/0x700
[  172.031824][ T9574]  ? __lock_acquire+0x163e/0x3ce0
[  172.033354][ T9574]  tcp_sendmsg_fastopen+0x23a/0x700
[  172.034871][ T9574]  tcp_sendmsg_locked+0x2016/0x3750
[  172.036381][ T9574]  ? mark_lock+0xb5/0xc60
[  172.037603][ T9574]  ? __pfx_mark_lock+0x10/0x10
[  172.038908][ T9574]  ? lock_acquire.part.0+0x11b/0x380
[  172.040305][ T9574]  ? find_held_lock+0x2d/0x110
[  172.041567][ T9574]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  172.043038][ T9574]  ? tcp_sendmsg+0x20/0x50
[  172.044222][ T9574]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  172.045630][ T9574]  ? __local_bh_enable_ip+0xa4/0x120
[  172.047130][ T9574]  tcp_sendmsg+0x2e/0x50
[  172.048245][ T9574]  ? __pfx_tcp_sendmsg+0x10/0x10
[  172.049630][ T9574]  inet6_sendmsg+0xb9/0x140
[  172.050854][ T9574]  __sys_sendto+0x36b/0x4d0
[  172.052083][ T9574]  ? __pfx___sys_sendto+0x10/0x10
[  172.053451][ T9574]  ? ksys_write+0x1ad/0x260
[  172.054712][ T9574]  ? __pfx_ksys_write+0x10/0x10
[  172.055992][ T9574]  __ia32_sys_sendto+0xdd/0x1b0
[  172.057269][ T9574]  ? lockdep_hardirqs_on+0x7c/0x110
[  172.058638][ T9574]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  172.060341][ T9574]  __do_fast_syscall_32+0x73/0x120
[  172.061693][ T9574]  do_fast_syscall_32+0x32/0x80
[  172.062994][ T9574]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  172.064639][ T9574] RIP: 0023:0xf7f36579
[  172.065708][ T9574] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  172.070894][ T9574] RSP: 002b:00000000f56b656c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  172.073060][ T9574] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020f6f000
[  172.075147][ T9574] RDX: 00000000fffffea7 RSI: 0000000020000004 RDI: 0000000020b63fe4
[  172.077211][ T9574] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[  172.079371][ T9574] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  172.081445][ T9574] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  172.083527][ T9574]  </TASK>
[  172.243530][ T9577] random: crng reseeded on system resumption
[  172.375661][ T9559] can0 (unregistered): slcan off ptm0.
[  172.773841][ T9591] syz.1.1178 (9591): drop_caches: 2
[  173.091316][ T5406] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  173.180081][ T9598] ALSA: mixer_oss: invalid OSS volume 'u'
[  173.192252][ T9598] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1180'.
[  173.234320][ T9602] binder: 9601:9602 ioctl c00c620f 20000e00 returned -22
[  173.238366][ T5406] usb 8-1: Using ep0 maxpacket: 8
[  173.245833][ T5406] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  173.253402][ T5406] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  173.256083][ T5406] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  173.262242][ T5406] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  173.266504][ T5406] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  173.271525][ T5406] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  173.464133][ T5415] usb 5-1: new low-speed USB device number 8 using dummy_hcd
[  173.474851][ T5406] usb 8-1: GET_CAPABILITIES returned 0
[  173.476480][ T5406] usbtmc 8-1:16.0: can't read capabilities
[  173.620872][ T5415] usb 5-1: Invalid ep0 maxpacket: 64
[  173.765088][ T9596] team0: Port device team_slave_0 removed
[  173.822436][ T1283] usb 8-1: USB disconnect, device number 13
[  173.915371][ T5415] usb 5-1: new low-speed USB device number 9 using dummy_hcd
[  174.062889][ T5415] usb 5-1: Invalid ep0 maxpacket: 64
[  174.065837][ T5415] usb usb5-port1: attempt power cycle
[  174.271893][ T9616] random: crng reseeded on system resumption
[  174.396855][ T5415] usb 5-1: new low-speed USB device number 10 using dummy_hcd
[  174.416963][ T5415] usb 5-1: Invalid ep0 maxpacket: 64
[  174.553983][ T5415] usb 5-1: new low-speed USB device number 11 using dummy_hcd
[  174.583850][ T5415] usb 5-1: Invalid ep0 maxpacket: 64
[  174.585458][ T5415] usb usb5-port1: unable to enumerate USB device
[  174.623574][ T1283] usb 6-1: new full-speed USB device number 9 using dummy_hcd
[  174.785864][ T1283] usb 6-1: config index 0 descriptor too short (expected 156, got 27)
[  174.788157][ T1283] usb 6-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  174.792329][ T1283] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10
[  174.796350][ T1283] usb 6-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64
[  174.803213][ T1283] usb 6-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  174.806639][ T1283] usb 6-1: config 0 interface 0 has no altsetting 0
[  174.809886][ T1283] usb 6-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  174.812635][ T1283] usb 6-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  174.815529][ T1283] usb 6-1: Product: syz
[  174.816964][ T1283] usb 6-1: Manufacturer: syz
[  174.818659][ T1283] usb 6-1: SerialNumber: syz
[  174.823540][ T1283] usb 6-1: config 0 descriptor??
[  174.825189][ T9623] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  174.828675][ T1283] ldusb 6-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  174.833809][ T1283] ldusb 6-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  175.355775][ T9631] random: crng reseeded on system resumption
[  176.047163][ T9635] syz.2.1191 (9635): drop_caches: 2
[  176.351766][ T9641] fuse: Unknown parameter 'ûd¡'
[  176.802814][ T9639] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  176.877104][ T9654] IPv6: addrconf: prefix option has invalid lifetime
[  176.939771][ T9661] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  176.963339][ T9663] syzkaller1: entered promiscuous mode
[  176.965244][ T9663] syzkaller1: entered allmulticast mode
[  177.095334][ T9665] syz.0.1200 (9665): drop_caches: 2
[  177.098117][ T9667] syz.2.1201 (9667): drop_caches: 2
[  177.334410][ T9671] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1202'.
[  177.352411][ T5406] usb 6-1: USB disconnect, device number 9
[  177.355699][ T5406] ldusb 6-1:0.0: LD USB Device #0 now disconnected
[  177.424237][ T9676] syz.3.1203 (9676): drop_caches: 2
[  177.441935][ T9678] netlink: 'syz.1.1204': attribute type 1 has an invalid length.
[  177.444037][ T9678] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1204'.
[  177.975206][ T9692] netlink: 'syz.0.1208': attribute type 12 has an invalid length.
[  177.977408][ T9692] netlink: 197276 bytes leftover after parsing attributes in process `syz.0.1208'.
[  178.115265][ T9696] FAULT_INJECTION: forcing a failure.
[  178.115265][ T9696] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  178.118830][ T9696] CPU: 2 UID: 0 PID: 9696 Comm: syz.3.1210 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  178.121516][ T9696] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.124689][ T9696] Call Trace:
[  178.125623][ T9696]  <TASK>
[  178.126646][ T9696]  dump_stack_lvl+0x16c/0x1f0
[  178.127911][ T9696]  should_fail_ex+0x497/0x5b0
[  178.129173][ T9696]  strncpy_from_user+0x3b/0x2a0
[  178.130492][ T9696]  getname_flags.part.0+0x8f/0x550
[  178.131843][ T9696]  getname+0x8d/0xe0
[  178.132874][ T9696]  io_linkat_prep+0x254/0x3f0
[  178.134121][ T9696]  io_submit_sqes+0x8aa/0x2530
[  178.135387][ T9696]  __do_sys_io_uring_enter+0xc0f/0x1170
[  178.136835][ T9696]  ? __fget_files+0x244/0x3f0
[  178.138432][ T9696]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  178.140609][ T9696]  ? fput+0x30/0x390
[  178.141910][ T9696]  ? ksys_write+0x1ad/0x260
[  178.143194][ T9696]  ? __pfx_ksys_write+0x10/0x10
[  178.144480][ T9696]  __do_fast_syscall_32+0x73/0x120
[  178.145849][ T9696]  do_fast_syscall_32+0x32/0x80
[  178.147152][ T9696]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  178.148817][ T9696] RIP: 0023:0xf743e579
[  178.149923][ T9696] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  178.154920][ T9696] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  178.157100][ T9696] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000000047f9
[  178.159178][ T9696] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  178.161245][ T9696] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  178.163310][ T9696] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  178.165376][ T9696] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  178.167460][ T9696]  </TASK>
[  178.267729][ T9704] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1212'.
[  178.367212][ T9711] netlink: 'syz.3.1213': attribute type 1 has an invalid length.
[  178.369267][ T9711] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1213'.
[  178.376049][ T9712] syz.1.1214 (9712): drop_caches: 2
[  178.422590][ T9715] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1215'.
[  178.468248][ T9719] syz.3.1217 (9719): drop_caches: 2
[  178.678271][ T9729] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1221'.
[  178.804320][ T9732] can0: slcan on ptm0.
[  179.038117][ T9738] netlink: 'syz.1.1223': attribute type 1 has an invalid length.
[  179.040189][ T9738] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1223'.
[  179.166465][ T9749] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.234264][ T9749] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.307088][ T9749] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.396268][ T9749] bond0: (slave netdevsim0): Releasing backup interface
[  179.476874][ T9749] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.667295][ T9730] can0 (unregistered): slcan off ptm0.
[  179.689483][ T9749] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  179.719484][ T9749] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  179.746444][ T9749] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  179.764160][ T9749] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  179.925125][ T9761] FAULT_INJECTION: forcing a failure.
[  179.925125][ T9761] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  179.928704][ T9761] CPU: 2 UID: 0 PID: 9761 Comm: syz.0.1229 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  179.931367][ T9761] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  179.933870][ T9761] Call Trace:
[  179.934645][ T9761]  <TASK>
[  179.935343][ T9761]  dump_stack_lvl+0x16c/0x1f0
[  179.936498][ T9761]  should_fail_ex+0x497/0x5b0
[  179.937942][ T9761]  _copy_to_user+0x30/0xc0
[  179.939054][ T9761]  simple_read_from_buffer+0xd0/0x160
[  179.940597][ T9761]  proc_fail_nth_read+0x198/0x270
[  179.941911][ T9761]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  179.943624][ T9761]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  179.945116][ T9761]  vfs_read+0x1ce/0xbd0
[  179.946282][ T9761]  ? __fget_files+0x23a/0x3f0
[  179.947408][ T9761]  ? fdget_pos+0x24c/0x360
[  179.948477][ T9761]  ? __pfx_lock_release+0x10/0x10
[  179.949689][ T9761]  ? trace_lock_acquire+0x14a/0x1d0
[  179.950940][ T9761]  ? __pfx_vfs_read+0x10/0x10
[  179.952238][ T9761]  ? __pfx___mutex_lock+0x10/0x10
[  179.953762][ T9761]  ? __fget_files+0x244/0x3f0
[  179.954914][ T9761]  ksys_read+0x12f/0x260
[  179.955914][ T9761]  ? __pfx_ksys_read+0x10/0x10
[  179.957379][ T9761]  __do_fast_syscall_32+0x73/0x120
[  179.958895][ T9761]  do_fast_syscall_32+0x32/0x80
[  179.960017][ T9761]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  179.961436][ T9761] RIP: 0023:0xf7f48579
[  179.962424][ T9761] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  179.966844][ T9761] RSP: 002b:00000000f56c65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  179.968764][ T9761] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000f56c6620
[  179.970638][ T9761] RDX: 000000000000000f RSI: 00000000f73cbff4 RDI: 0000000000000000
[  179.972487][ T9761] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  179.974348][ T9761] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  179.976173][ T9761] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  179.977983][ T9761]  </TASK>
[  180.005039][ T9763] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1230'.
[  180.054879][ T1100] Bluetooth: hci4: Frame reassembly failed (-84)
[  180.056440][ T1100] Bluetooth: hci4: Frame reassembly failed (-84)
[  180.352364][ T9767] syz.1.1232 (9767): drop_caches: 2
[  180.478526][ T9771] netlink: 'syz.2.1233': attribute type 1 has an invalid length.
[  180.481082][ T9771] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1233'.
[  180.729489][ T9778] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  180.841424][ T9781] can0: slcan on ptm1.
[  181.041264][ T9790] netlink: 'syz.1.1240': attribute type 1 has an invalid length.
[  181.056956][ T9790] FAULT_INJECTION: forcing a failure.
[  181.056956][ T9790] name failslab, interval 1, probability 0, space 0, times 0
[  181.060490][ T9790] CPU: 0 UID: 0 PID: 9790 Comm: syz.1.1240 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  181.063265][ T9790] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  181.066020][ T9790] Call Trace:
[  181.066887][ T9790]  <TASK>
[  181.067667][ T9790]  dump_stack_lvl+0x16c/0x1f0
[  181.068905][ T9790]  should_fail_ex+0x497/0x5b0
[  181.070163][ T9790]  ? fs_reclaim_acquire+0xae/0x150
[  181.071624][ T9790]  should_failslab+0xc2/0x120
[  181.072864][ T9790]  __kmalloc_noprof+0xcb/0x410
[  181.074148][ T9790]  __alloc_workqueue+0xd4c/0x1810
[  181.075455][ T9790]  ? __kasan_kmalloc+0xaa/0xb0
[  181.076704][ T9790]  ? register_netdevice+0x504/0x1e20
[  181.078082][ T9790]  ? bond_newlink+0x48/0xa0
[  181.079269][ T9790]  ? __rtnl_newlink+0x119c/0x1920
[  181.080576][ T9790]  ? rtnl_newlink+0x67/0xa0
[  181.081770][ T9790]  alloc_workqueue+0xd3/0x200
[  181.083012][ T9790]  ? __pfx_alloc_workqueue+0x10/0x10
[  181.084365][ T9790]  ? __pfx_lock_release+0x10/0x10
[  181.085662][ T9790]  ? trace_lock_acquire+0x14a/0x1d0
[  181.087025][ T9790]  bond_init+0x1b8/0xa60
[  181.088142][ T9790]  ? __pfx_bond_init+0x10/0x10
[  181.089397][ T9790]  ? __pfx_bond_init+0x10/0x10
[  181.090670][ T9790]  register_netdevice+0x672/0x1e20
[  181.092005][ T9790]  ? __pfx_register_netdevice+0x10/0x10
[  181.093421][ T9790]  ? validate_linkmsg+0x6d2/0x9a0
[  181.094741][ T9790]  ? __pfx_bond_newlink+0x10/0x10
[  181.096049][ T9790]  bond_newlink+0x48/0xa0
[  181.097178][ T9790]  __rtnl_newlink+0x119c/0x1920
[  181.098462][ T9790]  ? __pfx___rtnl_newlink+0x10/0x10
[  181.099826][ T9790]  rtnl_newlink+0x67/0xa0
[  181.100964][ T9790]  ? __pfx_rtnl_newlink+0x10/0x10
[  181.102296][ T9790]  rtnetlink_rcv_msg+0x3c7/0xea0
[  181.103612][ T9790]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  181.105034][ T9790]  ? __pfx___lock_acquire+0x10/0x10
[  181.106398][ T9790]  netlink_rcv_skb+0x165/0x410
[  181.107649][ T9790]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  181.109071][ T9790]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  181.110472][ T9790]  ? rcu_is_watching+0x12/0xc0
[  181.111720][ T9790]  netlink_unicast+0x53c/0x7f0
[  181.112971][ T9790]  ? __pfx_netlink_unicast+0x10/0x10
[  181.114350][ T9790]  ? __phys_addr_symbol+0x30/0x80
[  181.115664][ T9790]  ? __check_object_size+0x488/0x710
[  181.117040][ T9790]  netlink_sendmsg+0x8b8/0xd70
[  181.118303][ T9790]  ? __pfx_netlink_sendmsg+0x10/0x10
[  181.119745][ T9790]  ? lock_acquire+0x2f/0xb0
[  181.120939][ T9790]  ____sys_sendmsg+0x9ae/0xb40
[  181.122196][ T9790]  ? __pfx_____sys_sendmsg+0x10/0x10
[  181.123568][ T9790]  ? get_compat_msghdr+0x11b/0x170
[  181.124900][ T9790]  ? __pfx___lock_acquire+0x10/0x10
[  181.126417][ T9790]  ___sys_sendmsg+0x135/0x1e0
[  181.127662][ T9790]  ? __pfx____sys_sendmsg+0x10/0x10
[  181.129014][ T9790]  ? lock_acquire+0x2f/0xb0
[  181.130230][ T9790]  ? __fget_files+0x40/0x3f0
[  181.131446][ T9790]  ? fdget+0x176/0x210
[  181.132512][ T9790]  __sys_sendmsg+0x117/0x1f0
[  181.133733][ T9790]  ? __pfx___sys_sendmsg+0x10/0x10
[  181.135071][ T9790]  ? __fget_files+0x244/0x3f0
[  181.136305][ T9790]  __do_fast_syscall_32+0x73/0x120
[  181.137644][ T9790]  do_fast_syscall_32+0x32/0x80
[  181.138929][ T9790]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  181.140579][ T9790] RIP: 0023:0xf73ee579
[  181.141654][ T9790] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  181.146572][ T9790] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  181.148736][ T9790] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000280
[  181.150798][ T9790] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[  181.152835][ T9790] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  181.154875][ T9790] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  181.156913][ T9790] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  181.158947][ T9790]  </TASK>
[  181.352534][ T9797] netlink: 'syz.1.1242': attribute type 1 has an invalid length.
[  181.522255][ T9804] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  181.524565][ T9804] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  181.527702][ T9804] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  181.598134][ T9806] syz.3.1246 (9806): drop_caches: 2
[  181.732360][ T9779] can0 (unregistered): slcan off ptm1.
[  182.058841][   T65] Bluetooth: hci4: command 0x1003 tx timeout
[  182.058921][ T5349] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  182.340003][ T9821] random: crng reseeded on system resumption
[  182.722757][ T1283] IPVS: starting estimator thread 0...
[  182.820617][ T9834] IPVS: using max 35 ests per chain, 84000 per kthread
[  182.988927][ T5404] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  183.107163][ T9841] can0: slcan on ptm0.
[  183.137698][ T5404] usb 7-1: Using ep0 maxpacket: 16
[  183.146875][ T5404] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  183.151909][ T5404] usb 7-1: New USB device found, idVendor=2137, idProduct=0001, bcdDevice=2a.35
[  183.154210][ T5404] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.162085][ T5404] usb 7-1: Product: syz
[  183.163217][ T5404] usb 7-1: Manufacturer: syz
[  183.164454][ T5404] usb 7-1: SerialNumber: syz
[  183.170259][ T5404] usb 7-1: config 0 descriptor??
[  183.239341][ T9864] syz.1.1258 (9864): drop_caches: 2
[  183.375665][ T5415] usb 7-1: USB disconnect, device number 7
[  183.790507][ T9878] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  183.920908][ T9839] can0 (unregistered): slcan off ptm0.
[  184.066604][ T9893] __nla_validate_parse: 1 callbacks suppressed
[  184.066615][ T9893] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1267'.
[  184.163194][ T9904] syz.2.1270 (9904): drop_caches: 2
[  184.581810][   T39] audit: type=1326 audit(1729681332.980:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.3.1271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x7ffc0000
[  184.592914][   T39] audit: type=1326 audit(1729681332.980:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.3.1271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x7ffc0000
[  184.598590][   T39] audit: type=1326 audit(1729681332.980:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.3.1271" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf743e579 code=0x7ffc0000
[  184.607257][   T39] audit: type=1326 audit(1729681332.980:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.3.1271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x7ffc0000
[  184.614186][   T39] audit: type=1326 audit(1729681332.980:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.3.1271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x7ffc0000
[  184.619785][   T39] audit: type=1326 audit(1729681332.980:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.3.1271" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf743e579 code=0x7ffc0000
[  184.630322][   T39] audit: type=1326 audit(1729681332.990:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.3.1271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x7ffc0000
[  184.638587][   T39] audit: type=1326 audit(1729681332.990:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.3.1271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x7ffc0000
[  184.646262][   T39] audit: type=1326 audit(1729681332.990:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.3.1271" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf743e579 code=0x7ffc0000
[  184.653071][   T39] audit: type=1326 audit(1729681332.990:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9909 comm="syz.3.1271" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743e579 code=0x7ffc0000
[  184.899279][ T9923] can0: slcan on ptm0.
[  185.018722][ T9932] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1278'.
[  185.136312][ T9941] netlink: 'syz.0.1280': attribute type 1 has an invalid length.
[  185.147995][ T9941] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1280'.
[  185.156081][ T9942] FAULT_INJECTION: forcing a failure.
[  185.156081][ T9942] name failslab, interval 1, probability 0, space 0, times 0
[  185.160644][ T9942] CPU: 0 UID: 0 PID: 9942 Comm: syz.2.1282 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  185.163424][ T9942] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.166239][ T9942] Call Trace:
[  185.167097][ T9942]  <TASK>
[  185.167854][ T9942]  dump_stack_lvl+0x16c/0x1f0
[  185.169112][ T9942]  should_fail_ex+0x497/0x5b0
[  185.170401][ T9942]  ? fs_reclaim_acquire+0xae/0x150
[  185.171760][ T9942]  should_failslab+0xc2/0x120
[  185.173020][ T9942]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  185.174447][ T9942]  ? vm_area_dup+0x21/0x300
[  185.175653][ T9942]  vm_area_dup+0x21/0x300
[  185.176799][ T9942]  copy_vma+0x4fd/0xa60
[  185.177898][ T9942]  ? __pfx_copy_vma+0x10/0x10
[  185.179152][ T9942]  ? __pfx_do_vmi_align_munmap+0x10/0x10
[  185.180634][ T9942]  ? mtree_load+0x30a/0xa40
[  185.181849][ T9942]  move_vma+0x640/0x1c50
[  185.182981][ T9942]  ? __pfx_move_vma+0x10/0x10
[  185.184230][ T9942]  ? mm_get_unmapped_area_vmflags+0x97/0xe0
[  185.185805][ T9942]  ? bpf_lsm_mmap_addr+0x9/0x10
[  185.187112][ T9942]  ? security_mmap_addr+0x6c/0x1e0
[  185.188479][ T9942]  __do_sys_mremap+0xf8c/0x15b0
[  185.189813][ T9942]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  185.191415][ T9942]  ? __pfx___do_sys_mremap+0x10/0x10
[  185.192838][ T9942]  ? __fget_files+0x244/0x3f0
[  185.194110][ T9942]  ? fput+0x30/0x390
[  185.195166][ T9942]  ? ksys_write+0x1ad/0x260
[  185.196381][ T9942]  ? __pfx_ksys_write+0x10/0x10
[  185.197680][ T9942]  __do_fast_syscall_32+0x73/0x120
[  185.199044][ T9942]  do_fast_syscall_32+0x32/0x80
[  185.200293][ T9942]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.201928][ T9942] RIP: 0023:0xf7f36579
[  185.202988][ T9942] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  185.207909][ T9942] RSP: 002b:00000000f569556c EFLAGS: 00000296 ORIG_RAX: 00000000000000a3
[  185.210096][ T9942] RAX: ffffffffffffffda RBX: 0000000020ff6000 RCX: 0000000000003000
[  185.212123][ T9942] RDX: 0000000000001000 RSI: 0000000000000003 RDI: 0000000020fff000
[  185.214168][ T9942] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  185.216233][ T9942] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  185.218298][ T9942] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  185.220338][ T9942]  </TASK>
[  185.524374][ T9952] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1286'.
[  185.527911][ T9952] netlink: 'syz.2.1286': attribute type 7 has an invalid length.
[  185.530192][ T9952] netlink: 'syz.2.1286': attribute type 8 has an invalid length.
[  185.532230][ T9952] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1286'.
[  185.538468][ T9952] syz_tun: entered promiscuous mode
[  185.541069][ T9952] batadv_slave_1: entered promiscuous mode
[  185.543384][ T9952] syz_tun: left promiscuous mode
[  185.546649][ T9952] batadv_slave_1: left promiscuous mode
[  185.670985][ T9957] netlink: 'syz.2.1287': attribute type 10 has an invalid length.
[  185.673210][ T9957] team0: Device ipvlan1 is VLAN challenged and team device has VLAN set up
[  185.722893][ T9918] can0 (unregistered): slcan off ptm0.
[  185.877033][ T9963] FAULT_INJECTION: forcing a failure.
[  185.877033][ T9963] name failslab, interval 1, probability 0, space 0, times 0
[  185.881631][ T9963] CPU: 0 UID: 0 PID: 9963 Comm: syz.3.1289 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  185.885105][ T9963] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  185.888579][ T9963] Call Trace:
[  185.889716][ T9963]  <TASK>
[  185.890707][ T9963]  dump_stack_lvl+0x16c/0x1f0
[  185.892280][ T9963]  should_fail_ex+0x497/0x5b0
[  185.893837][ T9963]  ? fs_reclaim_acquire+0xae/0x150
[  185.895539][ T9963]  should_failslab+0xc2/0x120
[  185.897084][ T9963]  kmem_cache_alloc_node_noprof+0x71/0x310
[  185.899020][ T9963]  ? __alloc_skb+0x2b3/0x380
[  185.900545][ T9963]  __alloc_skb+0x2b3/0x380
[  185.902053][ T9963]  ? __pfx___alloc_skb+0x10/0x10
[  185.903665][ T9963]  ? lock_acquire+0x2f/0xb0
[  185.905183][ T9963]  netlink_alloc_large_skb+0x69/0x130
[  185.906968][ T9963]  netlink_sendmsg+0x689/0xd70
[  185.908545][ T9963]  ? __pfx_netlink_sendmsg+0x10/0x10
[  185.910265][ T9963]  ? lock_acquire+0x2f/0xb0
[  185.911796][ T9963]  ____sys_sendmsg+0x9ae/0xb40
[  185.913381][ T9963]  ? __pfx_____sys_sendmsg+0x10/0x10
[  185.915152][ T9963]  ? get_compat_msghdr+0x11b/0x170
[  185.916855][ T9963]  ? __pfx___lock_acquire+0x10/0x10
[  185.918572][ T9963]  ___sys_sendmsg+0x135/0x1e0
[  185.920127][ T9963]  ? __pfx____sys_sendmsg+0x10/0x10
[  185.921845][ T9963]  ? lock_acquire+0x2f/0xb0
[  185.923366][ T9963]  ? __fget_files+0x40/0x3f0
[  185.924906][ T9963]  ? fdget+0x176/0x210
[  185.926285][ T9963]  __sys_sendmsg+0x117/0x1f0
[  185.927820][ T9963]  ? __pfx___sys_sendmsg+0x10/0x10
[  185.929495][ T9963]  ? __fget_files+0x244/0x3f0
[  185.930844][ T9963]  __do_fast_syscall_32+0x73/0x120
[  185.932275][ T9963]  do_fast_syscall_32+0x32/0x80
[  185.933531][ T9963]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  185.935257][ T9963] RIP: 0023:0xf743e579
[  185.936308][ T9963] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  185.941146][ T9963] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  185.943220][ T9963] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[  185.945186][ T9963] RDX: 0000000010000084 RSI: 0000000000000000 RDI: 0000000000000000
[  185.947312][ T9963] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  185.949331][ T9963] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  185.951351][ T9963] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  185.953324][ T9963]  </TASK>
[  186.065514][ T9972] netlink: 'syz.2.1291': attribute type 1 has an invalid length.
[  186.068285][ T9972] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1291'.
[  186.118315][ T9971] random: crng reseeded on system resumption
[  186.157472][ T9976] FAULT_INJECTION: forcing a failure.
[  186.157472][ T9976] name failslab, interval 1, probability 0, space 0, times 0
[  186.160725][ T9976] CPU: 1 UID: 0 PID: 9976 Comm: syz.2.1294 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  186.163316][ T9976] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  186.165973][ T9976] Call Trace:
[  186.166802][ T9976]  <TASK>
[  186.167553][ T9976]  dump_stack_lvl+0x16c/0x1f0
[  186.168765][ T9976]  should_fail_ex+0x497/0x5b0
[  186.169968][ T9976]  ? fs_reclaim_acquire+0xae/0x150
[  186.171253][ T9976]  should_failslab+0xc2/0x120
[  186.172421][ T9976]  __kmalloc_noprof+0xcb/0x410
[  186.173631][ T9976]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  186.175043][ T9976]  tomoyo_realpath_from_path+0xbf/0x710
[  186.176424][ T9976]  ? tomoyo_path_number_perm+0x232/0x5b0
[  186.177837][ T9976]  tomoyo_path_number_perm+0x245/0x5b0
[  186.179205][ T9976]  ? tomoyo_path_number_perm+0x232/0x5b0
[  186.180608][ T9976]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  186.182145][ T9976]  ? trace_lock_acquire+0x14a/0x1d0
[  186.183440][ T9976]  ? lock_acquire+0x2f/0xb0
[  186.184579][ T9976]  ? __fget_files+0x40/0x3f0
[  186.185758][ T9976]  ? __fget_files+0x244/0x3f0
[  186.186966][ T9976]  security_file_ioctl_compat+0x9b/0x240
[  186.188365][ T9976]  __do_compat_sys_ioctl+0x52/0x2b0
[  186.189687][ T9976]  __do_fast_syscall_32+0x73/0x120
[  186.190969][ T9976]  do_fast_syscall_32+0x32/0x80
[  186.192197][ T9976]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  186.193752][ T9976] RIP: 0023:0xf7f36579
[  186.194790][ T9976] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  186.200919][ T9976] RSP: 002b:00000000f56b656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  186.203631][ T9976] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080044dff
[  186.205908][ T9976] RDX: 0000000020000180 RSI: 0000000000000000 RDI: 0000000000000000
[  186.207856][ T9976] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  186.210316][ T9976] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  186.212887][ T9976] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  186.215461][ T9976]  </TASK>
[  186.224172][ T9976] ERROR: Out of memory at tomoyo_realpath_from_path.
[  186.337030][ T9981] netlink: 'syz.2.1296': attribute type 10 has an invalid length.
[  186.340940][ T9981] team0: Device ipvlan1 is VLAN challenged and team device has VLAN set up
[  186.434022][ T9988] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1298'.
[  186.545193][ T9991] bridge_slave_1: left allmulticast mode
[  186.547499][ T9991] bridge_slave_1: left promiscuous mode
[  186.549931][ T9991] bridge0: port 2(bridge_slave_1) entered disabled state
[  186.558703][ T9991] bridge_slave_0: left allmulticast mode
[  186.560369][ T9991] bridge_slave_0: left promiscuous mode
[  186.562003][ T9991] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.681503][ T9996] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  186.741331][ T9999] netlink: 'syz.0.1301': attribute type 1 has an invalid length.
[  186.743337][ T9999] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1301'.
[  186.999501][T10010] syz.0.1306 (10010): drop_caches: 2
[  187.002362][T10008] can0: slcan on ptm0.
[  187.322634][T10018] FAULT_INJECTION: forcing a failure.
[  187.322634][T10018] name failslab, interval 1, probability 0, space 0, times 0
[  187.325776][T10018] CPU: 3 UID: 0 PID: 10018 Comm: syz.1.1308 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  187.328793][T10018] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  187.331653][T10018] Call Trace:
[  187.332823][T10018]  <TASK>
[  187.333904][T10018]  dump_stack_lvl+0x16c/0x1f0
[  187.335375][T10018]  should_fail_ex+0x497/0x5b0
[  187.336768][T10018]  ? fs_reclaim_acquire+0xae/0x150
[  187.338100][T10018]  should_failslab+0xc2/0x120
[  187.339307][T10018]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  187.340722][T10018]  ? __kernfs_new_node+0xd3/0x890
[  187.342025][T10018]  __kernfs_new_node+0xd3/0x890
[  187.343261][T10018]  ? __pfx___kernfs_new_node+0x10/0x10
[  187.344768][T10018]  ? __pfx_lock_release+0x10/0x10
[  187.346121][T10018]  ? kernfs_add_one+0x39d/0x520
[  187.347533][T10018]  ? up_write+0x1b2/0x520
[  187.348908][T10018]  kernfs_new_node+0x186/0x240
[  187.350565][T10018]  __kernfs_create_file+0x53/0x350
[  187.352281][T10018]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  187.353741][T10018]  internal_create_group+0x565/0xe50
[  187.355105][T10018]  ? __pfx_internal_create_group+0x10/0x10
[  187.357063][T10018]  sysfs_slab_add+0x1a3/0x1e0
[  187.358832][T10018]  do_kmem_cache_create+0x606/0x700
[  187.360555][T10018]  ? kstrdup+0x5c/0x80
[  187.361687][T10018]  __kmem_cache_create_args+0x242/0x3c0
[  187.363387][T10018]  p9_client_create+0xe43/0x11a0
[  187.364698][T10018]  ? __pfx_p9_client_create+0x10/0x10
[  187.366167][T10018]  ? __raw_spin_lock_init+0x3a/0x110
[  187.367671][T10018]  v9fs_session_init+0x1f8/0x1a80
[  187.369119][T10018]  ? __pfx_v9fs_session_init+0x10/0x10
[  187.370698][T10018]  ? kasan_save_track+0x14/0x30
[  187.371994][T10018]  v9fs_mount+0xc6/0xa50
[  187.373116][T10018]  ? __pfx_v9fs_mount+0x10/0x10
[  187.374413][T10018]  ? __pfx_v9fs_mount+0x10/0x10
[  187.375650][T10018]  legacy_get_tree+0x109/0x220
[  187.376929][T10018]  vfs_get_tree+0x8f/0x380
[  187.378057][T10018]  path_mount+0x6e1/0x1f10
[  187.379354][T10018]  ? kmem_cache_free+0x152/0x4b0
[  187.380646][T10018]  ? __pfx_path_mount+0x10/0x10
[  187.381861][T10018]  ? putname+0x12e/0x170
[  187.382915][T10018]  __ia32_sys_mount+0x292/0x310
[  187.384108][T10018]  ? __pfx___ia32_sys_mount+0x10/0x10
[  187.385426][T10018]  __do_fast_syscall_32+0x73/0x120
[  187.387053][T10018]  do_fast_syscall_32+0x32/0x80
[  187.388284][T10018]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  187.389891][T10018] RIP: 0023:0xf73ee579
[  187.390941][T10018] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  187.395594][T10018] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  187.397713][T10018] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000000
[  187.399743][T10018] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000020000280
[  187.401719][T10018] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  187.403722][T10018] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  187.405986][T10018] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  187.408170][T10018]  </TASK>
[  187.410938][T10018] __kmem_cache_create_args(9p-fcall-cache-17) failed with error -12
[  187.413983][T10018] CPU: 3 UID: 0 PID: 10018 Comm: syz.1.1308 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  187.416666][T10018] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  187.419257][T10018] Call Trace:
[  187.420083][T10018]  <TASK>
[  187.421056][T10018]  dump_stack_lvl+0x16c/0x1f0
[  187.422240][T10018]  __kmem_cache_create_args+0x130/0x3c0
[  187.423574][T10018]  p9_client_create+0xe43/0x11a0
[  187.424805][T10018]  ? __pfx_p9_client_create+0x10/0x10
[  187.426416][T10018]  ? __raw_spin_lock_init+0x3a/0x110
[  187.427745][T10018]  v9fs_session_init+0x1f8/0x1a80
[  187.429055][T10018]  ? __pfx_v9fs_session_init+0x10/0x10
[  187.430592][T10018]  ? kasan_save_track+0x14/0x30
[  187.431993][T10018]  v9fs_mount+0xc6/0xa50
[  187.433186][T10018]  ? __pfx_v9fs_mount+0x10/0x10
[  187.434555][T10018]  ? __pfx_v9fs_mount+0x10/0x10
[  187.435981][T10018]  legacy_get_tree+0x109/0x220
[  187.437315][T10018]  vfs_get_tree+0x8f/0x380
[  187.438448][T10018]  path_mount+0x6e1/0x1f10
[  187.439565][T10018]  ? kmem_cache_free+0x152/0x4b0
[  187.440775][T10018]  ? __pfx_path_mount+0x10/0x10
[  187.441999][T10018]  ? putname+0x12e/0x170
[  187.443087][T10018]  __ia32_sys_mount+0x292/0x310
[  187.444330][T10018]  ? __pfx___ia32_sys_mount+0x10/0x10
[  187.445653][T10018]  __do_fast_syscall_32+0x73/0x120
[  187.446995][T10018]  do_fast_syscall_32+0x32/0x80
[  187.448264][T10018]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  187.449858][T10018] RIP: 0023:0xf73ee579
[  187.450892][T10018] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  187.455683][T10018] RSP: 002b:00000000f56d656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  187.457918][T10018] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000000
[  187.459898][T10018] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000020000280
[  187.461984][T10018] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  187.463884][T10018] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  187.465831][T10018] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  187.467869][T10018]  </TASK>
[  187.666093][T10029] netlink: 'syz.1.1310': attribute type 1 has an invalid length.
[  187.669663][T10029] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1310'.
[  187.730039][T10035] syzkaller1: entered promiscuous mode
[  187.731487][T10035] syzkaller1: entered allmulticast mode
[  187.831113][T10037] FAULT_INJECTION: forcing a failure.
[  187.831113][T10037] name failslab, interval 1, probability 0, space 0, times 0
[  187.834910][T10037] CPU: 3 UID: 0 PID: 10037 Comm: syz.0.1315 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  187.837682][T10037] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  187.840463][T10037] Call Trace:
[  187.841321][T10037]  <TASK>
[  187.842170][T10037]  dump_stack_lvl+0x16c/0x1f0
[  187.843453][T10037]  should_fail_ex+0x497/0x5b0
[  187.844860][T10037]  ? fs_reclaim_acquire+0xae/0x150
[  187.846386][T10037]  should_failslab+0xc2/0x120
[  187.847594][T10037]  __kmalloc_cache_noprof+0x6b/0x310
[  187.848934][T10037]  ? tcp_sendmsg_fastopen+0x23a/0x700
[  187.850483][T10037]  ? __lock_acquire+0x163e/0x3ce0
[  187.852216][T10037]  tcp_sendmsg_fastopen+0x23a/0x700
[  187.853550][T10037]  tcp_sendmsg_locked+0x2016/0x3750
[  187.854990][T10037]  ? mark_lock+0xb5/0xc60
[  187.856314][T10037]  ? __pfx_mark_lock+0x10/0x10
[  187.857594][T10037]  ? lock_acquire.part.0+0x11b/0x380
[  187.858987][T10037]  ? find_held_lock+0x2d/0x110
[  187.860209][T10037]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  187.861615][T10037]  ? tcp_sendmsg+0x20/0x50
[  187.862834][T10037]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  187.864216][T10037]  ? __local_bh_enable_ip+0xa4/0x120
[  187.865562][T10037]  tcp_sendmsg+0x2e/0x50
[  187.866848][T10037]  ? __pfx_tcp_sendmsg+0x10/0x10
[  187.868102][T10037]  inet6_sendmsg+0xb9/0x140
[  187.869303][T10037]  __sys_sendto+0x36b/0x4d0
[  187.870540][T10037]  ? __pfx___sys_sendto+0x10/0x10
[  187.871876][T10037]  ? ksys_write+0x1ad/0x260
[  187.873080][T10037]  ? __pfx_ksys_write+0x10/0x10
[  187.874328][T10037]  __ia32_sys_sendto+0xdd/0x1b0
[  187.875546][T10037]  ? lockdep_hardirqs_on+0x7c/0x110
[  187.876950][T10037]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  187.878598][T10037]  __do_fast_syscall_32+0x73/0x120
[  187.879905][T10037]  do_fast_syscall_32+0x32/0x80
[  187.881146][T10037]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  187.882818][T10037] RIP: 0023:0xf7f48579
[  187.883861][T10037] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  187.888886][T10037] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  187.891111][T10037] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020f6f000
[  187.893106][T10037] RDX: 00000000fffffea7 RSI: 0000000020000004 RDI: 0000000020b63fe4
[  187.895035][T10037] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[  187.897095][T10037] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  187.899150][T10037] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  187.901347][T10037]  </TASK>
[  187.951218][T10044] FAULT_INJECTION: forcing a failure.
[  187.951218][T10044] name failslab, interval 1, probability 0, space 0, times 0
[  187.954337][T10044] CPU: 1 UID: 0 PID: 10044 Comm: syz.0.1318 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  187.957061][T10044] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  187.959732][T10044] Call Trace:
[  187.960584][T10044]  <TASK>
[  187.961365][T10044]  dump_stack_lvl+0x16c/0x1f0
[  187.962641][T10044]  should_fail_ex+0x497/0x5b0
[  187.963882][T10044]  ? fs_reclaim_acquire+0xae/0x150
[  187.965231][T10044]  should_failslab+0xc2/0x120
[  187.966470][T10044]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  187.967813][T10044]  ? __kernfs_new_node+0xd3/0x890
[  187.969097][T10044]  __kernfs_new_node+0xd3/0x890
[  187.970376][T10044]  ? __pfx___kernfs_new_node+0x10/0x10
[  187.971951][T10044]  ? __pfx___schedule+0x10/0x10
[  187.971988][T10044]  kernfs_new_node+0x186/0x240
[  187.972005][T10044]  __kernfs_create_file+0x53/0x350
[  187.975909][T10044]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  187.975929][T10044]  internal_create_group+0x565/0xe50
[  187.975944][T10044]  ? __pfx_internal_create_group+0x10/0x10
[  187.975962][T10044]  sysfs_slab_add+0x1a3/0x1e0
[  187.975975][T10044]  do_kmem_cache_create+0x606/0x700
[  187.975990][T10044]  ? kstrdup+0x5c/0x80
[  187.976003][T10044]  __kmem_cache_create_args+0x242/0x3c0
[  187.976015][T10044]  p9_client_create+0xe43/0x11a0
[  187.976030][T10044]  ? __pfx_p9_client_create+0x10/0x10
[  187.976047][T10044]  ? __raw_spin_lock_init+0x3a/0x110
[  187.976060][T10044]  v9fs_session_init+0x1f8/0x1a80
[  187.976079][T10044]  ? __pfx_v9fs_session_init+0x10/0x10
[  187.976098][T10044]  ? kasan_save_track+0x14/0x30
[  187.993569][T10044]  v9fs_mount+0xc6/0xa50
[  187.994702][T10044]  ? __pfx_v9fs_mount+0x10/0x10
[  187.995946][T10044]  ? __pfx_v9fs_mount+0x10/0x10
[  187.997189][T10044]  legacy_get_tree+0x109/0x220
[  187.998461][T10044]  vfs_get_tree+0x8f/0x380
[  187.999598][T10044]  path_mount+0x6e1/0x1f10
[  188.000766][T10044]  ? kmem_cache_free+0x152/0x4b0
[  188.002238][T10044]  ? __pfx_path_mount+0x10/0x10
[  188.003719][T10044]  ? putname+0x12e/0x170
[  188.004988][T10044]  __ia32_sys_mount+0x292/0x310
[  188.006600][T10044]  ? __pfx___ia32_sys_mount+0x10/0x10
[  188.008245][T10044]  __do_fast_syscall_32+0x73/0x120
[  188.009525][T10044]  do_fast_syscall_32+0x32/0x80
[  188.010873][T10044]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  188.012496][T10044] RIP: 0023:0xf7f48579
[  188.013539][T10044] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  188.018401][T10044] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  188.020514][T10044] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000000
[  188.022513][T10044] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 00000000200005c0
[  188.024518][T10044] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  188.026537][T10044] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  188.028537][T10044] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  188.030567][T10044]  </TASK>
[  188.035096][T10044] __kmem_cache_create_args(9p-fcall-cache-18) failed with error -12
[  188.038704][T10044] CPU: 0 UID: 0 PID: 10044 Comm: syz.0.1318 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  188.041429][T10044] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  188.044193][T10044] Call Trace:
[  188.045068][T10044]  <TASK>
[  188.045855][T10044]  dump_stack_lvl+0x16c/0x1f0
[  188.047132][T10044]  __kmem_cache_create_args+0x130/0x3c0
[  188.048553][T10044]  p9_client_create+0xe43/0x11a0
[  188.049855][T10044]  ? __pfx_p9_client_create+0x10/0x10
[  188.051222][T10044]  ? __raw_spin_lock_init+0x3a/0x110
[  188.052570][T10044]  v9fs_session_init+0x1f8/0x1a80
[  188.053888][T10044]  ? __pfx_v9fs_session_init+0x10/0x10
[  188.055289][T10044]  ? kasan_save_track+0x14/0x30
[  188.056598][T10044]  v9fs_mount+0xc6/0xa50
[  188.057702][T10044]  ? __pfx_v9fs_mount+0x10/0x10
[  188.058959][T10044]  ? __pfx_v9fs_mount+0x10/0x10
[  188.060201][T10044]  legacy_get_tree+0x109/0x220
[  188.061435][T10044]  vfs_get_tree+0x8f/0x380
[  188.062601][T10044]  path_mount+0x6e1/0x1f10
[  188.063738][T10044]  ? kmem_cache_free+0x152/0x4b0
[  188.065017][T10044]  ? __pfx_path_mount+0x10/0x10
[  188.066333][T10044]  ? putname+0x12e/0x170
[  188.067452][T10044]  __ia32_sys_mount+0x292/0x310
[  188.068713][T10044]  ? __pfx___ia32_sys_mount+0x10/0x10
[  188.070124][T10044]  __do_fast_syscall_32+0x73/0x120
[  188.071459][T10044]  do_fast_syscall_32+0x32/0x80
[  188.072739][T10044]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  188.074483][T10044] RIP: 0023:0xf7f48579
[  188.075538][T10044] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  188.081102][T10044] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  188.083271][T10044] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000000
[  188.085272][T10044] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 00000000200005c0
[  188.087351][T10044] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  188.089344][T10044] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  188.091393][T10044] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  188.093404][T10044]  </TASK>
[  188.095440][T10006] can0 (unregistered): slcan off ptm0.
[  188.139051][T10054] syz.1.1320 (10054): drop_caches: 2
[  188.422775][T10066] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1325'.
[  188.721166][T10068] netlink: 'syz.2.1326': attribute type 1 has an invalid length.
[  188.744386][T10075] ip6t_srh: unknown srh invflags 6BE9
[  188.988399][T10084] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  189.169830][T10090] can0: slcan on ptm0.
[  189.224394][T10094] syz.0.1335 (10094): drop_caches: 2
[  189.378476][T10102] xt_SECMARK: invalid mode: 0
[  189.511438][T10107] netlink: 'syz.3.1340': attribute type 1 has an invalid length.
[  189.514295][T10107] __nla_validate_parse: 1 callbacks suppressed
[  189.514302][T10107] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1340'.
[  189.564074][T10109] syz.3.1341 (10109): drop_caches: 2
[  190.030552][T10088] can0 (unregistered): slcan off ptm0.
[  190.263506][T10121] random: crng reseeded on system resumption
[  190.420513][T10126] afs: Unknown parameter 'd'
[  190.931986][T10137] netlink: 'syz.0.1349': attribute type 1 has an invalid length.
[  190.934117][T10137] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1349'.
[  190.982704][T10139] syz.0.1350 (10139): drop_caches: 2
[  191.156385][T10144] can0: slcan on ptm0.
[  191.224652][T10145] vivid-000: =================  START STATUS  =================
[  191.227987][T10145] vivid-000: Radio HW Seek Mode: Bounded
[  191.229612][T10145] vivid-000: Radio Programmable HW Seek: false
[  191.231558][T10145] vivid-000: RDS Rx I/O Mode: Block I/O
[  191.233307][T10145] vivid-000: Generate RBDS Instead of RDS: false
[  191.235071][T10145] vivid-000: RDS Reception: true
[  191.236492][T10145] vivid-000: RDS Program Type: 0 inactive
[  191.238037][T10145] vivid-000: RDS PS Name:  inactive
[  191.239395][T10145] vivid-000: RDS Radio Text:  inactive
[  191.240820][T10145] vivid-000: RDS Traffic Announcement: false inactive
[  191.243911][T10145] vivid-000: RDS Traffic Program: false inactive
[  191.245671][T10145] vivid-000: RDS Music: false inactive
[  191.247229][T10145] vivid-000: ==================  END STATUS  ==================
[  191.544413][T10152] syz.0.1353 (10152): drop_caches: 2
[  191.898717][ T1374] ieee802154 phy0 wpan0: encryption failed: -22
[  191.900479][ T1374] ieee802154 phy1 wpan1: encryption failed: -22
[  191.978298][T10140] can0 (unregistered): slcan off ptm0.
[  192.050171][T10159] FAULT_INJECTION: forcing a failure.
[  192.050171][T10159] name failslab, interval 1, probability 0, space 0, times 0
[  192.053656][T10159] CPU: 2 UID: 0 PID: 10159 Comm: syz.2.1354 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  192.056420][T10159] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  192.059351][T10159] Call Trace:
[  192.060238][T10159]  <TASK>
[  192.061026][T10159]  dump_stack_lvl+0x16c/0x1f0
[  192.062280][T10159]  should_fail_ex+0x497/0x5b0
[  192.063520][T10159]  should_failslab+0xc2/0x120
[  192.064753][T10159]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  192.066245][T10159]  ? dev_queue_xmit_nit+0x43/0xba0
[  192.067602][T10159]  ? skb_clone+0x190/0x3f0
[  192.068812][T10159]  skb_clone+0x190/0x3f0
[  192.069941][T10159]  dev_queue_xmit_nit+0x38f/0xba0
[  192.071296][T10159]  dev_hard_start_xmit+0x56/0x790
[  192.072695][T10159]  ? __dev_queue_xmit+0x252/0x4350
[  192.074047][T10159]  __dev_queue_xmit+0x7c7/0x4350
[  192.075341][T10159]  ? __pfx___dev_queue_xmit+0x10/0x10
[  192.076754][T10159]  ? rcu_is_watching+0x12/0xc0
[  192.078013][T10159]  ? __copy_skb_header+0x2e8/0x5b0
[  192.079380][T10159]  ? __skb_clone+0x570/0x760
[  192.080614][T10159]  netlink_deliver_tap+0xa8a/0xcf0
[  192.081966][T10159]  netlink_unicast+0x5e1/0x7f0
[  192.083219][T10159]  ? __pfx_netlink_unicast+0x10/0x10
[  192.084602][T10159]  ? __phys_addr_symbol+0x30/0x80
[  192.085929][T10159]  ? __check_object_size+0x488/0x710
[  192.087420][T10159]  netlink_sendmsg+0x8b8/0xd70
[  192.088707][T10159]  ? __pfx_netlink_sendmsg+0x10/0x10
[  192.090111][T10159]  ? lock_acquire+0x2f/0xb0
[  192.091315][T10159]  ____sys_sendmsg+0x9ae/0xb40
[  192.092578][T10159]  ? __pfx_____sys_sendmsg+0x10/0x10
[  192.093966][T10159]  ? get_compat_msghdr+0x11b/0x170
[  192.095346][T10159]  ? __pfx___lock_acquire+0x10/0x10
[  192.096781][T10159]  ___sys_sendmsg+0x135/0x1e0
[  192.098117][T10159]  ? __pfx____sys_sendmsg+0x10/0x10
[  192.099483][T10159]  ? lock_acquire+0x2f/0xb0
[  192.100645][T10159]  ? __fget_files+0x40/0x3f0
[  192.101833][T10159]  ? fdget+0x176/0x210
[  192.102871][T10159]  __sys_sendmsg+0x117/0x1f0
[  192.104044][T10159]  ? __pfx___sys_sendmsg+0x10/0x10
[  192.105303][T10159]  ? __fget_files+0x244/0x3f0
[  192.106496][T10159]  __do_fast_syscall_32+0x73/0x120
[  192.107766][T10159]  do_fast_syscall_32+0x32/0x80
[  192.109021][T10159]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  192.110667][T10159] RIP: 0023:0xf7f36579
[  192.111693][T10159] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  192.116540][T10159] RSP: 002b:00000000f56b656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  192.118786][T10159] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000140
[  192.120837][T10159] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  192.123069][T10159] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  192.125049][T10159] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  192.127114][T10159] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  192.129237][T10159]  </TASK>
[  192.236944][T10166] netlink: 'syz.3.1358': attribute type 1 has an invalid length.
[  192.239706][T10166] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1358'.
[  192.268003][T10164] FAULT_INJECTION: forcing a failure.
[  192.268003][T10164] name failslab, interval 1, probability 0, space 0, times 0
[  192.275645][T10164] CPU: 0 UID: 0 PID: 10164 Comm: syz.2.1357 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  192.279432][T10164] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  192.282611][T10164] Call Trace:
[  192.283471][T10164]  <TASK>
[  192.284242][T10164]  dump_stack_lvl+0x16c/0x1f0
[  192.285528][T10164]  should_fail_ex+0x497/0x5b0
[  192.286937][T10164]  should_failslab+0xc2/0x120
[  192.288148][T10164]  __kmalloc_cache_noprof+0x6b/0x310
[  192.289527][T10164]  ? io_arm_poll_handler+0x3f5/0xc50
[  192.290900][T10164]  io_arm_poll_handler+0x3f5/0xc50
[  192.292211][T10164]  ? __pfx_io_arm_poll_handler+0x10/0x10
[  192.293677][T10164]  ? io_issue_sqe+0x1d3/0x1550
[  192.294938][T10164]  io_queue_async+0xaa/0x4b0
[  192.296246][T10164]  io_submit_sqes+0x16b2/0x2530
[  192.297530][T10164]  __do_sys_io_uring_enter+0xc0f/0x1170
[  192.298989][T10164]  ? __fget_files+0x244/0x3f0
[  192.300375][T10164]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[  192.301950][T10164]  ? fput+0x30/0x390
[  192.302984][T10164]  ? ksys_write+0x1ad/0x260
[  192.304177][T10164]  ? __pfx_ksys_write+0x10/0x10
[  192.305482][T10164]  __do_fast_syscall_32+0x73/0x120
[  192.306802][T10164]  do_fast_syscall_32+0x32/0x80
[  192.308031][T10164]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  192.309628][T10164] RIP: 0023:0xf7f36579
[  192.310662][T10164] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  192.315438][T10164] RSP: 002b:00000000f56b656c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[  192.317697][T10164] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000000008aa
[  192.319687][T10164] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  192.321586][T10164] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  192.323617][T10164] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  192.325770][T10164] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  192.328582][T10164]  </TASK>
[  192.329744][    C0] vkms_vblank_simulate: vblank timer overrun
[  192.343304][T10164] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  192.345406][T10174] syz.3.1361 (10174): drop_caches: 2
[  192.537625][T10184] can0: slcan on ptm0.
[  193.052060][T10192] syz.0.1365 (10192): drop_caches: 2
[  193.320245][T10182] can0 (unregistered): slcan off ptm0.
[  193.647934][T10201] warn_alloc: 2 callbacks suppressed
[  193.647946][T10201] syz.2.1368: vmalloc error: size 2038794240, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  193.653275][T10201] CPU: 1 UID: 0 PID: 10201 Comm: syz.2.1368 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  193.656052][T10201] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  193.658852][T10201] Call Trace:
[  193.659738][T10201]  <TASK>
[  193.660523][T10201]  dump_stack_lvl+0x16c/0x1f0
[  193.661788][T10201]  warn_alloc+0x24d/0x3a0
[  193.662938][T10201]  ? __pfx_warn_alloc+0x10/0x10
[  193.664239][T10201]  ? __pfx___lock_acquire+0x10/0x10
[  193.665607][T10201]  ? get_ctrl+0x394/0x4f0
[  193.666758][T10201]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  193.668256][T10201]  __vmalloc_node_range_noprof+0x11a7/0x15a0
[  193.669858][T10201]  ? __mutex_trylock_common+0xea/0x250
[  193.671466][T10201]  ? __pfx___mutex_trylock_common+0x10/0x10
[  193.673045][T10201]  ? __v4l2_ctrl_modify_dimensions+0x1c7/0x650
[  193.674684][T10201]  ? rcu_is_watching+0x12/0xc0
[  193.676366][T10201]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  193.678489][T10201]  ? rcu_is_watching+0x12/0xc0
[  193.680118][T10201]  ? rcu_is_watching+0x12/0xc0
[  193.681739][T10201]  ? trace_kmalloc+0x2d/0xe0
[  193.683313][T10201]  ? __kmalloc_node_noprof.cold+0x5a/0x5f
[  193.685229][T10201]  ? __v4l2_ctrl_modify_dimensions+0x1c7/0x650
[  193.687314][T10201]  __kvmalloc_node_noprof+0x14f/0x1a0
[  193.689137][T10201]  ? __v4l2_ctrl_modify_dimensions+0x1c7/0x650
[  193.691226][T10201]  __v4l2_ctrl_modify_dimensions+0x1c7/0x650
[  193.693244][T10201]  vivid_update_format_cap+0x127b/0x2530
[  193.695143][T10201]  ? __pfx_vivid_update_format_cap+0x10/0x10
[  193.696709][T10201]  ? v4l2_match_dv_timings+0x1df/0x1010
[  193.698563][T10201]  vivid_vid_cap_s_dv_timings+0xc0f/0xfb0
[  193.700472][T10201]  vidioc_s_dv_timings+0xa5/0xc0
[  193.702138][T10201]  ? v4l_stub_s_dv_timings+0x1b/0x60
[  193.703913][T10201]  __video_do_ioctl+0xaf0/0xf00
[  193.705555][T10201]  ? __pfx___video_do_ioctl+0x10/0x10
[  193.707369][T10201]  video_usercopy+0x426/0x1500
[  193.708979][T10201]  ? __pfx___video_do_ioctl+0x10/0x10
[  193.710802][T10201]  ? __pfx_video_usercopy+0x10/0x10
[  193.712569][T10201]  v4l2_ioctl+0x1ba/0x250
[  193.714035][T10201]  v4l2_compat_ioctl32+0x214/0x2c0
[  193.715754][T10201]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  193.717632][T10201]  __do_compat_sys_ioctl+0x259/0x2b0
[  193.719492][T10201]  __do_fast_syscall_32+0x73/0x120
[  193.720915][T10201]  do_fast_syscall_32+0x32/0x80
[  193.722316][T10201]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  193.723979][T10201] RIP: 0023:0xf7f36579
[  193.725058][T10201] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  193.730146][T10201] RSP: 002b:00000000f56b656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  193.732384][T10201] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c0845657
[  193.734469][T10201] RDX: 0000000020000200 RSI: 0000000000000000 RDI: 0000000000000000
[  193.736522][T10201] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  193.738600][T10201] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  193.740653][T10201] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  193.742716][T10201]  </TASK>
[  193.744060][T10201] Mem-Info:
[  193.744940][T10201] active_anon:5299 inactive_anon:513 isolated_anon:0
[  193.744940][T10201]  active_file:14620 inactive_file:33782 isolated_file:0
[  193.744940][T10201]  unevictable:768 dirty:386 writeback:0
[  193.744940][T10201]  slab_reclaimable:4743 slab_unreclaimable:58705
[  193.744940][T10201]  mapped:21134 shmem:3604 pagetables:681
[  193.744940][T10201]  sec_pagetables:312 bounce:0
[  193.744940][T10201]  kernel_misc_reclaimable:0
[  193.744940][T10201]  free:65737 free_pcp:10953 free_cma:0
[  193.749087][T10203] netlink: 'syz.0.1369': attribute type 1 has an invalid length.
[  193.757111][T10201] Node 0 active_anon:888kB inactive_anon:2052kB active_file:1900kB inactive_file:1980kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:2280kB dirty:252kB writeback:0kB shmem:2368kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9904kB pagetables:1568kB sec_pagetables:1196kB all_unreclaimable? no
[  193.759278][T10203] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1369'.
[  193.767343][T10201] Node 1 active_anon:20308kB inactive_anon:0kB active_file:56580kB inactive_file:133148kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:82256kB dirty:1292kB writeback:0kB shmem:12048kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2128kB pagetables:1156kB sec_pagetables:52kB all_unreclaimable? no
[  193.767371][T10201] Node 0 DMA free:2444kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:28kB active_file:44kB inactive_file:0kB unevictable:0kB writepending:44kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:124kB local_pcp:4kB free_cma:0kB
[  193.767398][T10201] lowmem_reserve[]: 0 273 0 0 0
[  193.767418][T10201] Node 0 DMA32 free:21200kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:2048KB active_anon:528kB inactive_anon:2424kB active_file:1512kB inactive_file:2324kB unevictable:1536kB writepending:208kB present:1032196kB managed:306288kB mlocked:0kB bounce:0kB free_pcp:1528kB local_pcp:308kB free_cma:0kB
[  193.767444][T10201] lowmem_reserve[]: 0 0 0 0 0
[  193.796027][T10201] Node 1 DMA32 free:239400kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:20308kB inactive_anon:0kB active_file:56580kB inactive_file:133148kB unevictable:1536kB writepending:1292kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:42252kB local_pcp:22924kB free_cma:0kB
[  193.803793][T10201] lowmem_reserve[]: 0 0 0 0 0
[  193.805037][T10201] Node 0 DMA: 35*4kB (U) 53*8kB (U) 125*16kB (U) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2564kB
[  193.808942][T10201] Node 0 DMA32: 175*4kB (UMEH) 132*8kB (UMEH) 39*16kB (UMEH) 100*32kB (UMEH) 72*64kB (UME) 32*128kB (UMEH) 7*256kB (UME) 4*512kB (UM) 1*1024kB (U) 1*2048kB (M) 0*4096kB = 21196kB
[  193.813587][T10201] Node 1 DMA32: 112*4kB (ME) 373*8kB (UME) 190*16kB (ME) 107*32kB (UME) 367*64kB (UME) 87*128kB (UME) 57*256kB (UME) 8*512kB (UM) 4*1024kB (UM) 4*2048kB (UM) 40*4096kB (UM) = 239336kB
[  193.818330][T10201] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  193.820764][T10201] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  193.823142][T10201] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  193.825769][T10201] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  193.828306][T10201] 52066 total pagecache pages
[  193.829551][T10201] 367 pages in swap cache
[  193.830740][T10201] Free swap  = 115748kB
[  193.831869][T10201] Total swap = 124996kB
[  193.833000][T10201] 524155 pages RAM
[  193.834344][T10201] 0 pages HighMem/MovableOnly
[  193.835828][T10201] 206680 pages reserved
[  193.836958][T10201] 0 pages cma reserved
[  193.923542][T10214] syz.2.1374 (10214): drop_caches: 2
[  194.021492][T10215] input: syz0 as /devices/virtual/input/input14
[  194.570523][T10221] can0: slcan on ptm0.
[  194.823656][T10227] random: crng reseeded on system resumption
[  194.834998][T10229] syz.3.1377 (10229): drop_caches: 2
[  195.399206][T10219] can0 (unregistered): slcan off ptm0.
[  195.436357][T10237] netlink: 'syz.3.1378': attribute type 1 has an invalid length.
[  195.438434][T10237] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1378'.
[  195.500142][T10245] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1382'.
[  195.523629][T10247] syz.2.1383 (10247): drop_caches: 2
[  196.149477][T10256] syz.2.1386 (10256): drop_caches: 2
[  196.158857][T10250] netlink: 'syz.3.1384': attribute type 1 has an invalid length.
[  196.160873][T10250] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1384'.
[  196.344994][T10263] netlink: 'syz.3.1389': attribute type 1 has an invalid length.
[  196.347079][T10263] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1389'.
[  196.583425][T10273] random: crng reseeded on system resumption
[  196.875306][T10286] netlink: 'syz.2.1398': attribute type 1 has an invalid length.
[  196.877300][T10286] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1398'.
[  197.397834][T10298] netlink: 'syz.3.1404': attribute type 1 has an invalid length.
[  197.400053][T10298] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1404'.
[  197.412341][T10296] FAULT_INJECTION: forcing a failure.
[  197.412341][T10296] name failslab, interval 1, probability 0, space 0, times 0
[  197.415630][T10296] CPU: 0 UID: 0 PID: 10296 Comm: syz.0.1403 Not tainted 6.12.0-rc4-syzkaller-00047-gc2ee9f594da8 #0
[  197.418386][T10296] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  197.421120][T10296] Call Trace:
[  197.421992][T10296]  <TASK>
[  197.422756][T10296]  dump_stack_lvl+0x16c/0x1f0
[  197.423971][T10296]  should_fail_ex+0x497/0x5b0
[  197.425184][T10296]  ? fs_reclaim_acquire+0xae/0x150
[  197.426490][T10296]  should_failslab+0xc2/0x120
[  197.427699][T10296]  __kmalloc_node_noprof+0xd1/0x440
[  197.429021][T10296]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  197.430446][T10296]  __kvmalloc_node_noprof+0xad/0x1a0
[  197.431398][T10301] syz.3.1405 (10301): drop_caches: 2
[  197.431791][T10296]  __kvm_mmu_topup_memory_cache+0x451/0x600
[  197.434696][T10296]  ? lock_acquire.part.0+0x11b/0x380
[  197.436071][T10296]  mmu_topup_memory_caches+0x22/0xd0
[  197.437432][T10296]  kvm_mmu_load+0xda/0x20d0
[  197.438590][T10296]  ? kvm_apic_has_interrupt+0xb6/0x190
[  197.439957][T10296]  ? kvm_lapic_sync_to_vapic+0x205/0x6c0
[  197.441371][T10296]  ? kvm_pfn_to_refcounted_page+0x10a/0x5e0
[  197.442823][T10296]  ? __pfx_kvm_mmu_load+0x10/0x10
[  197.444261][T10296]  ? vmx_update_cr8_intercept+0x1fc/0x370
[  197.445712][T10296]  vcpu_run+0x2e22/0x4c90
[  197.446819][T10296]  ? __pfx_vmx_vcpu_load_vmcs+0x10/0x10
[  197.448209][T10296]  ? __pfx_vcpu_run+0x10/0x10
[  197.449424][T10296]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  197.450858][T10296]  ? rcu_watching_snap_stopped_since+0xf0/0x110
[  197.452413][T10296]  ? trace_lock_acquire+0x14a/0x1d0
[  197.453755][T10296]  ? __local_bh_enable_ip+0xa4/0x120
[  197.455072][T10296]  ? kvm_arch_vcpu_ioctl_run+0x14d/0x1730
[  197.456572][T10296]  ? lock_acquire+0x2f/0xb0
[  197.457749][T10296]  ? kvm_arch_vcpu_ioctl_run+0x447/0x1730
[  197.459196][T10296]  kvm_arch_vcpu_ioctl_run+0x447/0x1730
[  197.460618][T10296]  kvm_vcpu_ioctl+0x6c7/0x1510
[  197.461835][T10296]  ? tomoyo_path_number_perm+0x467/0x5b0
[  197.463243][T10296]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[  197.464566][T10296]  ? tomoyo_path_number_perm+0x190/0x5b0
[  197.466004][T10296]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  197.467523][T10296]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  197.469030][T10296]  ? do_vfs_ioctl+0x513/0x1950
[  197.470214][T10296]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  197.471750][T10296]  ? trace_lock_acquire+0x14a/0x1d0
[  197.473053][T10296]  kvm_vcpu_compat_ioctl+0x210/0x3f0
[  197.474351][T10296]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  197.475782][T10296]  ? __fget_files+0x244/0x3f0
[  197.477031][T10296]  ? __pfx_kvm_vcpu_compat_ioctl+0x10/0x10
[  197.478539][T10296]  __do_compat_sys_ioctl+0x259/0x2b0
[  197.479872][T10296]  __do_fast_syscall_32+0x73/0x120
[  197.481198][T10296]  do_fast_syscall_32+0x32/0x80
[  197.482461][T10296]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  197.484110][T10296] RIP: 0023:0xf7f48579
[  197.485164][T10296] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  197.490087][T10296] RSP: 002b:00000000f56c656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  197.492200][T10296] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ae80
[  197.494221][T10296] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  197.496261][T10296] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  197.498286][T10296] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  197.500292][T10296] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  197.502304][T10296]  </TASK>
[  198.137149][T10314] random: crng reseeded on system resumption
[  198.725934][T10334] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1414'.
[  198.736937][T10335] netlink: 'syz.2.1415': attribute type 1 has an invalid length.
[  198.739108][T10335] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1415'.
[  198.924132][T10337] netlink: 'syz.3.1416': attribute type 9 has an invalid length.
[  198.926765][T10337] netlink: 134660 bytes leftover after parsing attributes in process `syz.3.1416'.
[  198.958966][T10340] syz.3.1417 (10340): drop_caches: 2
SYZFAIL: posix_spawn failed
 (errno 5: Input/output error)
[  199.506741][ T5343] syz_tun (unregistering): left promiscuous mode
[  199.578286][T10344] syz_tun (unregistering): left promiscuous mode
[  199.779363][ T9854] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  199.844364][ T9854] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  199.933448][ T9854] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  199.994989][ T9854] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.091577][ T9854] bridge_slave_1: left allmulticast mode
[  200.093059][ T9854] bridge_slave_1: left promiscuous mode
[  200.094841][ T9854] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.097437][ T9854] bridge_slave_0: left allmulticast mode
[  200.099629][ T9854] bridge_slave_0: left promiscuous mode
[  200.101451][ T9854] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.558609][ T9854] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  200.562336][ T9854] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  200.565502][ T9854] bond0 (unregistering): Released all slaves
[  200.570157][ T9854] bond1 (unregistering): Released all slaves
[  200.806872][ T9854] batadv_slave_0: left promiscuous mode
[  200.811572][ T9854] hsr_slave_0: left promiscuous mode
[  200.813337][ T9854] hsr_slave_1: left promiscuous mode
[  200.815019][ T9854] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  200.817205][ T9854] batman_adv: batadv0: Removing interface: batadv_slave_0
[  200.835457][ T9854] veth1_macvtap: left promiscuous mode
[  200.837296][ T9854] veth0_macvtap: left promiscuous mode
[  200.838863][ T9854] veth1_vlan: left promiscuous mode
[  200.840265][ T9854] veth0_vlan: left promiscuous mode
[  200.886284][ T9854] pim6reg (unregistering): left allmulticast mode
[  201.380078][ T9854] team0 (unregistering): Port device team_slave_1 removed
[  202.202948][ T9854] IPVS: stop unused estimator thread 0...
[  202.674712][ T9854] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.756929][ T9854] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.841283][ T9854] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.899770][ T9854] bond0: (slave netdevsim0): Releasing backup interface
[  202.902837][ T9854] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.985708][ T9854] bridge_slave_1: left allmulticast mode
[  202.987217][ T9854] bridge_slave_1: left promiscuous mode
[  202.988872][ T9854] bridge0: port 2(bridge_slave_1) entered disabled state
[  202.991582][ T9854] bridge_slave_0: left allmulticast mode
[  202.993064][ T9854] bridge_slave_0: left promiscuous mode
[  202.994585][ T9854] bridge0: port 1(bridge_slave_0) entered disabled state
[  203.525468][ T9854] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  203.528471][ T9854] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  203.531139][ T9854] bond0 (unregistering): Released all slaves
[  203.535481][ T9854] bond1 (unregistering): (slave bond2): Releasing backup interface
[  203.538036][ T9854] bond1 (unregistering): Released all slaves
[  203.605880][ T9854] bond2 (unregistering): Released all slaves
[  203.610127][ T9854] bond3 (unregistering): Released all slaves
[  203.677857][ T9854] bond4 (unregistering): Released all slaves
[  203.744184][ T9854] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  203.748497][ T9854] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  203.751729][ T9854] bond0 (unregistering): Released all slaves
[  203.822188][ T9854] bond1 (unregistering): Released all slaves
[  203.890588][ T9854] bond2 (unregistering): Released all slaves
[  203.958389][ T9854] bond3 (unregistering): Released all slaves
[  204.099625][ T9854] tipc: Left network mode
[  204.483780][ T9854] batadv_slave_0: left promiscuous mode
[  204.487977][ T9854] hsr_slave_0: left promiscuous mode
[  204.489784][ T9854] hsr_slave_1: left promiscuous mode
[  204.493372][ T9854] batman_adv: batadv0: Removing interface: batadv_slave_0
[  204.496051][ T9854] batman_adv: batadv0: Removing interface: batadv_slave_1
[  204.500530][ T9854] hsr_slave_0: left promiscuous mode
[  204.502328][ T9854] hsr_slave_1: left promiscuous mode
[  204.504267][ T9854] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  204.506231][ T9854] batman_adv: batadv0: Removing interface: batadv_slave_0
[  204.508407][ T9854] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  204.510332][ T9854] batman_adv: batadv0: Removing interface: batadv_slave_1
[  204.527663][ T9854] veth1_macvtap: left promiscuous mode
[  204.529127][ T9854] veth0_macvtap: left promiscuous mode
[  204.531185][ T9854] veth1_vlan: left promiscuous mode
[  204.532595][ T9854] veth0_vlan: left promiscuous mode
[  205.128916][ T9854] team0 (unregistering): Port device team_slave_1 removed
[  205.195787][ T9854] team0 (unregistering): Port device team_slave_0 removed
[  205.605499][ T9854] team0 (unregistering): Port device batadv0 removed
[  206.283192][ T9854] team0 (unregistering): Port device team_slave_1 removed
[  206.348300][ T9854] team0 (unregistering): Port device team_slave_0 removed
[  206.726346][ T9854] team0 (unregistering): Port device batadv0 removed
[  207.448936][ T9854] IPVS: stop unused estimator thread 0...
[  207.453656][ T9854] IPVS: stop unused estimator thread 0...

VM DIAGNOSIS:
11:02:26  Registers:
info registers vcpu 0

CPU#0
RAX=00fff60000000028 RBX=00fff60000000028 RCX=ffffffff81c7fd5d RDX=fffff520001c7e5e
RSI=0000000000000008 RDI=ffffc90000e3f2e8 RBP=ffffea000048a100 RSP=ffffc90000e3f2b0
R8 =0000000000000001 R9 =fffff520001c7e5d R10=ffffc90000e3f2ef R11=0000000000000000
R12=00fff80000000028 R13=0000000000000002 R14=ffff888022440048 R15=0000000000000000
RIP=ffffffff81c7fd68 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7406108 CR3=00000000619fe000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=fffffbfff2d3219d RBX=fffffbfff2d3219e RCX=ffffffff81694e6e RDX=fffffbfff2d3219e
RSI=0000000000000008 RDI=ffffffff96990ce8 RBP=fffffbfff2d3219d RSP=ffffc90003487450
R8 =0000000000000000 R9 =fffffbfff2d3219d R10=ffffffff96990cef R11=0000000000000000
R12=ffff88801edea440 R13=0000000000000100 R14=0000000000000008 R15=1ffff92000690e96
RIP=ffffffff81ee0705 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c353739 CR3=000000000db7c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000606f31 RBX=0000000000000002 RCX=ffffffff8b139ef9 RDX=0000000000000000
RSI=ffffffff8b4cc960 RDI=ffffffff8bb12d60 RBP=ffffed100376c000 RSP=ffffc90000487dd8
R8 =0000000000000001 R9 =ffffed10056c7025 R10=ffff88802b63812b R11=0000000000000000
R12=0000000000000002 R13=ffff88801bb60000 R14=ffffffff901ce608 R15=0000000000000000
RIP=ffffffff8b200270 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055d620d8d000 CR3=000000000028e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=dffffc0000000000 RBX=0000000000000001 RCX=ffffffff81dc2a8b RDX=ffff888029820000
RSI=ffffffff81dc2a94 RDI=ffffea00012a5cd8 RBP=00000000ffffffff RSP=ffffc90003447848
R8 =0000000000000005 R9 =0000000000000000 R10=00000000ffffffff R11=0000000000000000
R12=0000000000000000 R13=ffffea00012a5cc0 R14=ffff8880260f55d0 R15=ffffea00012a5cc0
RIP=ffffffff818cb85c RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000057b6f4c0 CR3=000000000028e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000