last executing test programs:

3m42.792225088s ago: executing program 0 (id=3335):
mkdir(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = dup(0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0xfffffffffffffeeb}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
write$binfmt_script(r0, &(0x7f0000000400)={'#! ', './file0', [{}], 0xa, "f393ea22da8a21ebc99248f66a31c784e0de6ee1637d9b294e4fc91d03b141853228be0a4c753e26ed5dea5812cfdc1cddb4aab3f81412011e431376ed43b1af97fd8c85553929896ef54e916c14796ae2228d94f195a6a85919cfd4526829c1813c6f9ad018975fe364b0615fb841489e6c258deb90db0982f2e70179244aedbe30c026b30d6abc20600a55e9144f4a5aca1c3060383b7bc59eba8d7959a1a4f649aed8192e33dcb8b3d3f45ece322bf51b2c225cc9c20599a2ca0d0e162e1a1a8f6e5d8af1ff67867c3e48b24a"}, 0xda)
connect$inet(r4, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x1, 0x0, 0x2}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000580)=ANY=[@ANYBLOB="48000000100039042cbd7000eaffffff000003e4", @ANYRES32, @ANYBLOB="83000400cb1507002800128008000100736974001c000280080014000400000008000300ac14141005000900ff"], 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x4000040)
r6 = io_uring_setup(0xf0b, &(0x7f000000c480)={0x0, 0x4e3f, 0x1000, 0x1ffff, 0x373})
r7 = io_uring_setup(0x7625, &(0x7f0000000600)={0x0, 0x608b, 0x0, 0x0, 0x28b, 0x0, r6})
io_uring_register$IORING_REGISTER_FILES(r7, 0x1e, &(0x7f0000000000)=[r6], 0x1)
shutdown(r4, 0x1)

3m41.815557808s ago: executing program 0 (id=3337):
r0 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
writev(r0, &(0x7f0000000400)=[{&(0x7f0000000080)}], 0x1)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x3f)
socket$nl_route(0x10, 0x3, 0x0)
r4 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r2, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000000)={<r7=>0xffffffffffffffff})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r7, 0x0, r8, 0x0, 0x88000cc, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f00000000c0)={<r9=>0x0, @in6={{0xa, 0x4e23, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x3}}, [0x76, 0x10001, 0x7, 0x0, 0x7, 0x5, 0x800, 0x6c836549, 0x1, 0x9, 0xfffffffffffffffe, 0xfffffffffffffff8, 0x8, 0x3, 0xab0]}, &(0x7f00000001c0)=0xfc)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000002c0)={r9, 0x88, &(0x7f0000000200)=[@in6={0xa, 0x4e23, 0x4, @empty, 0xf}, @in6={0xa, 0x4e21, 0xee00, @dev={0xfe, 0x80, '\x00', 0x1d}, 0xb}, @in={0x2, 0x4e22, @multicast2}, @in={0x2, 0x4e24, @multicast1}, @in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in={0x2, 0x4e20, @local}, @in={0x2, 0x4e23, @rand_addr=0x64010102}]}, &(0x7f0000000300)=0xc)
r10 = socket$nl_route(0x10, 0x3, 0x0)
r11 = socket$inet_udp(0x2, 0x2, 0x0)
r12 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/pid\x00')
fsetxattr$system_posix_acl(r12, &(0x7f0000000040)='system.posix_acl_default\x00', 0x0, 0x0, 0x3)
sendmsg$nl_route(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=ANY=[@ANYRES8=0x0, @ANYBLOB="5cc20000000000001800128008000100677470000c00028008000200", @ANYRES32=r11, @ANYBLOB="08000300", @ANYRES16=r0, @ANYBLOB], 0x40}}, 0x0)

3m40.845788406s ago: executing program 0 (id=3343):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x36f)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = open(&(0x7f0000000140)='./file0\x00', 0x800, 0x70)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
unlink(&(0x7f0000000040)='./file1\x00') (fail_nth: 2)

3m40.770433305s ago: executing program 0 (id=3345):
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
pipe(&(0x7f0000000340)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000400)='./file0/file0\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x3125899, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x202)
vmsplice(r1, &(0x7f0000000300)=[{0x0, 0x61}, {&(0x7f00000001c0)="5c8000000000000000ea45a1", 0x20000081}], 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f00000000c0)=0x81)
syz_io_uring_setup(0x195c, &(0x7f0000000140)={0x0, 0xfad4, 0x10000, 0x0, 0x4}, 0x0, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=<r3=>0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000700)={{0xffffffff, 0x0, 0x0, 0xfffffffc, 'syz1\x00', 0x6}, 0x4, 0x2, 0x5, r3, 0x0, 0xff, 'syz0\x00', 0x0})
pselect6(0x40, &(0x7f0000000100)={0x0, 0xfffffffffffffffd}, 0x0, &(0x7f0000000240)={0x1f}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0)

3m40.653542099s ago: executing program 0 (id=3347):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c000200060000001f000000060001000000000008000500", @ANYRES32=r0], 0x64}}, 0x0)

3m40.321366586s ago: executing program 0 (id=3350):
r0 = socket$kcm(0x2d, 0x2, 0x0)
accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000240)={0x28, 0x0, 0x0, @local}, 0x10, 0x80800)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11f88)
lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01)
bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x3, 0x4, &(0x7f0000000080)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0x20}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x40000, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080))
ioctl$KDSKBMETA(r1, 0x4b63, &(0x7f0000000140)=0x3)
lchown(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r5)
bind$bt_l2cap(r1, &(0x7f0000000200)={0x1f, 0x8, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x1, 0x1}, 0xe)
r6 = socket$packet(0x11, 0x2, 0x300)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$inet_buf(r7, 0x0, 0x29, &(0x7f00000000c0)=""/188, &(0x7f0000000000)=0xbc)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x41, &(0x7f0000000280)=0x3ea, 0x4)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'veth0_to_bond\x00', <r8=>0x0})
sendto$packet(r6, 0x0, 0x0, 0x0, &(0x7f0000000080)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @multicast}, 0x14)
recvfrom$packet(r6, 0x0, 0x0, 0x2000, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
capset(&(0x7f0000000180)={0x20071026, r5}, &(0x7f00000001c0)={0xc, 0x7, 0x5, 0x0, 0x2, 0x4472})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000040)={r3})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000100)={r4})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000080)={r4})

3m40.264898305s ago: executing program 32 (id=3350):
r0 = socket$kcm(0x2d, 0x2, 0x0)
accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000000240)={0x28, 0x0, 0x0, @local}, 0x10, 0x80800)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11f88)
lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01)
bpf$PROG_LOAD(0x5, &(0x7f0000000e80)={0x3, 0x4, &(0x7f0000000080)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0x20}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = openat$kvm(0xffffff9c, &(0x7f0000000000), 0x40000, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080))
ioctl$KDSKBMETA(r1, 0x4b63, &(0x7f0000000140)=0x3)
lchown(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = gettid()
prctl$PR_SET_PTRACER(0x59616d61, r5)
bind$bt_l2cap(r1, &(0x7f0000000200)={0x1f, 0x8, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x1, 0x1}, 0xe)
r6 = socket$packet(0x11, 0x2, 0x300)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$inet_buf(r7, 0x0, 0x29, &(0x7f00000000c0)=""/188, &(0x7f0000000000)=0xbc)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x41, &(0x7f0000000280)=0x3ea, 0x4)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'veth0_to_bond\x00', <r8=>0x0})
sendto$packet(r6, 0x0, 0x0, 0x0, &(0x7f0000000080)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @multicast}, 0x14)
recvfrom$packet(r6, 0x0, 0x0, 0x2000, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
capset(&(0x7f0000000180)={0x20071026, r5}, &(0x7f00000001c0)={0xc, 0x7, 0x5, 0x0, 0x2, 0x4472})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000040)={r3})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000100)={r4})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000080)={r4})

32.787771503s ago: executing program 1 (id=4266):
socket$packet(0x11, 0x2, 0x300)
socket$kcm(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x14, 0x8, &(0x7f00000011c0)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x1000000, 0x4}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
syz_open_dev$radio(&(0x7f0000000100), 0x3, 0x2)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4001, 0x0, @loopback}, 0x1c)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x5, 0x0, @dev={0xac, 0x14, 0x14, 0xff}, @private=0xa010100, {[@generic={0x94, 0x2}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd74)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x8fff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000080)=""/152)
syz_emit_ethernet(0x5e, &(0x7f00000001c0)={@remote, @random="001c00", @val={@val={0x88a8, 0x7, 0x1, 0x1}, {0x8100, 0x1, 0x1, 0x1}}, {@canfd={0xd, {{0x0, 0x1, 0x1, 0x1}, 0x22, 0x3, 0x0, 0x0, "0922b3250fee8a84762ceb0ed458854d372bc34d34b21f6f8895402facc89256af91c3d6f57af84027901407ffbc48b0a9b31a3ad34a51f7b96d5cf32c7d1813"}}}}, 0x0)

31.899422877s ago: executing program 1 (id=4268):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x11, 0xa, 0x0)
getsockname$packet(r1, 0x0, &(0x7f00000001c0))
syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r4, &(0x7f0000000080), 0x10)
listen(r4, 0x0)
accept4$llc(r4, 0x0, 0x0, 0x0)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, 0x0, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000100), r6)
sendmsg$NLBL_UNLABEL_C_STATICADD(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000000400000014000600776c616e31000000000000000000000014000300fe8000000000000700000000000000aa08000400ac141400100002"], 0x58}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$fou(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r5, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, r7, 0x300, 0x70bd28, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @remote}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x3a}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'wlan0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private2}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @private=0xa010101}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private1}]}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x0)
epoll_create1(0x80000)

30.076778107s ago: executing program 1 (id=4274):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
dup(0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0xfffffffffffffeeb}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r3, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
writev(r3, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
shutdown(r3, 0x1)

29.119148048s ago: executing program 1 (id=4277):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = socket$kcm(0x2, 0x200000000000001, 0x106)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000400)='./file0/file0\x00', &(0x7f0000000380)='./file0\x00', 0x0, 0x3125899, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x202)
sendmsg$inet(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x30004001)
setsockopt$sock_attach_bpf(r1, 0x1, 0x24, &(0x7f0000000000), 0x4)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x8, &(0x7f0000000300))
set_thread_area(0x0)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
stat(&(0x7f0000001880)='./file0/../file0\x00', &(0x7f00000018c0)={0x0, 0x0, 0x0, 0x0, <r6=>0x0, <r7=>0x0})
sendmmsg$unix(r5, &(0x7f00000025c0)=[{{0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000000480)="c9c61bb0c4e2607dd7d94ef84084a26485a628f2fa664027b51ebbe6d6505d608f865d338945b9cf6f6cb163665f8f098e3d3212a99aadffb10bc3ef730ee5d8a8f110106920806dedd7d25a0b979ae6b48af4190a60b8c64779b67880c6429414c7b66b987a65925da6350538ef58f9bd436876d313c223fe3458a5901633c72935424ee79a468ed927dd227692c1a30a8bc92ce85c0a25d3be2d08ac9992bd64f05ae3dfc2064649a2ac593dcd67e9c9ca363a7a5aae04d327db8f707ec2323348e9c8a1b2a221ad92d7c5cd71f41d1d75", 0xd2}, {&(0x7f0000000580)="1e2e1440a24027387d3d126e3f07e22764eff91237e0139b3937846e9d4ffe2d7377edaaef1582225adad64a0a32f03b565deeb31e6f9d552133f9c7519eed75d6a561cdec06d42e7274a6c770b84758d9a7fc3080067881195565c2aeaf1bdfff1e006b3c1a07da5bc963c9461bae5d05ed2806fd6df7e0a7fab48fe3aa1bbdd71467d0dfcac7297b7825e5ba49f7e58e17959b79240479f9f368298db4aea76a02ff", 0xa3}, {&(0x7f0000000680)="7ae4d836b5af0bc2437ff7205e7bcf4f8dff542f1a91f29f5e314e3199177aedefad5ef949f6b98418a15370476b992bd52ebb066d11665dd32c58ddcee5076f4024929184f519d1d09b33cb5020b227d3c38a74d7c07260e10d419752ec42991ad1db4ec4cc7f78af17f1c3a950a984a55b2b8462da8632bc1a9531b6686ea1d2282519b9944b51468f553109cf11d7d205d3519e9ca9b20430c296d6626ee4a3ce4dc21ee6aa2d884ae087a277df47e65a3f3d35d20e48d4a96056f8f838de0ac56edaac3f4ed5f819534a9eb47040ec585b9444beadec323d473ded11f3f4cd859b79c47aaa936efe1e54eb401ed80b4ccbdffe", 0xf5}, {&(0x7f0000000780)="445d25b6cdb3575ffb55d75983ef86c13ef36139716b449c5bd973e1c4f3e21e6bdd2cf7d1693ebec29ce52cd80ba103097eb1bc1f70e9d4f9864845aed3ead38e795919b8c12111ab9c714f1b34c7d2f54e91ea3a741a0da7307d8c4ec75e8fa5e35d56ca847957b8eaf7519d0d02c1487b54d07079ca6510ad937e594f96ac600c221697677eb1303fede8e9523469117e20dc7b5815c8df9f8f0fe383cb86cba13d590530aba04850c80584", 0xad}, {&(0x7f0000000840)="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", 0x1000}, {&(0x7f0000000340)="6b2afd8c337d2108a5ff2fc6d3ea43f11ce53f782aeb4764651a85a6b40b", 0x1e}], 0x6, &(0x7f0000001940)=[@rights={{0xc}}, @cred={{0x18, 0x1, 0x2, {r3, r6}}}], 0x24}}, {{&(0x7f0000001980)=@file={0x0, './file0/../file0\x00'}, 0x6e, &(0x7f0000001ec0)=[{&(0x7f0000001a00)="54956750fbe58ea3010c24c3ad935e6173898586aed9aa72388c47576d9e60b96a9dd839e5c39bbfa1d89506b2dba5d153c021fadd41de047f51d010a3810cc9465ecfef842d89999fb67746d631597ff8cf94dd7cf744b279f0dfd290c1f3", 0x5f}, {&(0x7f0000001a80)="716f65b0ef046def1b0f1b4255115c1f70d976ede7531c46e5234e20691c9a2d28e1c54aaa23c6ff85e9575538d0fc506e733c8339c3c56e4a605ffd65649fbaf76cc73a5da1f6452d70575eba4420b99a0758e44bf6d10d32c9765f89401b1d6a3e7eddd3e4bb14569f068a3cb1b4ffc3ee0bf2ba951eb257b446c434117586c5fa97ae563085dcc5913c56f6a4a993ab2b5e2903a9b44d2e8fa17e30", 0x9d}, {&(0x7f0000001b40)="d4e7be4205bc249b0b26cdd3f00456f1fa67e91068b39d9df1c642fc6e20c0b535f0a8649f199c9a0d119917ae3ced3c3254b52a19baa7716bfd0cd863a7ae1a073a2599fec788ffb89e", 0x4a}, {&(0x7f0000001bc0)="24184704e6eccfcf4888618f4be675b337a7c6b03438dcc0403d1b80c4bb3621fb4612af093a23093f7767ab70641fa97cffd7ac92159f8c323ba3720341a795dd6e43934936fd65f6802a434aefc996f2e8e8f1037d310735d30c82a2f5e692f197577be1e2258c32cb01ae2b5bd3747972e3a27a", 0x75}, {&(0x7f0000001c40)="97a1ee91b0520defec9945f1503d157d06257bbc546ef3eb4de934b6234498800bbc68b87b6888379b28698f6c52dd998cd791d18cb14bb2c71a25bee5a4a4dd2214de4bbac21e9f393fcf7a9bbaa885f7d909da8451b81a54697177a01cf4d07644433c1ec44865246ab476a89ccb4aa87ec2de2f6136ee499fd02b3bf42401e14d57e242bfa38939ee11bfaba4e91f57b1d9e65c7c1141caba7f9700cb7b72d155ac253cde44d727c12c4c5f0de24ef8cd8573ed621bef8c981e4c95ccd6e3ab170c6d5d4b09f1fc3d20d28ad4f4a30b840bb315844e71db3b3d331876bf9704adf7701a7c48488fc27dc56efbc2e48026b3", 0xf3}, {&(0x7f0000001d40)="e95d6c8e09c7e092d22af921e710ca6eb1e5d098e3bd186794f510de8612e0d0bc298a19c127b79be7394306aa6414a9a7c4e79e57a7f3a77e5b457907c91778cdecd6561fd656a6af7f8fd2050228eb6b90d380b52c17c9ef9aaf2f47a8c11a4b5fbb", 0x63}, {&(0x7f0000001dc0)="f8788d8d410b30a9e10e8e6acf54", 0xe}, {&(0x7f0000001e00)="93d68aee289cf782e2f959daaa30af0d57f2fbd08443541b8658db97dd4afc8965f8cdb62f7be783c0f03d5984c3f87deea9a543f2bc00b32f6d1698bbb4e78110342e0f6e467368384d6598ddf71df4c3adfcea92db960c051158dcc9cb7301c0e5918a1c830a7936afb09f17455af723d2bb2b0b3caa81f7f972892240231fe746", 0x82}], 0x8, &(0x7f0000001f80)=ANY=[@ANYBLOB="1c0000000100000001000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r5, @ANYRES32=r0, @ANYBLOB="18000002f0ff000000000000", @ANYRES32=r3, @ANYRES32=r6, @ANYRES32=r7, @ANYBLOB="180000000100000002000000", @ANYRES32=r3, @ANYRES32=r6, @ANYRES32, @ANYBLOB="1c0000000100000001000000", @ANYRES32, @ANYRES32=r5, @ANYRES32=r4, @ANYRES32=r1, @ANYBLOB="240000000100000001000000", @ANYRES32=r2, @ANYRES32=r0, @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYRES32=r1, @ANYBLOB="280000000100000001000000", @ANYRES32=r5, @ANYRES32=r4, @ANYRES32=r4, @ANYRES32=r2, @ANYRES32, @ANYRES32=r4, @ANYRES32, @ANYBLOB="180000000100000002000000", @ANYRES32=r3, @ANYRES32=r6, @ANYRES32=r7], 0xcc, 0x8000}}, {{&(0x7f0000002080)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000002480)=[{&(0x7f0000002100)="c346ee96a3cd8e40a0ad45009f8746e7f5b0317aeeca290e5124f6e4c767ed0fd58ccc9e67aabd9cff7191d62a36c9b430e650b10f51605e71784d89ad673a35a1e50a567c81ab4a2432f31ec00518fa396832f629606956f5e00dcc78b2d512102b3e2dec9839e98d4bf296fd6745c6b76b2e08f7bc4538070756b96c143a7e7d3ab92f2f2935d2d45ef8b41b0156a4112d4e76632d27fafa8952ccf8ae152b6ab088ac3ef762fc3064daf4ae21ad2a3f", 0xb1}, {&(0x7f00000021c0)="e6237bbd5e4ceeb1cadfa969d63fb71cdcb98683fc6dea956f00d038695e04ac67d8dc81e82bd7c13b8fce1c2373e453e8f9d3f568cade2b04a12c391de08c675d7879ca0667193511fe70f78b2c299c01ccff8921fa5d25fa970060dd431b5562283d4e642784a09f7102a798bd8fd78f1aede51aedb15393e961f1d1192c784bb77f672be161f86a105a6efc03ff79a538908c4c6151dcf72fef89732ecb07afc0c6c4df488b34445611d8fe109d19a8858f235d902a91effa5ce27bc6fd293610df21a06d35185508698dfbf910abe79d7aaa5869bdea6f83e8ba38b63498246022", 0xe3}, {&(0x7f00000022c0)="373c636a03b7210993f0697182351dd77b3ac0e590fbb3a26d0080e5c507ebd70644fcbcfb4e76ca1b89e8323547226f0001af2c26beb12a260959f2df59a00f88c235734624dbfd41ea9b43a185ef2322fe5e895d0b1c00245a51459450b6d1c3c65e9133696869fe8fcd25f1888de7f215b2ded801d24685f5321e31255ee40ba80b4ce7ae33dd62f069f0df9b76ec0d1eebab0f9f039a3f2115fdf493d7d8ece04f399acb40ea7533d87fba8c9e08e02954ec43f7f77c", 0xb8}, {&(0x7f0000002380)="34fec4cce60a025b39e0b2cf62c56fd53e00677225492bbc8b3d07892f8a8ce4d194e1485474f1f8dd0a316e476565d3f3adde933144604e1ebd99734cab1ffd48fbeb23a5f36b51a9b889a0430db019d0aa46e731d7f7417c643d1f5400bc50d3c778152ba4f4ec96f7a126f2d05a99b9ce5252dd6e03ac4183b2baa5d212452d6a3c4e78286c15e9aaa3f96b5956328ec5b3b799c3a4c48b18", 0x9a}, {&(0x7f0000002440)="74a517c23d9c0e41ef1aad74b4c8bba5ac6251b341c4b591c672e80bbc726b834de5b249e24fd57c98bc", 0x2a}], 0x5, &(0x7f0000002540)=[@cred={{0x18, 0x1, 0x2, {r3, 0x0, r7}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r5, r5, 0xffffffffffffffff]}}, @cred={{0x18, 0x1, 0x2, {0x0, r6, r7}}}, @rights={{0x10, 0x1, 0x1, [r4]}}], 0x60, 0x41}}], 0x3, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x15)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000180)=0x5)

28.759256919s ago: executing program 1 (id=4280):
socket$inet6(0xa, 0x6, 0x0)
r0 = socket$netlink(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x28}}, 0x84)
r2 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r2, 0x107, 0x14, 0x0, &(0x7f0000000040))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00', <r5=>0x0})
syz_genetlink_get_family_id$tipc(&(0x7f0000000300), r0)
r6 = socket$netlink(0x10, 0x3, 0x0)
pipe2(&(0x7f0000000000)={0x0, <r7=>0x0}, 0x84000)
splice(r6, &(0x7f0000000040), r7, 0x0, 0x808, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x300, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, r5, {}, {0xc, 0x5}, {0x9, 0xa}}}, 0x24}}, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000280), r0)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r0, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x1c, 0x0, 0x8, 0x70bd2d, 0x25dfdc02, {}, ["", "", "", ""]}, 0x1c}}, 0x4005)
openat$vcs(0xffffff9c, &(0x7f0000000100), 0x80, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
io_setup(0x6, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000380)=[&(0x7f0000000000)={0x180a, 0x0, 0x3, 0x1, 0x0, r8, 0x0, 0x0, 0x2, 0x0, 0x2}])
r9 = syz_open_dev$dri(&(0x7f0000000080), 0x8004, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r9, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000440)=[<r10=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r9, 0xc05064a7, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r10})

28.019614125s ago: executing program 1 (id=4283):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x4, 0x9, 0x41495043, 0x9, 0x5, [{0x1, 0xb}, {0x3, 0x9}, {0x3, 0x3ff}, {0x8, 0x7a25}, {}, {0xffff, 0xffff8000}, {0x7, 0x4}, {0x4, 0x10000}], 0xa, 0x7f, 0x4, 0x0, 0x1}})
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
ftruncate(r0, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r1, r0, 0x0, 0x578410eb) (fail_nth: 3)

27.962369095s ago: executing program 33 (id=4283):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x4, 0x9, 0x41495043, 0x9, 0x5, [{0x1, 0xb}, {0x3, 0x9}, {0x3, 0x3ff}, {0x8, 0x7a25}, {}, {0xffff, 0xffff8000}, {0x7, 0x4}, {0x4, 0x10000}], 0xa, 0x7f, 0x4, 0x0, 0x1}})
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
ftruncate(r0, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r1, r0, 0x0, 0x578410eb) (fail_nth: 3)

4.909013301s ago: executing program 3 (id=4382):
socket(0x11, 0xa, 0x0)
r0 = syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r2, &(0x7f0000000080), 0x10)
listen(r2, 0x0)
accept4$llc(r2, 0x0, 0x0, 0x0)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r0, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000100), r4)
sendmsg$NLBL_UNLABEL_C_STATICADD(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYBLOB="010000000000000000000400000014000600776c616e31000000000000000000000014000300fe8000000000000700000000000000aa080004"], 0x58}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r3, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, r5, 0x300, 0x70bd28, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @remote}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x3a}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'wlan0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private2}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @private=0xa010101}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private1}]}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x0)
epoll_create1(0x80000)

3.63446894s ago: executing program 2 (id=4393):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TCFLSH(r1, 0x40045436, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000008600)={0x44, 0x2, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0xfffc}, [@IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-ssse3\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched_retired(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000011c0)={0x0}}, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0x20, &(0x7f0000000300)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}}, 0x0, 0x0, 0xd, 0x0, "50e482af8a3b3953d7d2ddc26f6d7fcfdcef78b3bb7ca71d37000667e0b8dd3a89446b04761c340f273410ad620a1d1d1e8e3d5d07cb37da86503ff8eadd32f0fc9a56bcd7a401a991c216437633b722"}, 0xd8)
r6 = io_uring_setup(0x25e, 0x0)
io_uring_register$IORING_UNREGISTER_RING_FDS(r6, 0x1b, &(0x7f00000042c0), 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x38, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x10, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0xfffffffe}}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x10048047}, 0x4000050)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff, @void, @value}, 0x94)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='8\x00\x00\x00\n'], 0x38}, 0x1, 0x0, 0x0, 0x10048047}, 0x4000050)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @local, 0xafdd}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000100), 0x4)
syz_open_dev$mouse(&(0x7f0000000180), 0x2, 0x20040)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x4, @remote, 0xb}, 0x1c)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newlink={0x4c, 0x10, 0x801, 0xfffffffd, 0x0, {}, [@IFLA_GROUP={0x8}, @IFLA_AF_SPEC={0x8, 0x1a, 0x0, 0x1, [@AF_INET6={0x4, 0x2d}]}, @IFLA_OPERSTATE={0x5, 0x10, 0x6}, @IFLA_MTU={0x8, 0x4, 0x3ff}, @IFLA_BROADCAST={0xa, 0x2, @multicast}]}, 0x4c}, 0x1, 0x0, 0x0, 0x44000}, 0x0)

3.528701926s ago: executing program 2 (id=4394):
r0 = socket(0x1d, 0x1, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004844}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r2 = epoll_create1(0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000008f0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r5}, 0x10)
sched_setaffinity(0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000100)={0x20000014})
close_range(r2, r3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
read$FUSE(r8, &(0x7f0000009780)={0x2020}, 0x2020)
write$FUSE_DIRENTPLUS(r8, 0x0, 0xb0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r9 = dup(0xffffffffffffffff)
ioctl$BLKZEROOUT(r9, 0x127f, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)

3.30937031s ago: executing program 2 (id=4395):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000021c0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000440)="29a3f41c0f672ab8dc4410db08ec299836f9e68586bb73e6e2e5de6ec5de9a1e2242160c0df907ff73a0fc261f6b3975697a9a68dce4397aa39bfd3a3db85ca61dcaa47ac04f05c85b023767050b5e34fdacd27ade938604", 0x58}], 0x1}}], 0x1, 0x20000000)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x44)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000140)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @multicast2}, 0x2, 0x0, 0x0, 0x2}}, 0x2e)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'})
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f0000000380)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x2, @empty}, 0x2, 0x2, 0x0, 0xfffffffc}}, 0x2e)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xff, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000440)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = fsopen(&(0x7f0000000080)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
fsmount(r6, 0x0, 0x1)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r6, 0x7, 0x0, 0x0, 0x0)

2.434947745s ago: executing program 2 (id=4399):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0xc0001, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, 0x0, 0x404800, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0xd, 0x10, &(0x7f0000000480)=ANY=[@ANYRES8=r0, @ANYRES32=r1, @ANYRES32=0x0, @ANYRESDEC=r0, @ANYRESDEC=r1, @ANYBLOB, @ANYRES64, @ANYRESHEX, @ANYRESOCT, @ANYRESOCT=r0], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
sendto$inet(0xffffffffffffffff, &(0x7f0000000300)="e903232c8ab230367f094ba6e4e41e21b258e7f3c126c66e947393ee3d24002888de73", 0x23, 0x4004801, &(0x7f00000000c0)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000500)=ANY=[@ANYBLOB="a3f968153171c9bf25e5fff170282e4d4862bc9c84d331b58dbcc4c3a133b5f216eea116cbc398a06b9869e80e1898940b3f2974ab704a35a4f090a2bbf7119fe699ee3c5f937ffd2f741538001a87f79116e1a65c587690d2207915d924abfa549da5888804432bcfa006b8c2878885d1eaa7e634a34727aba9c82b0117d1b2ce7d55104e6dab885be0b71abad0b86f365c29224fc5aa069454867c9670bfacb56907fe271ed17be5a8172143fa88a6f2e0665bf20f74b8"], 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x10000000002)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r5, 0x4020565a, &(0x7f0000000180)={0x3, 0x980900, 0x1})
r6 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r6, 0x4020565a, &(0x7f00000000c0)={0x3, 0x980900, 0x3})
ioctl$VIDIOC_QUERYMENU(r5, 0xc008561c, &(0x7f00000001c0)={0x980900, 0x8081, @value=0x4000000000327})
dup(r4)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f00004eb000/0x1000)=nil, 0x1000, 0x4)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0cc5605, &(0x7f0000000100)={0x3, @vbi={0x26, 0x6, 0xc6, 0x20363059, [0x8, 0x3], [0x26, 0x1], 0x1}})
r7 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r7, 0x107, 0xf, 0x0, 0x0)
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)

2.239422985s ago: executing program 3 (id=4400):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0xc0001, 0x0)
r1 = openat$rtc(0xffffffffffffff9c, 0x0, 0x404800, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000480)=ANY=[@ANYRES8=r0, @ANYRES32=r1, @ANYRES32=0x0, @ANYRESDEC=r0, @ANYRESDEC=r1, @ANYBLOB, @ANYRES64, @ANYRESHEX, @ANYRESOCT, @ANYRESOCT=r0], &(0x7f0000000000)='GPL\x00', 0x8, 0xb3, &(0x7f0000000140)=""/179, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
sendto$inet(0xffffffffffffffff, &(0x7f0000000300)="e903232c8ab230367f094ba6e4e41e21b258e7f3c126c66e947393ee3d24002888de73", 0x23, 0x4004801, &(0x7f00000000c0)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000240)=ANY=[@ANYBLOB], 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f00004eb000/0x1000)=nil, 0x1000, 0x4)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0cc5605, &(0x7f0000000100)={0x3, @vbi={0x26, 0x6, 0xc6, 0x20363059, [0x8, 0x3], [0x26, 0x1], 0x1}})
r7 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r7, 0x107, 0xf, 0x0, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000140)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes192\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000000040)="7d1068a421f05f384340d34be65ac0bbe72925ab5a8aa34048704315c07f960cac15bdf90954f1b6c9bec0245ce5f6b00d81fd484502", 0x36)
ioctl$RTC_AIE_ON(r1, 0x7001)

1.699277936s ago: executing program 5 (id=4402):
write$sysctl(0xffffffffffffffff, &(0x7f0000000100)='7\x00', 0x2)
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_GET_MR(r0, 0x114, 0x2, &(0x7f0000000180)={{&(0x7f0000000000)=""/232, 0xe8}, &(0x7f0000000140), 0x21}, 0x20)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
fcntl$F_GET_RW_HINT(r1, 0x40b, &(0x7f00000002c0))
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000740)={0xffffffffffffffff, 0xe0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c, 0x8, 0x8, 0x0}}, 0x10)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000640)=@broute={'broute\x00', 0x7001, 0x1, 0x170, [], 0x0, 0x0, 0x0}, 0x1e8)

1.699028277s ago: executing program 5 (id=4403):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x6d8a, &(0x7f0000000300)={0x0, 0x40ac, 0x10000, 0x2, 0x3f, 0x0, r2}, &(0x7f0000000180), &(0x7f00000001c0))
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r4 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r4, 0xc06864a1, &(0x7f00000003c0)={0x0, 0x0, r5, <r6=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r4, 0xc06864ce, &(0x7f0000000440)={r6, 0x0, 0x0, 0x0, 0x0, [<r7=>0x0]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r3, 0xc00c642d, &(0x7f0000000080)={r7, 0x0, <r8=>0xffffffffffffffff}) (fail_nth: 1)
ioctl$DRM_IOCTL_MODE_GETFB2(r4, 0xc06864ce, &(0x7f0000000280)={r6, 0x0, 0x0, 0x0, 0x0, [], [], [], [0x0, 0x3, 0x400000006]})
ioctl$DRM_IOCTL_MODE_GETFB2(r4, 0xc06864ce, &(0x7f0000000340)={r6, 0x0, 0x0, 0x0, 0x0, [], [0xffffffff], [], [0xfffffffffffffffc]})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r4, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r8})

1.639268916s ago: executing program 5 (id=4404):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x400, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'pimreg0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="800000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000005000128009000100766c616e000000004000028006000100000ffe00340003800c0001000ffe0000000000000c00010094040000000000000c00010000010000000000000c000100040000000000000008000500", @ANYRES32=r4, @ANYBLOB="080003"], 0x80}}, 0x8000)
socket$netlink(0x10, 0x3, 0x4)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x13)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
timer_create(0x7, &(0x7f00000000c0)={0x0, 0x12}, &(0x7f0000000280))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = getpid()
fcntl$setownex(r5, 0xf, &(0x7f0000000100)={0x2, r6})
ioctl$sock_FIOGETOWN(r5, 0x8903, &(0x7f00000001c0)=<r7=>0x0)
fcntl$setown(0xffffffffffffffff, 0x8, r7)

1.154609135s ago: executing program 3 (id=4406):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x3, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002e000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000080)={<r4=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x0, @rand_addr=0x64010100}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f00000000c0)={r4, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0xce03d4}, 0x9c)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000240)={r4, @in6={{0xa, 0x4e23, 0x80000001, @empty}}, 0xffffff27, 0xfff8, 0xbd1, 0x2, 0xa1, 0x299f, 0x6}, &(0x7f0000000000)=0x9c)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000005c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000680)="5f3a2f830ad298b15b9dbcfbf6f1", 0x0, 0x440, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
write$UHID_INPUT(r1, &(0x7f00000029c0)={0xc, {"a2e3ad214fc7529b1b5f470787f70e06d038e7ff7fc6e5539b3267078b089b3b083841090890e0878f0e1ac6e70a9b334a959b689a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31340d095d0936cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ed30c000000000000040d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85824056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000007008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a4d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07845754b8400daaa69bf5c8f4ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f5d6d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9ef6d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcdddd754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfbb655548cf99c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad03f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5136651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a12810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de0ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac34b308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2dd9bb96e222d8e904f6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39e3313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb9957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000210000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x1000}}, 0x1006)

1.154178291s ago: executing program 2 (id=4407):
socket$packet(0x11, 0x2, 0x300)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x5, 0x0, @dev={0xac, 0x14, 0x14, 0xff}, @private=0xa010100, {[@generic={0x94, 0x2}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd74)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x8fff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000080)=""/152)
syz_emit_ethernet(0x5e, &(0x7f00000001c0)={@remote, @random="001c00", @val={@val={0x88a8, 0x7, 0x1, 0x1}, {0x8100, 0x1, 0x1, 0x1}}, {@canfd={0xd, {{0x0, 0x1, 0x1, 0x1}, 0x22, 0x3, 0x0, 0x0, "0922b3250fee8a84762ceb0ed458854d372bc34d34b21f6f8895402facc89256af91c3d6f57af84027901407ffbc48b0a9b31a3ad34a51f7b96d5cf32c7d1813"}}}}, 0x0)

1.15382259s ago: executing program 4 (id=4408):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)

1.076036408s ago: executing program 4 (id=4409):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x30, r1, 0x1, 0x70bd28, 0x25dfdc00, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x5a}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x30}}, 0x4000)

1.075937921s ago: executing program 4 (id=4410):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000100)={0x0, 0x2c, &(0x7f00000000c0)=[@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x4e24, 0x68, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xc2}]}, &(0x7f0000000180)=0x10)

1.012662465s ago: executing program 3 (id=4411):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
pipe2(0x0, 0x80800)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x4, 0x9, 0x41495043, 0x9, 0x5, [{0x1, 0xb}, {0x3, 0x9}, {0x3, 0x3ff}, {0x8, 0x7a25}, {}, {0xffff, 0xffff8000}, {0x7, 0x4}, {0x4, 0x10000}], 0xa, 0x7f, 0x4, 0x0, 0x1}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(r2, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r3, r2, 0x0, 0x578410eb)

1.011640228s ago: executing program 4 (id=4412):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r2, r2, 0x2)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(0xffffffffffffffff, 0x1, 0x8000020, r3, 0x0)

908.223629ms ago: executing program 4 (id=4413):
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
io_uring_enter(0xffffffffffffffff, 0x3516, 0xaddf, 0x2, 0x0, 0x1517f)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x19)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)=0x200, 0x12)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000001000000850000000e000000850000000500000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x18)
truncate(0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
timer_create(0x2, &(0x7f0000000000)={0x0, 0x29, 0x1, @thr={0x0, 0x0}}, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = memfd_create(&(0x7f0000000040)='\x00\x00\x00\x00\x00\x00z\x9b\xb6\xe8t%\xfc\x02\x00\x00\x009\xa0\x8b\x14d\xa2\xa1\xa8!\xe8\xd1\xa0\x8a\xce0\x1c\xb7\xf1\xccm\xce\xd4\xdb\x89\xe5\x8f\xe2\xb6\xd6\x9cF\xbd\xff\x14\x05\x00\x00\x00\x00\x00\x00\x00\xf3\xdc\x91\'\x06\\8\r\xfc\xeeG\xbe\x90C\x1c\x87\x1e|C\xd8\x01\xd0\xf5\xbb}\xeb\x86P=\xe51\x9d,\xb7\xe6_M\xbe\x19\xea#\xff[\xd1\xc3\x9a\xa3\x1b\xf9\xe9\x1d \xce1\xc9\x9f\xb0\x14\xc2\xeb\xf9\xceE\xad\xa4\x92\f\xef\x87g\xb6\xabW\xac\rP\xf42\xb7\xc8\xaajnW\n\r\x802\xd7\x1b$\x95tO*\xf4\xae\xb8\xb8m\xbf\r\xd5\xbf*\xfd\xc7\x85\x1b\x8b\xe5\x97j`c\xe0\x88?\xda\x8a#t>r\xae\xe8\xc9)', 0x0)
write$binfmt_elf64(r1, &(0x7f0000000540)=ANY=[@ANYBLOB="7f454c46020000000d0200aa1e1c170003003e000839a59434d90a2742a24e000000000000000000deef14b40028e27ebdfd74dafc20380003"], 0xfebe)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000000)=""/188)

588.121627ms ago: executing program 4 (id=4414):
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="fc00000019000100000000000000000000000000000000000000000000000000fc01000000000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000b9376000000000000000000000000000000000000000000020000000000000001"], 0xfc}, 0x1, 0x0, 0x0, 0x24008040}, 0x20040000)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
socket$inet6(0xa, 0x6, 0x8000003)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x4e3, &(0x7f0000000480)={0x0, 0x938c, 0x10100, 0x0, 0x0, 0x0, r3}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r4, 0xeb5, 0x49e3, 0x0, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="600000000206010100000000000000000100ffff14000780080012400000000508000b400000cd200500010006000000050005000a00000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x60}, 0x1, 0x0, 0x0, 0x20000851}, 0x40008044)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'trusted:', 'syz', 0x20, 0xe8c}, 0x2d, 0xfffffffffffffff9)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
r7 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)
connect$inet(r7, &(0x7f0000000200)={0x2, 0x4e22, @local}, 0x10)
sendmmsg$inet(r7, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}, 0x700}], 0x40000cf, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000002a00)='./file0\x00', 0x40, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)

322.487828ms ago: executing program 2 (id=4415):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
close(r1)
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000600))
r2 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r2, 0x2000)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
munlockall() (fail_nth: 1)

168.135962ms ago: executing program 5 (id=4416):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
io_uring_setup(0x35fc, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x161})
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x1d, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000003900000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mremap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000003000/0x2000)=nil)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r3 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_GET_SYSNAME(r4, 0x8040552c, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r5=>0xffffffffffffffff})
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
ioctl$FIDEDUPERANGE(r5, 0xc0189436, &(0x7f00000005c0)=ANY=[])
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='pids.events\x00', 0x275a, 0x0)
write$UHID_CREATE2(r7, &(0x7f0000000180)=ANY=[@ANYRES64=r6], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r7, 0x0)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r8, 0x0, 0x40, &(0x7f0000000000)=@nat={'nat\x00', 0x670, 0x5, 0x348, 0x0, 0x0, 0xfeffffff, 0x210, 0xa4, 0x2b4, 0x2b4, 0xffffffff, 0x2b4, 0x2b4, 0x5, 0x0, {[{{@ip={@broadcast, @local, 0x0, 0x0, '\x00', 'geneve0\x00'}, 0x0, 0x70, 0xa4}, @SNAT0={0x34, 'SNAT\x00', 0x0, {0x1, {0x0, @multicast1, @remote, @gre_key, @gre_key}}}}, {{@ip={@private, @broadcast, 0x0, 0xff, 'pimreg0\x00', 'syzkaller0\x00'}, 0x0, 0xa4, 0xc8, 0x0, {0x0, 0x7}, [@common=@unspec=@devgroup={{0x34}, {0x1}}]}, @common=@unspec=@STANDARD={0x24, '\x00', 0x0, 0x210}}, {{@uncond, 0x0, 0x70, 0xa4}, @SNAT0={0x34, 'SNAT\x00', 0x0, {0x1, {0x0, @loopback, @local, @gre_key, @gre_key}}}}, {{@uncond, 0x0, 0x70, 0xa4}, @common=@inet=@SET3={0x34, 'SET\x00', 0x3, {{0x0, 0x0, 0x6}, {0x0, 0x4}, {0x0, 0x1, 0x5}, 0x23f5, 0xfffffcbc}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x3a4)
ioctl$CDROM_MEDIA_CHANGED(r7, 0x5325, 0x80000001)
close(r3)
r9 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETFB2(r9, 0xc06864ce, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, [], [], [0x0, 0x9], [0x0, 0x0, 0x1]})
r10 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r10, 0x2000)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
munlockall()

12.886467ms ago: executing program 3 (id=4417):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)

12.227976ms ago: executing program 3 (id=4418):
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socket$unix(0x1, 0x1, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = memfd_create(&(0x7f0000000500)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85l\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~7\x16\x02\x00(v\xe6`\"6\xfcgC\xb5\xf0\x13.zj\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x82\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F', 0x1)
execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
bind$unix(r0, &(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000080)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x408c0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0x50)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r6, 0x29, 0x33, 0x0, 0x0)
r7 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0x2a382)
r8 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x1)
ioctl$LOOP_CHANGE_FD(r7, 0x4c00, r8)
ioctl$LOOP_SET_STATUS(r7, 0x4c02, &(0x7f0000000200)={0x0, {}, 0x0, {}, 0x0, 0x0, 0x1, 0x9, "eeddb7c25540993ad642248c7b0157ce0dc9b4e500476312cd6cb416f686ce0058265f66cdddf2e9ce8bb87ae03e87a61fb648d5c6a3e9977956be87176a30a9", "a863a5170a11d26a730cb3d1e9fb18cb0e58986d58e881bbe5e4230de84eea7a", [0x3, 0x800]})
socket$nl_route(0x10, 0x3, 0x0)
r9 = syz_genetlink_get_family_id$fou(0x0, r5)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, &(0x7f0000000400))
sendmsg$FOU_CMD_DEL(r2, &(0x7f0000000500)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x14, r9, 0x100, 0x70bd25, 0x25dfdbfb}, 0x14}}, 0x24000040)

11.795916ms ago: executing program 5 (id=4419):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TCFLSH(r1, 0x40045436, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000008600)={0x44, 0x2, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0xfffc}, [@IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-ssse3\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched_retired(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000011c0)={0x0}}, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0x20, &(0x7f0000000300)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}}, 0x0, 0x0, 0xd, 0x0, "50e482af8a3b3953d7d2ddc26f6d7fcfdcef78b3bb7ca71d37000667e0b8dd3a89446b04761c340f273410ad620a1d1d1e8e3d5d07cb37da86503ff8eadd32f0fc9a56bcd7a401a991c216437633b722"}, 0xd8)
r6 = io_uring_setup(0x25e, &(0x7f0000000080))
io_uring_register$IORING_UNREGISTER_RING_FDS(r6, 0x1b, &(0x7f00000042c0), 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, 0x0, 0x4000050)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff, @void, @value}, 0x94)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='8\x00\x00\x00\n'], 0x38}, 0x1, 0x0, 0x0, 0x10048047}, 0x4000050)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @local, 0xafdd}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000100), 0x4)
syz_open_dev$mouse(&(0x7f0000000180), 0x2, 0x20040)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x4, @remote, 0xb}, 0x1c)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newlink={0x4c, 0x10, 0x801, 0xfffffffd, 0x0, {}, [@IFLA_GROUP={0x8}, @IFLA_AF_SPEC={0x8, 0x1a, 0x0, 0x1, [@AF_INET6={0x4, 0x2d}]}, @IFLA_OPERSTATE={0x5, 0x10, 0x6}, @IFLA_MTU={0x8, 0x4, 0x3ff}, @IFLA_BROADCAST={0xa, 0x2, @multicast}]}, 0x4c}, 0x1, 0x0, 0x0, 0x44000}, 0x0)

0s ago: executing program 5 (id=4420):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESOCT], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0x9, &(0x7f0000000140)={0x4, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_buf(r4, 0x6, 0x1a, &(0x7f0000000300)=""/106, &(0x7f0000000280)=0x6a)
fgetxattr(0xffffffffffffffff, &(0x7f0000000000)=@known='system.sockprotoname\x00', &(0x7f0000000080)=""/237, 0xed)
bind$inet(r3, 0x0, 0x0)
connect$inet(r3, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
r5 = syz_open_procfs(r0, &(0x7f0000000580)='clear_refs\x00')
writev(r5, &(0x7f00000002c0)=[{0x0}], 0x1)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="3400000066d405cbbc881c8c851437a2fa3556450b0d86c79437e3", @ANYRES16=r7, @ANYBLOB="010028bd7000fbdbdf2505000000200001800d0001007564703a73797a32000000000c00028008000400ef430000"], 0x34}, 0x1, 0x0, 0x0, 0x48c05}, 0x4040140)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r6, &(0x7f0000000480)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000440)={&(0x7f0000000cc0)=ANY=[], 0x288}, 0x1, 0x0, 0x0, 0x8295aac7ea61552c}, 0x0)
getsockopt$inet_int(r5, 0x0, 0x14, &(0x7f00000003c0), &(0x7f00000004c0)=0x4)
mount(&(0x7f0000000040)=@nullb, &(0x7f0000000100)='.\x00', &(0x7f0000002280)='vxfs\x00', 0x8000, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfffe7e)
fsopen(0x0, 0x0)

kernel console output (not intermixed with test programs):

] type 2 family 0 port 6081 - 0
[  884.770673][T21169] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  885.072558][    T9] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  885.222691][    T9] usb 9-1: Using ep0 maxpacket: 8
[  885.228848][    T9] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  885.233188][    T9] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  885.237052][    T9] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  885.241200][    T9] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  885.247726][    T9] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  885.256586][    T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  885.344207][T21216] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  885.390586][T21217] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  885.417367][T21216] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  885.445529][T21219] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3974'.
[  885.458267][T21217] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  885.467228][    T9] usb 9-1: GET_CAPABILITIES returned 0
[  885.469215][    T9] usbtmc 9-1:16.0: can't read capabilities
[  885.500062][T21216] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  885.568118][T21217] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  885.635538][T21216] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  885.684468][    C0] usbtmc 9-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  885.684572][T21217] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  885.688188][    C0] usbtmc 9-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  885.695307][    C0] usbtmc 9-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  885.698964][    C0] usbtmc 9-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  885.707201][    T9] usb 9-1: USB disconnect, device number 2
[  885.764666][T21216] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  885.778213][T21216] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  885.839931][T21216] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  885.857202][T21216] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  886.339935][T21217] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  886.358284][T21217] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  886.370476][T21217] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  886.381983][T21217] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  886.532444][T21233] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3977'.
[  886.692412][   T40] audit: type=1326 audit(1746936009.381:2416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21230 comm="syz.1.3978" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  886.704795][   T40] audit: type=1326 audit(1746936009.391:2417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21230 comm="syz.1.3978" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  886.718346][   T40] audit: type=1326 audit(1746936009.391:2418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21230 comm="syz.1.3978" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  886.728139][   T40] audit: type=1326 audit(1746936009.401:2419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21230 comm="syz.1.3978" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  886.735700][   T40] audit: type=1326 audit(1746936009.401:2420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21230 comm="syz.1.3978" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  886.742877][   T40] audit: type=1326 audit(1746936009.411:2421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21230 comm="syz.1.3978" exe="/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  886.749715][   T40] audit: type=1326 audit(1746936009.411:2422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21230 comm="syz.1.3978" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  886.756831][   T40] audit: type=1326 audit(1746936009.411:2423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21230 comm="syz.1.3978" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  886.835531][T21241] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  886.983381][T21241] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  887.147394][   T40] audit: type=1804 audit(1746936009.841:2424): pid=21245 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3988" name="/newroot/453/file0" dev="tmpfs" ino=2399 res=1 errno=0
[  887.160612][T21245] ref_ctr_offset mismatch. inode: 0x95f offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xc
[  887.164415][T21245] ref_ctr going negative. vaddr: 0x80ffc002, curr val: 0, delta: -1
[  887.166956][T21245] ref_ctr decrement failed for inode: 0x95f offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff88804c399e00
[  887.170688][T21245] uprobe: syz.3.3988:21245 failed to unregister, leaking uprobe
[  887.191007][T21241] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  887.265362][T21241] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  887.564869][T21252] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3983'.
[  888.182582][T13732] usb 8-1: new high-speed USB device number 25 using dummy_hcd
[  888.342654][T13732] usb 8-1: Using ep0 maxpacket: 8
[  888.347687][T13732] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  888.350592][T13732] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  888.352271][T21271] FAULT_INJECTION: forcing a failure.
[  888.352271][T21271] name failslab, interval 1, probability 0, space 0, times 0
[  888.353709][T13732] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  888.359322][T21271] CPU: 2 UID: 0 PID: 21271 Comm: syz.4.3990 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  888.359344][T21271] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  888.359355][T21271] Call Trace:
[  888.359361][T21271]  <TASK>
[  888.359368][T21271]  dump_stack_lvl+0x16c/0x1f0
[  888.359395][T21271]  should_fail_ex+0x512/0x640
[  888.359418][T21271]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  888.359441][T21271]  should_failslab+0xc2/0x120
[  888.359461][T21271]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  888.359480][T21271]  ? __alloc_skb+0x2b2/0x380
[  888.359502][T21271]  __alloc_skb+0x2b2/0x380
[  888.359519][T21271]  ? __pfx___alloc_skb+0x10/0x10
[  888.359540][T21271]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  888.359566][T21271]  netlink_alloc_large_skb+0x69/0x130
[  888.359589][T21271]  netlink_sendmsg+0x6a1/0xdd0
[  888.359614][T21271]  ? __pfx_netlink_sendmsg+0x10/0x10
[  888.359637][T21271]  ? __import_iovec+0x1c8/0x660
[  888.359668][T21271]  ____sys_sendmsg+0xa95/0xc70
[  888.359691][T21271]  ? __pfx_____sys_sendmsg+0x10/0x10
[  888.359721][T21271]  ? get_compat_msghdr+0x11a/0x170
[  888.359769][T21271]  ___sys_sendmsg+0x134/0x1d0
[  888.359789][T21271]  ? __pfx____sys_sendmsg+0x10/0x10
[  888.359836][T21271]  __sys_sendmsg+0x16d/0x220
[  888.359856][T21271]  ? __pfx___sys_sendmsg+0x10/0x10
[  888.359881][T21271]  ? rcu_is_watching+0x12/0xc0
[  888.359897][T21271]  ? rcu_is_watching+0x12/0xc0
[  888.359917][T21271]  __do_fast_syscall_32+0x73/0x120
[  888.359940][T21271]  do_fast_syscall_32+0x32/0x80
[  888.359964][T21271]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  888.359983][T21271] RIP: 0023:0xf709e579
[  888.359996][T21271] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  888.360013][T21271] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  888.360030][T21271] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000240
[  888.360039][T21271] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  888.360050][T21271] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  888.360059][T21271] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  888.360068][T21271] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  888.360091][T21271]  </TASK>
[  888.431953][T13732] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  888.435945][T13732] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  888.438680][T13732] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  888.652058][T13732] usb 8-1: GET_CAPABILITIES returned 0
[  888.653971][T13732] usbtmc 8-1:16.0: can't read capabilities
[  888.852992][    C3] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  888.855912][    C3] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  888.858729][    C3] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  888.861527][    C3] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  888.867125][T13732] usb 8-1: USB disconnect, device number 25
[  889.292223][T21241] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  889.300877][T21241] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  889.326181][T21241] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  889.339693][T21241] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  889.574772][   T40] audit: type=1804 audit(1746936012.271:2425): pid=21296 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.3994" name="/newroot/152/file0" dev="tmpfs" ino=810 res=1 errno=0
[  889.593822][T21296] ref_ctr_offset mismatch. inode: 0x32a offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xc
[  889.598745][T21296] ref_ctr going negative. vaddr: 0x80ffc002, curr val: 0, delta: -1
[  889.601980][T21296] ref_ctr decrement failed for inode: 0x32a offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff888077ec0000
[  889.605652][T21296] uprobe: syz.4.3994:21296 failed to unregister, leaking uprobe
[  889.613617][T21297] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  889.642617][   T66] usb 8-1: new high-speed USB device number 26 using dummy_hcd
[  889.677213][T21297] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  889.792686][   T66] usb 8-1: Using ep0 maxpacket: 8
[  889.797142][   T66] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  889.800215][   T66] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  889.803312][   T66] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  889.806464][   T66] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  889.810466][   T66] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  889.813317][   T66] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  889.846730][T21297] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  889.907790][T21297] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  889.976151][T21297] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  889.984234][T21297] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  889.991038][T21297] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  889.997915][T21297] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  890.022067][   T66] usb 8-1: GET_CAPABILITIES returned 0
[  890.023875][   T66] usbtmc 8-1:16.0: can't read capabilities
[  890.224364][    C3] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  890.227965][    C3] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  890.230753][    C3] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  890.233563][    C3] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  890.241372][    T9] usb 8-1: USB disconnect, device number 26
[  890.882782][T21313] netlink: 'syz.1.4001': attribute type 11 has an invalid length.
[  890.885451][T21313] netlink: 'syz.1.4001': attribute type 11 has an invalid length.
[  890.887938][T21313] netlink: 224 bytes leftover after parsing attributes in process `syz.1.4001'.
[  890.890753][T21314] netlink: 'syz.1.4001': attribute type 11 has an invalid length.
[  890.893942][T21314] netlink: 'syz.1.4001': attribute type 11 has an invalid length.
[  890.896406][T21314] netlink: 224 bytes leftover after parsing attributes in process `syz.1.4001'.
[  891.012620][T13732] usb 8-1: new low-speed USB device number 27 using dummy_hcd
[  891.174514][T13732] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  891.177519][T13732] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  891.181723][T13732] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  891.187044][T13732] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  891.191494][T13732] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  891.197576][T13732] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  891.200708][T13732] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  891.205395][T13732] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  891.210256][T13732] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  891.215254][T13732] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  891.220889][T13732] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[  891.224541][T13732] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  891.228676][T13732] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  891.233932][T13732] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  891.239294][T13732] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  891.252386][T13732] usb 8-1: string descriptor 0 read error: -22
[  891.255555][T13732] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  891.259373][T13732] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  891.272060][T13732] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  892.092745][  T838] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  892.262677][  T838] usb 6-1: Using ep0 maxpacket: 8
[  892.265765][  T838] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  892.268838][  T838] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  892.272973][  T838] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  892.290409][  T838] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  892.295344][  T838] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  892.298351][  T838] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  892.510929][  T838] usb 6-1: GET_CAPABILITIES returned 0
[  892.513328][  T838] usbtmc 6-1:16.0: can't read capabilities
[  892.715208][  T838] usb 6-1: USB disconnect, device number 23
[  893.424069][T21344] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  893.486060][T21344] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  893.549596][T21344] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  893.609895][T21344] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  893.780961][T21344] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  893.792364][T21344] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  893.808633][T21344] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  893.823421][T21344] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  894.612348][   T40] audit: type=1326 audit(1746936017.301:2426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21353 comm="syz.4.4015" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  894.626206][   T40] audit: type=1326 audit(1746936017.311:2427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21353 comm="syz.4.4015" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  894.636651][   T40] audit: type=1326 audit(1746936017.311:2428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21353 comm="syz.4.4015" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf709e579 code=0x7ffc0000
[  894.646652][   T40] audit: type=1326 audit(1746936017.311:2429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21353 comm="syz.4.4015" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  894.654455][   T40] audit: type=1326 audit(1746936017.321:2430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21353 comm="syz.4.4015" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  894.661534][   T40] audit: type=1326 audit(1746936017.321:2431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21353 comm="syz.4.4015" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf709e579 code=0x7ffc0000
[  894.669659][   T40] audit: type=1326 audit(1746936017.321:2432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21353 comm="syz.4.4015" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  894.677521][   T40] audit: type=1326 audit(1746936017.321:2433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21353 comm="syz.4.4015" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  895.554481][  T838] usb 8-1: USB disconnect, device number 27
[  895.930037][T21381] lo speed is unknown, defaulting to 1000
[  896.375224][T21381] lo speed is unknown, defaulting to 1000
[  897.233752][T21405] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  897.324522][   T40] audit: type=1326 audit(1746936020.021:2434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21399 comm="syz.3.4027" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  897.331971][   T40] audit: type=1326 audit(1746936020.021:2435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21399 comm="syz.3.4027" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e579 code=0x7ffc0000
[  897.380019][T21405] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  897.435229][T21405] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  897.478572][T21405] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  897.596072][T21405] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  897.605414][T21405] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  897.622932][T21405] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  897.634902][T21405] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  898.251955][T21414] lo speed is unknown, defaulting to 1000
[  898.496960][T21414] lo speed is unknown, defaulting to 1000
[  899.232608][T14499] usb 8-1: new high-speed USB device number 28 using dummy_hcd
[  899.393620][T14499] usb 8-1: Using ep0 maxpacket: 16
[  899.396764][T14499] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  899.400436][T14499] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  899.406089][T14499] usb 8-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  899.409049][T14499] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  899.409061][T14499] usb 8-1: Product: syz
[  899.409068][T14499] usb 8-1: Manufacturer: syz
[  899.409075][T14499] usb 8-1: SerialNumber: syz
[  899.414282][T14499] usb 8-1: config 0 descriptor??
[  899.629516][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  899.629525][   T40] audit: type=1326 audit(1746936022.321:2442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21439 comm="syz.1.4037" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  899.638309][   T40] audit: type=1326 audit(1746936022.321:2443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21439 comm="syz.1.4037" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  899.646746][   T40] audit: type=1326 audit(1746936022.331:2444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21439 comm="syz.1.4037" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  899.653634][   T40] audit: type=1326 audit(1746936022.331:2445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21439 comm="syz.1.4037" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  899.660347][   T40] audit: type=1326 audit(1746936022.341:2446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21439 comm="syz.1.4037" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  899.660370][   T40] audit: type=1326 audit(1746936022.341:2447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21439 comm="syz.1.4037" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  899.660390][   T40] audit: type=1326 audit(1746936022.341:2448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21439 comm="syz.1.4037" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  899.686275][T14499] appledisplay 8-1:0.0: Error while getting initial brightness: -110
[  899.688598][T14499] appledisplay 8-1:0.0: probe with driver appledisplay failed with error -110
[  899.721344][T14499] usb 8-1: USB disconnect, device number 28
[  899.897375][T21450] lo speed is unknown, defaulting to 1000
[  900.067258][T21450] lo speed is unknown, defaulting to 1000
[  900.345197][T21460] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  900.492069][T21460] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  900.689719][T21460] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  900.744557][T21467] lo speed is unknown, defaulting to 1000
[  900.887379][T21460] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  900.991862][   T40] audit: type=1326 audit(1746936023.681:2449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21470 comm="syz.2.4045" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  901.000506][   T40] audit: type=1326 audit(1746936023.691:2450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21470 comm="syz.2.4045" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  901.007566][   T40] audit: type=1326 audit(1746936023.691:2451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21470 comm="syz.2.4045" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf711e579 code=0x7ffc0000
[  901.031110][T21467] lo speed is unknown, defaulting to 1000
[  901.136237][T21460] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  901.142473][T21460] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  901.148910][T21460] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  901.157643][T21460] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  901.495087][T21479] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  901.556145][T21479] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  901.606406][T21479] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  901.667404][T21479] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  901.782196][T21479] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  901.790692][T21479] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  901.799547][T21479] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  901.810425][T21479] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  901.935446][T21490] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  901.981753][T21491] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4049'.
[  902.014095][T21490] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  902.099080][T21490] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  902.193639][T21490] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  902.355992][T21490] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  902.364934][T21490] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  902.372101][T21490] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  902.379378][T21490] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  902.552610][  T838] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  902.722668][  T838] usb 9-1: Using ep0 maxpacket: 16
[  902.728403][  T838] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87
[  902.733000][  T838] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  902.739914][  T838] usb 9-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89
[  902.743319][  T838] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  902.755459][  T838] usb 9-1: Product: syz
[  902.756884][  T838] usb 9-1: Manufacturer: syz
[  902.758341][  T838] usb 9-1: SerialNumber: syz
[  902.763671][  T838] usb 9-1: config 0 descriptor??
[  903.043296][  T838] appledisplay 9-1:0.0: Error while getting initial brightness: -110
[  903.046863][  T838] appledisplay 9-1:0.0: probe with driver appledisplay failed with error -110
[  903.062224][T21505] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4053'.
[  903.063954][  T838] usb 9-1: USB disconnect, device number 3
[  903.490613][T21513] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4054'.
[  903.885281][T21528] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  903.969454][T21528] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  904.054103][T21528] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  904.123730][T21528] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  904.130066][T21532] lo speed is unknown, defaulting to 1000
[  904.189821][T21528] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  904.197849][T21528] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  904.206297][T21528] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  904.214604][T21528] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  904.442261][T21532] lo speed is unknown, defaulting to 1000
[  904.547232][T21541] FAULT_INJECTION: forcing a failure.
[  904.547232][T21541] name failslab, interval 1, probability 0, space 0, times 0
[  904.551292][T21541] CPU: 2 UID: 0 PID: 21541 Comm: syz.2.4062 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  904.551317][T21541] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  904.551324][T21541] Call Trace:
[  904.551328][T21541]  <TASK>
[  904.551333][T21541]  dump_stack_lvl+0x16c/0x1f0
[  904.551351][T21541]  should_fail_ex+0x512/0x640
[  904.551365][T21541]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  904.551379][T21541]  should_failslab+0xc2/0x120
[  904.551391][T21541]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  904.551402][T21541]  ? __alloc_skb+0x2b2/0x380
[  904.551416][T21541]  __alloc_skb+0x2b2/0x380
[  904.551426][T21541]  ? __pfx___alloc_skb+0x10/0x10
[  904.551435][T21541]  ? __handle_mm_fault+0x1010/0x2a40
[  904.551447][T21541]  ? __handle_mm_fault+0x4af/0x2a40
[  904.551461][T21541]  alloc_skb_with_frags+0xe0/0x860
[  904.551486][T21541]  sock_alloc_send_pskb+0x7fb/0x990
[  904.551512][T21541]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  904.551536][T21541]  ? __local_bh_enable_ip+0xa4/0x120
[  904.551579][T21541]  j1939_sk_sendmsg+0x6bc/0x13d0
[  904.551620][T21541]  ? __pfx_j1939_sk_sendmsg+0x10/0x10
[  904.551635][T21541]  ? __import_iovec+0x1c8/0x660
[  904.551654][T21541]  ____sys_sendmsg+0xa95/0xc70
[  904.551670][T21541]  ? __pfx_____sys_sendmsg+0x10/0x10
[  904.551689][T21541]  ? get_compat_msghdr+0x11a/0x170
[  904.551708][T21541]  ? __pfx__kstrtoull+0x10/0x10
[  904.551732][T21541]  ___sys_sendmsg+0x134/0x1d0
[  904.551753][T21541]  ? __pfx____sys_sendmsg+0x10/0x10
[  904.551783][T21541]  ? find_held_lock+0x2b/0x80
[  904.551813][T21541]  __sys_sendmmsg+0x2f9/0x420
[  904.551835][T21541]  ? __pfx___sys_sendmmsg+0x10/0x10
[  904.551861][T21541]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  904.551885][T21541]  ? fput+0x70/0xf0
[  904.551897][T21541]  ? ksys_write+0x1b9/0x240
[  904.551906][T21541]  ? __pfx_ksys_write+0x10/0x10
[  904.551918][T21541]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  904.551930][T21541]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  904.551945][T21541]  __do_fast_syscall_32+0x73/0x120
[  904.551960][T21541]  do_fast_syscall_32+0x32/0x80
[  904.551974][T21541]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  904.551987][T21541] RIP: 0023:0xf711e579
[  904.551995][T21541] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  904.552005][T21541] RSP: 002b:00000000f50ed55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  904.552015][T21541] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080003e40
[  904.552022][T21541] RDX: 00000000fffffe3d RSI: 0000000000000000 RDI: 0000000000000000
[  904.552028][T21541] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  904.552033][T21541] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  904.552039][T21541] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  904.552052][T21541]  </TASK>
[  905.509706][ T6012] lo speed is unknown, defaulting to 1000
[  905.770607][T21562] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4067'.
[  907.377600][T21583] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  907.429878][T21583] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  907.526484][T21583] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  907.618879][T21583] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  907.757654][T21583] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  907.795780][T21596] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4078'.
[  907.801089][T21583] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  907.822220][T21583] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  907.852850][T21583] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  908.068487][T21601] FAULT_INJECTION: forcing a failure.
[  908.068487][T21601] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  908.070878][T21603] FAULT_INJECTION: forcing a failure.
[  908.070878][T21603] name failslab, interval 1, probability 0, space 0, times 0
[  908.072622][T21601] CPU: 0 UID: 0 PID: 21601 Comm: syz.4.4080 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  908.072637][T21601] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  908.072643][T21601] Call Trace:
[  908.072648][T21601]  <TASK>
[  908.072652][T21601]  dump_stack_lvl+0x16c/0x1f0
[  908.072670][T21601]  should_fail_ex+0x512/0x640
[  908.072687][T21601]  _copy_from_user+0x2e/0xd0
[  908.072702][T21601]  snd_pcm_oss_write2+0x1c2/0x410
[  908.072718][T21601]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  908.072732][T21601]  ? snd_pcm_kernel_ioctl+0x267/0x2e0
[  908.072746][T21601]  snd_pcm_oss_write+0x711/0xa10
[  908.072762][T21601]  ? security_file_permission+0x71/0x210
[  908.072783][T21601]  vfs_write+0x25c/0x1180
[  908.072793][T21601]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  908.072810][T21601]  ? __pfx_vfs_write+0x10/0x10
[  908.072818][T21601]  ? find_held_lock+0x2b/0x80
[  908.072829][T21601]  ? __fget_files+0x204/0x3c0
[  908.072845][T21601]  ? __fget_files+0x20e/0x3c0
[  908.072864][T21601]  ksys_write+0x12a/0x240
[  908.072873][T21601]  ? __pfx_ksys_write+0x10/0x10
[  908.072883][T21601]  ? rcu_is_watching+0x12/0xc0
[  908.072895][T21601]  __do_fast_syscall_32+0x73/0x120
[  908.072911][T21601]  do_fast_syscall_32+0x32/0x80
[  908.072925][T21601]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  908.072937][T21601] RIP: 0023:0xf709e579
[  908.072946][T21601] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  908.072956][T21601] RSP: 002b:00000000f506d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  908.072965][T21601] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000500
[  908.072972][T21601] RDX: 000000000000fc36 RSI: 0000000000000000 RDI: 0000000000000000
[  908.072978][T21601] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  908.072983][T21601] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  908.072989][T21601] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  908.073001][T21601]  </TASK>
[  908.139676][T21603] CPU: 3 UID: 0 PID: 21603 Comm: syz.1.4081 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  908.139691][T21603] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  908.139697][T21603] Call Trace:
[  908.139701][T21603]  <TASK>
[  908.139706][T21603]  dump_stack_lvl+0x16c/0x1f0
[  908.139724][T21603]  should_fail_ex+0x512/0x640
[  908.139738][T21603]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  908.139752][T21603]  should_failslab+0xc2/0x120
[  908.139765][T21603]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  908.139776][T21603]  ? __alloc_skb+0x2b2/0x380
[  908.139790][T21603]  __alloc_skb+0x2b2/0x380
[  908.139800][T21603]  ? __pfx___alloc_skb+0x10/0x10
[  908.139811][T21603]  ? aa_label_sk_perm+0x19b/0x5a0
[  908.139823][T21603]  ? process_measurement+0x1e6/0x23e0
[  908.139840][T21603]  tcp_stream_alloc_skb+0x34/0x570
[  908.139856][T21603]  tcp_sendmsg_locked+0xec1/0x3930
[  908.139879][T21603]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  908.139894][T21603]  ? do_raw_spin_lock+0x12c/0x2b0
[  908.139909][T21603]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  908.139927][T21603]  ? __local_bh_enable_ip+0xa4/0x120
[  908.139940][T21603]  tcp_sendmsg+0x2e/0x50
[  908.139953][T21603]  ? __pfx_tcp_sendmsg+0x10/0x10
[  908.139966][T21603]  inet_sendmsg+0xb9/0x140
[  908.139981][T21603]  ____sys_sendmsg+0x973/0xc70
[  908.139994][T21603]  ? f2fs_init_inode_metadata+0x841/0x13f0
[  908.140008][T21603]  ? __pfx_____sys_sendmsg+0x10/0x10
[  908.140021][T21603]  ? get_compat_msghdr+0x11a/0x170
[  908.140034][T21603]  ? __pfx__kstrtoull+0x10/0x10
[  908.140049][T21603]  ___sys_sendmsg+0x134/0x1d0
[  908.140061][T21603]  ? __pfx____sys_sendmsg+0x10/0x10
[  908.140083][T21603]  ? find_held_lock+0x2b/0x80
[  908.140101][T21603]  __sys_sendmmsg+0x2f9/0x420
[  908.140114][T21603]  ? __pfx___sys_sendmmsg+0x10/0x10
[  908.140130][T21603]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  908.140150][T21603]  ? fput+0x70/0xf0
[  908.140162][T21603]  ? ksys_write+0x1b9/0x240
[  908.140171][T21603]  ? __pfx_ksys_write+0x10/0x10
[  908.140183][T21603]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  908.140194][T21603]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  908.140209][T21603]  __do_fast_syscall_32+0x73/0x120
[  908.140224][T21603]  do_fast_syscall_32+0x32/0x80
[  908.140239][T21603]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  908.140252][T21603] RIP: 0023:0xf7fa5579
[  908.140260][T21603] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  908.140270][T21603] RSP: 002b:00000000f50c655c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  908.140280][T21603] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000f40
[  908.140286][T21603] RDX: 0000000000000004 RSI: 0000000004048841 RDI: 0000000000000000
[  908.140292][T21603] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  908.140297][T21603] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  908.140303][T21603] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  908.140315][T21603]  </TASK>
[  908.835884][T21616] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  908.894914][T21618] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4085'.
[  908.907731][T21616] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  908.977276][T21616] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  909.066370][T21616] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  909.147625][T21616] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  909.157613][T21616] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  909.167514][T21616] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  909.177868][T21616] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  909.832227][T21633] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4090'.
[  910.630963][T21646] FAULT_INJECTION: forcing a failure.
[  910.630963][T21646] name failslab, interval 1, probability 0, space 0, times 0
[  910.635259][T21646] CPU: 2 UID: 0 PID: 21646 Comm: syz.4.4095 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  910.635273][T21646] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  910.635279][T21646] Call Trace:
[  910.635284][T21646]  <TASK>
[  910.635288][T21646]  dump_stack_lvl+0x16c/0x1f0
[  910.635307][T21646]  should_fail_ex+0x512/0x640
[  910.635322][T21646]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[  910.635336][T21646]  should_failslab+0xc2/0x120
[  910.635348][T21646]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[  910.635359][T21646]  ? __alloc_skb+0x2b2/0x380
[  910.635372][T21646]  __alloc_skb+0x2b2/0x380
[  910.635383][T21646]  ? __pfx___alloc_skb+0x10/0x10
[  910.635392][T21646]  ? __handle_mm_fault+0x1010/0x2a40
[  910.635404][T21646]  ? __handle_mm_fault+0x4af/0x2a40
[  910.635415][T21646]  alloc_skb_with_frags+0xe0/0x860
[  910.635432][T21646]  sock_alloc_send_pskb+0x7fb/0x990
[  910.635447][T21646]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  910.635461][T21646]  ? __local_bh_enable_ip+0xa4/0x120
[  910.635475][T21646]  j1939_sk_sendmsg+0x6bc/0x13d0
[  910.635493][T21646]  ? __pfx_j1939_sk_sendmsg+0x10/0x10
[  910.635503][T21646]  ? __import_iovec+0x1c8/0x660
[  910.635521][T21646]  ____sys_sendmsg+0xa95/0xc70
[  910.635558][T21646]  ? __pfx_____sys_sendmsg+0x10/0x10
[  910.635576][T21646]  ? get_compat_msghdr+0x11a/0x170
[  910.635589][T21646]  ? __pfx__kstrtoull+0x10/0x10
[  910.635603][T21646]  ___sys_sendmsg+0x134/0x1d0
[  910.635615][T21646]  ? __pfx____sys_sendmsg+0x10/0x10
[  910.635633][T21646]  ? find_held_lock+0x2b/0x80
[  910.635652][T21646]  __sys_sendmmsg+0x2f9/0x420
[  910.635665][T21646]  ? __pfx___sys_sendmmsg+0x10/0x10
[  910.635680][T21646]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  910.635701][T21646]  ? fput+0x70/0xf0
[  910.635713][T21646]  ? ksys_write+0x1b9/0x240
[  910.635722][T21646]  ? __pfx_ksys_write+0x10/0x10
[  910.635738][T21646]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[  910.635750][T21646]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  910.635765][T21646]  __do_fast_syscall_32+0x73/0x120
[  910.635780][T21646]  do_fast_syscall_32+0x32/0x80
[  910.635795][T21646]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  910.635807][T21646] RIP: 0023:0xf709e579
[  910.635816][T21646] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  910.635826][T21646] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[  910.635835][T21646] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080003e40
[  910.635842][T21646] RDX: 00000000fffffe3d RSI: 0000000000000000 RDI: 0000000000000000
[  910.635848][T21646] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  910.635853][T21646] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  910.635859][T21646] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  910.635871][T21646]  </TASK>
[  910.651006][T21644] lo speed is unknown, defaulting to 1000
[  911.191945][T21652] lo speed is unknown, defaulting to 1000
[  911.360946][T21644] lo speed is unknown, defaulting to 1000
[  911.596805][T21652] lo speed is unknown, defaulting to 1000
[  912.292714][   T40] kauditd_printk_skb: 13 callbacks suppressed
[  912.292726][   T40] audit: type=1800 audit(1746936034.981:2465): pid=21668 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.1.4100" name="/newroot/427/file0" dev="tmpfs" ino=2256 res=0 errno=0
[  912.390205][T21683] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  912.480673][T21687] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4101'.
[  912.489393][   T40] audit: type=1804 audit(1746936035.181:2466): pid=21686 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.4103" name="/newroot/428/file0" dev="tmpfs" ino=2263 res=1 errno=0
[  912.490796][T21686] ref_ctr going negative. vaddr: 0x80ffc002, curr val: -29824, delta: 1
[  912.500074][T21686] ref_ctr increment failed for inode: 0x8d7 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff88804c39b200
[  912.518364][T21686] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4103'.
[  912.719804][T21683] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  912.820926][T21683] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  912.889580][T21683] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  913.074192][T21683] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  913.105886][T21683] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  913.121379][T21683] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  913.129791][T21683] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  914.859106][T21699] lo speed is unknown, defaulting to 1000
[  915.130913][T21699] lo speed is unknown, defaulting to 1000
[  915.266470][T21710] ubi: mtd0 is already attached to ubi31
[  915.464439][T21716] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  915.555612][T21716] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  915.625140][T21716] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  915.665858][T21716] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  915.913635][T21716] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  915.921102][T21716] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  915.930388][T21716] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  915.936784][T21716] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  917.250972][T21732] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4114'.
[  917.445159][T21733] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4115'.
[  918.002114][T21741] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4117'.
[  918.190074][   T40] audit: type=1326 audit(1746936040.881:2467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21742 comm="syz.1.4118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  918.201748][   T40] audit: type=1326 audit(1746936040.891:2468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21742 comm="syz.1.4118" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  918.208946][   T40] audit: type=1326 audit(1746936040.891:2469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21742 comm="syz.1.4118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  918.222564][   T40] audit: type=1326 audit(1746936040.891:2470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21742 comm="syz.1.4118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  918.229388][   T40] audit: type=1326 audit(1746936040.891:2471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21742 comm="syz.1.4118" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  918.237192][   T40] audit: type=1326 audit(1746936040.891:2472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21742 comm="syz.1.4118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  918.244308][   T40] audit: type=1326 audit(1746936040.891:2473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21742 comm="syz.1.4118" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  918.890654][T21751] lo speed is unknown, defaulting to 1000
[  919.677313][T21751] lo speed is unknown, defaulting to 1000
[  920.103961][  T838] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  920.225274][   T40] audit: type=1326 audit(1746936042.921:2474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21773 comm="syz.4.4126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  920.234109][   T40] audit: type=1326 audit(1746936042.921:2475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21773 comm="syz.4.4126" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  920.243077][   T40] audit: type=1326 audit(1746936042.931:2476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21773 comm="syz.4.4126" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf709e579 code=0x7ffc0000
[  920.262720][  T838] usb 6-1: Using ep0 maxpacket: 8
[  920.267440][  T838] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  920.270969][  T838] usb 6-1: config 0 has no interface number 0
[  920.274267][  T838] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  920.278894][  T838] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  920.285277][  T838] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  920.289976][  T838] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  920.295693][  T838] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  920.299344][  T838] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  920.305241][  T838] usb 6-1: config 0 descriptor??
[  920.316191][  T838] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  920.437798][T13732] lo speed is unknown, defaulting to 1000
[  921.017104][T21788] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  921.120688][T21793] nvme_fabrics: missing parameter 'transport=%s'
[  921.123336][T21793] nvme_fabrics: missing parameter 'nqn=%s'
[  921.480033][T21803] lo speed is unknown, defaulting to 1000
[  921.746502][T21818] FAULT_INJECTION: forcing a failure.
[  921.746502][T21818] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  921.751032][T21818] CPU: 2 UID: 0 PID: 21818 Comm: syz.4.4139 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  921.751047][T21818] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  921.751053][T21818] Call Trace:
[  921.751057][T21818]  <TASK>
[  921.751061][T21818]  dump_stack_lvl+0x16c/0x1f0
[  921.751080][T21818]  should_fail_ex+0x512/0x640
[  921.751111][T21818]  _copy_from_user+0x2e/0xd0
[  921.751128][T21818]  snd_pcm_oss_write2+0x1c2/0x410
[  921.751144][T21818]  ? __pfx_snd_pcm_oss_write2+0x10/0x10
[  921.751157][T21818]  ? snd_pcm_kernel_ioctl+0x267/0x2e0
[  921.751172][T21818]  snd_pcm_oss_write+0x711/0xa10
[  921.751187][T21818]  ? security_file_permission+0x71/0x210
[  921.751205][T21818]  vfs_write+0x25c/0x1180
[  921.751214][T21818]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  921.751231][T21818]  ? __pfx_vfs_write+0x10/0x10
[  921.751239][T21818]  ? find_held_lock+0x2b/0x80
[  921.751250][T21818]  ? __fget_files+0x204/0x3c0
[  921.751267][T21818]  ? __fget_files+0x20e/0x3c0
[  921.751286][T21818]  ksys_write+0x12a/0x240
[  921.751295][T21818]  ? __pfx_ksys_write+0x10/0x10
[  921.751305][T21818]  ? rcu_is_watching+0x12/0xc0
[  921.751317][T21818]  __do_fast_syscall_32+0x73/0x120
[  921.751333][T21818]  do_fast_syscall_32+0x32/0x80
[  921.751347][T21818]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  921.751359][T21818] RIP: 0023:0xf709e579
[  921.751367][T21818] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  921.751377][T21818] RSP: 002b:00000000f506d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  921.751387][T21818] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000500
[  921.751394][T21818] RDX: 000000000000fc36 RSI: 0000000000000000 RDI: 0000000000000000
[  921.751399][T21818] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  921.751405][T21818] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  921.751411][T21818] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  921.751423][T21818]  </TASK>
[  921.761791][T21803] lo speed is unknown, defaulting to 1000
[  922.598908][  T838] usb 6-1: USB disconnect, device number 24
[  922.602403][  T838] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[  923.085058][T21837] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  923.179345][T21837] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  923.257897][T21840] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4145'.
[  923.277056][T21837] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  923.394005][T21837] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  923.510417][T21848] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  923.568864][T21849] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4148'.
[  923.588636][T21837] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  923.608581][T21848] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  923.619254][T21837] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  923.627316][T21837] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  923.637837][T21837] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  923.666853][T21848] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  923.736727][T21851] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !寿$ûÌÌULÙvy¸ÚØ¢
…D£øUDŒw˜}�z
[  923.798173][T21848] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  923.916954][T21848] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  923.954787][T21848] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  924.104917][T21848] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  924.205987][T21848] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  924.803541][T21886] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4156'.
[  925.261210][T21903] vxcan1 speed is unknown, defaulting to 1000
[  925.263752][T21903] vxcan1 speed is unknown, defaulting to 1000
[  925.266478][T21903] vxcan1 speed is unknown, defaulting to 1000
[  925.368635][T21903] infiniband syz1: set active
[  925.370478][   T65] vxcan1 speed is unknown, defaulting to 1000
[  925.372595][T21903] infiniband syz1: added vxcan1
[  925.395874][T21903] RDS/IB: syz1: added
[  925.397154][T21903] smc: adding ib device syz1 with port count 1
[  925.399035][T21903] smc:    ib device syz1 port 1 has pnetid 
[  925.400990][ T6005] vxcan1 speed is unknown, defaulting to 1000
[  925.405925][T21903] vxcan1 speed is unknown, defaulting to 1000
[  925.528377][T21903] vxcan1 speed is unknown, defaulting to 1000
[  925.663787][T21903] vxcan1 speed is unknown, defaulting to 1000
[  925.728764][T21914] netlink: 48 bytes leftover after parsing attributes in process `syz.1.4164'.
[  925.802040][T21903] vxcan1 speed is unknown, defaulting to 1000
[  926.468415][T21922] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  926.520700][T21922] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  926.586461][T21922] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  926.646281][T21922] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  926.700059][T21922] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  926.714302][T21922] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  926.726041][T21922] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  926.735929][T21922] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  926.925869][T21935] ieee802154 phy0 wpan0: encryption failed: -22
[  926.930705][T21935] afs: Bad value for 'source'
[  927.058999][T21951] program syz.4.4169 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  927.122927][ T1108] ata1.00: exception Emask 0x0 SAct 0x0 SErr 0x0 action 0x0
[  927.126548][ T1108] ata1.00: irq_stat 0x40000000
[  927.128678][ T1108] ata1.00: failed command: ZAC MANAGEMENT OUT
[  927.131061][ T1108] ata1.00: cmd 9f/02:00:00:00:00/00:00:00:00:00/40 tag 0
[  927.131061][ T1108]          res 41/04:00:00:00:00/00:00:00:00:00/40 Emask 0x1 (device error)
[  927.137404][ T1108] ata1.00: status: { DRDY ERR }
[  927.139515][ T1108] ata1.00: error: { ABRT }
[  927.141332][ T1108] ata1.00: device reported invalid CHS sector 0
[  927.213852][T21961] FAULT_INJECTION: forcing a failure.
[  927.213852][T21961] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  927.218055][T21961] CPU: 2 UID: 0 PID: 21961 Comm: syz.3.4181 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  927.218069][T21961] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  927.218076][T21961] Call Trace:
[  927.218080][T21961]  <TASK>
[  927.218084][T21961]  dump_stack_lvl+0x16c/0x1f0
[  927.218102][T21961]  should_fail_ex+0x512/0x640
[  927.218119][T21961]  _copy_to_user+0x32/0xd0
[  927.218136][T21961]  simple_read_from_buffer+0xcb/0x170
[  927.218152][T21961]  proc_fail_nth_read+0x197/0x270
[  927.218167][T21961]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  927.218181][T21961]  ? rw_verify_area+0xcf/0x680
[  927.218195][T21961]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  927.218209][T21961]  vfs_read+0x1de/0xc70
[  927.218220][T21961]  ? __pfx___mutex_lock+0x10/0x10
[  927.218235][T21961]  ? __pfx_vfs_read+0x10/0x10
[  927.218248][T21961]  ? __fget_files+0x20e/0x3c0
[  927.218267][T21961]  ksys_read+0x12a/0x240
[  927.218276][T21961]  ? __pfx_ksys_read+0x10/0x10
[  927.218298][T21961]  ? rcu_is_watching+0x12/0xc0
[  927.218312][T21961]  __do_fast_syscall_32+0x73/0x120
[  927.218328][T21961]  do_fast_syscall_32+0x32/0x80
[  927.218342][T21961]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  927.218354][T21961] RIP: 0023:0xf703e579
[  927.218363][T21961] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  927.218373][T21961] RSP: 002b:00000000f500d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  927.218383][T21961] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f500d620
[  927.218389][T21961] RDX: 000000000000000f RSI: 00000000f73a2ff4 RDI: 0000000000000000
[  927.218395][T21961] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  927.218400][T21961] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  927.218406][T21961] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  927.218419][T21961]  </TASK>
[  927.337248][T14499] IPVS: starting estimator thread 0...
[  927.453711][T21967] IPVS: using max 45 ests per chain, 108000 per kthread
[  927.497400][T21965] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4182'.
[  928.931949][T21995] kAFS: unable to lookup cell '·gâKÔ)ŒkJ¬L+ù˜«}ºŽ	�²Tùˆ/
pbΈ&õ½²åMíÇúK…µ(Þ÷
„|F’kãqº2‡J”$Oæ-7Rè‰kÐE1þÑž
‹LEB{ª®ÐNb�+*ežRM´øšÙòcóÕ\Œj½mÆÔ©«éÔ¿ÁÈúèOŠóÎÀÿtÁ"ÚkêÄkïnè
zÇHKuüø6ÆMySÍH�IU»ÝoÊÊIfô¯ÍõVš›UóŒr&¯ÑÆcúN¡ô<Dñ—¼­[£÷&¸D\q4>¢N§0‰NB£c5?¨ÞÌ7­Œc·#0*èkˆ‘»<ñ9¦mcëLå	0ð7²�뜖ËÖCtÏ’
[  928.931949][T21995] jÕy¥H
ao‹1.¢ºBó$ãµÍã&2²MË0Ì=À`;!ÇdφOëÐéJIìXç!‹ñšJ¨ËŸBvU_Rc?Ÿê'
[  928.954629][   T40] kauditd_printk_skb: 17 callbacks suppressed
[  928.954640][   T40] audit: type=1800 audit(1746936051.651:2494): pid=21992 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.1.4189" name="/newroot/443/file0" dev="tmpfs" ino=2343 res=0 errno=0
[  929.279032][T22009] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4194'.
[  929.914412][ T1108] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[  929.916289][ T1108] ata1: failed to read log page 10h (errno=-5)
[  929.918522][ T1108] ata1.00: exception Emask 0x1 SAct 0x80 SErr 0x0 action 0x0
[  929.921734][ T1108] ata1.00: irq_stat 0x40000000
[  929.924251][ T1108] ata1.00: failed command: WRITE FPDMA QUEUED
[  929.927033][ T1108] ata1.00: cmd 61/18:38:ee:1f:10/00:00:00:00:00/40 tag 7 ncq dma 12288 out
[  929.927033][ T1108]          res 50/00:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[  929.934992][ T1108] ata1.00: status: { DRDY }
[  929.941124][ T1108] ata1.00: configured for UDMA/100
[  929.944042][ T1108] ata1: EH complete
[  930.250022][T22028] ubi: mtd0 is already attached to ubi31
[  930.860080][   T40] audit: type=1326 audit(1746936053.551:2495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22036 comm="syz.2.4202" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  930.872383][   T40] audit: type=1326 audit(1746936053.561:2496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22036 comm="syz.2.4202" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  930.891814][   T40] audit: type=1326 audit(1746936053.561:2497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22036 comm="syz.2.4202" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf711e579 code=0x7ffc0000
[  930.901424][   T40] audit: type=1326 audit(1746936053.561:2498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22036 comm="syz.2.4202" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  930.908739][   T40] audit: type=1326 audit(1746936053.561:2499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22036 comm="syz.2.4202" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  930.917209][   T40] audit: type=1326 audit(1746936053.561:2500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22036 comm="syz.2.4202" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf711e579 code=0x7ffc0000
[  930.924443][   T40] audit: type=1326 audit(1746936053.561:2501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22036 comm="syz.2.4202" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  930.931618][   T40] audit: type=1326 audit(1746936053.561:2502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22036 comm="syz.2.4202" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  930.994834][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  930.996860][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  931.424306][   T40] audit: type=1800 audit(1746936054.121:2503): pid=22051 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.1.4205" name="/newroot/448/file0" dev="tmpfs" ino=2371 res=0 errno=0
[  931.505179][T22057] netlink: 'syz.1.4207': attribute type 10 has an invalid length.
[  932.206102][T22076] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4211'.
[  933.211777][T22095] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  933.267464][T22095] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  933.276520][T22096] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4217'.
[  933.338220][T22095] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  933.424637][T22095] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  933.498379][T22099] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  933.522925][T22095] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  933.579534][T22095] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  933.580203][T22103] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4218'.
[  933.596693][T22105] netlink: 'syz.2.4219': attribute type 10 has an invalid length.
[  933.603463][T22099] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  933.699309][T22105] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4219'.
[  933.702639][T22095] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  933.712668][T22099] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  934.035716][T22116] netlink: 'syz.3.4222': attribute type 10 has an invalid length.
[  934.142985][T22095] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  934.153928][T22099] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  934.294868][T22099] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  934.301378][T22099] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  934.315692][T22099] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  934.322866][T22099] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  934.749429][T22126] rdma_rxe: rxe_newlink: failed to add lo
[  934.999923][T22134] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  935.042608][T14499] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  935.184878][T22140] wg1: entered promiscuous mode
[  935.186580][T22140] wg1: entered allmulticast mode
[  935.195311][T14499] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  935.198684][T14499] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  935.201703][T14499] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  935.204724][T14499] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  935.214506][T22126] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  935.220390][T14499] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  935.423994][T14499] usb 7-1: USB disconnect, device number 15
[  935.761602][T22151] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4230'.
[  936.390246][T22168] xt_CT: No such helper "snmp_trap"
[  936.401700][T22168] binder: 22167:22168 ioctl c00c9207 80001a80 returned -22
[  936.407497][T22168] binder: 22167:22168 ioctl 5441 400 returned -22
[  936.611328][T22171] can0: slcan on ttyS3.
[  936.709430][T22179] netlink: 'syz.3.4235': attribute type 10 has an invalid length.
[  936.832879][T22174] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4235'.
[  936.947855][T22184] xt_TCPMSS: Only works on TCP SYN packets
[  937.221086][T22190] netlink: 'syz.2.4237': attribute type 10 has an invalid length.
[  937.350744][T22195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4237'.
[  937.385160][T22201] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4238'.
[  938.212747][T22207] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  938.259152][T22189] can0 (unregistered): slcan off ttyS3.
[  938.262264][T22215] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4239'.
[  938.368930][T22207] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  938.426708][T22207] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  938.507783][T22207] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  938.585418][T22207] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  938.591866][T22207] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  938.603649][T22207] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  938.610329][T22207] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  940.722905][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  940.722922][   T40] audit: type=1326 audit(1746936063.421:2513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22271 comm="syz.3.4250" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703e579 code=0x0
[  940.825987][T22273] syzkaller0: entered promiscuous mode
[  940.827983][T22273] syzkaller0: entered allmulticast mode
[  940.916196][T22276] fuse: Unknown parameter 'Oÿ'
[  941.251445][   T40] audit: type=1800 audit(1746936063.941:2514): pid=22281 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.1.4253" name="/newroot/460/file0" dev="tmpfs" ino=2433 res=0 errno=0
[  941.334823][T22286] netlink: 72 bytes leftover after parsing attributes in process `syz.4.4252'.
[  941.520583][T22291] ptrace attach of "/syz-executor exec"[15125] was attempted by "/syz-executor exec"[22291]
[  942.299092][T22297] FAULT_INJECTION: forcing a failure.
[  942.299092][T22297] name failslab, interval 1, probability 0, space 0, times 0
[  942.306736][T22297] CPU: 1 UID: 0 PID: 22297 Comm: syz.4.4256 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  942.306775][T22297] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  942.306786][T22297] Call Trace:
[  942.306791][T22297]  <TASK>
[  942.306798][T22297]  dump_stack_lvl+0x16c/0x1f0
[  942.306846][T22297]  should_fail_ex+0x512/0x640
[  942.306875][T22297]  ? __kmalloc_noprof+0xbf/0x510
[  942.306896][T22297]  ? kstrdup_quotable+0xc2/0x190
[  942.306913][T22297]  should_failslab+0xc2/0x120
[  942.306935][T22297]  __kmalloc_noprof+0xd2/0x510
[  942.306961][T22297]  kstrdup_quotable+0xc2/0x190
[  942.306979][T22297]  ? __pfx_kstrdup_quotable+0x10/0x10
[  942.306999][T22297]  ? get_cmdline+0x86/0x380
[  942.307029][T22297]  kstrdup_quotable_cmdline+0x127/0x210
[  942.307051][T22297]  __report_access+0x4b/0x3c0
[  942.307071][T22297]  ? _raw_spin_unlock_irq+0x23/0x50
[  942.307095][T22297]  task_work_run+0x14d/0x240
[  942.307120][T22297]  ? __pfx_task_work_run+0x10/0x10
[  942.307142][T22297]  ? ptrace_attach+0x252/0x5f0
[  942.307166][T22297]  syscall_exit_to_user_mode+0x27b/0x2a0
[  942.307187][T22297]  __do_fast_syscall_32+0x80/0x120
[  942.307213][T22297]  do_fast_syscall_32+0x32/0x80
[  942.307233][T22297]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  942.307272][T22297] RIP: 0023:0xf709e579
[  942.307285][T22297] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  942.307302][T22297] RSP: 002b:00000000f504c55c EFLAGS: 00000296 ORIG_RAX: 000000000000001a
[  942.307321][T22297] RAX: ffffffffffffffff RBX: 0000000000000010 RCX: 0000000000000001
[  942.307332][T22297] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  942.307342][T22297] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  942.307353][T22297] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  942.307364][T22297] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  942.307388][T22297]  </TASK>
[  942.307795][T22297] ptrace attach of "(null)"[18902] was attempted by "/syz-executor exec"[22297]
[  942.322057][T22298] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4257'.
[  942.572846][T22300] overlayfs: conflicting options: userxattr,redirect_dir=on
[  942.845110][T22304] nftables ruleset with unbound chain
[  943.619349][T22323] sd 0:0:0:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x24 ascq=0x0
[  943.848318][   T40] audit: type=1326 audit(1746936066.541:2515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22326 comm="syz.1.4266" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  943.858939][   T40] audit: type=1326 audit(1746936066.551:2516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22326 comm="syz.1.4266" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  943.862604][T22328] FAULT_INJECTION: forcing a failure.
[  943.862604][T22328] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  943.871081][   T40] audit: type=1326 audit(1746936066.551:2517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22326 comm="syz.1.4266" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  943.878167][   T40] audit: type=1326 audit(1746936066.551:2518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22326 comm="syz.1.4266" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  943.882101][T22328] CPU: 1 UID: 0 PID: 22328 Comm: syz.3.4265 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  943.882140][T22328] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  943.882150][T22328] Call Trace:
[  943.882156][T22328]  <TASK>
[  943.882163][T22328]  dump_stack_lvl+0x16c/0x1f0
[  943.882182][T22328]  should_fail_ex+0x512/0x640
[  943.882199][T22328]  _copy_to_iter+0x477/0x15a0
[  943.882218][T22328]  ? __pfx__copy_to_iter+0x10/0x10
[  943.882232][T22328]  ? __pfx___might_resched+0x10/0x10
[  943.882244][T22328]  ? rcu_is_watching+0x12/0xc0
[  943.882256][T22328]  ? __lock_acquire+0xaa4/0x1ba0
[  943.882270][T22328]  simple_copy_to_iter+0x46/0x90
[  943.882287][T22328]  __skb_datagram_iter+0x5a9/0x8c0
[  943.882302][T22328]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  943.882321][T22328]  skb_copy_datagram_iter+0x40/0x50
[  943.882337][T22328]  unix_stream_read_actor+0x7b/0xc0
[  943.882351][T22328]  unix_stream_read_generic+0xe15/0x28b0
[  943.882374][T22328]  ? __pfx_unix_stream_read_generic+0x10/0x10
[  943.882394][T22328]  ? __pfx_autoremove_wake_function+0x10/0x10
[  943.882411][T22328]  unix_stream_recvmsg+0x190/0x1c0
[  943.882426][T22328]  ? __pfx_unix_stream_recvmsg+0x10/0x10
[  943.882440][T22328]  ? __pfx_aa_sk_perm+0x10/0x10
[  943.882451][T22328]  ? __pfx_unix_stream_read_actor+0x10/0x10
[  943.882469][T22328]  sock_recvmsg+0x1f6/0x250
[  943.882496][T22328]  ____sys_recvmsg+0x218/0x6b0
[  943.882518][T22328]  ? __pfx_____sys_recvmsg+0x10/0x10
[  943.882531][T22328]  ? import_iovec+0x86/0xb0
[  943.882551][T22328]  ? __lock_acquire+0x5ca/0x1ba0
[  943.882565][T22328]  ___sys_recvmsg+0x114/0x1a0
[  943.882577][T22328]  ? __pfx____sys_recvmsg+0x10/0x10
[  943.882601][T22328]  do_recvmmsg+0x568/0x740
[  943.882614][T22328]  ? __pfx_do_recvmmsg+0x10/0x10
[  943.882627][T22328]  ? __pfx___schedule+0x10/0x10
[  943.882639][T22328]  ? lockdep_hardirqs_on+0x7c/0x110
[  943.882657][T22328]  ? trace_irq_enable.constprop.0+0x2f/0x120
[  943.882672][T22328]  ? rcu_is_watching+0x12/0xc0
[  943.882682][T22328]  __sys_recvmmsg+0x21c/0x280
[  943.882694][T22328]  ? __pfx___sys_recvmmsg+0x10/0x10
[  943.882710][T22328]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  943.882722][T22328]  ? lockdep_hardirqs_on+0x7c/0x110
[  943.882735][T22328]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  943.882749][T22328]  __do_fast_syscall_32+0x73/0x120
[  943.882767][T22328]  do_fast_syscall_32+0x32/0x80
[  943.882781][T22328]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  943.882794][T22328] RIP: 0023:0xf703e579
[  943.882803][T22328] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  943.882812][T22328] RSP: 002b:00000000f500d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  943.882823][T22328] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 00000000800034c0
[  943.882829][T22328] RDX: 000000000000013c RSI: 0000000000000700 RDI: 0000000000000000
[  943.882835][T22328] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  943.882840][T22328] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  943.882846][T22328] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  943.882858][T22328]  </TASK>
[  944.022174][   T40] audit: type=1326 audit(1746936066.551:2519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22326 comm="syz.1.4266" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  944.029610][   T40] audit: type=1326 audit(1746936066.551:2520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22326 comm="syz.1.4266" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  944.039450][   T40] audit: type=1326 audit(1746936066.551:2521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22326 comm="syz.1.4266" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  944.046084][   T40] audit: type=1326 audit(1746936066.551:2522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22326 comm="syz.1.4266" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  944.387609][T22336] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4267'.
[  944.674350][T22342] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4270'.
[  944.818744][T22347] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4268'.
[  945.272605][ T6005] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  945.434284][ T6005] usb 9-1: too many configurations: 9, using maximum allowed: 8
[  945.437755][ T6005] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  945.440859][ T6005] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  945.444576][ T6005] usb 9-1: config 0 interface 0 has no altsetting 0
[  945.447539][ T6005] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  945.450378][ T6005] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  945.454408][ T6005] usb 9-1: config 0 interface 0 has no altsetting 0
[  945.457463][ T6005] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  945.460373][ T6005] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  945.464292][ T6005] usb 9-1: config 0 interface 0 has no altsetting 0
[  945.467253][ T6005] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  945.470071][ T6005] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  945.473769][ T6005] usb 9-1: config 0 interface 0 has no altsetting 0
[  945.476798][ T6005] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  945.479986][ T6005] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  945.484211][ T6005] usb 9-1: config 0 interface 0 has no altsetting 0
[  945.487083][ T6005] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  945.490191][ T6005] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  945.494666][ T6005] usb 9-1: config 0 interface 0 has no altsetting 0
[  945.497995][ T6005] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  945.501211][ T6005] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  945.504670][ T6005] usb 9-1: config 0 interface 0 has no altsetting 0
[  945.507268][ T6005] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 9
[  945.510070][ T6005] usb 9-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  945.516725][ T6005] usb 9-1: config 0 interface 0 has no altsetting 0
[  945.521642][ T6005] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  945.525297][ T6005] usb 9-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  945.528535][ T6005] usb 9-1: Product: syz
[  945.530159][ T6005] usb 9-1: Manufacturer: syz
[  945.531979][ T6005] usb 9-1: SerialNumber: syz
[  945.535169][ T6005] usb 9-1: config 0 descriptor??
[  945.540681][ T6005] yurex 9-1:0.0: USB YUREX device now attached to Yurex #0
[  946.546335][T22359] usb usb9: usbfs: process 22359 (syz.3.4273) did not claim interface 9 before use
[  947.541201][T22374] mkiss: ax0: crc mode is auto.
[  947.749650][    C2] usb 9-1: yurex_control_callback - control failed: -2
[  947.779071][T22382] FAULT_INJECTION: forcing a failure.
[  947.779071][T22382] name failslab, interval 1, probability 0, space 0, times 0
[  947.785277][T22382] CPU: 1 UID: 0 PID: 22382 Comm: syz.2.4279 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  947.785302][T22382] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  947.785312][T22382] Call Trace:
[  947.785319][T22382]  <TASK>
[  947.785326][T22382]  dump_stack_lvl+0x16c/0x1f0
[  947.785356][T22382]  should_fail_ex+0x512/0x640
[  947.785378][T22382]  ? __kmalloc_noprof+0xbf/0x510
[  947.785398][T22382]  ? unregister_netdevice_many_notify+0x63b/0x26f0
[  947.785420][T22382]  should_failslab+0xc2/0x120
[  947.785440][T22382]  __kmalloc_noprof+0xd2/0x510
[  947.785469][T22382]  unregister_netdevice_many_notify+0x63b/0x26f0
[  947.785492][T22382]  ? __pfx___mutex_trylock_common+0x10/0x10
[  947.785517][T22382]  ? __pfx___might_resched+0x10/0x10
[  947.785538][T22382]  ? rcu_is_watching+0x12/0xc0
[  947.785553][T22382]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  947.785576][T22382]  ? __mutex_lock+0x1ca/0xb90
[  947.785601][T22382]  ? rtnl_net_dev_lock+0x146/0x360
[  947.785621][T22382]  ? __pfx___mutex_lock+0x10/0x10
[  947.785652][T22382]  unregister_netdevice_queue+0x305/0x3f0
[  947.785673][T22382]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  947.785695][T22382]  ? rtnl_net_dev_lock+0x28/0x360
[  947.785711][T22382]  ? rtnl_net_dev_lock+0x146/0x360
[  947.785727][T22382]  ? rtnl_lock+0x9/0x20
[  947.785743][T22382]  ? rtnl_net_dev_lock+0x146/0x360
[  947.785763][T22382]  unregister_netdev+0x1f/0x60
[  947.785783][T22382]  mkiss_close+0x1e7/0x340
[  947.785807][T22382]  ? __pfx_mkiss_close+0x10/0x10
[  947.785831][T22382]  tty_ldisc_close+0x111/0x1a0
[  947.785849][T22382]  tty_set_ldisc+0x24e/0x780
[  947.785870][T22382]  tty_ioctl+0xc42/0x1610
[  947.785890][T22382]  ? __pfx_tty_ioctl+0x10/0x10
[  947.785921][T22382]  ? find_held_lock+0x2b/0x80
[  947.785936][T22382]  ? hook_file_ioctl_common+0x145/0x410
[  947.785962][T22382]  ? __fget_files+0x20e/0x3c0
[  947.785986][T22382]  ? __fput_deferred+0x350/0x370
[  947.786010][T22382]  tty_compat_ioctl+0x24a/0x4d0
[  947.786029][T22382]  ? __pfx_tty_compat_ioctl+0x10/0x10
[  947.786048][T22382]  __ia32_compat_sys_ioctl+0x24c/0x360
[  947.786074][T22382]  __do_fast_syscall_32+0x73/0x120
[  947.786099][T22382]  do_fast_syscall_32+0x32/0x80
[  947.786123][T22382]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  947.786143][T22382] RIP: 0023:0xf711e579
[  947.786158][T22382] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  947.786174][T22382] RSP: 002b:00000000f50cc55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  947.786191][T22382] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005423
[  947.786202][T22382] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[  947.786210][T22382] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  947.786221][T22382] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  947.786230][T22382] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  947.786267][T22382]  </TASK>
[  947.794114][ T6005] usb 9-1: USB disconnect, device number 4
[  947.905541][ T6005] yurex 9-1:0.0: USB YUREX #0 now disconnected
[  948.230265][T22382] can0: slcan on ttyS3.
[  948.453103][T22379] can0 (unregistered): slcan off ttyS3.
[  948.532180][T14990] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  948.533215][T22401] ptrace attach of "/syz-executor exec"[15230] was attempted by "/syz-executor exec"[22401]
[  948.610717][T14990] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  948.682898][ T5942] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  948.688715][ T5942] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  948.691974][ T5942] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  948.693543][T14990] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  948.701458][ T5942] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  948.706093][ T5942] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  948.739252][T22405] lo speed is unknown, defaulting to 1000
[  948.754275][T14990] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  948.764209][T22408] netlink: 'syz.2.4285': attribute type 4 has an invalid length.
[  948.771497][T22408] netlink: 'syz.2.4285': attribute type 4 has an invalid length.
[  948.846161][T22405] lo speed is unknown, defaulting to 1000
[  948.848733][T22405] vxcan1 speed is unknown, defaulting to 1000
[  949.263618][T14990] batman_adv: batadv0: Interface deactivated: ipvlan2
[  949.276967][T14990] batman_adv: batadv0: Removing interface: ipvlan2
[  949.468687][T14990] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  949.476881][T14990] bond0 (unregistering): Released all slaves
[  949.584781][T14990] tipc: Disabling bearer <udp:syz2>
[  949.589242][T14990] tipc: Left network mode
[  949.779311][T22405] chnl_net:caif_netlink_parms(): no params data found
[  949.796809][   T40] audit: type=1326 audit(1746936072.491:2523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22436 comm="syz.2.4289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  949.807710][   T40] audit: type=1326 audit(1746936072.491:2524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22436 comm="syz.2.4289" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  949.816724][   T40] audit: type=1326 audit(1746936072.491:2525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22436 comm="syz.2.4289" exe="/syz-executor" sig=0 arch=40000003 syscall=29 compat=1 ip=0xf711e579 code=0x7ffc0000
[  950.419329][T22405] bridge0: port 1(bridge_slave_0) entered blocking state
[  950.422623][T22405] bridge0: port 1(bridge_slave_0) entered disabled state
[  950.425122][T22405] bridge_slave_0: entered allmulticast mode
[  950.432460][T22405] bridge_slave_0: entered promiscuous mode
[  950.440282][T14990] hsr_slave_0: left promiscuous mode
[  950.444108][T14990] hsr_slave_1: left promiscuous mode
[  950.467143][T14990] veth1_macvtap: left promiscuous mode
[  950.469561][T14990] veth0_macvtap: left promiscuous mode
[  950.471731][T14990] veth1_vlan: left promiscuous mode
[  950.484978][T14990] veth0_vlan: left promiscuous mode
[  950.756158][ T5942] Bluetooth: hci0: command tx timeout
[  951.125825][T22458] netlink: 'syz.3.4291': attribute type 10 has an invalid length.
[  952.076620][T15027] smc: removing ib device s
z1
[  952.079848][T22405] bridge0: port 2(bridge_slave_1) entered blocking state
[  952.082235][T22405] bridge0: port 2(bridge_slave_1) entered disabled state
[  952.084652][T22405] bridge_slave_1: entered allmulticast mode
[  952.088368][T22405] bridge_slave_1: entered promiscuous mode
[  952.091516][   T66] lo speed is unknown, defaulting to 1000
[  952.093445][   T66] s
z1: Port: 1 Link DOWN
[  952.220586][T22405] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  952.234329][T22405] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  952.331904][T22405] team0: Port device team_slave_0 added
[  952.357660][T22405] team0: Port device team_slave_1 added
[  952.537478][T22405] batman_adv: batadv0: Adding interface: batadv_slave_0
[  952.539687][T22405] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  952.550028][T22405] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  952.563789][T22405] batman_adv: batadv0: Adding interface: batadv_slave_1
[  952.566519][T22405] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  952.582567][T22405] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  952.755326][T22405] hsr_slave_0: entered promiscuous mode
[  952.757549][T22405] hsr_slave_1: entered promiscuous mode
[  952.760639][T22483] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4294'.
[  952.781541][T14990] IPVS: stop unused estimator thread 0...
[  952.832661][ T5942] Bluetooth: hci0: command tx timeout
[  953.087339][T22405] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  953.093255][T22405] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  953.104065][T22405] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  953.109273][T22405] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  953.123643][T22497] netlink: 10 bytes leftover after parsing attributes in process `syz.4.4296'.
[  953.275767][T22405] 8021q: adding VLAN 0 to HW filter on device bond0
[  953.297923][T22405] 8021q: adding VLAN 0 to HW filter on device team0
[  953.309932][T14990] bridge0: port 1(bridge_slave_0) entered blocking state
[  953.312303][T14990] bridge0: port 1(bridge_slave_0) entered forwarding state
[  953.344871][T15027] bridge0: port 2(bridge_slave_1) entered blocking state
[  953.347136][T15027] bridge0: port 2(bridge_slave_1) entered forwarding state
[  953.386634][T22405] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  953.613473][T22405] 8021q: adding VLAN 0 to HW filter on device batadv0
[  953.755732][T22405] veth0_vlan: entered promiscuous mode
[  953.773392][T22405] veth1_vlan: entered promiscuous mode
[  953.795783][T22405] veth0_macvtap: entered promiscuous mode
[  953.800539][T22405] veth1_macvtap: entered promiscuous mode
[  953.814260][T22405] batman_adv: batadv0: Interface activated: batadv_slave_0
[  953.819503][T22405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  953.823066][T22405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  953.826888][T22405] batman_adv: batadv0: Interface activated: batadv_slave_1
[  953.831400][T22405] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  953.834669][T22405] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  953.837388][T22405] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  953.840139][T22405] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  953.890485][T14500] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  953.895911][T14500] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  953.903929][   T65] IPVS: starting estimator thread 0...
[  953.972358][T22540] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4297'.
[  953.977884][T14500] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  953.981527][T14500] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  954.012605][T22538] IPVS: using max 45 ests per chain, 108000 per kthread
[  954.106564][T22545] FAULT_INJECTION: forcing a failure.
[  954.106564][T22545] name failslab, interval 1, probability 0, space 0, times 0
[  954.110895][T22545] CPU: 0 UID: 0 PID: 22545 Comm: syz.3.4300 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  954.110921][T22545] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  954.110928][T22545] Call Trace:
[  954.110942][T22545]  <TASK>
[  954.110947][T22545]  dump_stack_lvl+0x16c/0x1f0
[  954.110966][T22545]  should_fail_ex+0x512/0x640
[  954.110980][T22545]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  954.110993][T22545]  should_failslab+0xc2/0x120
[  954.111006][T22545]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  954.111017][T22545]  ? sk_prot_alloc+0x60/0x2a0
[  954.111033][T22545]  sk_prot_alloc+0x60/0x2a0
[  954.111047][T22545]  sk_alloc+0x36/0xc20
[  954.111058][T22545]  unix_create1+0xa6/0x6c0
[  954.111073][T22545]  unix_create+0x10e/0x1d0
[  954.111087][T22545]  __sock_create+0x335/0x8d0
[  954.111104][T22545]  __sys_socketpair+0x1d8/0x5a0
[  954.111119][T22545]  ? __pfx___sys_socketpair+0x10/0x10
[  954.111136][T22545]  ? __pfx_ksys_write+0x10/0x10
[  954.111165][T22545]  __ia32_sys_socketpair+0x95/0x100
[  954.111180][T22545]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  954.111196][T22545]  __do_fast_syscall_32+0x73/0x120
[  954.111212][T22545]  do_fast_syscall_32+0x32/0x80
[  954.111226][T22545]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  954.111239][T22545] RIP: 0023:0xf703e579
[  954.111247][T22545] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  954.111257][T22545] RSP: 002b:00000000f500d55c EFLAGS: 00000296 ORIG_RAX: 0000000000000168
[  954.111267][T22545] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 0000000000000001
[  954.111273][T22545] RDX: 0000000000000000 RSI: 0000000080000100 RDI: 0000000000000000
[  954.111279][T22545] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  954.111288][T22545] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  954.111294][T22545] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  954.111306][T22545]  </TASK>
[  954.177138][    C0] vkms_vblank_simulate: vblank timer overrun
[  954.922689][ T5942] Bluetooth: hci0: command tx timeout
[  955.960361][   T65] IPVS: starting estimator thread 0...
[  956.052673][T22570] IPVS: using max 45 ests per chain, 108000 per kthread
[  956.992702][ T5956] Bluetooth: hci0: command tx timeout
[  957.425451][   T40] audit: type=1800 audit(1746936080.121:2526): pid=22596 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.4.4309" name="/newroot/221/file0" dev="tmpfs" ino=1172 res=0 errno=0
[  957.615045][T22604] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4310'.
[  958.071476][T22610] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  958.242213][T22610] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  958.395538][T22610] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  958.532253][T22610] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  958.641148][T22610] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  958.648998][T22610] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  958.657170][T22610] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  958.664048][T22610] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  958.672782][ T5956] Bluetooth: hci1: command 0x0406 tx timeout
[  958.745422][   T40] audit: type=1326 audit(1746936081.441:2527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22624 comm="syz.4.4317" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  958.756723][   T40] audit: type=1326 audit(1746936081.451:2528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22624 comm="syz.4.4317" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  958.765589][   T40] audit: type=1326 audit(1746936081.451:2529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22624 comm="syz.4.4317" exe="/syz-executor" sig=0 arch=40000003 syscall=433 compat=1 ip=0xf709e579 code=0x7ffc0000
[  958.774990][   T40] audit: type=1326 audit(1746936081.451:2530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22624 comm="syz.4.4317" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  958.781787][   T40] audit: type=1326 audit(1746936081.451:2531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22624 comm="syz.4.4317" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  958.788106][   T40] audit: type=1326 audit(1746936081.451:2532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22624 comm="syz.4.4317" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf709e579 code=0x7ffc0000
[  958.794762][   T40] audit: type=1326 audit(1746936081.451:2533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22624 comm="syz.4.4317" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  958.801471][   T40] audit: type=1326 audit(1746936081.451:2534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22624 comm="syz.4.4317" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  958.832864][   T40] audit: type=1326 audit(1746936081.451:2535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22624 comm="syz.4.4317" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf709e579 code=0x7ffc0000
[  959.491817][T22648] netlink: 'syz.5.4320': attribute type 1 has an invalid length.
[  959.495337][T22648] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4320'.
[  959.966839][T22655] MTD: Attempt to mount non-MTD device "/dev/sr0"
[  960.116357][T22660] FAULT_INJECTION: forcing a failure.
[  960.116357][T22660] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  960.120413][T22660] CPU: 2 UID: 0 PID: 22660 Comm: syz.3.4323 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  960.120428][T22660] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  960.120435][T22660] Call Trace:
[  960.120438][T22660]  <TASK>
[  960.120443][T22660]  dump_stack_lvl+0x16c/0x1f0
[  960.120461][T22660]  should_fail_ex+0x512/0x640
[  960.120478][T22660]  _copy_from_user+0x2e/0xd0
[  960.120494][T22660]  vmemdup_user+0x66/0xe0
[  960.120508][T22660]  setxattr_copy+0x148/0x210
[  960.120524][T22660]  path_setxattrat+0x104/0x2a0
[  960.120533][T22660]  ? __pfx_path_setxattrat+0x10/0x10
[  960.120551][T22660]  ? ksys_write+0x190/0x240
[  960.120571][T22660]  ? fput+0x70/0xf0
[  960.120582][T22660]  ? ksys_write+0x1b9/0x240
[  960.120591][T22660]  ? __pfx_ksys_write+0x10/0x10
[  960.120602][T22660]  __ia32_sys_lsetxattr+0xc7/0x140
[  960.120611][T22660]  ? lockdep_hardirqs_on+0x7c/0x110
[  960.120625][T22660]  __do_fast_syscall_32+0x73/0x120
[  960.120640][T22660]  do_fast_syscall_32+0x32/0x80
[  960.120654][T22660]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  960.120668][T22660] RIP: 0023:0xf703e579
[  960.120676][T22660] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  960.120686][T22660] RSP: 002b:00000000f502e55c EFLAGS: 00000296 ORIG_RAX: 00000000000000e3
[  960.120695][T22660] RAX: ffffffffffffffda RBX: 00000000800000c0 RCX: 0000000080000100
[  960.120701][T22660] RDX: 0000000080000140 RSI: 0000000000000001 RDI: 0000000000000003
[  960.120707][T22660] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  960.120713][T22660] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  960.120719][T22660] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  960.120731][T22660]  </TASK>
[  960.276714][T22655] /dev/sr0: Can't open blockdev
[  960.316747][T22665] netlink: 'syz.3.4323': attribute type 10 has an invalid length.
[  960.329866][T22665] hsr_slave_0: left promiscuous mode
[  960.334655][T22665] hsr_slave_1: left promiscuous mode
[  960.597999][T22672] loop6: detected capacity change from 0 to 63
[  960.604944][T18021] buffer_io_error: 118 callbacks suppressed
[  960.604954][T18021] Buffer I/O error on dev loop6, logical block 0, async page read
[  960.609979][T18021] Buffer I/O error on dev loop6, logical block 0, async page read
[  960.615420][T22672] Buffer I/O error on dev loop6, logical block 1, async page read
[  960.618883][T22672] Buffer I/O error on dev loop6, logical block 1, async page read
[  960.625244][T22672] Buffer I/O error on dev loop6, logical block 0, async page read
[  960.629084][T18021] Buffer I/O error on dev loop6, logical block 0, async page read
[  960.634476][T22672] Buffer I/O error on dev loop6, logical block 0, async page read
[  960.638304][T22671] Buffer I/O error on dev loop6, logical block 0, async page read
[  960.641542][T18021] Buffer I/O error on dev loop6, logical block 0, async page read
[  960.645170][T22671] Buffer I/O error on dev loop6, logical block 0, async page read
[  960.921847][T22679] netlink: 'syz.2.4326': attribute type 10 has an invalid length.
[  960.944701][T22679] hsr_slave_0: left promiscuous mode
[  960.958942][T22679] hsr_slave_1: left promiscuous mode
[  963.360109][T22706] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4332'.
[  963.710793][T22713] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  963.810273][T22713] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  964.023560][T22713] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  964.285327][T22735] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  964.314554][T22713] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  964.411301][T22735] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  964.536671][T22735] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  964.563593][T22713] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  964.577748][T22713] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  964.589911][T22713] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  964.601432][T22713] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  964.608809][T22735] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  964.861151][T22735] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  964.932728][T22735] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  964.942088][T22735] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  964.958837][T22735] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  965.242909][T22771] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4339'.
[  966.154516][T22786] bond0: (slave wlan1): Releasing backup interface
[  966.321174][T22790] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  966.396160][T22790] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  966.459389][T22790] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  966.545582][T22790] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  966.660582][T22790] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  966.677541][T22790] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  966.688766][T22790] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  966.710050][T22790] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  967.509267][T22813] Invalid ELF header magic: != ELF
[  967.858168][T22821] FAULT_INJECTION: forcing a failure.
[  967.858168][T22821] name failslab, interval 1, probability 0, space 0, times 0
[  967.861612][T22819] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  967.862375][T22821] CPU: 2 UID: 0 PID: 22821 Comm: syz.4.4353 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  967.862389][T22821] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  967.862396][T22821] Call Trace:
[  967.862400][T22821]  <TASK>
[  967.862405][T22821]  dump_stack_lvl+0x16c/0x1f0
[  967.862423][T22821]  should_fail_ex+0x512/0x640
[  967.862438][T22821]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[  967.862451][T22821]  should_failslab+0xc2/0x120
[  967.862464][T22821]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[  967.862487][T22821]  ? alloc_inode+0xc3/0x240
[  967.862503][T22821]  alloc_inode+0xc3/0x240
[  967.862516][T22821]  iget_locked+0x2e4/0x830
[  967.862533][T22821]  ? __pfx_iget_locked+0x10/0x10
[  967.862546][T22821]  ? __lock_acquire+0xaa4/0x1ba0
[  967.862573][T22821]  ? find_held_lock+0x2b/0x80
[  967.862586][T22821]  kernfs_get_inode+0x48/0x460
[  967.862602][T22821]  cgroup_may_write+0x89/0x120
[  967.862615][T22821]  cgroup_attach_permissions+0x1b8/0x790
[  967.862633][T22821]  __cgroup_procs_write+0x2de/0x660
[  967.862649][T22821]  ? __pfx___cgroup_procs_write+0x10/0x10
[  967.862667][T22821]  cgroup_procs_write+0x26/0x60
[  967.862680][T22821]  cgroup_file_write+0x1ec/0x790
[  967.862689][T22821]  ? __pfx_cgroup_procs_write+0x10/0x10
[  967.862703][T22821]  ? __pfx_cgroup_file_write+0x10/0x10
[  967.862711][T22821]  ? trace_kmalloc+0x2b/0xd0
[  967.862729][T22821]  kernfs_fop_write_iter+0x351/0x510
[  967.862741][T22821]  ? __pfx_cgroup_file_write+0x10/0x10
[  967.862752][T22821]  vfs_write+0x5ba/0x1180
[  967.862763][T22821]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  967.862776][T22821]  ? __pfx___mutex_lock+0x10/0x10
[  967.862791][T22821]  ? __pfx_vfs_write+0x10/0x10
[  967.862811][T22821]  ksys_write+0x12a/0x240
[  967.862820][T22821]  ? __pfx_ksys_write+0x10/0x10
[  967.862831][T22821]  ? rcu_is_watching+0x12/0xc0
[  967.862842][T22821]  __do_fast_syscall_32+0x73/0x120
[  967.862858][T22821]  do_fast_syscall_32+0x32/0x80
[  967.862872][T22821]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  967.862885][T22821] RIP: 0023:0xf709e579
[  967.862894][T22821] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  967.862904][T22821] RSP: 002b:00000000f508e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  967.862914][T22821] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000080000080
[  967.862920][T22821] RDX: 0000000000000012 RSI: 0000000000000000 RDI: 0000000000000000
[  967.862926][T22821] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  967.862931][T22821] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  967.862937][T22821] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  967.862951][T22821]  </TASK>
[  968.420894][   T66] lo speed is unknown, defaulting to 1000
[  968.462033][   T34] lo speed is unknown, defaulting to 1000
[  968.593028][T22838] netlink: 'syz.3.4358': attribute type 10 has an invalid length.
[  969.472587][   T40] kauditd_printk_skb: 10 callbacks suppressed
[  969.472598][   T40] audit: type=1804 audit(1746936092.161:2546): pid=22861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.4366" name="/newroot/547/file0" dev="tmpfs" ino=2900 res=1 errno=0
[  969.483404][T22861] ref_ctr_offset mismatch. inode: 0xb54 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xa
[  969.486907][T22861] ref_ctr going negative. vaddr: 0x80ffc002, curr val: 0, delta: -1
[  969.489389][T22861] ref_ctr decrement failed for inode: 0xb54 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff88802459c600
[  969.492763][T22861] uprobe: syz.3.4366:22861 failed to unregister, leaking uprobe
[  969.603654][T22866] netlink: 'syz.3.4368': attribute type 1 has an invalid length.
[  969.648586][T22866] bond1: (slave gretap1): making interface the new active one
[  969.651463][T22866] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  969.657397][T22866] tipc: Enabled bearer <udp:s>, priority 10
[  970.197893][T22881] No source specified
[  972.016891][T22915] 9pnet_fd: Insufficient options for proto=fd
[  972.142962][T22921] FAULT_INJECTION: forcing a failure.
[  972.142962][T22921] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  972.147170][T22921] CPU: 3 UID: 0 PID: 22921 Comm: syz.2.4385 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  972.147185][T22921] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  972.147191][T22921] Call Trace:
[  972.147195][T22921]  <TASK>
[  972.147204][T22921]  dump_stack_lvl+0x16c/0x1f0
[  972.147222][T22921]  should_fail_ex+0x512/0x640
[  972.147239][T22921]  _copy_from_user+0x2e/0xd0
[  972.147255][T22921]  generic_map_delete_batch+0x439/0x700
[  972.147272][T22921]  ? __pfx_generic_map_delete_batch+0x10/0x10
[  972.147288][T22921]  ? __pfx_generic_map_delete_batch+0x10/0x10
[  972.147302][T22921]  bpf_map_do_batch+0x4af/0x670
[  972.147315][T22921]  __sys_bpf+0x5fc/0x4d80
[  972.147330][T22921]  ? __pfx___sys_bpf+0x10/0x10
[  972.147344][T22921]  ? ksys_write+0x190/0x240
[  972.147356][T22921]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  972.147378][T22921]  ? fput+0x70/0xf0
[  972.147389][T22921]  ? ksys_write+0x1b9/0x240
[  972.147398][T22921]  ? __pfx_ksys_write+0x10/0x10
[  972.147406][T22921]  ? rcu_is_watching+0x12/0xc0
[  972.147418][T22921]  __ia32_sys_bpf+0x76/0xe0
[  972.147433][T22921]  __do_fast_syscall_32+0x73/0x120
[  972.147448][T22921]  do_fast_syscall_32+0x32/0x80
[  972.147462][T22921]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  972.147474][T22921] RIP: 0023:0xf711e579
[  972.147483][T22921] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  972.147493][T22921] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  972.147502][T22921] RAX: ffffffffffffffda RBX: 000000000000001b RCX: 0000000080000000
[  972.147509][T22921] RDX: 0000000000000038 RSI: 0000000000000000 RDI: 0000000000000000
[  972.147515][T22921] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  972.147520][T22921] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  972.147526][T22921] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  972.147538][T22921]  </TASK>
[  972.500214][T22946] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  973.774163][T22966] FAULT_INJECTION: forcing a failure.
[  973.774163][T22966] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  973.779098][T22966] CPU: 3 UID: 0 PID: 22966 Comm: syz.4.4396 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  973.779113][T22966] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  973.779119][T22966] Call Trace:
[  973.779123][T22966]  <TASK>
[  973.779128][T22966]  dump_stack_lvl+0x16c/0x1f0
[  973.779146][T22966]  should_fail_ex+0x512/0x640
[  973.779169][T22966]  _copy_to_user+0x32/0xd0
[  973.779186][T22966]  simple_read_from_buffer+0xcb/0x170
[  973.779202][T22966]  proc_fail_nth_read+0x197/0x270
[  973.779216][T22966]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  973.779231][T22966]  ? rw_verify_area+0xcf/0x680
[  973.779245][T22966]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  973.779259][T22966]  vfs_read+0x1de/0xc70
[  973.779270][T22966]  ? __pfx___mutex_lock+0x10/0x10
[  973.779284][T22966]  ? __pfx_vfs_read+0x10/0x10
[  973.779297][T22966]  ? __fget_files+0x20e/0x3c0
[  973.779316][T22966]  ksys_read+0x12a/0x240
[  973.779325][T22966]  ? __pfx_ksys_read+0x10/0x10
[  973.779335][T22966]  ? rcu_is_watching+0x12/0xc0
[  973.779347][T22966]  __do_fast_syscall_32+0x73/0x120
[  973.779362][T22966]  do_fast_syscall_32+0x32/0x80
[  973.779377][T22966]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  973.779389][T22966] RIP: 0023:0xf709e579
[  973.779398][T22966] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  973.779408][T22966] RSP: 002b:00000000f506d590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  973.779418][T22966] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000f506d620
[  973.779424][T22966] RDX: 000000000000000f RSI: 00000000f7402ff4 RDI: 0000000000000000
[  973.779430][T22966] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  973.779435][T22966] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  973.779441][T22966] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  973.779454][T22966]  </TASK>
[  973.854909][T22970] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  973.859341][T22970] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4397'.
[  975.385347][T23004] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4408'.
[  975.436889][   T40] audit: type=1326 audit(1746936098.131:2547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23001 comm="syz.2.4407" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  975.462328][   T40] audit: type=1326 audit(1746936098.131:2548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23001 comm="syz.2.4407" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  975.474898][   T40] audit: type=1326 audit(1746936098.131:2549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23001 comm="syz.2.4407" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf711e579 code=0x7ffc0000
[  975.484264][   T40] audit: type=1326 audit(1746936098.131:2550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23001 comm="syz.2.4407" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  975.491547][   T40] audit: type=1326 audit(1746936098.131:2551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23001 comm="syz.2.4407" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  975.500500][   T40] audit: type=1326 audit(1746936098.131:2552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23001 comm="syz.2.4407" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf711e579 code=0x7ffc0000
[  975.508495][   T40] audit: type=1326 audit(1746936098.131:2553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23001 comm="syz.2.4407" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  975.517162][   T40] audit: type=1326 audit(1746936098.131:2554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23001 comm="syz.2.4407" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x7ffc0000
[  975.910348][T23024] netlink: 72 bytes leftover after parsing attributes in process `syz.4.4414'.
[  976.013156][T23025] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  976.253731][T23028] FAULT_INJECTION: forcing a failure.
[  976.253731][T23028] name failslab, interval 1, probability 0, space 0, times 0
[  976.258279][T23028] CPU: 2 UID: 0 PID: 23028 Comm: syz.2.4415 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  976.258296][T23028] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  976.258302][T23028] Call Trace:
[  976.258306][T23028]  <TASK>
[  976.258311][T23028]  dump_stack_lvl+0x16c/0x1f0
[  976.258329][T23028]  should_fail_ex+0x512/0x640
[  976.258344][T23028]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  976.258357][T23028]  should_failslab+0xc2/0x120
[  976.258369][T23028]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  976.258380][T23028]  ? mas_alloc_nodes+0x18b/0x8b0
[  976.258395][T23028]  mas_alloc_nodes+0x18b/0x8b0
[  976.258410][T23028]  mas_node_count_gfp+0x105/0x130
[  976.258424][T23028]  mas_preallocate+0x53e/0xcd0
[  976.258434][T23028]  ? __lock_acquire+0xaa4/0x1ba0
[  976.258448][T23028]  ? __pfx_mas_preallocate+0x10/0x10
[  976.258461][T23028]  ? __asan_memset+0x23/0x50
[  976.258476][T23028]  commit_merge+0x29a/0x1020
[  976.258489][T23028]  ? __pfx_commit_merge+0x10/0x10
[  976.258501][T23028]  ? vma_merge_existing_range+0x113c/0x1cd0
[  976.258512][T23028]  ? dup_anon_vma.constprop.0+0x74/0x320
[  976.258525][T23028]  vma_merge_existing_range+0xc50/0x1cd0
[  976.258539][T23028]  ? __pfx_vma_merge_existing_range+0x10/0x10
[  976.258555][T23028]  vma_modify+0x87/0x510
[  976.258567][T23028]  vma_modify_flags+0x212/0x2d0
[  976.258578][T23028]  ? __pfx_vma_modify_flags+0x10/0x10
[  976.258588][T23028]  ? mtree_range_walk+0x718/0xc00
[  976.258609][T23028]  mlock_fixup+0x27c/0xe50
[  976.258622][T23028]  apply_mlockall_flags+0x2d4/0x470
[  976.258634][T23028]  ? __pfx_apply_mlockall_flags+0x10/0x10
[  976.258645][T23028]  ? __pfx___might_resched+0x10/0x10
[  976.258661][T23028]  ? __pfx_down_write_killable+0x10/0x10
[  976.258677][T23028]  ? __pfx_ksys_write+0x10/0x10
[  976.258690][T23028]  __do_sys_munlockall+0xc5/0x280
[  976.258702][T23028]  __do_fast_syscall_32+0x73/0x120
[  976.258718][T23028]  do_fast_syscall_32+0x32/0x80
[  976.258732][T23028]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  976.258745][T23028] RIP: 0023:0xf711e579
[  976.258753][T23028] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  976.258763][T23028] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000099
[  976.258774][T23028] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  976.258780][T23028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  976.258785][T23028] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  976.258791][T23028] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  976.258797][T23028] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  976.258809][T23028]  </TASK>
[  976.258819][T23028] vmg ffffc90002ed7c70 dumped because: VM_WARN_ON_VMG(prev && start <= prev->vm_start)
[  976.359543][T23028] vmg ffffc90002ed7c70 state: mm ffff88804eb23c00 pgoff 2000
[  976.359543][T23028] vmi ffffc90002ed7e28 [80000000,80800000)
[  976.359543][T23028] prev ffff888021c892c0 middle ffff888021c892c0 next 0000000000000000 target 0000000000000000
[  976.359543][T23028] start 80000000 end 80800000 flags 80000fb
[  976.359543][T23028] file ffff8880227c9dc0 anon_vma 0000000000000000 policy 0000000000000000
[  976.359543][T23028] uffd_ctx 0000000000000000
[  976.359543][T23028] anon_name 0000000000000000
[  976.359543][T23028] state 0
[  976.359543][T23028] just_expand 0
[  976.359543][T23028] __adjust_middle_start 0 __adjust_next_start 0
[  976.359543][T23028] __remove_middle 0 __remove_next 0
[  976.379799][T23028] vmg ffffc90002ed7c70 mm:
[  976.381334][T23028] mm ffff88804eb23c00 task_size 4294959104
[  976.381334][T23028] mmap_base 140560248172544 mmap_legacy_base 47072546996224
[  976.381334][T23028] pgd ffff88806862a000 mm_users 2 mm_count 2 pgtables_bytes 114688 map_count 32
[  976.381334][T23028] hiwater_rss 1617 hiwater_vm 5f7d total_vm 5f7d locked_vm 800
[  976.381334][T23028] pinned_vm 0 data_vm 186f exec_vm 1ac stack_vm 21
[  976.381334][T23028] start_code f7139000 end_code f72e2818 start_data f7490000 end_data f7490000
[  976.381334][T23028] start_brk 571a3000 brk 571c5000 start_stack ff928480
[  976.381334][T23028] arg_start ff929f6f arg_end ff929f82 env_start ff929f82 env_end ff929fea
[  976.381334][T23028] binfmt ffffffff8e6090c0 flags 800007fd
[  976.381334][T23028] ioctx_table 0000000000000000
[  976.381334][T23028] owner ffff88805395c880 exe_file ffff888022cc08c0
[  976.381334][T23028] notifier_subscriptions 0000000000000000
[  976.381334][T23028] numa_next_scan 4295034895 numa_scan_offset 0 numa_scan_seq 0
[  976.381334][T23028] tlb_flush_pending 0
[  976.381334][T23028] def_flags: 0x0()
[  976.418657][T23032] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4417'.
[  976.460075][T23028] vmg ffffc90002ed7c70 prev:
[  976.461694][T23028] vma ffff888021c892c0 start 0000000080000000 end 0000000080800000 mm ffff88804eb23c00
[  976.461694][T23028] prot 8000000000000025 anon_vma 0000000000000000 vm_ops ffffffff8b98e6c0
[  976.461694][T23028] pgoff 2000 file ffff8880227c9dc0 private_data 0000000000000000
[  976.461694][T23028] refcnt 1
[  976.461694][T23028] flags: 0x80020fb(read|write|shared|mayread|maywrite|mayexec|mayshare|locked|softdirty)
[  976.505886][T23028] vmg ffffc90002ed7c70 middle:
[  976.507947][T23028] vma ffff888021c892c0 start 0000000080000000 end 0000000080800000 mm ffff88804eb23c00
[  976.507947][T23028] prot 8000000000000025 anon_vma 0000000000000000 vm_ops ffffffff8b98e6c0
[  976.507947][T23028] pgoff 2000 file ffff8880227c9dc0 private_data 0000000000000000
[  976.507947][T23028] refcnt 1
[  976.507947][T23028] flags: 0x80020fb(read|write|shared|mayread|maywrite|mayexec|mayshare|locked|softdirty)
[  976.523853][T23028] vmg ffffc90002ed7c70 next: (NULL)
[  976.525746][T23028] vmg ffffc90002ed7c70 vmi:
[  976.527408][T23028] MAS: tree=ffff88804eb23c40 enode=ffff88804c4f300c 
[  976.527418][T23028] (ma_active)
[  976.529659][T23028] Store Type: 
[  976.530958][T23028] node_store
[  976.533744][T23028] [8/10] index=80000000 last=807fffff
[  976.535979][T23028]      min=0 max=80ffffff alloc=0000000000000000, depth=1, flags=0
[  976.538560][T23028] maple_tree(ffff88804eb23c40) flags 30B, height 2 root ffff8880785ebe1e
[  976.541390][T23028] 0-ffffffffffffffff: node ffff8880785ebe00 depth 0 type 3 parent ffff88804eb23c41 contents: 28e3a000 740ed000 ffffffff006d6000 0 0 0 0 0 0 0 | 02 02| ffff88804c4f300c 80FFFFFF ffff88804dacd00c F6D17FFF ffff88804dacd80c FFFFFFFFFFFFFFFF 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  976.553139][T23028]   0-80ffffff: node ffff88804c4f3000 depth 1 type 1 parent ffff8880785ebe06 contents: 0000000000000000 C22FFFF ffff88805162f400 E22FFFF 0000000000000000 3111FFFF ffff88805162f2c0 3115FFFF 0000000000000000 571A2FFF ffff88805162fa40 571C4FFF 0000000000000000 7FFFEFFF ffff88805162edc0 7FFFFFFF ffff888021c892c0 807FFFFF ffff888021c88000 80B35FFF ffff888021c888c0 80FFFFFF 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 000000000000000a
[  976.566545][T23028]     0-c22ffff: 0000000000000000
[  976.568317][T23028]     c230000-e22ffff: ffff88805162f400
[  976.570282][T23028]     e230000-3111ffff: 0000000000000000
[  976.572302][T23028]     31120000-3115ffff: ffff88805162f2c0
[  976.574462][T23028]     31160000-571a2fff: 0000000000000000
[  976.576506][T23028]     571a3000-571c4fff: ffff88805162fa40
[  976.578565][T23028]     571c5000-7fffefff: 0000000000000000
[  976.580590][T23028]     7ffff000-7fffffff: ffff88805162edc0
[  976.583035][T23028]     80000000-807fffff: ffff888021c892c0
[  976.585045][T23028]     80800000-80b35fff: ffff888021c88000
[  976.587005][T23028]     80b36000-80ffffff: ffff888021c888c0
[  976.589027][T23028]   81000000-f6d17fff: node ffff88804dacd000 depth 1 type 1 parent ffff8880785ebe0e contents: ffff88805162e780 81000FFF 0000000000000000 F50EDFFF ffff888021c88a00 F50EEFFF ffff88805162ec80 F510EFFF ffff888021c88b40 F510FFFF ffff88805162ef00 F590FFFF ffff8880131df2c0 F5910FFF ffff8880131de640 F6110FFF ffff8880131de500 F6112FFF ffff8880131dedc0 F6512FFF ffff8880131dfcc0 F6514FFF ffff8880131df540 F6914FFF ffff8880131df400 F6916FFF ffff8880131df680 F6D16FFF ffff8880131df900 F6D17FFF 000000000000000e
[  976.604062][T23028]     81000000-81000fff: ffff88805162e780
[  976.606018][T23028]     81001000-f50edfff: 0000000000000000
[  976.608015][T23028]     f50ee000-f50eefff: ffff888021c88a00
[  976.610031][T23028]     f50ef000-f510efff: ffff88805162ec80
[  976.612081][T23028]     f510f000-f510ffff: ffff888021c88b40
[  976.615303][T23028]     f5110000-f590ffff: ffff88805162ef00
[  976.617281][T23028]     f5910000-f5910fff: ffff8880131df2c0
[  976.619362][T23028]     f5911000-f6110fff: ffff8880131de640
[  976.621818][T23028]     f6111000-f6112fff: ffff8880131de500
[  976.624421][T23028]     f6113000-f6512fff: ffff8880131dedc0
[  976.626403][T23028]     f6513000-f6514fff: ffff8880131dfcc0
[  976.628443][T23028]     f6515000-f6914fff: ffff8880131df540
[  976.630472][T23028]     f6915000-f6916fff: ffff8880131df400
[  976.632921][T23028]     f6917000-f6d16fff: ffff8880131df680
[  976.634905][T23028]     f6d17000-f6d17fff: ffff8880131df900
[  976.636835][T23028]   f6d18000-ffffffffffffffff: node ffff88804dacd800 depth 1 type 1 parent ffff8880785ebe16 contents: ffff8880131dea00 F7117FFF ffff8880131de140 F711BFFF ffff8880131de3c0 F711DFFF ffff8880131dfb80 F711FFFF ffff8880131de8c0 F7138FFF ffff8880131df040 F72E2FFF ffff8880131dfe00 F73B9FFF ffff8880131def00 F7482FFF ffff8880131df7c0 F748AFFF 0000000000000000 F748FFFF ffff8880131de280 F7FEAFFF 0000000000000000 FF908FFF ffff8880131deb40 FF929FFF 0000000000000000 FFFFFFFFFFFFFFFF 0000000000000000 0 000000000000000d
[  976.652006][T23028]     f6d18000-f7117fff: ffff8880131dea00
[  976.654235][T23028]     f7118000-f711bfff: ffff8880131de140
[  976.656213][T23028]     f711c000-f711dfff: ffff8880131de3c0
[  976.658223][T23028]     f711e000-f711ffff: ffff8880131dfb80
[  976.660265][T23028]     f7120000-f7138fff: ffff8880131de8c0
[  976.662190][T23028]     f7139000-f72e2fff: ffff8880131df040
[  976.664552][T23028]     f72e3000-f73b9fff: ffff8880131dfe00
[  976.666394][T23028]     f73ba000-f7482fff: ffff8880131def00
[  976.668349][T23028]     f7483000-f748afff: ffff8880131df7c0
[  976.670418][T23028]     f748b000-f748ffff: 0000000000000000
[  976.672474][T23028]     f7490000-f7feafff: ffff8880131de280
[  976.675650][T23028]     f7feb000-ff908fff: 0000000000000000
[  976.677566][T23028]     ff909000-ff929fff: ffff8880131deb40
[  976.679676][T23028]     ff92a000-ffffffffffffffff: 0000000000000000
[  976.682019][T23028] ------------[ cut here ]------------
[  976.683824][T23028] WARNING: CPU: 2 PID: 23028 at mm/vma.c:768 vma_merge_existing_range+0x5d1/0x1cd0
[  976.686721][T23028] Modules linked in:
[  976.688605][T23028] CPU: 2 UID: 0 PID: 23028 Comm: syz.2.4415 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  976.693792][T23028] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  976.697169][T23028] RIP: 0010:vma_merge_existing_range+0x5d1/0x1cd0
[  976.699248][T23028] Code: 00 00 00 48 89 d8 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc e8 5f 02 ab ff 48 c7 c6 e0 c9 9b 8b 48 89 df e8 c0 ba f2 ff 90 <0f> 0b 90 e9 9d fc ff ff e8 42 02 ab ff 48 8b 54 24 20 48 b8 00 00
[  976.705341][T23028] RSP: 0018:ffffc90002ed7b10 EFLAGS: 00010293
[  976.707281][T23028] RAX: 0000000000000000 RBX: ffffc90002ed7c70 RCX: ffffffff8b5fc713
[  976.709607][T23028] RDX: ffff888023a80000 RSI: ffffffff820f9a90 RDI: 0000000000000006
[  976.712161][T23028] RBP: ffff888021c892c0 R08: 0000000000000006 R09: ffffffffffffffff
[  976.714851][T23028] R10: ffffffffffffffff R11: 0000000000000000 R12: 0000000080800000
[  976.717995][T23028] R13: ffffc90002ed7c90 R14: ffff888021c892c0 R15: 0000000080000000
[  976.721158][T23028] FS:  0000000000000000(0000) GS:ffff8880979ec000(0063) knlGS:00000000f510eb40
[  976.724443][T23028] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  976.726533][T23028] CR2: 00000000f510dfac CR3: 000000006862a000 CR4: 0000000000352ef0
[  976.729060][T23028] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  976.731571][T23028] DR3: 000000000000000e DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  976.734574][T23028] Call Trace:
[  976.735660][T23028]  <TASK>
[  976.736627][T23028]  ? __pfx_vma_merge_existing_range+0x10/0x10
[  976.738801][T23028]  vma_modify+0x87/0x510
[  976.740191][T23028]  vma_modify_flags+0x212/0x2d0
[  976.741750][T23028]  ? __pfx_vma_modify_flags+0x10/0x10
[  976.743651][T23028]  ? mtree_range_walk+0x718/0xc00
[  976.745309][T23028]  ? mas_walk+0x6a6/0x910
[  976.746708][T23028]  mlock_fixup+0x27c/0xe50
[  976.748147][T23028]  apply_mlockall_flags+0x2d4/0x470
[  976.749805][T23028]  ? __pfx_apply_mlockall_flags+0x10/0x10
[  976.751611][T23028]  ? __pfx___might_resched+0x10/0x10
[  976.753388][T23028]  ? __pfx_down_write_killable+0x10/0x10
[  976.755208][T23028]  ? __pfx_ksys_write+0x10/0x10
[  976.756766][T23028]  __do_sys_munlockall+0xc5/0x280
[  976.758409][T23028]  __do_fast_syscall_32+0x73/0x120
[  976.760119][T23028]  do_fast_syscall_32+0x32/0x80
[  976.761706][T23028]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  976.763931][T23028] RIP: 0023:0xf711e579
[  976.765330][T23028] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  976.772194][T23028] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000099
[  976.775015][T23028] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  976.777518][T23028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  976.780058][T23028] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  976.782698][T23028] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  976.785237][T23028] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  976.787777][T23028]  </TASK>
[  976.788775][T23028] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  976.791004][T23028] CPU: 2 UID: 0 PID: 23028 Comm: syz.2.4415 Not tainted 6.15.0-rc5-syzkaller-00300-g3ce9925823c7 #0 PREEMPT(full) 
[  976.794765][T23028] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  976.798258][T23028] Call Trace:
[  976.799361][T23028]  <TASK>
[  976.800322][T23028]  dump_stack_lvl+0x3d/0x1f0
[  976.801810][T23028]  panic+0x71c/0x800
[  976.803024][T23028]  ? __pfx_panic+0x10/0x10
[  976.804481][T23028]  ? show_trace_log_lvl+0x29b/0x3e0
[  976.806139][T23028]  ? check_panic_on_warn+0x1f/0xb0
[  976.807814][T23028]  ? vma_merge_existing_range+0x5d1/0x1cd0
[  976.809671][T23028]  check_panic_on_warn+0xab/0xb0
[  976.811267][T23028]  __warn+0xf6/0x3c0
[  976.812544][T23028]  ? vma_merge_existing_range+0x5d1/0x1cd0
[  976.814422][T23028]  report_bug+0x3c3/0x580
[  976.815829][T23028]  ? vma_merge_existing_range+0x5d1/0x1cd0
[  976.817691][T23028]  handle_bug+0x184/0x210
[  976.819098][T23028]  exc_invalid_op+0x17/0x50
[  976.820541][T23028]  asm_exc_invalid_op+0x1a/0x20
[  976.822034][T23028] RIP: 0010:vma_merge_existing_range+0x5d1/0x1cd0
[  976.824118][T23028] Code: 00 00 00 48 89 d8 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc e8 5f 02 ab ff 48 c7 c6 e0 c9 9b 8b 48 89 df e8 c0 ba f2 ff 90 <0f> 0b 90 e9 9d fc ff ff e8 42 02 ab ff 48 8b 54 24 20 48 b8 00 00
[  976.830015][T23028] RSP: 0018:ffffc90002ed7b10 EFLAGS: 00010293
[  976.831918][T23028] RAX: 0000000000000000 RBX: ffffc90002ed7c70 RCX: ffffffff8b5fc713
[  976.834610][T23028] RDX: ffff888023a80000 RSI: ffffffff820f9a90 RDI: 0000000000000006
[  976.837085][T23028] RBP: ffff888021c892c0 R08: 0000000000000006 R09: ffffffffffffffff
[  976.839564][T23028] R10: ffffffffffffffff R11: 0000000000000000 R12: 0000000080800000
[  976.842072][T23028] R13: ffffc90002ed7c90 R14: ffff888021c892c0 R15: 0000000080000000
[  976.844621][T23028]  ? mt_dump_node+0xcd3/0x16d0
[  976.846133][T23028]  ? vma_merge_existing_range+0x5d0/0x1cd0
[  976.847985][T23028]  ? __pfx_vma_merge_existing_range+0x10/0x10
[  976.849913][T23028]  vma_modify+0x87/0x510
[  976.851276][T23028]  vma_modify_flags+0x212/0x2d0
[  976.852863][T23028]  ? __pfx_vma_modify_flags+0x10/0x10
[  976.854645][T23028]  ? mtree_range_walk+0x718/0xc00
[  976.856281][T23028]  ? mas_walk+0x6a6/0x910
[  976.857669][T23028]  mlock_fixup+0x27c/0xe50
[  976.859121][T23028]  apply_mlockall_flags+0x2d4/0x470
[  976.860805][T23028]  ? __pfx_apply_mlockall_flags+0x10/0x10
[  976.862686][T23028]  ? __pfx___might_resched+0x10/0x10
[  976.864405][T23028]  ? __pfx_down_write_killable+0x10/0x10
[  976.866290][T23028]  ? __pfx_ksys_write+0x10/0x10
[  976.868253][T23028]  __do_sys_munlockall+0xc5/0x280
[  976.870312][T23028]  __do_fast_syscall_32+0x73/0x120
[  976.872410][T23028]  do_fast_syscall_32+0x32/0x80
[  976.874065][T23028]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  976.876083][T23028] RIP: 0023:0xf711e579
[  976.877388][T23028] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  976.883475][T23028] RSP: 002b:00000000f510e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000099
[  976.886134][T23028] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000000
[  976.888640][T23028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  976.891113][T23028] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  976.893629][T23028] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  976.896142][T23028] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  976.898642][T23028]  </TASK>
[  976.900345][T23028] Kernel Offset: disabled
[  976.901651][T23028] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:01:39  Registers:
info registers vcpu 0

CPU#0
RAX=00000002000008fd RBX=ffff888021d42440 RCX=0000000000000830 RDX=0000000000000002
RSI=00000000000000fd RDI=0000000000000002 RBP=0000000000000008 RSP=ffffc90003007560
R8 =0000000000000000 R9 =fffffbfff210a282 R10=ffffffff90851417 R11=0000000000000000
R12=0000000000000003 R13=1ffff92000600ead R14=0000000000000001 R15=ffffc90003007588
RIP=ffffffff81683cd8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977ec000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c2ddb4d CR3=000000002ac8d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff816aa13c RDX=ffff888021d42440
RSI=ffffffff816a6f76 RDI=0000000000000000 RBP=0000000000000001 RSP=ffffc90003387e78
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000002 R11=0000000000000000
R12=0000560ae79c8000 R13=0000000000000000 R14=0000000000000001 R15=0000000000000000
RIP=ffffffff81ba9ce8 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe8d3de0300 ffffffff 00c00000
GS =0000 ffff8880978ec000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000560ae79c8000 CR3=000000004fd13000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a 0000002c00000012 0004000000080024 0000000000280030
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000114c 0000001400000000 0000000000000000 0000000000000015
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 08000602749a0008 0004080014080006 006fbe2e00000733 0000001000000001
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 a4030002000498a2 030002000498a003 0008000498980300 0800049890030a04
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0004988c030c0200 04988a0304020004 9888030188080004 9880030498800213
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8003138002100300 080008030fffffff ff02000318080006 080020080006046f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 e80208000880a2d0 ec08000100000208 06060125ac2a4080 8080880004080018
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 10040002f0030c02 0002e80320040002 e4030a040002e003 0210b880840002de
ZMM25=a9e77135a9e77135 a9e77135a9e77135 a9e77135a9e77135 a9e77135a9e77135 a9e77135a9e77135 a9e77135a9e77135 a9e77135a9e77135 a9e77135a9e77135
ZMM26=beb9b2e1beb9b2e1 beb9b2e1beb9b2e1 beb9b2e1beb9b2e1 beb9b2e1beb9b2e1 beb9b2e1beb9b2e1 beb9b2e1beb9b2e1 beb9b2e1beb9b2e1 beb9b2e1beb9b2e1
ZMM27=ef7e5ccfef7e5ccf ef7e5ccfef7e5ccf ef7e5ccfef7e5ccf ef7e5ccfef7e5ccf ef7e5ccfef7e5ccf ef7e5ccfef7e5ccf ef7e5ccfef7e5ccf ef7e5ccfef7e5ccf
ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=8623000086230000 8623000086230000 8623000086230000 8623000086230000 8623000086230000 8623000086230000 8623000086230000 8623000086230000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854c23b5 RDI=ffffffff9addfc00 RBP=ffffffff9addfbc0 RSP=ffffc90002ed7480
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9addfbc0 R15=ffffffff854c2350
RIP=ffffffff854c23df RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880979ec000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f510dfac CR3=000000006862a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000da9a19 RBX=0000000000000003 RCX=ffffffff8b6953e9 RDX=0000000000000000
RSI=ffffffff8dbdb989 RDI=ffffffff8bf46d60 RBP=ffffed1003b58000 RSP=ffffc9000048fdf8
R8 =0000000000000001 R9 =ffffed10056a65bd R10=ffff88802b532deb R11=0000000000000000
R12=0000000000000003 R13=ffff88801dac0000 R14=ffffffff90851410 R15=0000000000000000
RIP=ffffffff8b693c7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097aec000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080e11000 CR3=000000004bd93000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000